$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: zkDYxOnV7wW1U3JXoMbaE2yjfNMFUvyD/YSQgV7cy7k= Subject key identifier: FE:FA:83:42:31:14:CF:F1:DF:2B:D8:24:DD:64:ED:C9:9E:40:F2:5A Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0F03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0DB7 Signing time: Mon 20 Oct 2025 19:38:21 +0000 Manifest this update: Mon 20 Oct 2025 19:38:20 +0000 Manifest next update: Mon 27 Oct 2025 19:38:20 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: wJSVGUvdx2OOrRFV81d/nE9QFxSercTpVQlDWABCWms=) 2: 1CC3EA9EF83911EF9736296CC4F9AE02.roa (hash: Srtem4iziN87k02dP9HDoqgwfoDU97Zc4F/xLYktKKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3843 (0xf03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Oct 20 19:38:20 2025 GMT Not After : Oct 27 19:38:20 2025 GMT Subject: CN=68f68fac-727d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:64:9f:81:5b:36:36:ad:ed:f1:d2:c3:2a:9e: 4d:e6:de:08:58:e0:54:cf:51:32:f0:bb:80:da:23: b4:e2:72:b6:51:d3:83:f1:38:75:f0:70:6d:6a:12: 01:b6:53:d2:ca:0d:d3:7f:ff:84:98:9a:f5:e1:6d: 90:e6:02:16:a7:6c:55:6a:b2:e1:9b:32:fd:6a:21: 2c:ec:28:c3:fc:6a:4e:68:79:c1:2e:15:3a:59:01: 70:1c:ba:90:51:e9:6f:98:f9:0c:a1:de:d8:f5:a4: 14:7a:0b:d1:7a:ec:41:bb:d5:f7:a6:7c:56:4a:e0: 54:4d:a9:61:75:da:40:f8:f2:90:4b:54:3b:58:bc: a0:e2:9f:32:9d:a7:7e:6b:26:ac:98:60:18:89:cc: 4a:6b:5a:88:bd:aa:b2:25:be:21:cc:3a:68:46:74: 62:35:a0:e8:9d:aa:23:ef:dc:4e:e2:a8:5d:b2:9c: b9:40:b7:3d:7a:74:52:87:7b:6b:ab:58:d6:21:4e: d1:fe:86:d8:15:d8:80:7e:86:54:fd:5b:9a:dd:b7: e6:b1:ec:b5:6f:9f:1d:e0:ae:60:26:02:f7:6e:b6: ba:81:43:38:12:09:2f:7f:06:48:46:4a:a5:39:b9: 97:a6:e8:d5:01:68:28:5b:34:40:32:98:74:ea:25: a6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:FA:83:42:31:14:CF:F1:DF:2B:D8:24:DD:64:ED:C9:9E:40:F2:5A X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:1a:fd:2f:83:8b:eb:1f:db:e4:68:73:05:f4:56:1c:25:6b: f6:f2:57:af:a3:f4:87:03:fe:ac:16:b3:68:94:78:cb:82:41: 33:be:ca:34:54:01:72:8d:99:69:8a:3f:03:72:24:a3:02:12: 33:64:1f:e9:67:33:1a:a0:de:34:da:da:a2:c5:dd:79:5f:b3: 2c:f1:9f:29:54:26:2c:cf:81:02:94:1f:a4:58:81:40:11:ac: ba:84:c7:16:3e:56:63:eb:e2:7d:78:32:82:87:e2:b9:87:31: a6:6e:88:74:27:b6:7e:b4:c4:e9:29:23:78:0f:74:53:1d:02: 8d:80:52:92:79:18:3a:87:20:cd:ef:b1:08:bd:4c:51:02:be: d7:c0:a8:b3:14:8f:03:a2:16:fd:eb:fa:70:58:50:76:15:f1: 43:0e:88:d1:a1:fa:84:51:a5:f6:4b:09:1c:46:25:a1:56:05: e1:62:f5:ee:b9:56:1c:2e:8e:3f:3a:7d:72:f2:45:0f:99:1c: e7:1e:4e:19:07:91:a5:82:2e:f9:5a:ae:c0:f3:e0:7f:97:e9: 21:84:7c:81:3c:22:37:2b:b6:aa:0c:b8:fd:f6:47:66:08:0e: 0b:c9:d9:3c:a9:06:a7:f0:30:02:f0:a8:b5:af:1d:3d:75:cc: 4c:24:d5:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjUxMDIwMTkzODIwWhcNMjUxMDI3MTkzODIwWjAYMRYwFAYD VQQDEw02OGY2OGZhYy03MjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmSfgVs2Nq3t8dLDKp5N5t4IWOBUz1Ey8LuA2iO04nK2UdOD8Th18HBtahIB tlPSyg3Tf/+EmJr14W2Q5gIWp2xVarLhmzL9aiEs7CjD/GpOaHnBLhU6WQFwHLqQ UelvmPkMod7Y9aQUegvReuxBu9X3pnxWSuBUTalhddpA+PKQS1Q7WLyg4p8ynad+ ayasmGAYicxKa1qIvaqyJb4hzDpoRnRiNaDonaoj79xO4qhdspy5QLc9enRSh3tr q1jWIU7R/obYFdiAfoZU/Vua3bfmsey1b58d4K5gJgL3bra6gUM4EgkvfwZIRkql ObmXpujVAWgoWzRAMph06iWmaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP76g0Ix FM/x3yvYJN1k7cmeQPJaMB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjGv0vg4vrH9vkaHMF9FYcJWv28levo/SHA/6sFrNolHjLgkEzvso0 VAFyjZlpij8DciSjAhIzZB/pZzMaoN402tqixd15X7Ms8Z8pVCYsz4EClB+kWIFA Eay6hMcWPlZj6+J9eDKCh+K5hzGmboh0J7Z+tMTpKSN4D3RTHQKNgFKSeRg6hyDN 77EIvUxRAr7XwKizFI8Dohb96/pwWFB2FfFDDojRofqEUaX2SwkcRiWhVgXhYvXu uVYcLo4/On1y8kUPmRznHk4ZB5Glgi75Wq7A8+B/l+khhHyBPCI3K7aqDLj99kdm CA4Lydk8qQan8DAC8Ki1rx09dcxMJNUT -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:34 2025 by rpki-client