$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft File: OQo4N6umkSos8p5hDaSVVd8sb6U.mft (raw, json) Hash identifier: JTVRVqzrEfiJtFpW6ji4EjTPFjzi2Uj27TFTnxvjU8Y= Subject key identifier: 6A:B5:BA:CC:5F:15:3C:1D:38:E2:D5:DC:B7:DD:FB:2A:EB:FD:E6:03 Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft Manifest number: A5 Signing time: Sun 19 Oct 2025 09:40:18 +0000 Manifest this update: Sun 19 Oct 2025 09:40:18 +0000 Manifest next update: Sun 26 Oct 2025 09:40:18 +0000 Files and hashes: 1: OQo4N6umkSos8p5hDaSVVd8sb6U.crl (hash: hzhaqhe84m1haQK+uzHCHfWIn9cuDOgkdQe9JgPojMA=) 2: 4B34CDD888EB11F09EC0EE50C4F9AE02.roa (hash: p4wINUwzjfYN0Bo2oW/pH90dIns+xH2+FFOhnoxyjpY=) 3: 8D21288888E911F0B3DA8F48C4F9AE02.roa (hash: 7bMT7o94nq6mqvqRKfU93nWX2RDHR7Qm0AOwW5X/l9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Oct 19 09:40:18 2025 GMT Not After : Oct 26 09:40:18 2025 GMT Subject: CN=68f4b202-5000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:39:d8:a8:e6:19:e5:d3:75:66:12:fe:b1:a5: d5:64:fb:e6:35:0e:b7:55:ed:20:08:d3:3f:34:f5: 82:de:86:b2:ac:38:b3:09:45:73:67:3d:d0:ca:01: 99:34:e2:41:be:18:18:f4:4f:4b:ce:a9:9e:6d:a1: 03:ad:cd:cf:9f:a6:7e:fc:03:6a:d3:0f:da:ea:83: aa:74:52:31:e3:05:55:02:f8:d9:2d:d9:a4:47:d6: 35:95:bb:57:ce:6f:44:a4:e3:42:c2:5e:3d:00:95: e7:a8:22:dd:c8:5f:56:65:dc:2e:3e:33:92:6b:84: 7c:a8:a1:32:34:fb:2a:49:d1:74:65:4d:ca:da:a6: 47:a4:69:13:f4:6d:62:67:a1:a2:a2:d5:68:7c:cc: de:cc:fb:76:44:4e:e0:50:3e:6e:e3:5f:cb:1c:2b: 15:6b:95:4c:ef:2f:2f:e3:52:b4:93:33:77:3e:35: 6e:d7:2d:2e:a3:1d:9a:fe:67:f5:70:e7:84:e1:a1: 99:c8:de:8d:b0:06:62:aa:24:4c:8a:f4:35:c0:f6: a4:4e:0c:59:09:36:87:63:35:28:94:59:7a:b9:d2: a1:93:8c:37:dd:a5:39:45:63:a4:a4:62:8b:10:7b: e5:59:d4:22:50:40:a9:85:82:e0:2c:05:6d:3e:ce: a6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B5:BA:CC:5F:15:3C:1D:38:E2:D5:DC:B7:DD:FB:2A:EB:FD:E6:03 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:8e:4c:93:9e:15:af:e4:1a:c0:ab:7a:87:53:e8:54:d6:66: db:eb:24:4a:82:a7:5e:45:3b:33:42:b6:c4:5e:3c:80:5d:58: 0f:0d:64:42:28:97:8b:d5:fc:d9:91:4b:a6:db:67:27:ee:a4: be:e2:20:79:f5:f4:cd:2c:ee:cd:94:89:a9:94:38:ba:f6:85: fe:95:d7:c0:f1:f0:6b:6c:2d:0d:06:fa:46:20:e3:12:ae:5e: b0:53:49:22:05:d2:96:82:4e:be:7b:05:68:90:c4:c4:4c:82: 16:06:d4:bf:52:ca:37:23:46:cb:af:71:78:6b:3b:bd:0b:0b: ea:27:da:df:d3:ad:60:16:48:cd:50:38:e7:02:25:93:0a:a2: b9:83:c7:80:75:5b:70:30:58:4a:7f:90:87:8a:93:02:66:b5: 10:81:5a:02:af:4b:78:c6:d7:35:ff:93:4b:2d:7d:e5:e0:f8: ef:01:4d:cb:6e:58:22:ef:61:e5:03:7e:17:6c:6a:63:f2:86: cb:5b:94:16:d5:c1:d3:48:39:88:fb:69:07:5b:29:3d:e0:ff: b0:30:dc:bb:c6:59:0d:e5:38:fb:a6:70:8e:fa:bc:72:2d:62: e1:18:20:2a:b7:c6:71:6a:05:6a:59:80:1e:70:ec:31:ed:6f: 83:a8:b5:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyQjYxMTAvBgNVBAUTKDM5MEEzODM3QUJBNjkxMkEyQ0YyOUU2MTBEQTQ5NTU1 REYyQzZGQTUwHhcNMjUxMDE5MDk0MDE4WhcNMjUxMDI2MDk0MDE4WjAYMRYwFAYD VQQDEw02OGY0YjIwMi01MDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDnYqOYZ5dN1ZhL+saXVZPvmNQ63Ve0gCNM/NPWC3oayrDizCUVzZz3QygGZ NOJBvhgY9E9LzqmebaEDrc3Pn6Z+/ANq0w/a6oOqdFIx4wVVAvjZLdmkR9Y1lbtX zm9EpONCwl49AJXnqCLdyF9WZdwuPjOSa4R8qKEyNPsqSdF0ZU3K2qZHpGkT9G1i Z6GiotVofMzezPt2RE7gUD5u41/LHCsVa5VM7y8v41K0kzN3PjVu1y0uox2a/mf1 cOeE4aGZyN6NsAZiqiRMivQ1wPakTgxZCTaHYzUolFl6udKhk4w33aU5RWOkpGKL EHvlWdQiUECphYLgLAVtPs6mMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGq1usxf FTwdOOLV3Lfd+yrr/eYDMB8GA1UdIwQYMBaAFDkKODerppEqLPKeYQ2klVXfLG+l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJCNi9ERTdFMzIxRUNC NTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtTb3M4cDVoRGFTVlZkOHNi NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9ERTdFMzIxRUNCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtT b3M4cDVoRGFTVlZkOHNiNlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZjkyTnhWv5BrAq3qHU+hU1mbb6yRKgqdeRTszQrbEXjyAXVgPDWRC KJeL1fzZkUum22cn7qS+4iB59fTNLO7NlImplDi69oX+ldfA8fBrbC0NBvpGIOMS rl6wU0kiBdKWgk6+ewVokMTETIIWBtS/Uso3I0bLr3F4azu9CwvqJ9rf061gFkjN UDjnAiWTCqK5g8eAdVtwMFhKf5CHipMCZrUQgVoCr0t4xtc1/5NLLX3l4PjvAU3L blgi72HlA34XbGpj8obLW5QW1cHTSDmI+2kHWyk94P+wMNy7xlkN5Tj7pnCO+rxy LWLhGCAqt8ZxagVqWYAecOwx7W+DqLVh -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:51 2025 by rpki-client