$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft File: mom7N8VDhtqah6ZP8AlEKKMXGkc.mft (raw, json) Hash identifier: Uc3CTI/7MI/OuxWxWB5ZxgDcegjsDfDzGxY5wPakT0A= Subject key identifier: 7D:50:89:B7:5C:BD:FE:A3:F3:5C:52:C4:67:B2:45:D8:4A:EA:CB:16 Authority key identifier: 9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 Certificate issuer: /CN=A91EF73D/serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft Manifest number: 014A Signing time: Sun 19 Oct 2025 07:15:45 +0000 Manifest this update: Sun 19 Oct 2025 07:15:45 +0000 Manifest next update: Sun 26 Oct 2025 07:15:45 +0000 Files and hashes: 1: mom7N8VDhtqah6ZP8AlEKKMXGkc.crl (hash: i0OMgsiOiUeplGv/WACHwCY1qgoKpuhOrUbkOeuGjTI=) 2: 00E1AC30FBAA11EE9C7F3921C4F9AE02.roa (hash: 29v8ayhOME61rr4geagSM3a8sHvyVhtwUdXNMoV9ZDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73D, serialNumber=9A89BB37C54386DA9A87A64FF0094428A3171A47 Validity Not Before: Oct 19 07:15:45 2025 GMT Not After : Oct 26 07:15:45 2025 GMT Subject: CN=68f49021-ecaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b7:01:c7:b6:05:42:8c:9e:2b:d1:94:30:63: a2:ec:34:54:7e:00:79:f0:43:d6:b2:a4:fc:51:b7: 06:f5:e0:3f:01:b2:a5:73:ed:07:83:b8:a4:cc:92: ff:7a:fb:84:d9:bd:6b:50:1c:6b:d4:3b:24:a8:41: 42:fd:98:8a:cd:52:66:fb:eb:76:5d:e3:2f:ab:5a: 7b:54:67:0b:db:3f:92:2b:0e:a7:fd:5e:36:58:4d: 3d:c0:52:6d:38:32:e8:7e:dc:4f:65:12:c5:94:b7: 0f:43:a2:a1:fe:47:59:25:72:b8:89:98:55:14:c7: 60:e1:a8:80:c2:9b:e3:6a:05:7f:3d:c8:58:aa:78: c4:03:db:fe:3f:c6:5b:4a:10:24:d6:7a:a8:52:b3: 76:21:f2:af:8f:de:7f:00:58:84:41:ca:56:b3:7c: 46:08:88:44:1e:99:c2:3a:b0:a3:47:b7:cd:8d:95: a3:51:eb:4e:fe:53:5c:f2:80:ae:0d:aa:21:1d:ef: 46:ac:3b:fe:10:11:ff:51:61:aa:7b:ca:af:0f:db: 23:fa:53:4d:71:7c:21:d7:e5:bd:fd:e3:d4:f4:ad: 09:14:4b:e2:9e:a5:25:79:0d:ab:8c:2f:99:e7:d5: 8b:c0:10:0e:29:ea:61:53:bf:10:17:12:06:60:b1: 11:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:50:89:B7:5C:BD:FE:A3:F3:5C:52:C4:67:B2:45:D8:4A:EA:CB:16 X509v3 Authority Key Identifier: keyid:9A:89:BB:37:C5:43:86:DA:9A:87:A6:4F:F0:09:44:28:A3:17:1A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mom7N8VDhtqah6ZP8AlEKKMXGkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73D/C92B3232CE1F11EEAC62617CC4F9AE02/mom7N8VDhtqah6ZP8AlEKKMXGkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:e3:89:3c:65:5d:ed:70:17:f7:2a:1c:b2:f7:54:3c:20:93: e2:7d:ac:6e:8b:ed:31:b5:45:4d:d1:af:3d:53:af:4d:80:65: c3:e8:38:42:6d:57:ca:c7:53:6e:d5:eb:f0:7e:2a:4d:0d:ac: 06:7e:2e:24:44:20:d5:8f:f5:66:a3:02:eb:3f:86:37:d2:f7: 64:14:10:04:ae:a6:78:36:48:29:40:4f:e7:92:28:38:9c:58: d5:fe:af:dc:76:58:9a:b9:e1:92:44:1a:41:f6:aa:06:2f:40: 16:5e:cb:2b:14:c2:82:37:e5:1c:a7:b7:0c:de:ab:00:88:c7: a7:88:89:03:0e:eb:4f:cd:65:e0:ce:43:d8:79:b1:c6:dd:4c: 94:2e:34:9a:ca:c0:54:b5:2f:88:23:ca:71:a3:c2:0b:7c:bf: c5:55:58:92:5a:b1:bf:f4:d4:dc:d5:65:e0:fa:d7:78:09:a6: cc:ed:c1:41:8f:33:97:c3:55:0e:0b:ba:b0:4a:de:6a:b3:f6: bb:fb:35:6f:cb:66:0a:6e:d2:bd:25:50:12:be:f5:f7:b4:48: 19:e5:b3:c9:a5:1e:74:37:e1:cb:3b:92:7d:fa:72:dd:81:fe: 95:6f:93:71:6f:61:bc:6e:8d:58:2b:08:fc:c9:93:fb:76:8b: d2:59:26:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0QxMTAvBgNVBAUTKDlBODlCQjM3QzU0Mzg2REE5QTg3QTY0RkYwMDk0NDI4 QTMxNzFBNDcwHhcNMjUxMDE5MDcxNTQ1WhcNMjUxMDI2MDcxNTQ1WjAYMRYwFAYD VQQDEw02OGY0OTAyMS1lY2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbcBx7YFQoyeK9GUMGOi7DRUfgB58EPWsqT8UbcG9eA/AbKlc+0Hg7ikzJL/ evuE2b1rUBxr1DskqEFC/ZiKzVJm++t2XeMvq1p7VGcL2z+SKw6n/V42WE09wFJt ODLoftxPZRLFlLcPQ6Kh/kdZJXK4iZhVFMdg4aiAwpvjagV/PchYqnjEA9v+P8Zb ShAk1nqoUrN2IfKvj95/AFiEQcpWs3xGCIhEHpnCOrCjR7fNjZWjUetO/lNc8oCu DaohHe9GrDv+EBH/UWGqe8qvD9sj+lNNcXwh1+W9/ePU9K0JFEvinqUleQ2rjC+Z 59WLwBAOKephU78QFxIGYLERvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1Qibdc vf6j81xSxGeyRdhK6ssWMB8GA1UdIwQYMBaAFJqJuzfFQ4bamoemT/AJRCijFxpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczRC9DOTJCMzIzMkNF MUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0cWFoNlpQOEFsRUtLTVhH a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21vbTdOOFZEaHRxYWg2WlA4QWxFS0tNWEdrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjczRC9DOTJCMzIzMkNFMUYxMUVFQUM2MjYxN0NDNEY5QUUwMi9tb203TjhWRGh0 cWFoNlpQOEFsRUtLTVhHa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX44k8ZV3tcBf3Khyy91Q8IJPifaxui+0xtUVN0a89U69NgGXD6DhC bVfKx1Nu1evwfipNDawGfi4kRCDVj/VmowLrP4Y30vdkFBAErqZ4NkgpQE/nkig4 nFjV/q/cdliaueGSRBpB9qoGL0AWXssrFMKCN+Ucp7cM3qsAiMeniIkDDutPzWXg zkPYebHG3UyULjSaysBUtS+II8pxo8ILfL/FVViSWrG/9NTc1WXg+td4CabM7cFB jzOXw1UOC7qwSt5qs/a7+zVvy2YKbtK9JVASvvX3tEgZ5bPJpR50N+HLO5J9+nLd gf6Vb5Nxb2G8bo1YKwj8yZP7dovSWSYY -----END CERTIFICATE-----Generated at Mon Oct 20 18:01:18 2025 by rpki-client