$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: 4lkIj4bsME0uHX50O7lpfX0W0V4BsuYyHhybF7SvpVE= Subject key identifier: AD:F6:CA:91:E0:87:AF:22:7F:8D:97:DE:94:0A:7A:FA:A9:62:D0:00 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 03B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 03A4 Signing time: Sun 19 Oct 2025 02:45:57 +0000 Manifest this update: Sun 19 Oct 2025 02:45:57 +0000 Manifest next update: Sun 26 Oct 2025 02:45:57 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: NrcFMaGTLBfkLfjSF9Uhndqn1rtHcLCy3bvSAa2QbRg=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 944 (0x3b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Oct 19 02:45:57 2025 GMT Not After : Oct 26 02:45:57 2025 GMT Subject: CN=68f450e5-fde6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:20:d3:f5:7e:84:c5:2f:0c:31:9d:d6:60:a4: bd:62:ec:18:0f:18:48:53:78:b6:e0:72:6f:32:4d: d2:62:35:bf:9a:79:a2:d7:30:1d:74:47:74:c1:c8: 63:ad:cc:5e:3f:00:ce:29:bf:84:41:cd:d4:26:d1: c4:a2:f9:27:00:34:8d:ce:c0:29:d6:ac:ed:e7:5c: f7:7d:b3:f8:db:a5:44:ff:39:37:f1:91:53:e0:2e: 54:89:8e:65:db:12:12:f6:2f:cd:ff:82:d2:ee:40: 1f:91:f1:af:23:ee:69:2c:70:0e:cf:8e:e9:77:bb: 6f:0d:f7:0f:d2:10:06:b3:2b:d7:f2:4a:02:b8:84: 2c:82:38:cf:42:c3:fb:55:a0:fe:43:b0:ff:7f:85: 36:aa:bf:50:24:60:19:52:4d:a9:c3:f3:b4:2b:a6: ac:f2:2a:f0:5d:e4:c6:b2:05:44:5e:04:45:99:dd: 6f:7a:ba:e7:8f:0a:f9:a6:68:b4:4f:29:ae:1f:40: 50:21:91:09:70:79:ed:70:2d:4c:35:0a:58:9e:83: 48:ae:f5:72:aa:02:78:71:8d:b1:ff:d4:47:22:ad: e2:bb:6b:e0:db:89:4f:be:1a:e9:84:ed:99:e3:c2: a5:12:94:1e:36:f2:cd:d5:90:2d:b4:07:41:74:6a: e7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F6:CA:91:E0:87:AF:22:7F:8D:97:DE:94:0A:7A:FA:A9:62:D0:00 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:2e:b2:1c:67:cc:f5:1b:05:8c:5b:be:75:2c:10:2c:e4:6d: e3:31:0a:ef:a7:bb:d7:cd:6f:07:c2:4b:51:82:b1:04:81:f0: 9c:95:5f:1c:b7:e0:53:5e:86:ea:6e:d5:e5:2b:09:fa:eb:d0: b6:29:33:8f:74:1c:7d:2e:65:1e:4b:1a:b5:97:0d:7a:3a:2f: cb:d9:5c:2e:64:0f:8f:49:e9:8c:76:82:ad:2e:76:27:7d:94: 5f:2e:b3:ed:5a:e5:51:83:73:ce:6b:1e:bf:3e:b9:89:58:fb: a2:cc:df:66:ba:8e:9a:b1:39:ea:9e:8c:f7:e1:4d:73:e7:98: 4c:ba:f0:2a:e8:07:f7:2c:14:15:9a:79:dd:8b:5e:de:5c:43: 40:30:3a:78:92:4c:d9:e5:77:c2:18:d9:89:a7:7c:b7:fc:00: d5:dd:28:16:c4:58:94:94:14:14:db:7c:e8:f0:8c:38:c6:bc: e0:60:10:3d:48:bd:10:42:0b:ab:d8:0d:f3:a7:b8:db:d9:5a: 48:e5:fb:4c:d7:a4:5b:7f:81:ea:9a:15:5f:91:94:93:97:76: 85:00:a8:1f:e6:fd:72:53:c1:ce:60:ec:ae:7d:a9:f8:37:6a: 60:9a:04:cf:80:69:42:0b:7a:6d:92:bf:31:ed:fc:58:8a:03: 7c:e5:e2:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUxMDE5MDI0NTU3WhcNMjUxMDI2MDI0NTU3WjAYMRYwFAYD VQQDEw02OGY0NTBlNS1mZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyDT9X6ExS8MMZ3WYKS9YuwYDxhIU3i24HJvMk3SYjW/mnmi1zAddEd0wchj rcxePwDOKb+EQc3UJtHEovknADSNzsAp1qzt51z3fbP426VE/zk38ZFT4C5UiY5l 2xIS9i/N/4LS7kAfkfGvI+5pLHAOz47pd7tvDfcP0hAGsyvX8koCuIQsgjjPQsP7 VaD+Q7D/f4U2qr9QJGAZUk2pw/O0K6as8irwXeTGsgVEXgRFmd1verrnjwr5pmi0 TymuH0BQIZEJcHntcC1MNQpYnoNIrvVyqgJ4cY2x/9RHIq3iu2vg24lPvhrphO2Z 48KlEpQeNvLN1ZAttAdBdGrn6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK32ypHg h68if42X3pQKevqpYtAAMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClLrIcZ8z1GwWMW751LBAs5G3jMQrvp7vXzW8HwktRgrEEgfCclV8c t+BTXobqbtXlKwn669C2KTOPdBx9LmUeSxq1lw16Oi/L2VwuZA+PSemMdoKtLnYn fZRfLrPtWuVRg3POax6/PrmJWPuizN9muo6asTnqnoz34U1z55hMuvAq6Af3LBQV mnndi17eXENAMDp4kkzZ5XfCGNmJp3y3/ADV3SgWxFiUlBQU23zo8Iw4xrzgYBA9 SL0QQgur2A3zp7jb2VpI5ftM16Rbf4HqmhVfkZSTl3aFAKgf5v1yU8HOYOyufan4 N2pgmgTPgGlCC3ptkr8x7fxYigN85eIy -----END CERTIFICATE-----Generated at Mon Oct 20 19:48:22 2025 by rpki-client