$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: 4I/FFMYZc5x0EYT6fIGOYDxwk4I+wHErNA6PZs3Yt2E= Subject key identifier: AD:DA:09:01:3C:AC:35:8D:92:40:E9:7D:6D:7E:C9:19:97:73:36:80 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 0130 Signing time: Sun 19 Oct 2025 07:25:49 +0000 Manifest this update: Sun 19 Oct 2025 07:25:49 +0000 Manifest next update: Sun 26 Oct 2025 07:25:49 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: bTKeVqUsAUYMW4XazJz3KfijPGmX9LGIp+WFdNB83Ho=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:25:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Oct 19 07:25:49 2025 GMT Not After : Oct 26 07:25:49 2025 GMT Subject: CN=68f4927d-bcc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9b:f5:d1:cd:e6:0c:38:7a:9d:16:e7:a6:53: 0f:7c:8c:ab:a8:05:95:e9:df:51:1d:cf:68:44:71: 83:92:f9:8c:dc:5e:4a:91:13:9f:74:21:fe:ce:b2: 43:21:7f:5e:ad:d9:eb:0d:3f:fe:f7:67:ce:a5:b7: d2:55:8c:76:e9:f0:97:8e:b9:82:25:95:ab:59:22: f0:ca:6b:49:d0:e5:8b:25:3e:f8:17:59:99:70:2f: 2a:12:95:f1:7c:2f:91:8f:da:5c:ef:20:1a:0f:42: 25:ff:00:34:76:36:04:9c:05:35:b4:56:0b:69:ea: ba:da:8d:f1:5d:5e:ee:79:d5:e3:bb:80:1d:a8:2e: f6:8a:ab:d7:3c:ef:9e:3d:21:4c:21:7a:8f:71:f0: cd:f2:1f:93:4e:6a:c5:f1:30:65:c9:1a:92:13:56: 1a:90:bf:94:6a:9f:f2:f2:63:c1:b0:df:99:a6:41: 79:36:c4:6c:f9:89:56:d3:09:2a:35:f3:fb:55:bb: 33:fc:9b:18:e1:d1:0b:1f:b8:45:e9:06:35:c9:6d: bc:a5:6b:e5:39:27:3b:12:5c:46:f2:ad:98:db:a0: 4f:e2:d5:16:48:a9:90:5b:d2:37:84:96:b3:02:cd: 89:f6:bb:67:7c:7a:10:ce:55:b7:46:12:f6:ed:92: 86:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:DA:09:01:3C:AC:35:8D:92:40:E9:7D:6D:7E:C9:19:97:73:36:80 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:04:0e:e3:93:82:8a:8b:f3:ce:4c:ee:ba:d3:77:ae:e8:00: e1:33:00:58:7f:cd:20:d5:ca:36:09:34:c1:5f:f2:79:d0:1e: aa:e1:6b:58:54:27:80:39:28:61:1c:e5:c8:df:f8:49:c1:d0: 7b:15:84:88:0f:f0:7b:f4:1e:63:8d:a0:36:75:6e:3f:e5:e8: 4c:6e:cc:95:64:06:68:bc:d8:72:db:a6:00:cb:4c:4d:ff:db: 3a:54:9a:26:59:0c:06:54:14:30:38:41:90:81:64:a0:6c:27: e3:ba:71:17:48:4e:4f:8e:1e:26:43:34:e3:3b:2f:7d:c9:b4: d6:00:e1:ad:15:0c:0e:f7:d1:fa:36:5b:69:9e:c2:0c:cc:81: 68:96:27:67:fd:d6:64:2e:19:d5:66:8b:a7:58:58:5f:dc:04: 3f:52:22:a4:84:5a:91:af:47:a5:33:37:90:3c:11:bd:df:a7: d0:d6:43:2d:e3:ed:0a:f2:74:2d:97:6e:f9:d8:4f:f7:07:9c: 8c:d9:c2:8f:65:61:9b:af:a7:53:c6:52:25:84:04:9e:af:64: 87:aa:1d:3e:78:ae:81:e4:c7:6f:95:49:a9:75:79:6a:df:91: de:1c:cd:9f:1b:21:21:b8:38:5a:56:3d:86:8b:c3:b0:20:1d: 3c:15:bf:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUxMDE5MDcyNTQ5WhcNMjUxMDI2MDcyNTQ5WjAYMRYwFAYD VQQDEw02OGY0OTI3ZC1iY2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Jv10c3mDDh6nRbnplMPfIyrqAWV6d9RHc9oRHGDkvmM3F5KkROfdCH+zrJD IX9erdnrDT/+92fOpbfSVYx26fCXjrmCJZWrWSLwymtJ0OWLJT74F1mZcC8qEpXx fC+Rj9pc7yAaD0Il/wA0djYEnAU1tFYLaeq62o3xXV7uedXju4AdqC72iqvXPO+e PSFMIXqPcfDN8h+TTmrF8TBlyRqSE1YakL+Uap/y8mPBsN+ZpkF5NsRs+YlW0wkq NfP7Vbsz/JsY4dELH7hF6QY1yW28pWvlOSc7ElxG8q2Y26BP4tUWSKmQW9I3hJaz As2J9rtnfHoQzlW3RhL27ZKGywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3aCQE8 rDWNkkDpfW1+yRmXczaAMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOBA7jk4KKi/POTO6603eu6ADhMwBYf80g1co2CTTBX/J50B6q4WtY VCeAOShhHOXI3/hJwdB7FYSID/B79B5jjaA2dW4/5ehMbsyVZAZovNhy26YAy0xN /9s6VJomWQwGVBQwOEGQgWSgbCfjunEXSE5Pjh4mQzTjOy99ybTWAOGtFQwO99H6 NltpnsIMzIFolidn/dZkLhnVZounWFhf3AQ/UiKkhFqRr0elMzeQPBG936fQ1kMt 4+0K8nQtl2752E/3B5yM2cKPZWGbr6dTxlIlhASer2SHqh0+eK6B5MdvlUmpdXlq 35HeHM2fGyEhuDhaVj2Gi8OwIB08Fb/+ -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:58 2025 by rpki-client