$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: gshv3a/m784HgWnUQnGJzZ52dWUul8LbiNKmE4NvOEo= Subject key identifier: F1:3D:19:46:10:F1:F9:A3:95:A9:5A:3D:30:79:4A:E5:51:D7:C0:17 Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0B36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0B2F Signing time: Mon 20 Oct 2025 19:58:56 +0000 Manifest this update: Mon 20 Oct 2025 19:58:55 +0000 Manifest next update: Mon 27 Oct 2025 19:58:55 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: GupdhsNHTQLgEk4D4XlSVvnJ6DbGf3gF+pDD63NmiS4=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: pPxz0Xj0Q495OhV6+Bhr4ANjqSPrxc3sqmemzntEGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2870 (0xb36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2, serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Oct 20 19:58:55 2025 GMT Not After : Oct 27 19:58:55 2025 GMT Subject: CN=68f6947f-1ba2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:63:1d:db:cb:ae:73:87:df:b7:0b:72:16:d0: 41:fd:01:cf:14:64:c3:29:7f:cd:73:08:63:84:cd: f1:55:ef:52:24:c0:a9:4a:be:6f:01:45:b1:b4:db: 8d:c5:1a:a5:5e:89:ac:19:67:f5:97:cb:10:ca:dd: d0:21:52:cd:cc:5b:5f:c3:13:62:f6:3f:dd:6f:e0: 24:19:bc:c9:47:43:25:c7:aa:da:72:40:b0:a0:70: e7:f0:40:a6:c2:0c:1d:72:f7:7d:5f:3a:9c:10:67: e9:50:d9:19:e3:b2:e1:dc:fe:dc:b4:61:d4:cf:50: 55:88:9a:b0:89:51:8c:51:fd:fc:60:b9:00:31:84: 71:ed:6c:3f:08:a9:3c:41:3a:8a:2f:2e:28:41:30: 1c:58:65:58:5d:b1:a7:a7:ee:14:68:a8:bb:1b:ee: fc:67:28:03:66:22:8e:0d:eb:a6:42:bf:0e:70:24: c8:6a:6c:8e:1e:54:68:c7:94:bb:9f:d9:86:c3:92: cd:00:77:a4:7b:f9:02:6d:cb:b4:22:6f:8c:97:24: c8:27:32:2c:49:54:18:0d:a2:b6:0c:bc:56:91:5c: 2c:73:f6:7f:9f:57:4d:93:0f:5a:80:1d:5c:3f:58: 2a:28:e4:0f:28:95:2a:0f:a5:64:4c:80:cd:0a:bf: 85:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:3D:19:46:10:F1:F9:A3:95:A9:5A:3D:30:79:4A:E5:51:D7:C0:17 X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:7e:00:2a:ac:88:97:33:26:a3:1a:7a:8f:46:e4:22:b5:61: be:36:d6:94:33:72:1e:e9:a8:41:37:13:77:1b:1e:ab:6b:7c: 79:80:4f:e8:8b:55:7a:4c:17:6e:4e:57:af:69:07:a9:56:5d: bd:4d:83:0b:e9:ee:4f:f9:20:60:4c:fb:cf:10:03:d5:50:f9: 67:c9:22:fe:4a:8e:04:31:b4:58:14:2e:a8:a7:49:23:4a:73: ef:a9:27:6e:6f:76:ff:d6:45:5c:5b:55:37:6e:99:5f:d6:84: 6f:7c:3f:94:62:40:84:43:04:32:29:53:42:f4:76:7c:d2:34: 66:82:c0:6f:6b:30:2d:88:18:df:03:6c:4b:f2:2b:5c:97:48: 3d:b9:c7:03:17:75:5b:32:28:0d:e8:8c:30:5a:a6:e9:4c:d8: 8d:5b:26:c1:12:e1:a2:06:cf:a2:11:ec:a0:1c:81:c6:fe:f8: 4c:f6:1f:8e:ff:38:be:6a:fe:4e:86:2d:20:00:d7:2a:a4:3f: 73:e4:20:71:13:cc:46:65:39:e6:35:c9:ef:38:9f:70:30:3d: 71:b0:77:31:87:c2:4c:65:c5:69:57:96:ec:70:23:38:f5:d4: ee:d6:e6:d8:89:5a:6f:d1:42:18:a3:5d:3b:9e:e3:59:39:b6: 97:a2:93:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjUxMDIwMTk1ODU1WhcNMjUxMDI3MTk1ODU1WjAYMRYwFAYD VQQDEw02OGY2OTQ3Zi0xYmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GMd28uuc4fftwtyFtBB/QHPFGTDKX/NcwhjhM3xVe9SJMCpSr5vAUWxtNuN xRqlXomsGWf1l8sQyt3QIVLNzFtfwxNi9j/db+AkGbzJR0Mlx6rackCwoHDn8ECm wgwdcvd9XzqcEGfpUNkZ47Lh3P7ctGHUz1BViJqwiVGMUf38YLkAMYRx7Ww/CKk8 QTqKLy4oQTAcWGVYXbGnp+4UaKi7G+78ZygDZiKODeumQr8OcCTIamyOHlRox5S7 n9mGw5LNAHeke/kCbcu0Im+MlyTIJzIsSVQYDaK2DLxWkVwsc/Z/n1dNkw9agB1c P1gqKOQPKJUqD6VkTIDNCr+FEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPE9GUYQ 8fmjlalaPTB5SuVR18AXMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7fgAqrIiXMyajGnqPRuQitWG+NtaUM3Ie6ahBNxN3Gx6ra3x5gE/o i1V6TBduTlevaQepVl29TYML6e5P+SBgTPvPEAPVUPlnySL+So4EMbRYFC6op0kj SnPvqSdub3b/1kVcW1U3bplf1oRvfD+UYkCEQwQyKVNC9HZ80jRmgsBvazAtiBjf A2xL8itcl0g9uccDF3VbMigN6IwwWqbpTNiNWybBEuGiBs+iEeygHIHG/vhM9h+O /zi+av5Ohi0gANcqpD9z5CBxE8xGZTnmNcnvOJ9wMD1xsHcxh8JMZcVpV5bscCM4 9dTu1ubYiVpv0UIYo107nuNZObaXopOy -----END CERTIFICATE-----Generated at Tue Oct 21 07:17:27 2025 by rpki-client