$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: +yapgbBkklvd6rQzsAUyi8shkFmw88xIcbvg3zZVHQY= Subject key identifier: 40:95:E0:02:A1:E9:7B:C9:C0:9C:05:43:92:76:4B:36:4E:6A:EE:91 Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 0160 Signing time: Sun 19 Oct 2025 06:47:43 +0000 Manifest this update: Sun 19 Oct 2025 06:47:42 +0000 Manifest next update: Sun 26 Oct 2025 06:47:42 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: qBGOaxMONqHkwH50ecbXXe4xkJhiwuaP0AKjXBOFug0=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: gJAOPk4iFoIW/KqNitxUF3g+S02/W0OUx3yJyNEqzJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Oct 19 06:47:42 2025 GMT Not After : Oct 26 06:47:42 2025 GMT Subject: CN=68f4898e-b281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9b:50:e6:36:ec:54:79:eb:2a:2d:89:eb:60: 77:84:2a:9a:1a:e2:7d:94:49:fa:20:f1:f2:b3:3e: 61:03:86:e0:a8:29:5f:fa:22:ae:78:02:1e:47:76: 74:61:a8:a2:60:85:38:71:9a:8a:f7:05:5b:bc:19: d1:29:bd:16:6e:c4:59:1e:a5:be:b3:09:34:b2:42: 4e:f1:a6:ab:e6:0e:7f:3c:d9:37:f5:94:8c:c5:58: 11:d1:42:70:80:eb:e3:46:f0:f3:b3:e4:63:5b:8d: 01:dd:3e:b9:db:4c:fb:a4:ad:e4:c0:bd:c4:9a:81: cf:c7:57:c2:00:42:e0:5c:8c:c9:6b:d6:9e:2c:1b: 38:01:96:0e:98:f6:5b:ce:01:96:1d:f3:4e:32:fe: ef:ca:36:9e:63:40:83:53:c5:b3:e9:8a:49:4d:9b: 10:b2:2f:d8:94:cd:8f:87:8f:c7:e3:3f:b2:87:e7: fe:33:82:72:b4:20:24:dd:85:8f:b2:fa:49:cc:fb: c0:8e:f6:31:5a:05:6f:2f:8d:b3:3f:cb:c9:64:a2: 0f:81:94:41:fd:4d:1a:65:0f:27:6d:e8:50:70:e0: a7:a3:e0:22:7f:33:04:d9:55:ff:ef:8f:e4:04:cd: 4a:9b:2d:44:8f:48:3a:b0:a6:9a:ed:a0:03:c9:74: b5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:95:E0:02:A1:E9:7B:C9:C0:9C:05:43:92:76:4B:36:4E:6A:EE:91 X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:cf:8e:ae:0d:b7:9b:b9:63:e6:00:a5:29:c8:a7:49:58:71: 8f:cb:f9:3e:dc:be:36:cc:09:21:c4:44:fc:18:2d:8d:14:d4: 22:c9:86:5c:d5:e6:e4:73:32:ca:25:52:aa:3d:85:5c:ff:70: 9e:e8:0f:fd:af:d7:31:df:59:f6:27:f5:81:be:3d:b0:a2:e6: c3:9d:32:6a:e0:6c:f4:db:92:30:a5:80:01:13:93:2f:61:e4: a1:a8:07:ad:2e:c6:1c:f6:1e:73:3d:95:11:8f:60:af:b4:d8: d2:82:04:a5:87:cf:4e:62:d1:ee:fe:03:96:16:74:d3:5d:ac: 23:36:5f:16:da:44:b9:21:08:2d:79:4e:19:61:19:48:ba:f2: 7a:a9:31:fc:60:b7:41:14:2c:f4:e9:d1:8d:14:39:7f:19:20: 0d:47:c9:fd:b3:8f:0d:ba:06:67:eb:28:ca:1a:46:30:00:85: 0a:99:f9:19:e5:21:6e:49:f3:2a:f5:67:1f:13:9f:47:5b:7b: b0:47:7c:0a:87:b6:3a:d5:86:b2:6f:f5:01:33:55:8d:b6:ba: 35:dd:c6:5c:3c:cc:75:7b:9b:b7:89:4e:21:4b:7c:e2:b4:84: a0:4f:59:1e:5e:bb:3d:1b:78:53:ff:27:ba:20:db:d8:f7:c2: 84:c7:c6:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUxMDE5MDY0NzQyWhcNMjUxMDI2MDY0NzQyWjAYMRYwFAYD VQQDEw02OGY0ODk4ZS1iMjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15tQ5jbsVHnrKi2J62B3hCqaGuJ9lEn6IPHysz5hA4bgqClf+iKueAIeR3Z0 YaiiYIU4cZqK9wVbvBnRKb0WbsRZHqW+swk0skJO8aar5g5/PNk39ZSMxVgR0UJw gOvjRvDzs+RjW40B3T6520z7pK3kwL3EmoHPx1fCAELgXIzJa9aeLBs4AZYOmPZb zgGWHfNOMv7vyjaeY0CDU8Wz6YpJTZsQsi/YlM2Ph4/H4z+yh+f+M4JytCAk3YWP svpJzPvAjvYxWgVvL42zP8vJZKIPgZRB/U0aZQ8nbehQcOCno+AifzME2VX/74/k BM1Kmy1Ej0g6sKaa7aADyXS12QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECV4AKh 6XvJwJwFQ5J2SzZOau6RMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzz46uDbebuWPmAKUpyKdJWHGPy/k+3L42zAkhxET8GC2NFNQiyYZc 1ebkczLKJVKqPYVc/3Ce6A/9r9cx31n2J/WBvj2woubDnTJq4Gz025IwpYABE5Mv YeShqAetLsYc9h5zPZURj2CvtNjSggSlh89OYtHu/gOWFnTTXawjNl8W2kS5IQgt eU4ZYRlIuvJ6qTH8YLdBFCz06dGNFDl/GSANR8n9s48NugZn6yjKGkYwAIUKmfkZ 5SFuSfMq9WcfE59HW3uwR3wKh7Y61Yayb/UBM1WNtro13cZcPMx1e5u3iU4hS3zi tISgT1keXrs9G3hT/ye6INvY98KEx8Z7 -----END CERTIFICATE-----Generated at Sun Oct 19 23:21:47 2025 by rpki-client