$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: ngEfzrx5CCDyOIH44E5GcTgz7KkQUdUAKV37ihLegmM= Subject key identifier: 87:43:E6:86:FC:38:09:E8:44:E6:7B:40:CB:DF:83:7A:EE:52:F6:39 Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 128F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 1277 Signing time: Sat 18 Oct 2025 17:36:43 +0000 Manifest this update: Sat 18 Oct 2025 17:36:42 +0000 Manifest next update: Sat 25 Oct 2025 17:36:42 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: JKFMqK/UaRCcCRI3ke8vcb8LtbzypKN5HiyS5IdLL+M=) 2: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: u2n7hXJfpPkswx+8ZUw3IUUcjyPvy2JG1QnFE+FNubg=) 3: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: EhJYlBjQzArjJUepcPMKlhW0SwABK8otVcs5MS+goNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4751 (0x128f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Oct 18 17:36:42 2025 GMT Not After : Oct 25 17:36:42 2025 GMT Subject: CN=68f3d02a-966c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:71:d6:b2:0a:c8:f4:b9:22:18:ef:89:82:50: 8c:f1:55:d5:09:bb:82:ea:3a:64:86:5e:6d:63:54: 92:65:4e:41:1b:98:ee:7e:c3:cb:04:e0:a4:0e:0e: 2a:cc:fc:0f:5a:db:45:d9:ef:3d:ce:4f:1f:b3:f6: bf:4a:84:9e:da:ac:6a:86:7a:6f:7e:d3:6a:75:c4: 5c:9c:7e:af:76:7d:4d:f4:9c:a6:2b:d6:43:22:01: 51:b5:cd:61:58:80:bb:cc:cd:ee:05:78:35:0f:68: e0:b4:39:92:d1:c3:d2:92:55:65:3f:ca:23:cd:7d: 22:0d:b5:83:17:09:2b:15:46:43:d4:8a:9f:89:18: 76:b2:7f:14:bb:de:d7:11:b8:0f:11:82:b2:b5:84: a5:ad:35:a0:da:81:9b:ac:12:f6:47:b5:02:f1:25: 10:0d:8f:23:56:52:26:3e:fc:7b:9b:de:f5:91:1b: 7d:ca:78:25:27:29:ad:db:6d:48:99:18:ac:99:3d: 1e:4e:df:84:ba:43:a6:1b:66:d8:0e:5f:96:8e:ed: b3:e7:e3:54:7a:5f:98:9f:e8:89:a8:55:37:58:fe: 56:dc:c6:88:ed:7a:51:f3:e5:8c:79:6f:7e:2e:9b: 99:96:2b:f0:0d:5a:f8:be:9d:8f:6f:35:b4:af:56: 32:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:43:E6:86:FC:38:09:E8:44:E6:7B:40:CB:DF:83:7A:EE:52:F6:39 X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:82:b0:e9:fe:d2:3a:47:78:cb:f8:73:b3:f1:9a:e9:d1:c9: 6a:bd:51:76:3f:01:86:81:ed:4a:30:17:d0:8f:2d:67:e9:e8: aa:47:ad:48:4f:d9:e4:1a:46:8d:56:ed:6c:20:8b:7e:de:f5: c4:c4:e8:5d:cc:06:fa:c4:28:7b:6b:07:83:cd:6b:d5:cc:2d: d8:e8:a7:72:17:00:e9:5c:f3:0e:82:b8:6b:84:bc:54:52:33: 39:c9:3f:46:7e:0f:85:00:85:14:d2:3b:3e:7f:47:96:ce:61: a5:0f:f1:f7:7b:4b:5a:76:ce:fb:09:9c:58:ef:f4:31:24:99: 83:f8:77:d4:7b:52:0b:46:e0:98:e3:88:35:28:c4:8a:b9:be: df:7c:5b:cd:6b:1e:ac:18:41:f7:8a:40:34:5e:a6:0d:af:b6: e7:f8:9c:c1:b9:60:c3:d7:e7:05:7a:da:65:9c:62:11:ed:c7: b5:d8:e8:ec:15:71:d4:40:24:af:b6:67:1f:fb:6a:6e:1d:34: a4:61:15:26:1a:a9:12:ae:e8:8c:f4:1b:3f:ee:df:8b:25:1e: 08:4d:e6:42:ef:c3:2f:62:78:96:9e:c7:de:b4:6f:1e:97:5d: 33:c6:8e:8b:ad:50:2f:d5:0d:c7:ba:55:6d:88:11:8f:59:d2: a4:69:e3:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjUxMDE4MTczNjQyWhcNMjUxMDI1MTczNjQyWjAYMRYwFAYD VQQDEw02OGYzZDAyYS05NjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHHWsgrI9LkiGO+JglCM8VXVCbuC6jpkhl5tY1SSZU5BG5jufsPLBOCkDg4q zPwPWttF2e89zk8fs/a/SoSe2qxqhnpvftNqdcRcnH6vdn1N9JymK9ZDIgFRtc1h WIC7zM3uBXg1D2jgtDmS0cPSklVlP8ojzX0iDbWDFwkrFUZD1IqfiRh2sn8Uu97X EbgPEYKytYSlrTWg2oGbrBL2R7UC8SUQDY8jVlImPvx7m971kRt9ynglJymt221I mRismT0eTt+EukOmG2bYDl+Wju2z5+NUel+Yn+iJqFU3WP5W3MaI7XpR8+WMeW9+ LpuZlivwDVr4vp2PbzW0r1YynQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdD5ob8 OAnoROZ7QMvfg3ruUvY5MB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDegrDp/tI6R3jL+HOz8Zrp0clqvVF2PwGGge1KMBfQjy1n6eiqR61I T9nkGkaNVu1sIIt+3vXExOhdzAb6xCh7aweDzWvVzC3Y6KdyFwDpXPMOgrhrhLxU UjM5yT9Gfg+FAIUU0js+f0eWzmGlD/H3e0tads77CZxY7/QxJJmD+HfUe1ILRuCY 44g1KMSKub7ffFvNax6sGEH3ikA0XqYNr7bn+JzBuWDD1+cFetplnGIR7ce12Ojs FXHUQCSvtmcf+2puHTSkYRUmGqkSruiM9Bs/7t+LJR4ITeZC78MvYniWnsfetG8e l10zxo6LrVAv1Q3HulVtiBGPWdKkaeOs -----END CERTIFICATE-----Generated at Mon Oct 20 10:34:42 2025 by rpki-client