$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft File: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft (raw, json) Hash identifier: jMbbd/N1dRN+j0S/okNSv9BwBEVFq038CEWRjPA4l8M= Subject key identifier: E8:40:03:2F:B0:8F:C5:E6:06:60:56:C0:47:22:A8:2F:0B:DE:9D:ED Authority key identifier: D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 Certificate issuer: /CN=A91AAE16/serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Certificate serial: 0FF7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft Manifest number: 0FEE Signing time: Mon 20 Oct 2025 17:57:29 +0000 Manifest this update: Mon 20 Oct 2025 17:57:28 +0000 Manifest next update: Mon 27 Oct 2025 17:57:28 +0000 Files and hashes: 1: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl (hash: Ky4YWeLrMMgg1YTtPk7GWVNco38KWaAF7U7Wvo2m2LQ=) 2: 682B76C05BB211E9BF474F16C4F9AE02.roa (hash: vKLtsTjRDQmvaoDy2+JZ+X/edFfE0cROOj6FdGkYWZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:57:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4087 (0xff7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Validity Not Before: Oct 20 17:57:28 2025 GMT Not After : Oct 27 17:57:28 2025 GMT Subject: CN=68f67808-06fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6d:e9:45:30:96:af:f4:59:61:53:ff:11:6e: a6:de:e6:f7:e6:35:10:0e:30:9b:95:6d:3f:55:e5: d1:1f:1f:d8:9e:a4:fb:dd:44:6f:b8:77:a3:74:93: e8:a5:59:f5:81:e3:86:55:e5:3b:98:57:f6:76:5b: 21:58:ea:a9:9e:10:ff:f8:a4:db:32:83:00:3d:36: 88:f1:57:1f:c9:0e:37:e4:3a:c2:10:0d:14:1b:ba: 1e:bf:ae:4b:3d:44:24:b2:88:c3:6c:b1:3c:c2:ed: b8:15:f9:58:31:5a:a6:82:fa:3d:b3:f5:91:03:86: 32:3b:7f:4e:ff:86:9e:e3:8f:b6:03:ce:14:47:6c: 2f:89:8b:01:47:b3:4e:3b:0e:8e:33:d3:a7:d8:20: fd:3e:c0:9c:fb:e0:bf:74:16:f9:71:37:b7:1e:38: ca:f7:71:b7:3c:97:c0:c9:d6:ad:9f:bf:a5:79:1e: 12:d4:3d:e5:a1:ed:db:d9:ab:e2:78:1a:aa:4e:f5: 0d:0d:6c:2b:22:86:f1:e7:32:ca:50:cc:77:4a:d1: ad:b0:38:81:c7:c3:8c:69:0c:f2:62:b4:8c:95:c0: 48:5c:b3:a2:11:52:14:24:e9:d7:4c:c9:ac:c6:3b: 4c:e6:12:5f:43:31:72:74:21:80:fb:c0:18:ea:e3: 0e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:40:03:2F:B0:8F:C5:E6:06:60:56:C0:47:22:A8:2F:0B:DE:9D:ED X509v3 Authority Key Identifier: keyid:D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:b5:d6:99:c7:3c:7d:00:31:fc:87:4b:ce:36:57:f6:d0:6b: 23:3f:fd:91:e6:a2:a1:2b:1f:d7:90:d4:2d:77:8b:37:89:76: b5:b1:30:fc:96:60:20:5f:d6:b6:7b:32:1c:0b:c2:07:c3:2a: 3c:5e:68:0d:b6:8a:6d:db:64:b7:f4:da:0f:93:a6:1a:dd:62: 05:05:7d:b6:34:80:2b:07:87:41:3a:fe:da:6b:90:8a:4d:75: 7f:61:18:87:e5:61:4b:62:e8:46:ce:7c:9e:b3:28:0d:c1:fb: 26:0b:0e:31:ed:17:92:ca:f9:85:0b:39:c3:74:1e:36:7a:de: ba:0f:fe:ee:3f:ce:33:8d:59:f0:e1:0e:d3:7f:06:37:62:c9: c1:00:61:63:15:98:b3:b0:9b:00:a8:71:81:46:e5:52:c8:ed: c5:0f:01:d7:e8:4a:fc:c7:90:14:ce:46:59:22:a7:fd:ac:58: cd:20:82:ad:63:79:3e:29:c1:ef:a7:96:93:f9:56:8b:ec:8e: be:78:72:d2:e1:26:f5:75:ff:32:46:f0:f0:25:9f:e0:b9:d9: e6:38:39:1d:1c:80:cf:9a:da:c9:b8:26:51:02:d9:cd:05:15: bb:a9:30:b5:c4:c2:f5:ac:87:31:e4:99:8b:e9:0c:95:f1:14: 86:02:84:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKEQ2ODBCRjNBNzk2QTM1NUIxMjVBNjAyQzc0NjZCOUE1 NkQzNDQyNTQwHhcNMjUxMDIwMTc1NzI4WhcNMjUxMDI3MTc1NzI4WjAYMRYwFAYD VQQDEw02OGY2NzgwOC0wNmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtG3pRTCWr/RZYVP/EW6m3ub35jUQDjCblW0/VeXRHx/YnqT73URvuHejdJPo pVn1geOGVeU7mFf2dlshWOqpnhD/+KTbMoMAPTaI8VcfyQ435DrCEA0UG7oev65L PUQksojDbLE8wu24FflYMVqmgvo9s/WRA4YyO39O/4ae44+2A84UR2wviYsBR7NO Ow6OM9On2CD9PsCc++C/dBb5cTe3HjjK93G3PJfAydatn7+leR4S1D3loe3b2avi eBqqTvUNDWwrIobx5zLKUMx3StGtsDiBx8OMaQzyYrSMlcBIXLOiEVIUJOnXTMms xjtM5hJfQzFydCGA+8AY6uMO4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhAAy+w j8XmBmBWwEciqC8L3p3tMB8GA1UdIwQYMBaAFNaAvzp5ajVbElpgLHRmuaVtNEJU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8wRUFDRjgyQzVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5Wc1NXbUFzZEdhNXBXMDBR bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFvQ19PbmxxTlZzU1dtQXNkR2E1cFcwMFFsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8wRUFDRjgyQzVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5W c1NXbUFzZEdhNXBXMDBRbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRtdaZxzx9ADH8h0vONlf20GsjP/2R5qKhKx/XkNQtd4s3iXa1sTD8 lmAgX9a2ezIcC8IHwyo8XmgNtopt22S39NoPk6Ya3WIFBX22NIArB4dBOv7aa5CK TXV/YRiH5WFLYuhGznyesygNwfsmCw4x7ReSyvmFCznDdB42et66D/7uP84zjVnw 4Q7TfwY3YsnBAGFjFZizsJsAqHGBRuVSyO3FDwHX6Er8x5AUzkZZIqf9rFjNIIKt Y3k+KcHvp5aT+VaL7I6+eHLS4Sb1df8yRvDwJZ/gudnmODkdHIDPmtrJuCZRAtnN BRW7qTC1xML1rIcx5JmL6QyV8RSGAoQH -----END CERTIFICATE-----Generated at Tue Oct 21 07:51:24 2025 by rpki-client