$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: mooZcIf8DhlRpNOk8O74mb4loQDtZT1ZIF74R73uNSc= Subject key identifier: B9:7B:17:82:6F:22:5D:E4:0B:45:A6:48:14:1D:70:35:90:2F:ED:E7 Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: 96 Signing time: Mon 20 Oct 2025 14:16:29 +0000 Manifest this update: Mon 20 Oct 2025 14:16:28 +0000 Manifest next update: Mon 27 Oct 2025 14:16:28 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: cFOFxvKETo09wQ9psFgHg169STcye7NJSkHAqhef1eE=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: cA2l4Bz4w9KwEr1hYRA0GBgp3+TMBDk54SQcEyXzSVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Oct 20 14:16:28 2025 GMT Not After : Oct 27 14:16:28 2025 GMT Subject: CN=68f6443c-c9f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6b:c3:69:03:75:d4:c6:86:89:b8:81:cc:72: 9b:d0:8c:ab:25:d7:8d:b3:98:4c:ad:d7:30:26:d2: 0f:0a:63:ae:a7:bc:3b:fb:d9:18:a3:e9:a3:cd:23: c0:19:94:73:54:94:f6:44:21:24:e4:17:6f:8a:5c: 9a:12:fc:e9:e1:05:79:90:97:33:56:9c:67:a0:94: d8:d4:a9:98:12:2c:d3:c9:81:1a:02:03:8b:5c:f0: 96:53:48:3c:2e:77:47:4d:ac:07:49:21:9e:15:7e: 45:d4:a7:7c:39:9b:98:0d:c4:7c:d0:bd:90:fd:a1: 9c:ff:30:6f:d6:43:88:51:7b:c0:64:dc:85:4e:cd: e3:c3:9d:f5:06:67:5e:cd:e4:8a:07:80:8c:71:bf: 76:9d:a3:a1:32:cd:08:b6:af:36:5f:48:fe:0d:d7: 16:d3:6b:4b:64:cd:d4:8b:e1:f9:c3:dc:e1:00:ac: 8f:8d:33:03:9a:18:d2:45:0c:d1:27:98:4a:d3:0b: 7f:3b:04:28:1d:bc:13:1c:76:91:d8:fe:b9:de:12: 91:aa:fa:a2:25:bd:be:59:bb:35:b3:9a:c4:b4:8a: 6e:5d:cb:cb:99:a3:8f:fa:53:45:72:65:c9:94:2e: ae:9f:fc:bc:9c:18:6e:7c:fd:03:0c:91:2a:45:2e: b6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:7B:17:82:6F:22:5D:E4:0B:45:A6:48:14:1D:70:35:90:2F:ED:E7 X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:e0:21:02:1a:c1:82:16:6a:0d:a4:77:4f:0f:70:d6:ff:5a: ca:6a:63:80:27:07:51:71:1b:9c:98:d0:52:57:99:92:f1:29: a0:f5:17:55:ce:1c:5f:ba:c9:34:9a:d2:c6:fe:20:8b:46:8c: a0:3a:a7:9a:b7:4d:27:f1:d6:52:0f:fe:c2:43:ab:ea:aa:ba: cc:02:e5:50:9b:c0:de:91:7f:de:a8:95:58:d2:ae:94:ae:fd: 35:08:6e:d6:0f:03:03:c3:00:c2:26:10:70:0a:fd:bb:53:35: 22:64:72:83:6a:d6:c9:a1:6f:b5:90:83:c9:d4:e7:e0:ab:da: 63:e6:e9:ca:0c:7d:45:07:03:02:bb:c7:b4:4d:2f:09:d2:47: c8:46:14:84:8a:bb:87:79:e1:86:7d:a2:70:d5:4a:c7:ff:d6: 9b:14:1e:22:4e:b2:6e:7b:17:ab:54:5b:ca:58:87:d5:77:4d: c9:ca:d2:a8:b3:98:b8:bc:45:6f:fb:c3:49:13:18:a8:99:dc: 95:88:f9:16:74:a0:b0:94:1a:85:d3:e6:40:93:14:9a:8c:18: 66:3b:8b:b1:45:84:f9:4b:c2:43:e4:16:49:c1:7a:dc:d5:ea: cf:86:3a:51:cc:30:25:9f:ba:8a:f0:10:4b:61:03:9c:a3:f5: 4b:c3:93:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEEwMjcxOTVBNDgyMEYzRDcyNjRBNEQ1N0VFOUE5RDRD MkExMEM5MjMwHhcNMjUxMDIwMTQxNjI4WhcNMjUxMDI3MTQxNjI4WjAYMRYwFAYD VQQDEw02OGY2NDQzYy1jOWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4GvDaQN11MaGibiBzHKb0IyrJdeNs5hMrdcwJtIPCmOup7w7+9kYo+mjzSPA GZRzVJT2RCEk5BdvilyaEvzp4QV5kJczVpxnoJTY1KmYEizTyYEaAgOLXPCWU0g8 LndHTawHSSGeFX5F1Kd8OZuYDcR80L2Q/aGc/zBv1kOIUXvAZNyFTs3jw531Bmde zeSKB4CMcb92naOhMs0Itq82X0j+DdcW02tLZM3Ui+H5w9zhAKyPjTMDmhjSRQzR J5hK0wt/OwQoHbwTHHaR2P653hKRqvqiJb2+Wbs1s5rEtIpuXcvLmaOP+lNFcmXJ lC6un/y8nBhufP0DDJEqRS62HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLl7F4Jv Il3kC0WmSBQdcDWQL+3nMB8GA1UdIwQYMBaAFKAnGVpIIPPXJkpNV+6anUwqEMkj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS8zNUVEQTkyRUNG MEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5Y21TazFYN3BxZFRDb1F5 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS8zNUVEQTkyRUNGMEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5 Y21TazFYN3BxZFRDb1F5U00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd4CECGsGCFmoNpHdPD3DW/1rKamOAJwdRcRucmNBSV5mS8Smg9RdV zhxfusk0mtLG/iCLRoygOqeat00n8dZSD/7CQ6vqqrrMAuVQm8DekX/eqJVY0q6U rv01CG7WDwMDwwDCJhBwCv27UzUiZHKDatbJoW+1kIPJ1Ofgq9pj5unKDH1FBwMC u8e0TS8J0kfIRhSEiruHeeGGfaJw1UrH/9abFB4iTrJuexerVFvKWIfVd03JytKo s5i4vEVv+8NJExiomdyViPkWdKCwlBqF0+ZAkxSajBhmO4uxRYT5S8JD5BZJwXrc 1erPhjpRzDAln7qK8BBLYQOco/VLw5Mk -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:35 2025 by rpki-client