$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft File: o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft (raw, json) Hash identifier: E7ePkXgZkqJqzlPVC0AJKK64ZQv/r0+EOu5cK4KRq74= Subject key identifier: 8A:74:34:1A:60:61:D6:36:6C:D0:9F:59:57:B4:33:E7:DD:5C:03:23 Authority key identifier: A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 Certificate issuer: /CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Certificate serial: 0376 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft Manifest number: 0372 Signing time: Sun 19 Oct 2025 02:55:07 +0000 Manifest this update: Sun 19 Oct 2025 02:55:07 +0000 Manifest next update: Sun 26 Oct 2025 02:55:07 +0000 Files and hashes: 1: o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl (hash: RarD2RuVhVuGCqLQSRDvHORpfQt19fUiE8aQZ+hl8/w=) 2: E2F2A470C76411EC85896F5EC4F9AE02.roa (hash: hSEOk4wSvcqkKWJUmunbhE8NC6T2P49jnE2eWh8/b4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 886 (0x376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4B, serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Validity Not Before: Oct 19 02:55:07 2025 GMT Not After : Oct 26 02:55:07 2025 GMT Subject: CN=68f4530b-187d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e9:37:89:2f:6d:c8:14:54:7b:5c:20:f3:85: bf:92:ca:05:71:d9:fe:66:d9:8b:7c:85:41:96:01: 38:2d:88:45:73:2f:02:67:56:dd:14:1d:0f:30:48: 10:65:d2:42:74:3c:7a:58:80:b1:6d:0a:46:9e:99: 30:41:2e:d3:b2:1d:5c:58:e0:fd:6b:14:b5:c2:47: 61:fe:de:f3:70:4c:9a:5c:77:43:1b:e4:f5:d7:c6: 1d:67:df:13:f1:45:5c:d2:e7:bc:96:7f:07:40:fc: 5a:80:29:ff:1a:20:67:47:b6:8d:79:53:31:57:54: 49:f9:07:2c:cd:89:0b:a5:b8:57:ec:ed:0d:dd:0b: 6c:48:3d:37:24:3e:b7:28:44:6d:57:97:d9:c2:f6: 5a:48:51:75:82:58:7a:dd:b2:0e:46:e9:0f:44:13: be:0d:02:9c:90:cc:6f:36:a9:22:81:60:83:bd:42: d9:d0:be:fd:b6:91:25:43:63:47:16:5f:42:fa:e0: 8d:fc:56:bc:5b:d9:bb:4a:98:f2:64:b3:f6:7a:48: 83:54:f6:53:cd:83:ea:b3:63:02:8e:70:51:ad:76: 45:1c:5f:48:4d:b5:6b:4e:92:a1:b6:17:fa:0d:7c: 9b:ba:4f:16:36:bb:51:12:b2:6e:f2:cf:c7:0a:c3: 7e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:74:34:1A:60:61:D6:36:6C:D0:9F:59:57:B4:33:E7:DD:5C:03:23 X509v3 Authority Key Identifier: keyid:A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:1c:d4:fc:47:d5:bf:c7:fa:a0:42:ae:17:3a:bd:25:9b:b6: ee:50:9c:e3:d2:26:d1:ff:2a:04:a2:99:91:35:bb:1f:b9:ee: 8a:d9:8b:c0:6e:96:76:ed:4d:85:e0:85:50:da:22:5a:d5:3f: da:7a:19:3d:12:74:24:6c:6c:2e:81:b3:db:e7:ae:15:73:53: ae:e0:25:f5:2d:1d:bb:c4:2c:1f:20:bf:5f:ad:59:d2:f0:6a: 42:5d:ac:8a:73:c2:e3:f1:d2:f7:19:ee:d1:fa:d2:b9:4f:c0: b4:17:db:b5:ad:f2:83:f7:13:0c:4b:ef:41:c7:1e:0f:d3:3a: 87:17:01:44:90:cb:34:d7:ed:ef:40:dd:c8:ab:9f:78:a0:b8: f7:b1:5d:f5:5f:03:75:2b:bb:74:cf:86:26:6b:47:f9:ba:a4: d2:d1:ed:08:91:b2:e0:4d:97:c0:30:02:a6:06:99:66:2f:4d: 46:99:6b:73:80:ec:8d:ce:e9:55:b3:55:de:11:63:40:b4:56: f4:79:1c:01:76:e5:af:bd:7f:60:8c:c7:1f:06:01:30:43:94: 5e:d2:44:5c:cb:00:70:7b:e5:d3:b3:33:7e:2f:ae:f9:7a:16: 36:b0:cd:2b:ae:b3:5a:05:02:f7:27:40:62:18:0c:b8:d3:f7: ac:93:c7:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEIxMTAvBgNVBAUTKEEzNTU2MURBNDVBOTU1RjAyRDEyMkEwRDg4RThDNzYy MzlFREY5MjAwHhcNMjUxMDE5MDI1NTA3WhcNMjUxMDI2MDI1NTA3WjAYMRYwFAYD VQQDEw02OGY0NTMwYi0xODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+k3iS9tyBRUe1wg84W/ksoFcdn+ZtmLfIVBlgE4LYhFcy8CZ1bdFB0PMEgQ ZdJCdDx6WICxbQpGnpkwQS7Tsh1cWOD9axS1wkdh/t7zcEyaXHdDG+T118YdZ98T 8UVc0ue8ln8HQPxagCn/GiBnR7aNeVMxV1RJ+QcszYkLpbhX7O0N3QtsSD03JD63 KERtV5fZwvZaSFF1glh63bIORukPRBO+DQKckMxvNqkigWCDvULZ0L79tpElQ2NH Fl9C+uCN/Fa8W9m7SpjyZLP2ekiDVPZTzYPqs2MCjnBRrXZFHF9ITbVrTpKhthf6 DXybuk8WNrtRErJu8s/HCsN+aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIp0NBpg YdY2bNCfWVe0M+fdXAMjMB8GA1UdIwQYMBaAFKNVYdpFqVXwLRIqDYjox2I57fkg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qi84RTE2MjQzMEM3 NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZmQXRFaW9OaU9qSFlqbnQt U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xVmgya1dwVmZBdEVpb05pT2pIWWpudC1TQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qi84RTE2MjQzMEM3NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZm QXRFaW9OaU9qSFlqbnQtU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLHNT8R9W/x/qgQq4XOr0lm7buUJzj0ibR/yoEopmRNbsfue6K2YvA bpZ27U2F4IVQ2iJa1T/aehk9EnQkbGwugbPb564Vc1Ou4CX1LR27xCwfIL9frVnS 8GpCXayKc8Lj8dL3Ge7R+tK5T8C0F9u1rfKD9xMMS+9Bxx4P0zqHFwFEkMs01+3v QN3Iq594oLj3sV31XwN1K7t0z4Yma0f5uqTS0e0IkbLgTZfAMAKmBplmL01GmWtz gOyNzulVs1XeEWNAtFb0eRwBduWvvX9gjMcfBgEwQ5Re0kRcywBwe+XTszN+L675 ehY2sM0rrrNaBQL3J0BiGAy40/esk8cX -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:30 2025 by rpki-client