$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft File: cOaM6FoDjZ4wcEODfKbmsaZglu4.mft (raw, json) Hash identifier: 5stJBvyW8gIJkFz1GqfCq9dsHDHTJGcPATX4HKfZJbg= Subject key identifier: 0E:D8:D1:0E:09:81:A4:A9:BD:E3:C0:F2:4C:0B:AB:FF:A4:96:82:21 Authority key identifier: 70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE Certificate issuer: /CN=A91F6ADE/serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Certificate serial: 04CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft Manifest number: 04C9 Signing time: Sun 19 Oct 2025 01:39:25 +0000 Manifest this update: Sun 19 Oct 2025 01:39:25 +0000 Manifest next update: Sun 26 Oct 2025 01:39:25 +0000 Files and hashes: 1: cOaM6FoDjZ4wcEODfKbmsaZglu4.crl (hash: pfTY8q3HL9+m2ONyGVbmjCjHCAtRv24n7D+pOCaVlEY=) 2: FD0DCDCA41E111EC98FA0C0AC4F9AE02.roa (hash: CzraaquDZ9Uo+Rh3T+BRvbMkjKbruCD1g9kPUW6icAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6ADE, serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Validity Not Before: Oct 19 01:39:25 2025 GMT Not After : Oct 26 01:39:25 2025 GMT Subject: CN=68f4414d-dc57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:86:d6:7e:94:f0:06:0c:e0:a7:0c:d8:a3:e7: 62:e1:64:2b:99:38:2e:2d:19:e9:56:95:77:fa:a6: 2b:6b:60:56:ad:b0:63:98:bd:b7:33:49:da:49:e8: cd:8c:73:35:ef:c8:6c:8b:5d:5f:5e:8a:fa:66:f7: b7:64:24:62:79:b8:0e:f8:0f:1c:8f:a6:0e:b2:9a: 33:a6:43:62:45:66:24:6a:f1:51:2c:96:30:db:0e: ce:2f:a0:cc:c2:3d:c3:9f:05:04:70:97:ef:aa:fc: 26:69:f9:14:67:17:1f:bb:20:d2:56:da:eb:81:18: 8d:2a:ba:c4:1c:b9:80:8f:61:bc:64:4a:a0:28:8b: bb:1d:fc:dd:cc:2d:51:95:dd:be:9b:ac:1b:87:8f: 7b:e1:90:9d:b4:c8:fc:43:c0:8b:dc:b1:59:1b:8b: f5:e7:e5:16:5b:e3:a3:d2:c0:ff:30:06:1c:24:e6: cb:71:84:16:e0:de:2f:bb:5a:36:c6:73:b1:01:28: e9:46:19:96:8f:16:e2:a2:e0:1a:bd:41:d1:d7:8b: d1:48:3b:cf:1a:f8:35:8f:ef:b5:ae:3b:a8:ff:f5: 12:af:bf:ab:36:5b:8e:10:ca:75:92:f1:76:9d:a7: 88:ac:8c:b2:3c:4d:b0:ad:7b:fc:4e:4a:f3:55:c5: 19:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D8:D1:0E:09:81:A4:A9:BD:E3:C0:F2:4C:0B:AB:FF:A4:96:82:21 X509v3 Authority Key Identifier: keyid:70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:64:fd:1f:78:89:ba:73:23:5f:80:f8:c1:44:3a:6b:b8:6f: 29:4d:4b:43:72:a7:06:8b:82:54:49:f1:ad:6b:64:be:ef:4e: c9:31:1a:c8:9d:c2:31:12:a2:cd:5f:39:66:c0:b4:72:75:a3: dd:0d:ba:d1:38:c6:1a:32:37:82:60:6f:76:c9:75:19:81:4a: 43:db:5d:3e:c3:ac:74:f5:0a:41:f0:34:28:fb:b5:39:75:a4: e4:41:27:a0:92:1f:b5:b5:57:75:c5:c5:96:17:d1:aa:67:05: 3b:f3:1f:13:66:42:2d:6d:20:c6:bc:af:82:61:16:84:aa:78: b2:89:3a:be:ae:b3:07:c1:9c:2e:ca:ce:7d:97:b4:ad:2a:54: 1d:29:c4:5f:31:87:36:5a:e4:3a:e4:31:68:71:65:b8:67:69: a8:21:c1:f5:3b:5f:2f:5e:46:a4:cd:1e:48:4a:9c:09:bb:3c: 29:63:62:d1:25:37:4f:10:b7:d3:80:93:26:aa:f1:de:c1:b6: fa:e2:c4:82:e3:91:1e:29:ff:6c:70:52:62:26:89:30:7f:8a: 7a:b0:9d:56:84:24:a5:3d:71:b7:68:29:b3:bf:67:fb:81:94: e0:af:8c:76:32:03:f7:f2:7e:3b:d6:b2:bd:6c:5c:ed:70:e2: b5:82:1f:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBREUxMTAvBgNVBAUTKDcwRTY4Q0U4NUEwMzhEOUUzMDcwNDM4MzdDQTZFNkIx QTY2MDk2RUUwHhcNMjUxMDE5MDEzOTI1WhcNMjUxMDI2MDEzOTI1WjAYMRYwFAYD VQQDEw02OGY0NDE0ZC1kYzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvobWfpTwBgzgpwzYo+di4WQrmTguLRnpVpV3+qYra2BWrbBjmL23M0naSejN jHM178hsi11fXor6Zve3ZCRiebgO+A8cj6YOspozpkNiRWYkavFRLJYw2w7OL6DM wj3DnwUEcJfvqvwmafkUZxcfuyDSVtrrgRiNKrrEHLmAj2G8ZEqgKIu7HfzdzC1R ld2+m6wbh4974ZCdtMj8Q8CL3LFZG4v15+UWW+Oj0sD/MAYcJObLcYQW4N4vu1o2 xnOxASjpRhmWjxbiouAavUHR14vRSDvPGvg1j++1rjuo//USr7+rNluOEMp1kvF2 naeIrIyyPE2wrXv8TkrzVcUZvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7Y0Q4J gaSpvePA8kwLq/+kloIhMB8GA1UdIwQYMBaAFHDmjOhaA42eMHBDg3ym5rGmYJbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFERS8yODczOUQzQTQx REYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpaNHdjRU9EZktibXNhWmds dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NPYU02Rm9Ealo0d2NFT0RmS2Jtc2FaZ2x1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFERS8yODczOUQzQTQxREYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpa NHdjRU9EZktibXNhWmdsdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnZP0feIm6cyNfgPjBRDpruG8pTUtDcqcGi4JUSfGta2S+707JMRrI ncIxEqLNXzlmwLRydaPdDbrROMYaMjeCYG92yXUZgUpD210+w6x09QpB8DQo+7U5 daTkQSegkh+1tVd1xcWWF9GqZwU78x8TZkItbSDGvK+CYRaEqniyiTq+rrMHwZwu ys59l7StKlQdKcRfMYc2WuQ65DFocWW4Z2moIcH1O18vXkakzR5ISpwJuzwpY2LR JTdPELfTgJMmqvHewbb64sSC45EeKf9scFJiJokwf4p6sJ1WhCSlPXG3aCmzv2f7 gZTgr4x2MgP38n471rK9bFztcOK1gh+d -----END CERTIFICATE-----Generated at Mon Oct 20 09:44:20 2025 by rpki-client