$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: FGwS8HQNzasDd6OLEcCGRhogwqAHrh5kbcqBWmlVuIA= Subject key identifier: 51:3C:0B:BB:13:38:83:19:26:B8:DC:4A:54:C8:70:AF:8D:08:A1:0E Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 0405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 0400 Signing time: Sun 19 Oct 2025 02:24:17 +0000 Manifest this update: Sun 19 Oct 2025 02:24:16 +0000 Manifest next update: Sun 26 Oct 2025 02:24:16 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: Nxp9kF1VR7SnzOQlhGMctga6dp9e6h51g67H3XmvJs8=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: LsezswxbsYTDkD8XmvSpL4OSBTZlfRn5UeJiOefMqvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Oct 19 02:24:16 2025 GMT Not After : Oct 26 02:24:16 2025 GMT Subject: CN=68f44bd1-04f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3a:90:32:01:d8:ec:2d:2d:f4:8b:e4:91:68: 51:81:20:62:3b:ea:a5:d7:91:f0:e0:3e:93:be:09: 24:08:04:5a:c9:8c:a6:3a:f7:7a:97:6b:29:b6:63: 38:61:1e:f2:5b:62:18:04:8a:03:12:fc:84:ee:ba: 71:10:fd:41:8b:dc:c6:23:e8:43:14:1c:f8:e5:b1: 4e:c0:75:c3:8e:0b:e1:82:9f:d1:58:91:50:a8:f3: ec:03:9e:f9:28:86:e6:7f:bf:ac:46:e4:36:f3:85: 3e:e3:ad:79:ff:01:40:1c:a8:23:6c:f6:e6:74:c2: 0c:24:63:7a:df:b6:58:73:09:ab:b8:67:29:6a:15: e9:04:16:0d:70:bd:84:4c:a7:f0:a4:9f:c5:33:bd: cc:1e:e9:ff:22:75:68:d6:3a:87:61:55:53:08:b7: 8f:76:80:47:bf:d0:1d:40:5c:92:90:81:d9:1d:bb: 4c:68:74:c2:71:b1:61:18:38:a2:b3:03:c2:35:a9: 5a:68:cd:93:e3:84:0b:fb:d3:04:d4:2a:ff:e4:c0: 1a:1c:36:09:35:69:3a:01:87:93:fa:73:da:5e:3a: 89:49:fe:a9:14:5b:3a:07:86:d8:f6:75:2d:e7:8c: 9f:d8:66:73:e1:36:4e:94:22:3e:40:6a:a2:f6:a0: 65:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:3C:0B:BB:13:38:83:19:26:B8:DC:4A:54:C8:70:AF:8D:08:A1:0E X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:78:61:8c:89:20:36:06:81:16:31:26:95:0f:e2:57:97:16: ad:11:15:d1:82:66:95:3e:65:d8:a6:33:30:49:a1:a8:bb:de: a9:8a:cb:9f:24:b9:06:fa:95:cc:3a:d1:cc:45:a7:46:c4:19: e6:01:2c:33:41:80:62:6c:b2:29:e5:c2:6b:1e:41:92:fe:ea: 34:bc:7b:1f:b5:13:3d:36:b6:f2:28:79:18:32:ef:33:11:70: 2f:5e:2b:3c:d4:72:1c:5d:7f:1a:db:0b:8a:e3:d4:46:2c:fd: 11:32:8f:6b:93:d1:01:d7:a9:dd:ae:e6:39:49:38:51:aa:49: 3e:83:a0:d4:d0:58:78:fc:b3:32:3c:78:a7:9f:26:60:13:e3: 8d:56:1e:67:66:65:4d:81:57:b9:14:69:11:95:ea:ac:ee:98: cb:7c:3d:6b:82:bc:bf:ff:13:b2:31:69:e3:26:6a:33:70:da: 77:f1:d3:02:47:42:10:83:d9:c7:60:42:d5:3a:c7:88:8a:63: e9:de:68:53:34:dc:a7:70:e6:34:15:00:da:d2:43:75:6b:30: 35:c8:ce:42:87:6b:18:15:84:32:65:df:33:b7:29:4a:89:09: 70:1e:bb:69:67:67:52:5b:81:40:f4:2f:3e:99:d4:50:e5:10: f9:9e:b4:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUxMDE5MDIyNDE2WhcNMjUxMDI2MDIyNDE2WjAYMRYwFAYD VQQDEw02OGY0NGJkMS0wNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzqQMgHY7C0t9IvkkWhRgSBiO+ql15Hw4D6TvgkkCARayYymOvd6l2sptmM4 YR7yW2IYBIoDEvyE7rpxEP1Bi9zGI+hDFBz45bFOwHXDjgvhgp/RWJFQqPPsA575 KIbmf7+sRuQ284U+4615/wFAHKgjbPbmdMIMJGN637ZYcwmruGcpahXpBBYNcL2E TKfwpJ/FM73MHun/InVo1jqHYVVTCLePdoBHv9AdQFySkIHZHbtMaHTCcbFhGDii swPCNalaaM2T44QL+9ME1Cr/5MAaHDYJNWk6AYeT+nPaXjqJSf6pFFs6B4bY9nUt 54yf2GZz4TZOlCI+QGqi9qBlBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFE8C7sT OIMZJrjcSlTIcK+NCKEOMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeeGGMiSA2BoEWMSaVD+JXlxatERXRgmaVPmXYpjMwSaGou96pisuf JLkG+pXMOtHMRadGxBnmASwzQYBibLIp5cJrHkGS/uo0vHsftRM9NrbyKHkYMu8z EXAvXis81HIcXX8a2wuK49RGLP0RMo9rk9EB16ndruY5SThRqkk+g6DU0Fh4/LMy PHinnyZgE+ONVh5nZmVNgVe5FGkRleqs7pjLfD1rgry//xOyMWnjJmozcNp38dMC R0IQg9nHYELVOseIimPp3mhTNNyncOY0FQDa0kN1azA1yM5Ch2sYFYQyZd8ztylK iQlwHrtpZ2dSW4FA9C8+mdRQ5RD5nrSH -----END CERTIFICATE-----Generated at Mon Oct 20 07:45:15 2025 by rpki-client