$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft File: MO7z6BnpmwANZl9r1ZSvpMYiai4.mft (raw, json) Hash identifier: Z9AIfQJMMspyZQJ6TqgSv8E17maSdTM4VG5hIrRoWCc= Subject key identifier: 53:71:75:7E:26:C7:E4:A2:1D:50:09:E7:E7:20:64:E8:7D:D6:6B:7A Authority key identifier: 30:EE:F3:E8:19:E9:9B:00:0D:66:5F:6B:D5:94:AF:A4:C6:22:6A:2E Certificate issuer: /CN=A91D5D9F/serialNumber=30EEF3E819E99B000D665F6BD594AFA4C6226A2E Certificate serial: 0254 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft Manifest number: 024F Signing time: Sun 19 Oct 2025 03:59:57 +0000 Manifest this update: Sun 19 Oct 2025 03:59:56 +0000 Manifest next update: Sun 26 Oct 2025 03:59:56 +0000 Files and hashes: 1: MO7z6BnpmwANZl9r1ZSvpMYiai4.crl (hash: 0fTKnk0W37dNdcQ0JAytpsAe1PFIJUOmB1lqOR/9+SI=) 2: D7803F3A3A5511EDB9410C50C4F9AE02.roa (hash: 5RvSp27bzJLpaJnE9Vp9OHr3zH1Dq7i1O2ke5dqvusQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.crl rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:59:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5D9F, serialNumber=30EEF3E819E99B000D665F6BD594AFA4C6226A2E Validity Not Before: Oct 19 03:59:56 2025 GMT Not After : Oct 26 03:59:56 2025 GMT Subject: CN=68f4623d-83c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:16:04:47:1c:87:44:f5:62:cf:c5:41:10:90: 5b:da:8c:6b:26:b9:f2:4c:8d:cd:17:0b:d8:fe:50: 08:b6:32:ab:40:3e:5e:24:28:73:97:76:98:21:69: f5:fb:16:88:30:35:7b:fd:1e:5e:30:ed:0f:c1:dc: b3:3f:7d:df:fc:a3:64:0d:b4:03:63:77:bd:da:5a: 9e:2f:26:6b:9b:64:3d:22:a5:89:33:65:28:6f:ec: db:fc:b5:12:12:b4:38:be:44:bb:cf:6c:14:11:41: c4:1e:ec:ea:ed:15:35:b3:32:2b:e1:34:88:b0:26: 38:fd:d9:67:87:04:ab:c5:40:10:24:f8:73:27:5f: ad:8b:a7:dc:e4:b4:ea:93:d3:93:11:63:66:b5:f9: 9c:1a:95:cc:d5:fc:d9:0d:0c:30:9d:d4:b6:44:c7: b8:16:73:b2:43:55:95:23:34:b0:ac:30:b2:a3:ce: 48:e1:71:68:ed:62:5b:8a:fe:59:e8:17:ef:60:e4: 4a:4c:f0:7a:6a:23:2e:86:5e:05:31:ab:a4:d1:09: 4d:f9:a4:2d:51:e3:ba:dc:de:8e:28:11:b5:fb:5f: b4:34:05:16:3d:17:84:b0:43:a0:d1:83:86:31:eb: a9:60:2d:d7:ac:bd:03:8d:5e:a3:d4:f7:88:fc:6f: 31:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:71:75:7E:26:C7:E4:A2:1D:50:09:E7:E7:20:64:E8:7D:D6:6B:7A X509v3 Authority Key Identifier: keyid:30:EE:F3:E8:19:E9:9B:00:0D:66:5F:6B:D5:94:AF:A4:C6:22:6A:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MO7z6BnpmwANZl9r1ZSvpMYiai4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5D9F/926F333E3A4F11EDB7B6AE20C4F9AE02/MO7z6BnpmwANZl9r1ZSvpMYiai4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:c6:d7:a1:a9:22:71:3b:12:59:3d:19:5e:b2:09:ce:4c:f0: 6e:73:28:37:87:83:fd:6e:c0:96:1f:fc:12:5a:ee:5e:0a:f5: 40:93:25:4c:40:70:ab:83:47:ef:8a:51:24:9f:b1:f9:d0:f9: 11:76:22:9f:95:15:43:27:d6:b5:6d:0b:23:f2:6e:77:06:12: 1d:fc:fc:08:47:8b:8f:19:6d:63:01:dd:a9:c2:81:d9:cd:f0: 09:1d:89:23:aa:37:ad:b6:1a:e0:66:33:cb:1c:e7:d4:82:1e: e0:7d:b7:f1:3a:6c:dd:0e:b1:5d:af:5f:72:b3:b6:ee:01:58: 77:0a:28:19:57:0d:b5:97:d5:4b:0e:08:d6:b1:04:14:87:f1: 5f:85:7c:a8:6e:49:d5:a4:c9:33:f2:9a:7c:27:35:cc:bc:c1: 22:8a:6d:d8:8c:9c:2b:76:15:80:89:fc:a5:67:c8:8a:3e:bb: 8a:a8:85:63:39:69:81:49:9e:2a:e6:2f:47:9b:00:73:61:96: 66:e2:a8:ff:58:91:97:17:ad:47:28:b7:8d:bf:06:93:1e:a3: 03:af:69:1f:50:c4:92:0a:98:44:0f:85:e0:aa:5c:81:77:ca: 22:40:49:bb:41:38:2b:41:98:9f:63:f7:9e:10:66:7c:29:86: 16:01:22:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVEOUYxMTAvBgNVBAUTKDMwRUVGM0U4MTlFOTlCMDAwRDY2NUY2QkQ1OTRBRkE0 QzYyMjZBMkUwHhcNMjUxMDE5MDM1OTU2WhcNMjUxMDI2MDM1OTU2WjAYMRYwFAYD VQQDEw02OGY0NjIzZC04M2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthYERxyHRPViz8VBEJBb2oxrJrnyTI3NFwvY/lAItjKrQD5eJChzl3aYIWn1 +xaIMDV7/R5eMO0PwdyzP33f/KNkDbQDY3e92lqeLyZrm2Q9IqWJM2Uob+zb/LUS ErQ4vkS7z2wUEUHEHuzq7RU1szIr4TSIsCY4/dlnhwSrxUAQJPhzJ1+ti6fc5LTq k9OTEWNmtfmcGpXM1fzZDQwwndS2RMe4FnOyQ1WVIzSwrDCyo85I4XFo7WJbiv5Z 6BfvYORKTPB6aiMuhl4FMauk0QlN+aQtUeO63N6OKBG1+1+0NAUWPReEsEOg0YOG MeupYC3XrL0DjV6j1PeI/G8xCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNxdX4m x+SiHVAJ5+cgZOh91mt6MB8GA1UdIwQYMBaAFDDu8+gZ6ZsADWZfa9WUr6TGImou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUQ5Ri85MjZGMzMzRTNB NEYxMUVEQjdCNkFFMjBDNEY5QUUwMi9NTzd6NkJucG13QU5abDlyMVpTdnBNWWlh aTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PN3o2Qm5wbXdBTlpsOXIxWlN2cE1ZaWFpNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUQ5Ri85MjZGMzMzRTNBNEYxMUVEQjdCNkFFMjBDNEY5QUUwMi9NTzd6NkJucG13 QU5abDlyMVpTdnBNWWlhaTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgxtehqSJxOxJZPRlesgnOTPBucyg3h4P9bsCWH/wSWu5eCvVAkyVM QHCrg0fvilEkn7H50PkRdiKflRVDJ9a1bQsj8m53BhId/PwIR4uPGW1jAd2pwoHZ zfAJHYkjqjetthrgZjPLHOfUgh7gfbfxOmzdDrFdr19ys7buAVh3CigZVw21l9VL DgjWsQQUh/FfhXyobknVpMkz8pp8JzXMvMEiim3YjJwrdhWAifylZ8iKPruKqIVj OWmBSZ4q5i9HmwBzYZZm4qj/WJGXF61HKLeNvwaTHqMDr2kfUMSSCphED4XgqlyB d8oiQEm7QTgrQZifY/eeEGZ8KYYWASLi -----END CERTIFICATE-----Generated at Mon Oct 20 22:40:26 2025 by rpki-client