$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: yeC3hswpC7kAIElsZmlnvc719aLN5feGF7FNBP0b2h4= Subject key identifier: 05:5B:2B:30:1B:6A:87:24:5B:75:46:DF:81:42:2D:D4:13:5C:C1:2B Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 35B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 354D Signing time: Sat 18 Oct 2025 14:54:32 +0000 Manifest this update: Sat 18 Oct 2025 14:54:31 +0000 Manifest next update: Sat 25 Oct 2025 14:54:31 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: tQFvc9VcKzIyNN3o/HjAfXLraNnvYYdoyzTih+/nlio=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: Rp2RG1hF6yB5oGrywiGWXTiVHqNq8sdwd+lk50rYEfg=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: g01plAkOdieV4NPIP7/omEljoKEhVOT/UK1CPH/JcfQ=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: BrIt4ULt/nWqzogqGuBCD8Hp7rvk2fEABSPjkLFLvVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13745 (0x35b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Oct 18 14:54:31 2025 GMT Not After : Oct 25 14:54:31 2025 GMT Subject: CN=68f3aa28-65de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:22:3d:cf:1b:8f:59:d1:ac:64:89:f2:34:89: 8f:ce:d1:d7:52:df:a2:73:49:05:92:18:b6:71:3a: f5:43:f4:11:6c:be:9d:46:bb:6c:21:91:68:b1:e7: 3a:87:45:1a:96:f2:00:ef:84:67:f2:7b:65:d4:69: f9:01:d8:57:a7:a5:05:eb:ea:a4:1b:ce:9a:a7:a1: d8:d4:d7:2b:39:1e:9e:ef:3c:7e:0d:0a:08:81:ea: 7d:73:9b:dd:16:3f:3a:2d:c6:95:e7:47:bc:03:4a: 60:8e:e2:22:dd:a2:9e:a6:5b:80:fd:05:9d:ba:d7: 58:5d:3a:d2:62:0e:e4:ae:31:fa:0a:cf:5a:ed:f5: c3:64:42:00:4b:7d:84:f0:20:58:e7:9a:17:bb:72: 1b:f0:b7:46:44:25:08:6c:d1:37:62:e8:9d:6f:89: 28:9a:68:fb:37:71:63:e6:b7:70:1f:fc:0c:e4:10: ba:5f:23:0f:5b:e1:c1:05:32:4b:03:89:f9:02:2c: 77:a1:9c:b4:e3:35:44:ee:3f:bd:cf:ab:b6:e8:bb: 84:4e:d6:8d:4b:8e:db:19:7e:38:55:15:46:29:0b: ca:83:4e:7f:e3:a0:f3:c8:61:24:f1:c4:81:d6:81: 4d:e4:31:51:59:cf:f6:e5:05:2d:07:fc:82:46:aa: 75:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:5B:2B:30:1B:6A:87:24:5B:75:46:DF:81:42:2D:D4:13:5C:C1:2B X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:b9:57:3a:1a:e4:63:88:dd:f7:9d:35:4d:0a:0b:c0:b6:b3: 94:3a:a8:63:65:6e:7c:b2:97:ae:d5:ae:05:39:55:bb:6d:91: d8:80:89:a1:8b:2a:43:28:ef:98:ae:ca:ab:34:14:6b:ec:5a: d3:5f:57:8b:e0:f2:c8:3b:23:d0:5c:d8:74:5d:21:9b:3a:16: 3b:91:5d:c9:ca:b9:fd:30:de:9f:03:58:d0:95:fb:53:b4:23: f9:0a:e1:2a:c6:52:dd:fb:58:90:66:20:81:7b:e3:a7:93:59: 48:d6:80:0b:07:ff:4f:ce:aa:1b:3e:5b:b9:82:6e:31:63:4a: 01:d3:e0:a1:d5:c3:18:e9:a6:8e:6a:f6:85:d4:6d:36:50:ac: 00:c1:f8:68:04:55:78:9a:c6:c9:ac:18:58:39:d6:67:0e:52: 1c:e6:b1:29:b3:e3:a7:37:04:bd:9c:67:7f:90:6f:05:ed:3f: 05:ec:fb:e3:17:78:ed:d6:f2:4c:08:87:33:bb:95:04:51:7c: 41:d3:8a:1b:72:f7:3d:7c:9e:f1:f5:b7:6c:90:53:9a:f8:1f: 38:f9:4c:ae:ee:48:cc:44:40:be:d4:70:33:e2:a2:0a:ee:e5: 60:82:78:1c:da:38:5b:d0:42:cf:ba:4d:59:ef:f5:7f:64:41: ec:fb:e1:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUxMDE4MTQ1NDMxWhcNMjUxMDI1MTQ1NDMxWjAYMRYwFAYD VQQDEw02OGYzYWEyOC02NWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiI9zxuPWdGsZInyNImPztHXUt+ic0kFkhi2cTr1Q/QRbL6dRrtsIZFosec6 h0UalvIA74Rn8ntl1Gn5AdhXp6UF6+qkG86ap6HY1NcrOR6e7zx+DQoIgep9c5vd Fj86LcaV50e8A0pgjuIi3aKepluA/QWdutdYXTrSYg7krjH6Cs9a7fXDZEIAS32E 8CBY55oXu3Ib8LdGRCUIbNE3Yuidb4kommj7N3Fj5rdwH/wM5BC6XyMPW+HBBTJL A4n5Aix3oZy04zVE7j+9z6u26LuETtaNS47bGX44VRVGKQvKg05/46DzyGEk8cSB 1oFN5DFRWc/25QUtB/yCRqp18wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVbKzAb aockW3VG34FCLdQTXMErMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMuVc6GuRjiN33nTVNCgvAtrOUOqhjZW58speu1a4FOVW7bZHYgImh iypDKO+YrsqrNBRr7FrTX1eL4PLIOyPQXNh0XSGbOhY7kV3Jyrn9MN6fA1jQlftT tCP5CuEqxlLd+1iQZiCBe+Onk1lI1oALB/9PzqobPlu5gm4xY0oB0+Ch1cMY6aaO avaF1G02UKwAwfhoBFV4msbJrBhYOdZnDlIc5rEps+OnNwS9nGd/kG8F7T8F7Pvj F3jt1vJMCIczu5UEUXxB04obcvc9fJ7x9bdskFOa+B84+Uyu7kjMREC+1HAz4qIK 7uVggngc2jhb0ELPuk1Z7/V/ZEHs++EL -----END CERTIFICATE-----Generated at Mon Oct 20 10:13:13 2025 by rpki-client