$ rpki-client -vvf rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft File: o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft (raw, json) Hash identifier: GYZ5bTxvts9bnr4SRZ547Fym2iq+Ta1+oVmoHr3ZT6w= Subject key identifier: B3:6A:47:E8:97:38:57:E3:9B:F2:97:25:9A:6E:21:4C:F7:89:6F:8A Authority key identifier: A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 Certificate issuer: /CN=A91A36A7/serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Certificate serial: 062B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft Manifest number: 0624 Signing time: Sun 19 Oct 2025 00:21:59 +0000 Manifest this update: Sun 19 Oct 2025 00:21:58 +0000 Manifest next update: Sun 26 Oct 2025 00:21:58 +0000 Files and hashes: 1: o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl (hash: kxjriEac1LSASdvtTwq/Hs5c+WeEq/F7cqckRrBU65E=) 2: F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa (hash: AxnCXioU+pzcVhOQczSiGNqFZn1BtxYji3/Mt/svcQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1579 (0x62b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A36A7, serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Validity Not Before: Oct 19 00:21:58 2025 GMT Not After : Oct 26 00:21:58 2025 GMT Subject: CN=68f42f27-05f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c2:e4:bc:1e:74:e3:41:f8:12:de:3e:00:fa: a6:b1:55:2b:67:7a:6c:2c:82:b5:31:f8:e2:9c:9f: 7d:2b:c3:e6:57:b1:04:e6:0e:74:c8:dd:b5:10:53: db:a1:ee:00:c4:ea:9a:0f:92:e0:7d:0d:11:89:3f: ab:b0:3c:c2:39:1f:5e:87:21:51:90:2c:dc:f9:37: 02:fd:97:bd:3d:c5:3f:33:c7:05:bb:32:a7:c9:2a: ed:fb:84:65:d6:11:97:86:48:18:01:2b:80:52:a9: 91:ca:82:02:9e:d1:f0:4d:60:81:78:5d:18:d4:e1: a9:6d:69:03:40:ef:c8:95:cb:9e:14:4b:df:f2:f8: d3:31:ec:d3:f6:59:6e:af:59:06:76:3b:2b:24:2c: 83:3e:71:68:31:59:72:7b:98:23:fe:0c:e8:39:49: 44:82:fc:66:2a:11:0f:4b:84:8a:29:0c:69:14:88: 69:e1:88:6e:11:01:0e:bb:85:35:25:c2:57:9f:44: b1:6f:59:16:05:91:40:49:2f:59:3a:9c:fe:00:1f: ea:37:4b:c9:1d:8d:aa:93:d4:12:40:b2:72:3d:c6: 12:5d:ed:b9:9e:63:81:ff:ae:25:74:b2:5b:a2:8d: 21:f8:3e:19:26:fe:bf:83:6b:04:b6:f6:9d:5e:93: 1a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:6A:47:E8:97:38:57:E3:9B:F2:97:25:9A:6E:21:4C:F7:89:6F:8A X509v3 Authority Key Identifier: keyid:A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:9d:69:7b:84:8e:27:7d:22:98:2a:7e:b8:fe:b1:21:ea:59: 94:c4:74:c6:78:1f:ef:48:c5:7d:5d:8a:a8:4c:7c:d0:72:3c: a9:c6:b7:f8:3b:eb:78:ea:0d:97:ce:55:5b:0b:bf:d0:9b:6d: 5b:94:aa:70:5a:e5:76:ed:a8:35:c8:81:a7:b8:50:1a:0b:77: e0:0a:74:cc:01:f9:0c:60:d2:d1:d8:08:41:f8:94:88:f3:53: c5:fe:e5:bd:47:f8:32:dc:1b:30:c9:63:1b:37:4a:6c:e8:6f: 74:5c:aa:ac:6e:10:ff:fd:37:56:82:63:35:11:54:bf:a6:f6: 96:bc:3b:7a:ba:60:53:17:2f:22:d5:d9:d2:ce:f4:97:ef:ac: 5e:c1:c0:2a:34:3c:00:7f:d9:a3:b3:10:23:3c:f5:f3:fd:11: 7c:d0:ee:cf:c8:21:39:d1:51:4e:cb:c4:f8:4f:d6:7a:c9:5e: 1f:a0:e5:e8:2e:47:b2:9c:0b:0c:8f:08:81:84:d8:d9:31:f2: 7c:e8:4d:01:38:15:35:3c:4e:f6:38:30:e0:c5:6e:ee:45:1f: c2:39:e2:34:2f:02:9d:5c:a3:83:90:eb:27:21:c9:db:3c:c8: 57:b7:08:64:d8:c8:13:68:a3:ee:3c:8f:a6:ff:e8:e2:33:da: 8e:22:3c:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM2QTcxMTAvBgNVBAUTKEEzNjUyRDlFNTRFOTY0NjhCMjMwNDc5MzczMTdGQTRF Q0Q3QjM2NDgwHhcNMjUxMDE5MDAyMTU4WhcNMjUxMDI2MDAyMTU4WjAYMRYwFAYD VQQDEw02OGY0MmYyNy0wNWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcLkvB5040H4Et4+APqmsVUrZ3psLIK1MfjinJ99K8PmV7EE5g50yN21EFPb oe4AxOqaD5LgfQ0RiT+rsDzCOR9ehyFRkCzc+TcC/Ze9PcU/M8cFuzKnySrt+4Rl 1hGXhkgYASuAUqmRyoICntHwTWCBeF0Y1OGpbWkDQO/IlcueFEvf8vjTMezT9llu r1kGdjsrJCyDPnFoMVlye5gj/gzoOUlEgvxmKhEPS4SKKQxpFIhp4YhuEQEOu4U1 JcJXn0Sxb1kWBZFASS9ZOpz+AB/qN0vJHY2qk9QSQLJyPcYSXe25nmOB/64ldLJb oo0h+D4ZJv6/g2sEtvadXpMawQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNqR+iX OFfjm/KXJZpuIUz3iW+KMB8GA1UdIwQYMBaAFKNlLZ5U6WRosjBHk3MX+k7NezZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzZBNy84QUE2NUFGQ0I5 NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpHaXlNRWVUY3hmNlRzMTdO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yVXRubFRwWkdpeU1FZVRjeGY2VHMxN05rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzZBNy84QUE2NUFGQ0I5NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpH aXlNRWVUY3hmNlRzMTdOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDnWl7hI4nfSKYKn64/rEh6lmUxHTGeB/vSMV9XYqoTHzQcjypxrf4 O+t46g2XzlVbC7/Qm21blKpwWuV27ag1yIGnuFAaC3fgCnTMAfkMYNLR2AhB+JSI 81PF/uW9R/gy3BswyWMbN0ps6G90XKqsbhD//TdWgmM1EVS/pvaWvDt6umBTFy8i 1dnSzvSX76xewcAqNDwAf9mjsxAjPPXz/RF80O7PyCE50VFOy8T4T9Z6yV4foOXo LkeynAsMjwiBhNjZMfJ86E0BOBU1PE72ODDgxW7uRR/COeI0LwKdXKODkOsnIcnb PMhXtwhk2MgTaKPuPI+m/+jiM9qOIjxa -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:51 2025 by rpki-client