$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: sYzThHECyABTvREas15qBVKB3UgzsoVUFXVOb2yrE2o= Subject key identifier: DE:96:C7:A8:07:E1:9B:20:09:A9:67:59:23:EA:98:A1:B2:C9:BD:16 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 036B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 0363 Signing time: Sun 19 Oct 2025 02:58:04 +0000 Manifest this update: Sun 19 Oct 2025 02:58:03 +0000 Manifest next update: Sun 26 Oct 2025 02:58:03 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: ZzyvJoymdpaA3NETU+f9UMjgLt8gheKcy6PGxSdx5vw=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:58:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Oct 19 02:58:03 2025 GMT Not After : Oct 26 02:58:03 2025 GMT Subject: CN=68f453bc-a33e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ff:40:8b:ff:5b:9f:e2:6c:4a:3d:25:ed:46: 23:eb:e8:f3:6b:c9:53:cf:b9:5a:22:e0:8e:2d:a9: fa:db:96:24:93:57:ad:2e:ec:1e:73:78:57:ac:52: 41:f8:ac:de:8c:df:6c:59:3e:ed:63:1c:cd:18:f7: 5a:2b:ce:28:36:22:9c:b7:9a:78:aa:e1:1b:64:98: 35:8a:41:43:d7:5f:66:71:00:21:15:5a:88:52:5d: e3:48:c6:dc:97:0b:ab:94:7c:25:c2:84:41:39:38: b4:1f:7f:b4:12:74:93:e8:a3:4e:dd:33:38:af:7a: 35:d6:3b:d8:6e:d1:cd:08:c4:5b:44:6f:97:c6:a6: 54:e4:85:70:bc:af:b2:23:af:64:0f:c7:27:05:bc: 43:a6:ca:30:6c:f2:2b:a3:d4:17:7f:f6:ca:23:06: 55:49:c8:06:2e:38:d7:d0:0f:5e:ed:6d:43:ad:88: e8:49:a4:44:54:a3:1d:d3:fc:80:2e:5c:7e:84:16: 97:39:08:74:02:cd:00:2b:1c:27:43:b3:41:0d:f3: 36:9d:9b:ff:f7:54:13:c9:0a:1d:ac:6c:4e:9d:30: da:6c:29:09:05:51:d3:89:73:f5:9a:9a:5c:35:31: 09:2c:87:2a:cb:c7:15:05:d5:1e:e6:4f:ea:67:d7: fc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:96:C7:A8:07:E1:9B:20:09:A9:67:59:23:EA:98:A1:B2:C9:BD:16 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:0a:d5:cb:77:89:e0:fe:75:d1:5f:02:aa:a9:a3:95:88:d3: 1c:50:5e:59:fe:53:70:72:25:44:70:f2:b5:3a:51:06:76:eb: 60:b5:b3:14:ae:ed:b4:ae:6a:16:ef:db:2d:e3:7c:45:ae:43: 76:68:df:31:71:ee:8b:76:d2:50:a5:45:e3:9f:c9:f1:96:d2: fe:21:67:28:48:fe:97:a7:40:d0:f6:aa:26:83:2a:92:23:39: ff:89:a0:15:4d:9c:b0:4f:98:1b:14:63:36:bb:3f:14:9e:a8: f9:79:fa:cf:71:3f:96:e1:9d:21:90:94:fd:dc:49:c4:68:75: fa:9d:9a:9a:62:be:44:8b:a7:67:6b:16:4f:f2:e5:8a:e4:ca: 1e:7a:46:dd:97:48:c3:10:05:7b:1e:35:54:7e:29:6b:44:bf: 13:b9:81:eb:14:84:0c:dc:02:48:fb:79:06:dc:5c:02:e4:eb: f2:88:33:bc:7d:75:f2:a3:23:cd:53:5a:64:9d:bb:3e:44:0b: ed:27:83:ea:09:8d:81:5a:23:a0:e9:bb:a2:7e:7a:a3:df:5f: 1f:18:67:38:83:6e:18:0e:b9:f8:43:e1:dc:15:10:94:6e:3f: 69:ae:27:59:58:91:79:fd:e3:c2:ba:af:da:1b:77:a0:7d:14: 68:02:2d:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUxMDE5MDI1ODAzWhcNMjUxMDI2MDI1ODAzWjAYMRYwFAYD VQQDEw02OGY0NTNiYy1hMzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoP9Ai/9bn+JsSj0l7UYj6+jza8lTz7laIuCOLan625Ykk1etLuwec3hXrFJB +KzejN9sWT7tYxzNGPdaK84oNiKct5p4quEbZJg1ikFD119mcQAhFVqIUl3jSMbc lwurlHwlwoRBOTi0H3+0EnST6KNO3TM4r3o11jvYbtHNCMRbRG+XxqZU5IVwvK+y I69kD8cnBbxDpsowbPIro9QXf/bKIwZVScgGLjjX0A9e7W1DrYjoSaREVKMd0/yA Llx+hBaXOQh0As0AKxwnQ7NBDfM2nZv/91QTyQodrGxOnTDabCkJBVHTiXP1mppc NTEJLIcqy8cVBdUe5k/qZ9f83QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6Wx6gH 4ZsgCalnWSPqmKGyyb0WMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8CtXLd4ng/nXRXwKqqaOViNMcUF5Z/lNwciVEcPK1OlEGdutgtbMU ru20rmoW79st43xFrkN2aN8xce6LdtJQpUXjn8nxltL+IWcoSP6Xp0DQ9qomgyqS Izn/iaAVTZywT5gbFGM2uz8Unqj5efrPcT+W4Z0hkJT93EnEaHX6nZqaYr5Ei6dn axZP8uWK5Moeekbdl0jDEAV7HjVUfilrRL8TuYHrFIQM3AJI+3kG3FwC5OvyiDO8 fXXyoyPNU1pknbs+RAvtJ4PqCY2BWiOg6buifnqj318fGGc4g24YDrn4Q+HcFRCU bj9pridZWJF5/ePCuq/aG3egfRRoAi0Q -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:02 2025 by rpki-client