$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: DguMjuf055cDoEdxbhZZSvYacm8NWCl3AVkPdOX4PFY= Subject key identifier: F6:64:73:A1:07:4E:B5:62:6A:D7:21:49:BB:F0:8C:3B:A5:EF:01:4E Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 30A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 3071 Signing time: Sat 18 Oct 2025 15:38:10 +0000 Manifest this update: Sat 18 Oct 2025 15:38:09 +0000 Manifest next update: Sat 25 Oct 2025 15:38:09 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: 97qoSG+/43nTQbopkq8oizCiy+FgZ+n/ry6xlwmbsgo=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: 1eHb69O06VCoxBVFTjIxU1eZxUsYuasvDB2d3Sv1+IY=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: Q3pwtlHxQOfBNfjg0rXQ1DaKhtCgPEj+Sbwz9SrcaHA=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: wILFdeIGXMZ8VMyQoHGFHEc5EcgVL0MxaSOGHfY+WMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12450 (0x30a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Oct 18 15:38:09 2025 GMT Not After : Oct 25 15:38:09 2025 GMT Subject: CN=68f3b461-d3f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0a:63:9a:71:8a:02:09:5a:37:79:a1:7b:63: dc:31:fd:4c:ae:71:50:c2:8c:28:75:8e:71:97:ae: 3e:f8:82:2d:58:81:d4:c3:45:cf:9f:e4:fc:34:a3: dd:c8:7f:79:c2:15:66:92:02:67:fb:60:65:09:00: 10:cb:22:4c:37:c3:93:1a:3c:c4:64:6b:85:32:7a: c4:6f:1a:76:3b:bc:01:24:c2:d3:e8:ba:33:ee:14: 50:ad:43:8b:75:15:95:42:c1:45:52:b7:64:cf:0e: 0b:61:4f:bb:8e:40:0f:f3:e9:19:8b:2d:a9:ef:05: f2:c3:39:b7:77:d9:4a:5e:8b:2d:97:50:20:2e:e8: 32:6e:b4:57:58:d8:7a:9b:19:6f:9a:82:3b:d2:65: 94:8d:de:2c:3b:20:8d:e8:2a:55:eb:62:d2:c1:de: 9d:b0:d5:2d:b0:f0:22:5e:d6:63:52:e0:cd:f2:4e: 55:7e:18:4e:af:84:f8:a9:ec:4b:d8:23:ba:fa:14: ea:70:1c:88:5e:d4:da:4a:b2:54:e0:f6:f2:58:a7: 65:8c:56:e1:3e:90:54:8c:7a:85:e2:e5:aa:a3:b8: 65:74:0b:3b:bb:f6:a3:28:7d:1e:bb:fc:eb:ea:58: fd:66:2a:7f:c8:ea:8c:0b:b7:29:4f:ef:78:cb:5c: 53:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:64:73:A1:07:4E:B5:62:6A:D7:21:49:BB:F0:8C:3B:A5:EF:01:4E X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:db:dd:b9:b2:92:50:73:8a:0c:55:f0:8c:27:04:30:87:d8: 75:53:19:29:b1:14:e0:48:e4:58:5b:c2:13:29:34:1f:ca:fb: 91:4c:ed:95:23:bc:62:1e:70:a5:9c:5e:23:d1:ef:79:eb:95: 3a:e7:8f:3b:14:c6:a4:49:b0:d3:cb:d1:8c:24:a8:e0:0b:d4: 33:a7:be:ac:28:09:22:70:f5:15:2a:c6:31:58:97:51:e7:d9: ed:c2:f7:b0:e6:1f:09:c8:1a:e6:48:5f:13:62:c0:02:b8:cc: 8c:e0:64:bb:f6:b3:ac:25:21:fd:0d:9a:aa:88:57:f7:cc:d2: 61:94:86:6e:44:b5:52:1e:71:f9:ca:eb:e9:e7:be:4a:43:bf: dc:eb:65:4f:f7:e8:04:bb:7d:dc:27:d5:48:05:b6:f7:88:a6: 51:bf:c9:95:9d:d1:64:24:d1:fc:7c:9b:eb:0a:79:7f:a7:e5: 4c:e9:9a:9d:25:99:96:55:e7:29:b0:99:43:f4:0f:ea:05:92: 0a:f7:fe:37:7d:a4:98:7d:cf:6d:bd:83:34:88:96:e8:f6:69: 0a:1b:b1:24:c1:76:62:f2:2c:62:03:7c:38:ad:ec:9c:15:43: ae:55:d2:b2:ba:d2:c5:bc:ca:0e:b2:49:92:99:89:5c:ce:41: 0d:87:58:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUxMDE4MTUzODA5WhcNMjUxMDI1MTUzODA5WjAYMRYwFAYD VQQDEw02OGYzYjQ2MS1kM2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgpjmnGKAglaN3mhe2PcMf1MrnFQwowodY5xl64++IItWIHUw0XPn+T8NKPd yH95whVmkgJn+2BlCQAQyyJMN8OTGjzEZGuFMnrEbxp2O7wBJMLT6Loz7hRQrUOL dRWVQsFFUrdkzw4LYU+7jkAP8+kZiy2p7wXywzm3d9lKXostl1AgLugybrRXWNh6 mxlvmoI70mWUjd4sOyCN6CpV62LSwd6dsNUtsPAiXtZjUuDN8k5VfhhOr4T4qexL 2CO6+hTqcByIXtTaSrJU4PbyWKdljFbhPpBUjHqF4uWqo7hldAs7u/ajKH0eu/zr 6lj9Zip/yOqMC7cpT+94y1xTwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZkc6EH TrViatchSbvwjDul7wFOMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp2925spJQc4oMVfCMJwQwh9h1UxkpsRTgSORYW8ITKTQfyvuRTO2V I7xiHnClnF4j0e9565U65487FMakSbDTy9GMJKjgC9Qzp76sKAkicPUVKsYxWJdR 59ntwvew5h8JyBrmSF8TYsACuMyM4GS79rOsJSH9DZqqiFf3zNJhlIZuRLVSHnH5 yuvp575KQ7/c62VP9+gEu33cJ9VIBbb3iKZRv8mVndFkJNH8fJvrCnl/p+VM6Zqd JZmWVecpsJlD9A/qBZIK9/43faSYfc9tvYM0iJbo9mkKG7EkwXZi8ixiA3w4reyc FUOuVdKyutLFvMoOskmSmYlczkENh1jm -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:30 2025 by rpki-client