$ rpki-client -vvf rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.mft File: o_EASaOTr53KRFlmZBZrh0Avgio.mft (raw, json) Hash identifier: QOqceR/Nx5aMw6Rfq/3zkvH5rAzmtiwZ+wk5qTBQiOQ= Subject key identifier: A6:0E:2C:FD:C8:49:72:3C:71:5C:B4:F1:04:EC:DC:C7:9D:F0:BC:48 Authority key identifier: A3:F1:00:49:A3:93:AF:9D:CA:44:59:66:64:16:6B:87:40:2F:82:2A Certificate issuer: /CN=A91877A6/serialNumber=A3F10049A393AF9DCA44596664166B87402F822A Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o_EASaOTr53KRFlmZBZrh0Avgio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.mft Manifest number: 38 Signing time: Sun 19 Oct 2025 11:01:47 +0000 Manifest this update: Sun 19 Oct 2025 11:01:46 +0000 Manifest next update: Sun 26 Oct 2025 11:01:46 +0000 Files and hashes: 1: o_EASaOTr53KRFlmZBZrh0Avgio.crl (hash: GINEnt1UJAXKQceVq2Hpq9Fndhv7zpUi6QEgis3VFlA=) 2: 4DC60A785C7F11F089D20138C4F9AE02.roa (hash: 6Vnq1spFXaLfT9Zg1ghh5PPz6XLDWciXVK572d6VJmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.crl rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o_EASaOTr53KRFlmZBZrh0Avgio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91877A6, serialNumber=A3F10049A393AF9DCA44596664166B87402F822A Validity Not Before: Oct 19 11:01:46 2025 GMT Not After : Oct 26 11:01:46 2025 GMT Subject: CN=68f4c51b-81da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:5e:5e:f3:67:30:b3:8c:2c:fc:b1:97:d7:00: a2:05:1e:dd:e5:02:23:c4:8a:04:be:c1:d0:97:7a: 01:0b:da:38:fc:94:bb:ae:3a:9d:4e:bf:e7:99:5a: 8a:cc:0a:88:ce:f9:32:40:bf:c9:d4:8e:03:7a:7e: 7d:59:cf:52:8f:59:bf:e0:12:45:14:3c:d0:3c:bd: 77:ec:eb:c6:f1:49:20:6f:c3:8c:f8:91:fb:a1:67: 2c:6a:a8:34:49:bf:a6:64:44:d8:1f:34:fb:fe:56: a7:06:1e:3c:9d:3c:96:1c:67:0b:3f:86:31:39:15: d9:a7:8a:05:5b:ef:f9:84:2f:1c:be:60:a4:44:38: b3:b0:64:58:a2:2e:6f:4f:11:76:ec:78:ce:0c:21: 4f:c6:7f:68:61:0c:fe:1a:5b:bc:c3:0a:9d:16:00: e4:a8:c7:08:d4:19:c9:c3:a0:85:12:4e:aa:fe:37: db:47:5e:43:f8:99:80:85:09:62:5d:0a:8a:36:1c: 7d:d6:ca:4b:fd:d1:d5:11:4d:73:a9:42:8d:53:94: 06:d1:db:08:8a:5f:ed:8a:cd:92:a1:10:5c:82:66: e5:4e:ae:65:0a:b5:3e:b4:a9:63:e5:8b:aa:1d:7f: 59:d0:73:fd:7c:a0:06:e3:ef:e0:d0:b0:5d:fa:14: 55:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:0E:2C:FD:C8:49:72:3C:71:5C:B4:F1:04:EC:DC:C7:9D:F0:BC:48 X509v3 Authority Key Identifier: keyid:A3:F1:00:49:A3:93:AF:9D:CA:44:59:66:64:16:6B:87:40:2F:82:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o_EASaOTr53KRFlmZBZrh0Avgio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:f4:50:aa:c7:97:d1:c9:e8:94:dd:cb:98:75:f2:52:f1:99: 6c:2c:3c:15:63:b8:69:de:77:01:ab:90:e3:43:1a:8f:5e:1c: 55:1c:7f:ca:da:02:1a:9f:ac:52:1c:a6:47:3d:e1:ae:ae:ed: dc:40:15:d3:1b:1e:e6:6d:15:35:27:36:ac:10:10:a4:65:aa: 36:77:da:98:e1:6a:ce:e5:23:f2:61:66:4e:46:91:c7:ec:9a: 11:c2:d6:29:30:47:46:32:50:1a:a2:13:72:d3:7c:87:d3:f5: b5:d4:10:4b:ef:81:6c:d1:f0:5d:88:21:d3:c6:3d:76:ac:9b: 7b:be:32:02:73:41:95:ef:df:15:5f:f4:1c:fb:b3:5a:9a:69: cf:f4:7e:7e:67:f5:72:f8:f2:63:f1:b9:e5:9a:14:e3:78:6b: a1:38:9a:fe:70:30:55:36:0d:c4:3d:79:8e:38:f7:d4:26:00: 85:5b:af:13:fd:c5:ef:11:b5:3a:fd:05:76:b5:cb:00:17:8f: 2b:01:5a:ab:91:93:3e:c1:3a:55:51:ca:aa:ff:60:4e:8d:2d: 11:a1:10:c6:b1:91:53:1f:6d:db:e3:c9:8a:87:42:b0:ab:9e: 4e:39:d9:51:31:1a:6c:ac:2d:93:38:fa:01:37:9f:ec:34:36: fd:3e:c0:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzdBNjExMC8GA1UEBRMoQTNGMTAwNDlBMzkzQUY5RENBNDQ1OTY2NjQxNjZCODc0 MDJGODIyQTAeFw0yNTEwMTkxMTAxNDZaFw0yNTEwMjYxMTAxNDZaMBgxFjAUBgNV BAMTDTY4ZjRjNTFiLTgxZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0Xl7zZzCzjCz8sZfXAKIFHt3lAiPEigS+wdCXegEL2jj8lLuuOp1Ov+eZWorM CojO+TJAv8nUjgN6fn1Zz1KPWb/gEkUUPNA8vXfs68bxSSBvw4z4kfuhZyxqqDRJ v6ZkRNgfNPv+VqcGHjydPJYcZws/hjE5FdmnigVb7/mELxy+YKREOLOwZFiiLm9P EXbseM4MIU/Gf2hhDP4aW7zDCp0WAOSoxwjUGcnDoIUSTqr+N9tHXkP4mYCFCWJd Coo2HH3Wykv90dURTXOpQo1TlAbR2wiKX+2KzZKhEFyCZuVOrmUKtT60qWPli6od f1nQc/18oAbj7+DQsF36FFUHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpg4s/chJ cjxxXLTxBOzcx53wvEgwHwYDVR0jBBgwFoAUo/EASaOTr53KRFlmZBZrh0Avgiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3N0E2L0JERUU3Qjg4NUM3 RTExRjBBNUMzNjAzNkM0RjlBRTAyL29fRUFTYU9UcjUzS1JGbG1aQlpyaDBBdmdp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb19FQVNhT1RyNTNLUkZsbVpCWnJoMEF2Z2lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 N0E2L0JERUU3Qjg4NUM3RTExRjBBNUMzNjAzNkM0RjlBRTAyL29fRUFTYU9UcjUz S1JGbG1aQlpyaDBBdmdpby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIT0UKrHl9HJ6JTdy5h18lLxmWwsPBVjuGnedwGrkONDGo9eHFUcf8ra AhqfrFIcpkc94a6u7dxAFdMbHuZtFTUnNqwQEKRlqjZ32pjhas7lI/JhZk5Gkcfs mhHC1ikwR0YyUBqiE3LTfIfT9bXUEEvvgWzR8F2IIdPGPXasm3u+MgJzQZXv3xVf 9Bz7s1qaac/0fn5n9XL48mPxueWaFON4a6E4mv5wMFU2DcQ9eY4499QmAIVbrxP9 xe8RtTr9BXa1ywAXjysBWquRkz7BOlVRyqr/YE6NLRGhEMaxkVMfbdvjyYqHQrCr nk452VExGmysLZM4+gE3n+w0Nv0+wCQ= -----END CERTIFICATE-----Generated at Tue Oct 21 08:13:15 2025 by rpki-client