$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: kCeea2cpvWLT2WkaLzoV7rKIUlQ70ZXaH5VzdJEvgjs= Subject key identifier: A4:20:BE:83:B3:62:FD:67:EF:95:8E:21:9D:F0:09:7D:FA:0C:2E:79 Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 90 Signing time: Sun 19 Oct 2025 09:44:21 +0000 Manifest this update: Sun 19 Oct 2025 09:44:20 +0000 Manifest next update: Sun 26 Oct 2025 09:44:20 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: lAv1R9AtEKrmh79TS6kBrOfXtL3oQcZ/jL2Dno9XK0U=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Oct 19 09:44:20 2025 GMT Not After : Oct 26 09:44:20 2025 GMT Subject: CN=68f4b2f5-a61a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:08:05:13:0f:1d:8b:fc:7b:20:de:13:fc:37: 40:73:6a:71:a3:dc:1e:92:81:6d:a1:96:83:85:ce: 83:cc:80:54:69:86:52:70:4e:4f:71:1f:37:5e:56: 3c:cb:c6:b6:34:d8:dd:14:42:2e:22:f1:72:11:d4: dc:ac:24:40:ef:c3:1d:ed:df:44:f3:09:5b:b8:e8: ee:0d:6c:33:f4:ef:bc:3c:44:6c:5f:78:5f:d5:ea: a9:71:a9:e5:60:82:18:92:22:4a:7e:0c:49:69:80: 05:fb:56:b0:bd:06:fe:a3:b7:00:77:b6:9e:85:f7: b1:95:ce:ed:92:bf:41:73:fc:90:c2:82:99:fe:b9: e5:13:05:c9:d4:fb:2e:4d:1e:67:37:9d:13:8a:26: 87:92:c4:57:41:71:4b:4e:f5:4c:43:7a:5a:1a:56: 6c:e7:8b:92:fa:c0:24:ac:17:de:c9:a7:88:a6:c1: 3c:7f:c8:b0:62:fd:aa:e1:b0:f2:f1:de:73:8e:5b: 6b:23:58:92:f1:c8:54:21:c3:9e:dd:d3:27:86:45: f0:79:ca:fd:32:c0:80:28:a5:3d:a6:7c:35:ce:fd: 33:5a:20:00:65:32:89:97:77:ff:66:b4:b6:29:7f: 00:b8:7f:8e:60:68:d7:36:a6:17:2e:2b:25:a1:a0: cd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:20:BE:83:B3:62:FD:67:EF:95:8E:21:9D:F0:09:7D:FA:0C:2E:79 X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:28:06:4a:8a:13:14:3f:4e:79:d5:d1:77:23:a2:2f:4f:ae: 9a:f3:f8:f1:81:4f:87:13:55:f7:33:14:88:85:83:48:9a:ec: 37:d1:04:f7:25:49:be:6e:47:c9:b4:4d:2b:a6:ee:83:b2:0e: 18:e7:3e:cd:f3:f9:f9:05:91:9f:71:8f:b7:df:46:15:ed:c1: 8b:c4:31:0d:9e:10:6a:aa:e1:91:5e:bf:01:fc:5b:b8:b5:b2: 77:8b:b8:40:a7:ac:3a:98:d2:ab:c3:6c:f8:c2:c0:0d:a3:f0: 6e:21:0b:01:84:9a:5a:24:c7:e7:80:b9:2d:e3:e3:4a:e7:20: 37:ac:2b:a3:79:3d:2d:e9:7a:37:e5:c1:d7:1b:1c:b0:8f:d8: 3a:7d:d2:8e:da:04:53:f2:c8:be:ee:88:dd:ae:4f:29:d0:01: 55:2c:e2:d5:51:c1:b3:fb:06:7a:3c:91:af:5d:2d:3c:52:8e: be:e7:ac:6e:99:4f:f3:4c:0b:ce:c5:c6:7c:6e:22:11:af:c5: 0e:b9:77:bf:c2:b8:a9:7f:1e:d7:8b:ab:c4:b5:7d:d4:6c:37: 62:69:22:20:3d:cb:c0:b3:46:38:da:0d:8b:d4:42:98:e8:b9: 64:25:55:12:3e:9e:dd:09:ab:f2:22:fc:8c:27:93:7e:32:b4: 06:e4:d4:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjMxMTAvBgNVBAUTKEEwRUEyQTcyMENBQzMxQzgzNzVGNTU2Q0Y5NEJGRUY4 RDExMTY5RjYwHhcNMjUxMDE5MDk0NDIwWhcNMjUxMDI2MDk0NDIwWjAYMRYwFAYD VQQDEw02OGY0YjJmNS1hNjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QgFEw8di/x7IN4T/DdAc2pxo9wekoFtoZaDhc6DzIBUaYZScE5PcR83XlY8 y8a2NNjdFEIuIvFyEdTcrCRA78Md7d9E8wlbuOjuDWwz9O+8PERsX3hf1eqpcanl YIIYkiJKfgxJaYAF+1awvQb+o7cAd7aehfexlc7tkr9Bc/yQwoKZ/rnlEwXJ1Psu TR5nN50TiiaHksRXQXFLTvVMQ3paGlZs54uS+sAkrBfeyaeIpsE8f8iwYv2q4bDy 8d5zjltrI1iS8chUIcOe3dMnhkXwecr9MsCAKKU9pnw1zv0zWiAAZTKJl3f/ZrS2 KX8AuH+OYGjXNqYXLisloaDN8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQgvoOz Yv1n75WOIZ3wCX36DC55MB8GA1UdIwQYMBaAFKDqKnIMrDHIN19VbPlL/vjREWn2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGMy82MEUyMDdCQ0Qw QjkxMUVGQTA4NDg4MjVDNEY5QUUwMi9vT29xY2d5c01jZzNYMVZzLVV2LS1ORVJh ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGMy82MEUyMDdCQ0QwQjkxMUVGQTA4NDg4MjVDNEY5QUUwMi9vT29xY2d5c01j ZzNYMVZzLVV2LS1ORVJhZlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACKAZKihMUP0551dF3I6IvT66a8/jxgU+HE1X3MxSIhYNImuw30QT3 JUm+bkfJtE0rpu6Dsg4Y5z7N8/n5BZGfcY+330YV7cGLxDENnhBqquGRXr8B/Fu4 tbJ3i7hAp6w6mNKrw2z4wsANo/BuIQsBhJpaJMfngLkt4+NK5yA3rCujeT0t6Xo3 5cHXGxywj9g6fdKO2gRT8si+7ojdrk8p0AFVLOLVUcGz+wZ6PJGvXS08Uo6+56xu mU/zTAvOxcZ8biIRr8UOuXe/wripfx7Xi6vEtX3UbDdiaSIgPcvAs0Y42g2L1EKY 6LlkJVUSPp7dCavyIvyMJ5N+MrQG5NTb -----END CERTIFICATE-----Generated at Mon Oct 20 14:08:41 2025 by rpki-client