$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft File: oUUkHZgwrySnFWc1ElXsjn7VPv4.mft (raw, json) Hash identifier: zOlBh8X+flunqMJpggIfLLleNsLrBdH5ehKCBR61NJs= Subject key identifier: F4:D9:5E:73:1B:0B:C7:12:28:F3:D6:4A:19:C0:47:09:2E:15:82:1A Authority key identifier: A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE Certificate issuer: /CN=A91AC5BC/serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft Manifest number: 45 Signing time: Sun 19 Oct 2025 11:01:15 +0000 Manifest this update: Sun 19 Oct 2025 11:01:14 +0000 Manifest next update: Sun 26 Oct 2025 11:01:14 +0000 Files and hashes: 1: oUUkHZgwrySnFWc1ElXsjn7VPv4.crl (hash: JEF/i0LEM9M9xonq/8jExlaxHrsP7gkMKX7Zi/uycGY=) 2: C24679DC741211F0808A8240C4F9AE02.roa (hash: 0sz+kpmtwGElJIZS+dbC02B4JWfvDxu2J1QwiI80uIU=) 3: B015DEC49D0211F0992DA43DC4F9AE02.roa (hash: 1ZtqCzNNxWxSJ7uFzzu6FWZe/QSQ6qrzF6WDQCLLHuM=) 4: 90CF95CE66DD11F09FD37312C4F9AE02.roa (hash: BBZhX9HK3NBq65o9RCyGDdGBDo4hsR5Etdc6G3lRbjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC5BC, serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Validity Not Before: Oct 19 11:01:14 2025 GMT Not After : Oct 26 11:01:14 2025 GMT Subject: CN=68f4c4fb-a278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c9:ff:8a:3f:dd:18:bb:fc:53:ff:ba:86:b3: 9b:ca:cb:68:eb:59:11:fc:df:58:66:66:2c:07:10: d8:ce:99:32:93:a4:59:d7:b4:71:64:1f:7b:f7:52: 32:0a:29:5d:4d:6a:5c:85:3a:af:39:89:4f:c9:76: 41:fd:ec:9e:d8:b9:53:83:52:a1:27:cb:77:7f:c6: a4:bb:a8:1b:6e:27:37:4d:f8:fb:83:49:51:a5:61: 54:43:2f:d7:20:41:b1:fc:69:b5:6c:f4:f4:bf:d1: b1:a5:46:ec:52:c7:48:3b:72:43:d1:f7:42:01:ef: b3:51:ef:07:01:f5:38:64:e2:d8:5c:a7:9e:b2:93: 13:3e:f0:4f:ea:be:3e:77:3b:b1:c0:fa:9a:70:74: a2:ca:14:7d:6d:53:32:af:0b:f0:26:31:77:19:47: b6:eb:40:50:94:39:cf:1b:81:f9:fb:81:92:69:15: c9:28:f7:ba:7d:d5:55:64:71:db:c0:65:dd:20:6a: 40:1a:5a:80:6a:60:a1:09:39:6f:53:c6:7c:02:ad: c6:90:f0:7a:03:db:53:f6:05:08:6b:a4:72:01:bb: c6:0c:94:d3:c5:b0:13:a5:32:01:ee:5f:9d:7d:05: ae:af:b9:f8:b1:8d:fb:7b:79:f1:8b:79:d7:81:3a: bc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D9:5E:73:1B:0B:C7:12:28:F3:D6:4A:19:C0:47:09:2E:15:82:1A X509v3 Authority Key Identifier: keyid:A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:b8:8a:1e:49:a8:f4:3a:53:8b:c5:23:2c:65:d1:5c:dd:12: 99:91:a6:c9:35:f0:26:22:53:a5:6d:ca:e5:3b:17:6d:7b:bd: 16:79:5c:e8:ef:22:3e:34:0d:e4:a0:06:a3:f2:65:ad:9d:86: 40:43:64:41:be:7c:56:b7:8a:59:57:59:f2:07:73:1f:d5:69: f5:c5:41:c4:53:4b:59:8a:0b:1e:e4:70:37:55:b7:46:e3:87: 3c:81:06:a1:80:61:63:1b:53:6f:14:84:cc:e8:44:c4:10:4b: 5f:08:5d:31:f4:2b:4d:c7:41:e6:90:7d:6f:e3:7e:01:29:d5: d6:1b:dc:39:53:b7:13:44:f5:33:b5:fd:20:75:13:aa:1f:93: ca:c8:8a:01:f5:8d:26:3b:86:f8:0d:4c:2b:98:74:75:2d:4e: 02:62:10:cb:a4:bc:63:33:cd:68:28:e7:f7:75:6f:18:0f:13: 64:57:17:0f:42:05:f3:f7:5d:bc:85:84:aa:70:b1:ad:28:e2: 3c:59:4a:2f:fb:0c:6d:eb:e9:d4:f6:df:54:73:c6:15:39:1d: 64:51:ab:d7:60:63:33:3c:03:a6:d5:df:b3:8f:6e:5a:67:99: 29:d9:9e:d9:80:63:9e:cc:1d:9b:b4:06:0a:57:c1:19:14:c6: e8:e4:6a:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzVCQzExMC8GA1UEBRMoQTE0NTI0MUQ5ODMwQUYyNEE3MTU2NzM1MTI1NUVDOEU3 RUQ1M0VGRTAeFw0yNTEwMTkxMTAxMTRaFw0yNTEwMjYxMTAxMTRaMBgxFjAUBgNV BAMTDTY4ZjRjNGZiLWEyNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpyf+KP90Yu/xT/7qGs5vKy2jrWRH831hmZiwHENjOmTKTpFnXtHFkH3v3UjIK KV1NalyFOq85iU/JdkH97J7YuVODUqEny3d/xqS7qBtuJzdN+PuDSVGlYVRDL9cg QbH8abVs9PS/0bGlRuxSx0g7ckPR90IB77NR7wcB9Thk4thcp56ykxM+8E/qvj53 O7HA+ppwdKLKFH1tUzKvC/AmMXcZR7brQFCUOc8bgfn7gZJpFcko97p91VVkcdvA Zd0gakAaWoBqYKEJOW9TxnwCrcaQ8HoD21P2BQhrpHIBu8YMlNPFsBOlMgHuX519 Ba6vufixjft7efGLedeBOrwDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9NlecxsL xxIo89ZKGcBHCS4VghowHwYDVR0jBBgwFoAUoUUkHZgwrySnFWc1ElXsjn7VPv4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDNUJDLzcxRTVEOEJFNTlG MjExRjBCNEZBRTk1RkM0RjlBRTAyL29VVWtIWmd3cnlTbkZXYzFFbFhzam43VlB2 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1VVa0haZ3dyeVNuRldjMUVsWHNqbjdWUHY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFD NUJDLzcxRTVEOEJFNTlGMjExRjBCNEZBRTk1RkM0RjlBRTAyL29VVWtIWmd3cnlT bkZXYzFFbFhzam43VlB2NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD64ih5JqPQ6U4vFIyxl0VzdEpmRpsk18CYiU6VtyuU7F217vRZ5XOjv Ij40DeSgBqPyZa2dhkBDZEG+fFa3illXWfIHcx/VafXFQcRTS1mKCx7kcDdVt0bj hzyBBqGAYWMbU28UhMzoRMQQS18IXTH0K03HQeaQfW/jfgEp1dYb3DlTtxNE9TO1 /SB1E6ofk8rIigH1jSY7hvgNTCuYdHUtTgJiEMukvGMzzWgo5/d1bxgPE2RXFw9C BfP3XbyFhKpwsa0o4jxZSi/7DG3r6dT231RzxhU5HWRRq9dgYzM8A6bV37OPblpn mSnZntmAY57MHZu0BgpXwRkUxujkavw= -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:17 2025 by rpki-client