$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft File: OvCdKMpIepMmYxpr6b2b26oY2nU.mft (raw, json) Hash identifier: cDxhOIuaUQU9uRLpopPAvvjs/ZSi6aEKIcFI+DTLAI0= Subject key identifier: 02:22:04:5E:C6:01:F5:33:7D:2F:6C:3D:48:94:C3:31:DF:D5:3B:9C Authority key identifier: 3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 Certificate issuer: /CN=A91AB74D/serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft Manifest number: 0650 Signing time: Sun 19 Oct 2025 00:11:54 +0000 Manifest this update: Sun 19 Oct 2025 00:11:54 +0000 Manifest next update: Sun 26 Oct 2025 00:11:54 +0000 Files and hashes: 1: OvCdKMpIepMmYxpr6b2b26oY2nU.crl (hash: P7zA590wrnVbHkJYX1+Pf/Zk7tdhQ75v0gGVnmphWVg=) 2: 1A704D8CADB511EBB5CFE734C4F9AE02.roa (hash: vcP/S0izUQbA7Z/0jbMqfJjGpHZIaNp2jddGsZhjHPI=) 3: 1B16F1A0ADB511EBB5CFE734C4F9AE02.roa (hash: EoEXlCI1GOehyvV1dOn2OebjZ7e0VJ5M5h2oFDhhyXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Validity Not Before: Oct 19 00:11:54 2025 GMT Not After : Oct 26 00:11:54 2025 GMT Subject: CN=68f42cca-cf3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:ce:e0:82:18:f4:ef:6a:85:30:91:2f:6c: d2:8a:8d:92:e7:7b:c7:d9:76:46:c6:4a:65:4e:41: a0:37:d0:23:78:3e:51:f2:83:c6:a8:87:2d:90:09: 64:f1:df:19:70:e2:1b:f7:7d:4a:52:66:64:22:01: 6d:4e:ed:82:a2:a5:9a:3a:3a:12:bd:af:e4:23:4e: bb:a7:62:39:22:d1:6a:be:cf:da:fe:84:d7:3b:af: 2b:40:f3:f1:7a:db:c7:77:1c:84:38:5d:04:03:40: de:eb:9f:f0:4e:9f:74:46:84:30:e7:9f:a1:bd:ea: 26:bd:48:34:cb:5a:0d:af:4d:5b:7e:7e:31:9b:8f: 1b:4b:6e:81:94:70:91:9f:b1:0d:62:08:a4:24:fd: 8f:5b:78:a7:3f:b6:b9:ea:2f:07:d3:ff:74:ce:de: 59:d6:9a:37:04:3e:06:df:9d:ae:02:f9:33:a6:e2: 47:92:c4:07:cc:b1:77:21:7e:0d:7c:e7:39:95:22: 38:be:48:72:2a:74:e8:e8:0e:c6:7b:c0:b3:d6:a0: 2c:39:29:28:21:fd:5d:1a:0f:c1:6a:0d:76:fa:c2: 54:48:66:fc:73:a6:2d:2a:5e:d8:6d:74:8c:99:19: 4a:35:24:6b:1a:ec:6e:ec:25:65:12:28:d3:17:b0: 49:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:22:04:5E:C6:01:F5:33:7D:2F:6C:3D:48:94:C3:31:DF:D5:3B:9C X509v3 Authority Key Identifier: keyid:3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:bb:90:1d:e2:c0:4c:40:78:c2:d0:f8:f9:45:d1:f2:b6:24: f3:04:b6:26:e7:cf:05:ac:f1:fd:fe:f9:a2:7f:ba:df:9b:be: 54:04:19:8c:cb:1e:3d:9a:c9:c2:2d:ac:86:16:c7:73:6a:71: d3:15:dd:db:d3:77:e8:1d:0d:6f:30:c9:1c:0d:bf:21:52:fc: 2c:0c:c6:fe:e5:3b:26:f6:e5:cd:37:88:fe:50:14:07:d5:f4: a9:6b:11:17:c3:21:95:41:3b:73:62:73:b4:4d:95:3c:62:42: 9a:85:e2:21:77:70:f1:3b:f0:8a:69:91:f7:b2:4c:15:d5:7e: 99:73:3a:b5:e2:ae:f1:2d:67:f2:8b:b0:16:0e:7c:c2:58:2b: 67:40:de:65:3b:a0:24:88:07:ac:15:00:4d:63:8a:22:1b:07: a5:4d:2d:89:fa:91:1b:69:f1:15:3a:ae:12:c5:1f:08:38:28: 35:10:36:06:df:6f:0e:58:7d:0b:01:0a:60:72:b1:ca:da:0e: 77:55:08:30:23:a4:26:84:31:a6:40:3e:f7:92:d6:cb:08:f2: 30:4d:5a:c6:e4:a3:59:f3:e5:af:81:76:42:bd:2f:62:30:96: fa:23:39:a9:da:46:a3:8a:5a:e6:b9:15:82:07:b0:3f:b4:45: 81:f6:fc:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKDNBRjA5RDI4Q0E0ODdBOTMyNjYzMUE2QkU5QkQ5QkRC QUExOERBNzUwHhcNMjUxMDE5MDAxMTU0WhcNMjUxMDI2MDAxMTU0WjAYMRYwFAYD VQQDEw02OGY0MmNjYS1jZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLnO4IIY9O9qhTCRL2zSio2S53vH2XZGxkplTkGgN9AjeD5R8oPGqIctkAlk 8d8ZcOIb931KUmZkIgFtTu2CoqWaOjoSva/kI067p2I5ItFqvs/a/oTXO68rQPPx etvHdxyEOF0EA0De65/wTp90RoQw55+hveomvUg0y1oNr01bfn4xm48bS26BlHCR n7ENYgikJP2PW3inP7a56i8H0/90zt5Z1po3BD4G352uAvkzpuJHksQHzLF3IX4N fOc5lSI4vkhyKnTo6A7Ge8Cz1qAsOSkoIf1dGg/Bag12+sJUSGb8c6YtKl7YbXSM mRlKNSRrGuxu7CVlEijTF7BJTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIiBF7G AfUzfS9sPUiUwzHf1TucMB8GA1UdIwQYMBaAFDrwnSjKSHqTJmMaa+m9m9uqGNp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC9EMzU5NTY4Q0E4 REMxMUVCOTc5REE1MEVDNEY5QUUwMi9PdkNkS01wSWVwTW1ZeHByNmIyYjI2b1ky blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL092Q2RLTXBJZXBNbVl4cHI2YjJiMjZvWTJuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC9EMzU5NTY4Q0E4REMxMUVCOTc5REE1MEVDNEY5QUUwMi9PdkNkS01wSWVw TW1ZeHByNmIyYjI2b1kyblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9u5Ad4sBMQHjC0Pj5RdHytiTzBLYm588FrPH9/vmif7rfm75UBBmM yx49msnCLayGFsdzanHTFd3b03foHQ1vMMkcDb8hUvwsDMb+5Tsm9uXNN4j+UBQH 1fSpaxEXwyGVQTtzYnO0TZU8YkKaheIhd3DxO/CKaZH3skwV1X6Zczq14q7xLWfy i7AWDnzCWCtnQN5lO6AkiAesFQBNY4oiGwelTS2J+pEbafEVOq4SxR8IOCg1EDYG 328OWH0LAQpgcrHK2g53VQgwI6QmhDGmQD73ktbLCPIwTVrG5KNZ8+WvgXZCvS9i MJb6Izmp2kajilrmuRWCB7A/tEWB9vwT -----END CERTIFICATE-----Generated at Tue Oct 21 12:45:13 2025 by rpki-client