$ rpki-client -vvf rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft File: OVr1eRN2M5r53uVtah4TtHq1xGY.mft (raw, json) Hash identifier: J38EeSaabWf5NC1rixHTWidwG1qVNJ3ylyRYvTxpOwE= Subject key identifier: 4E:B5:B7:D7:82:2D:31:55:3E:32:98:62:0B:7B:79:43:FF:D1:90:12 Authority key identifier: 39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 Certificate issuer: /CN=A91316B0/serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft Manifest number: 05A5 Signing time: Sun 19 Oct 2025 01:57:35 +0000 Manifest this update: Sun 19 Oct 2025 01:57:34 +0000 Manifest next update: Sun 26 Oct 2025 01:57:34 +0000 Files and hashes: 1: OVr1eRN2M5r53uVtah4TtHq1xGY.crl (hash: lgussUaPhSIUA3VtDEX5CzVm+f0xlmrKdfsDlntM7WY=) 2: C6EFDF5C0C3311EFB37BD03FC4F9AE02.roa (hash: +baf+FBOvTO91WyGSxfLgP4c75Re+v5ehq0gcaeZq1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91316B0, serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Validity Not Before: Oct 19 01:57:34 2025 GMT Not After : Oct 26 01:57:34 2025 GMT Subject: CN=68f4458e-1e9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4c:8c:c8:de:1b:5e:ad:d8:4a:cc:16:58:39: c9:af:bf:e2:b0:9a:1a:ee:84:93:21:45:9a:ad:f3: cf:1b:92:ab:e7:05:aa:a8:8b:37:01:9a:1d:e0:bc: 75:68:8b:3b:15:1d:0a:e9:11:ba:8e:70:af:b0:fb: f9:6d:c0:16:de:0d:30:31:1a:b6:6e:82:26:d9:8a: 59:56:bb:d0:9e:f2:35:16:97:c8:4a:0e:7f:b2:41: 57:b6:87:66:88:c2:33:c8:9f:50:7c:4d:a2:f7:fe: 10:c3:92:48:e7:d6:a8:03:cc:0a:c4:21:9d:3f:6d: 19:65:45:23:c1:86:42:83:fc:01:ea:8e:39:a2:ac: 5b:d2:22:66:e3:fa:5d:39:47:04:fe:1d:7d:50:f1: 0f:52:96:54:4f:ce:19:2b:b9:97:77:e9:da:10:f4: 61:d6:4b:00:13:fb:cd:d4:ec:eb:29:9f:4f:a5:a6: 9b:7a:23:9c:dc:d8:6c:ec:29:16:37:4f:eb:8c:cf: 74:70:e6:41:4c:f1:2e:cc:9c:e4:f5:b3:cb:72:8a: f3:59:70:e1:82:d4:7c:f6:c3:58:f0:74:ef:bf:4c: ac:d9:da:98:c8:51:4e:76:c3:23:37:b5:86:4a:53: c1:84:3c:ed:67:14:fa:35:9a:48:c8:28:0c:7d:2c: 41:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B5:B7:D7:82:2D:31:55:3E:32:98:62:0B:7B:79:43:FF:D1:90:12 X509v3 Authority Key Identifier: keyid:39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ac:b4:6d:61:c2:7a:dc:e2:c3:c8:f7:34:53:c5:53:b2:7d: d0:72:7b:9f:db:78:19:29:35:3b:9e:eb:12:40:1e:9f:6d:d0: fb:bf:a5:0a:7c:d1:43:ea:f3:25:7f:a7:81:50:10:25:c1:91: c3:a9:82:79:68:b1:22:0c:09:01:cd:49:c9:13:18:cd:a6:e1: 7e:d8:cb:45:e1:ab:d9:8e:bb:53:14:87:ea:f3:5a:76:13:2e: 87:0e:1a:8e:e8:42:93:e4:15:94:1b:1e:65:70:25:8e:1b:5c: 71:2a:d7:37:9e:0e:e2:7f:d3:a8:ad:18:f2:40:bd:0e:90:44: ec:67:fa:55:60:2e:35:7d:8f:50:56:3d:11:00:8c:c8:59:0a: 10:03:2f:34:a6:c7:2f:f5:ef:67:64:52:eb:32:b9:e6:23:da: 64:8c:5a:49:ab:c3:f7:a8:3d:f8:c5:16:b6:f8:ac:4e:2d:b3: d0:c3:7d:b6:31:51:96:d8:e6:6a:8a:ff:22:23:67:1d:90:3a: 3a:41:f8:e9:5a:ef:b0:55:b2:22:c9:42:5d:ae:ee:74:d9:dc: 27:dc:9a:9e:a4:f5:ef:b4:58:79:d5:f5:38:03:3e:21:50:df: 98:30:65:73:16:4f:7c:cd:66:b4:7c:32:02:d9:36:20:8d:a9: 2f:f7:2e:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2QjAxMTAvBgNVBAUTKDM5NUFGNTc5MTM3NjMzOUFGOURFRTU2RDZBMUUxM0I0 N0FCNUM0NjYwHhcNMjUxMDE5MDE1NzM0WhcNMjUxMDI2MDE1NzM0WjAYMRYwFAYD VQQDEw02OGY0NDU4ZS0xZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0yMyN4bXq3YSswWWDnJr7/isJoa7oSTIUWarfPPG5Kr5wWqqIs3AZod4Lx1 aIs7FR0K6RG6jnCvsPv5bcAW3g0wMRq2boIm2YpZVrvQnvI1FpfISg5/skFXtodm iMIzyJ9QfE2i9/4Qw5JI59aoA8wKxCGdP20ZZUUjwYZCg/wB6o45oqxb0iJm4/pd OUcE/h19UPEPUpZUT84ZK7mXd+naEPRh1ksAE/vN1OzrKZ9PpaabeiOc3Nhs7CkW N0/rjM90cOZBTPEuzJzk9bPLcorzWXDhgtR89sNY8HTvv0ys2dqYyFFOdsMjN7WG SlPBhDztZxT6NZpIyCgMfSxBuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE61t9eC LTFVPjKYYgt7eUP/0ZASMB8GA1UdIwQYMBaAFDla9XkTdjOa+d7lbWoeE7R6tcRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTZCMC8yMzM3RjIzMjVF M0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01cjUzdVZ0YWg0VHRIcTF4 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09WcjFlUk4yTTVyNTN1VnRhaDRUdEhxMXhHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTZCMC8yMzM3RjIzMjVFM0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01 cjUzdVZ0YWg0VHRIcTF4R1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4rLRtYcJ63OLDyPc0U8VTsn3Qcnuf23gZKTU7nusSQB6fbdD7v6UK fNFD6vMlf6eBUBAlwZHDqYJ5aLEiDAkBzUnJExjNpuF+2MtF4avZjrtTFIfq81p2 Ey6HDhqO6EKT5BWUGx5lcCWOG1xxKtc3ng7if9OorRjyQL0OkETsZ/pVYC41fY9Q Vj0RAIzIWQoQAy80pscv9e9nZFLrMrnmI9pkjFpJq8P3qD34xRa2+KxOLbPQw322 MVGW2OZqiv8iI2cdkDo6QfjpWu+wVbIiyUJdru502dwn3JqepPXvtFh51fU4Az4h UN+YMGVzFk98zWa0fDIC2TYgjakv9y7j -----END CERTIFICATE-----Generated at Mon Oct 20 04:45:49 2025 by rpki-client