$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: zT4LANtjsTjv8bo+fBNFE0+BjeCADxDJllkvpALqipc= Subject key identifier: E8:C2:97:5B:3B:ED:FF:70:62:32:06:61:10:D6:9F:1C:2D:F8:DE:2E Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 030C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 0307 Signing time: Sun 19 Oct 2025 03:15:35 +0000 Manifest this update: Sun 19 Oct 2025 03:15:35 +0000 Manifest next update: Sun 26 Oct 2025 03:15:35 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: q/loY9AvvPjw8yee1y7Gc2sy0CMInKMVLvdHxdsGTCk=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD, serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: Oct 19 03:15:35 2025 GMT Not After : Oct 26 03:15:35 2025 GMT Subject: CN=68f457d7-a2f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:de:02:f2:f9:06:a0:e7:f0:a2:aa:95:b5:93: 39:c1:d0:49:bc:1b:fe:98:93:ca:fc:5f:60:f7:1b: 83:63:ab:d0:ba:44:9b:43:79:36:86:66:71:7a:e4: 29:2e:68:e5:df:78:4e:9e:d4:9a:e1:1c:b5:d0:7e: 27:fd:4c:bf:64:c2:f9:11:b7:0e:2e:1e:08:8c:30: 12:65:a5:5f:f5:ba:3b:48:b8:b7:14:3c:ce:41:24: 4b:a6:77:ab:99:dc:c9:64:ab:9d:b8:a9:27:ab:9a: 24:9c:8e:7b:58:33:22:b0:bf:19:2c:d7:3c:95:c1: 51:be:c8:3c:48:a4:7a:7e:8d:72:e0:ac:7a:4e:de: 89:bc:42:6d:36:82:5e:9b:ba:06:c0:f0:da:df:ea: b3:8f:5e:be:2a:8c:9c:77:39:85:64:a7:47:97:4f: 53:5b:5b:b2:07:d2:a4:ee:23:66:15:3d:bf:9d:c3: cc:1f:54:29:3a:94:03:c3:76:62:e5:01:fb:6a:50: d7:58:80:d8:59:1e:10:e0:b2:10:9b:49:35:30:83: b5:8e:bf:77:19:bf:1d:1d:f5:87:37:24:14:18:70: cc:7d:46:e4:be:8b:99:a7:ab:5a:74:0e:23:6a:e8: 4c:c6:30:11:6f:b4:71:e5:b0:42:d3:f5:7e:a4:5c: e7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C2:97:5B:3B:ED:FF:70:62:32:06:61:10:D6:9F:1C:2D:F8:DE:2E X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:35:54:b7:97:42:18:fb:67:87:38:67:65:05:ec:98:2e:39: fe:c8:ae:34:88:56:2c:a6:1a:74:6c:5e:15:5a:eb:47:8e:33: 3d:7a:9a:d4:29:ed:d8:18:4e:ac:7c:9d:e2:6e:bb:f3:b6:81: a3:19:c9:52:8f:73:83:0f:8a:6a:b1:00:5e:2a:3b:34:d0:8a: fd:b4:9f:cd:9e:4d:9b:e9:50:d4:e1:08:2a:65:dc:85:e5:82: 34:af:2c:e5:3e:55:32:f8:3b:b9:ca:b8:28:7f:28:e7:9f:f4: 3e:77:b6:2c:db:32:6f:b2:92:1d:ef:a3:79:89:ec:d1:e4:14: 6c:b0:23:f6:cc:81:71:f4:46:16:5b:cb:29:e0:9b:56:63:80: 51:82:66:12:9f:95:74:81:78:50:62:cb:9f:94:5a:22:f7:34: 18:15:a7:d1:f6:37:0c:30:d5:c6:be:e8:3f:b9:e8:85:be:79: f9:4a:e6:c4:d8:bb:bb:4d:d3:f3:36:4c:83:a1:38:dd:b8:ff: 37:12:43:62:33:90:ce:b6:63:4b:26:22:5a:cf:fd:52:f9:59: 11:9d:d9:14:2c:16:9e:91:df:77:42:7f:11:ce:8a:3a:ad:c5: 61:fb:a9:a0:b7:46:94:ee:a7:3c:26:e7:13:c2:ff:ad:cf:e6: c3:f6:7f:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjUxMDE5MDMxNTM1WhcNMjUxMDI2MDMxNTM1WjAYMRYwFAYD VQQDEw02OGY0NTdkNy1hMmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwN4C8vkGoOfwoqqVtZM5wdBJvBv+mJPK/F9g9xuDY6vQukSbQ3k2hmZxeuQp Lmjl33hOntSa4Ry10H4n/Uy/ZML5EbcOLh4IjDASZaVf9bo7SLi3FDzOQSRLpner mdzJZKuduKknq5oknI57WDMisL8ZLNc8lcFRvsg8SKR6fo1y4Kx6Tt6JvEJtNoJe m7oGwPDa3+qzj16+KoycdzmFZKdHl09TW1uyB9Kk7iNmFT2/ncPMH1QpOpQDw3Zi 5QH7alDXWIDYWR4Q4LIQm0k1MIO1jr93Gb8dHfWHNyQUGHDMfUbkvouZp6tadA4j auhMxjARb7Rx5bBC0/V+pFznXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjCl1s7 7f9wYjIGYRDWnxwt+N4uMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6NVS3l0IY+2eHOGdlBeyYLjn+yK40iFYsphp0bF4VWutHjjM9eprU Ke3YGE6sfJ3ibrvztoGjGclSj3ODD4pqsQBeKjs00Ir9tJ/Nnk2b6VDU4QgqZdyF 5YI0ryzlPlUy+Du5yrgofyjnn/Q+d7Ys2zJvspId76N5iezR5BRssCP2zIFx9EYW W8sp4JtWY4BRgmYSn5V0gXhQYsuflFoi9zQYFafR9jcMMNXGvug/ueiFvnn5SubE 2Lu7TdPzNkyDoTjduP83EkNiM5DOtmNLJiJaz/1S+VkRndkULBaekd93Qn8Rzoo6 rcVh+6mgt0aU7qc8JucTwv+tz+bD9n+I -----END CERTIFICATE-----Generated at Mon Oct 20 04:15:09 2025 by rpki-client