$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft File: o7CyBZyzB2t17aMkt2UH08KVUoM.mft (raw, json) Hash identifier: vy04I5OeOu5J8/tqXXL584dwQ1yC+wHmTGEXxx/I6Nc= Subject key identifier: BD:64:9D:43:E6:72:AC:6D:9E:FF:96:8B:2E:3B:E4:93:78:35:E7:FA Authority key identifier: A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 Certificate issuer: /CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Certificate serial: 0A71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft Manifest number: 0A68 Signing time: Sat 18 Oct 2025 20:37:26 +0000 Manifest this update: Sat 18 Oct 2025 20:37:25 +0000 Manifest next update: Sat 25 Oct 2025 20:37:25 +0000 Files and hashes: 1: o7CyBZyzB2t17aMkt2UH08KVUoM.crl (hash: pJIgZLy5PTC9h5g8/olkWcI9XCqIF8eTKI3AF/XyQdk=) 2: 62B22A709D2511F092B08685C4F9AE02.roa (hash: 3Ui4cpTHHeKfz+ZmJHpf6SoxkqjlYYO57sXCMQDXSvQ=) 3: 631E45669D2511F092B08685C4F9AE02.roa (hash: 7FJFv2Mx+1Xt7OR8AiHSTaeUg0YXybdvrKVZMy3KEE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2673 (0xa71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2AAE, serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Validity Not Before: Oct 18 20:37:25 2025 GMT Not After : Oct 25 20:37:25 2025 GMT Subject: CN=68f3fa85-7a3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ec:ce:a0:c0:ab:b1:9e:a5:d0:5c:8f:6b:86: a3:bd:6c:c7:ad:39:ca:6b:6c:a7:76:d9:8a:18:16: f5:84:54:10:17:28:55:6b:83:3b:8e:df:2d:e3:89: 88:6a:a8:ac:08:c0:86:58:71:3d:44:ba:27:f4:ea: 90:05:87:69:d1:96:34:50:00:7f:ac:a1:3c:9e:e1: e4:81:82:1c:c0:6e:0f:3a:e4:64:a9:ca:75:17:b9: 8b:3f:f5:f7:4c:38:d6:34:c3:be:3a:74:14:ff:2d: cd:c1:77:d1:ed:5a:c4:6f:a0:55:73:46:83:14:13: 95:aa:3b:05:0f:98:f8:4d:cb:66:fc:99:0e:69:4b: 06:79:1a:90:99:7c:90:43:49:6c:4b:66:36:6f:6c: 0e:80:e7:a0:30:51:42:7b:fd:be:16:9b:b9:bd:07: 21:05:6e:ef:e7:af:7e:9e:58:a1:88:d7:53:e3:4b: b4:1c:75:7a:f7:9f:7e:a3:e9:fb:2d:b0:58:4f:8f: 28:33:3d:d6:c7:dc:c8:5d:7f:8b:b5:41:65:e0:20: 92:46:3e:7a:a2:d9:a1:88:5c:e9:76:fa:5f:6b:97: 86:44:16:2b:70:37:28:93:7f:d2:8c:20:69:5d:78: 71:35:7e:c7:9a:6a:6f:72:a1:92:92:cc:88:b6:b3: 11:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:64:9D:43:E6:72:AC:6D:9E:FF:96:8B:2E:3B:E4:93:78:35:E7:FA X509v3 Authority Key Identifier: keyid:A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:d8:ef:1e:9c:03:b1:35:7b:d4:d7:d7:c1:18:d9:a0:e3:4d: f6:09:35:59:c4:dc:04:ce:37:ed:31:30:df:49:32:a4:18:01: 24:c0:6a:af:e0:c0:82:5a:c9:01:c8:12:b2:15:ae:74:23:de: 08:b5:d6:cc:66:90:b0:ef:2d:49:b6:f4:55:5e:81:db:6d:c2: be:db:a0:6c:4a:d7:e8:ae:cc:34:27:da:ff:60:c4:54:91:aa: e5:82:a2:f7:71:4a:73:70:01:61:03:ac:00:76:fa:be:6e:f0: f4:12:8e:cf:39:b4:02:88:52:a4:75:f5:0e:a1:7a:63:84:55: 88:72:c8:14:a7:ee:8f:b2:99:9a:da:f4:b3:14:86:96:90:8a: df:bc:2b:5f:fb:2c:73:1a:4f:e8:fe:ba:22:61:59:1d:0d:eb: e9:32:ab:40:90:bf:61:d8:ce:7f:fd:1a:63:94:83:02:df:34: 7d:dd:ff:44:90:ff:f1:6b:cc:bd:75:50:99:b7:e8:ed:ec:c1: d4:19:32:2e:d9:fa:42:b2:00:80:ce:2c:d2:d9:8a:67:9c:83: 8e:dc:e9:24:ba:12:f4:b8:d9:06:fd:c5:1e:19:66:da:c7:4d: cf:51:1a:b2:49:34:67:3e:99:34:74:d3:7b:56:02:72:65:01: 23:94:9f:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJBQUUxMTAvBgNVBAUTKEEzQjBCMjA1OUNCMzA3NkI3NUVEQTMyNEI3NjUwN0Qz QzI5NTUyODMwHhcNMjUxMDE4MjAzNzI1WhcNMjUxMDI1MjAzNzI1WjAYMRYwFAYD VQQDEw02OGYzZmE4NS03YTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtezOoMCrsZ6l0FyPa4ajvWzHrTnKa2yndtmKGBb1hFQQFyhVa4M7jt8t44mI aqisCMCGWHE9RLon9OqQBYdp0ZY0UAB/rKE8nuHkgYIcwG4POuRkqcp1F7mLP/X3 TDjWNMO+OnQU/y3NwXfR7VrEb6BVc0aDFBOVqjsFD5j4Tctm/JkOaUsGeRqQmXyQ Q0lsS2Y2b2wOgOegMFFCe/2+Fpu5vQchBW7v569+nlihiNdT40u0HHV6959+o+n7 LbBYT48oMz3Wx9zIXX+LtUFl4CCSRj56otmhiFzpdvpfa5eGRBYrcDcok3/SjCBp XXhxNX7HmmpvcqGSksyItrMRTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1knUPm cqxtnv+Wiy475JN4Nef6MB8GA1UdIwQYMBaAFKOwsgWcswdrde2jJLdlB9PClVKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkFBRS81NzUzN0Q1RTcw NDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIydDE3YU1rdDJVSDA4S1ZV b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283Q3lCWnl6QjJ0MTdhTWt0MlVIMDhLVlVvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkFBRS81NzUzN0Q1RTcwNDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIy dDE3YU1rdDJVSDA4S1ZVb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa2O8enAOxNXvU19fBGNmg4032CTVZxNwEzjftMTDfSTKkGAEkwGqv 4MCCWskByBKyFa50I94ItdbMZpCw7y1JtvRVXoHbbcK+26BsStforsw0J9r/YMRU karlgqL3cUpzcAFhA6wAdvq+bvD0Eo7PObQCiFKkdfUOoXpjhFWIcsgUp+6Pspma 2vSzFIaWkIrfvCtf+yxzGk/o/roiYVkdDevpMqtAkL9h2M5//RpjlIMC3zR93f9E kP/xa8y9dVCZt+jt7MHUGTIu2fpCsgCAzizS2YpnnIOO3OkkuhL0uNkG/cUeGWba x03PURqySTRnPpk0dNN7VgJyZQEjlJ8L -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:50 2025 by rpki-client