$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: SpQQJHPGNoerl8Ou00ajAoeJpnUJ578Wnf7iLoxZ/98= Subject key identifier: 9D:4C:E4:F7:78:5C:46:E2:93:F2:3A:44:24:D1:0C:5A:35:B9:84:10 Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 0AEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 0AE0 Signing time: Sat 18 Oct 2025 20:22:27 +0000 Manifest this update: Sat 18 Oct 2025 20:22:26 +0000 Manifest next update: Sat 25 Oct 2025 20:22:26 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: FebKx9HX9GzF2WFJsgiDXXOMn4jDS3dcWKqwwEbVlJ8=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: iGeCqjea5TKx5w3j1RMFWZOzP6n/8IBkqpNhUcYz96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2794 (0xaea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0, serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: Oct 18 20:22:26 2025 GMT Not After : Oct 25 20:22:26 2025 GMT Subject: CN=68f3f703-3fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:1b:0b:04:67:34:43:24:eb:fe:b7:0c:d8: b7:c3:11:0e:d7:e9:b0:e4:01:34:d4:db:74:22:66: 2d:83:48:11:cd:ed:9c:8b:c8:0d:ae:6d:0a:bb:4e: cd:c1:31:0e:00:e7:75:43:99:50:00:b2:f0:96:3b: af:83:4a:c6:06:28:a2:23:74:49:9a:4e:51:16:13: 98:ff:1a:d9:3e:04:4f:2d:dd:4a:33:d9:61:56:33: e4:6b:ed:9e:a7:8a:9b:54:e2:f4:1c:09:6c:39:85: 00:60:db:31:c1:ef:83:3e:4a:4f:4f:5a:c8:db:18: b3:ad:2b:2a:54:1a:32:26:10:46:aa:60:12:13:db: 9a:50:54:55:fe:ad:15:38:37:47:69:62:bd:a2:0a: 42:7b:1f:48:d2:85:f2:c4:d5:97:07:1e:d0:b5:9e: 1a:b6:9f:de:99:f6:69:38:dd:2c:d4:23:13:74:de: bf:27:ea:e9:ad:b5:73:ca:ec:9e:58:c3:02:b8:d7: 53:14:06:71:00:af:08:f7:30:8b:24:56:aa:6c:be: 72:2b:41:a4:a0:51:4d:02:f8:ea:8e:95:a9:fc:7f: 4a:0a:a6:23:05:64:62:83:04:3e:d9:e1:a8:5b:10: 32:de:97:93:0c:7c:eb:a4:01:bf:10:07:ac:a8:16: 18:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4C:E4:F7:78:5C:46:E2:93:F2:3A:44:24:D1:0C:5A:35:B9:84:10 X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:4e:46:6d:e0:08:55:4a:02:fe:ca:03:4a:06:e3:a5:e3:f4: d2:20:85:cc:7f:6e:4a:5d:b6:02:ea:45:4e:c6:87:34:96:90: b7:91:41:9e:3b:35:6d:eb:4b:a4:39:e3:28:f7:5c:1e:26:e9: 2e:70:63:ad:e2:39:3d:3d:31:8c:ba:2f:94:7c:9f:8b:77:12: 9f:cf:51:58:31:0e:ff:1a:16:9f:d4:f5:73:8f:42:26:44:da: 4f:bf:8f:63:da:a5:5a:fc:04:30:27:39:26:14:ad:e8:fd:c7: 65:cb:ba:aa:eb:0f:99:7d:49:7f:43:3d:89:e7:29:99:e9:c9: be:c8:76:87:1a:5a:37:3f:92:d3:82:3d:7c:d4:d5:9c:53:d2: 6e:ab:64:dd:4a:40:d9:2c:3e:e6:6f:7f:61:35:28:08:71:cc: 54:d9:07:64:35:0a:a1:e1:31:12:1e:14:0f:ae:0c:cb:45:0b: 01:a7:f7:d7:a4:1f:e2:15:ee:fc:a7:64:57:f9:55:af:81:14: 31:f5:93:4c:12:4b:c3:d7:a0:35:80:32:0b:76:ff:77:88:2a: 34:5a:aa:5d:08:35:ca:94:ef:98:6b:4d:35:a3:8e:f6:32:d0: 89:4b:3e:c0:4e:fd:d6:1d:a4:49:e3:1b:01:9a:3c:ba:47:12: 98:5b:95:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjUxMDE4MjAyMjI2WhcNMjUxMDI1MjAyMjI2WjAYMRYwFAYD VQQDEw02OGYzZjcwMy0zZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTwbCwRnNEMk6/63DNi3wxEO1+mw5AE01Nt0ImYtg0gRze2ci8gNrm0Ku07N wTEOAOd1Q5lQALLwljuvg0rGBiiiI3RJmk5RFhOY/xrZPgRPLd1KM9lhVjPka+2e p4qbVOL0HAlsOYUAYNsxwe+DPkpPT1rI2xizrSsqVBoyJhBGqmASE9uaUFRV/q0V ODdHaWK9ogpCex9I0oXyxNWXBx7QtZ4atp/emfZpON0s1CMTdN6/J+rprbVzyuye WMMCuNdTFAZxAK8I9zCLJFaqbL5yK0GkoFFNAvjqjpWp/H9KCqYjBWRigwQ+2eGo WxAy3peTDHzrpAG/EAesqBYYlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1M5Pd4 XEbik/I6RCTRDFo1uYQQMB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtTkZt4AhVSgL+ygNKBuOl4/TSIIXMf25KXbYC6kVOxoc0lpC3kUGe OzVt60ukOeMo91weJukucGOt4jk9PTGMui+UfJ+LdxKfz1FYMQ7/Ghaf1PVzj0Im RNpPv49j2qVa/AQwJzkmFK3o/cdly7qq6w+ZfUl/Qz2J5ymZ6cm+yHaHGlo3P5LT gj181NWcU9Juq2TdSkDZLD7mb39hNSgIccxU2QdkNQqh4TESHhQPrgzLRQsBp/fX pB/iFe78p2RX+VWvgRQx9ZNMEkvD16A1gDILdv93iCo0WqpdCDXKlO+Ya001o472 MtCJSz7ATv3WHaRJ4xsBmjy6RxKYW5X9 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:42 2025 by rpki-client