$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: DLnfx7E0V+jbh7bXDxmFWnaFY1vSb5xAwW1NXWAf8vo= Subject key identifier: 53:01:72:A3:D1:3F:59:F0:2C:76:9E:E7:C4:EA:16:C2:65:C8:F7:F7 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 015E Signing time: Sun 19 Oct 2025 06:43:14 +0000 Manifest this update: Sun 19 Oct 2025 06:43:13 +0000 Manifest next update: Sun 26 Oct 2025 06:43:13 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: +gtA8de/egouCS2XIX5AIpw9aTuuIkTx2R5bNYnXU6E=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Oct 19 06:43:13 2025 GMT Not After : Oct 26 06:43:13 2025 GMT Subject: CN=68f48881-9254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:86:65:95:1b:3e:0f:14:e8:0d:17:d7:4e:5a: fe:0e:d2:8b:06:6c:6c:20:8f:dd:1e:0f:dc:c3:e6: 60:f0:cf:2a:79:25:7a:4a:f1:b0:42:14:7a:1b:8e: 9d:79:35:66:d3:61:1e:2b:22:0a:66:3c:82:fb:e6: a1:1f:6f:99:2f:75:e6:2b:48:7e:ec:bb:43:ef:b7: ce:60:a6:70:10:07:31:89:1b:47:15:cd:8f:67:3e: ca:3a:cc:4c:ad:21:e3:af:dd:d8:6d:25:3a:b5:1f: e6:4a:8a:9c:1d:09:06:07:76:8d:28:19:e7:7e:16: 55:26:9d:67:e9:6d:be:c3:5e:cb:61:64:76:18:16: e6:7f:5d:2d:58:fa:44:d8:55:3b:97:b9:e7:26:08: d5:40:4a:7f:1b:8c:b6:0b:17:c4:d9:8e:bd:71:f0: 27:0b:d6:ac:c4:4b:f6:e2:b0:52:77:0c:8f:ca:a8: 27:f5:7b:27:90:8f:e0:3d:6f:d6:44:4b:53:59:f9: 2f:08:87:08:d5:64:0b:2b:27:13:ef:ca:87:f4:2c: 7a:82:f3:02:4c:4f:0b:cb:bf:f4:63:42:b1:17:39: 76:5f:a6:07:24:c6:b5:4f:6b:31:d7:0f:52:fc:e8: fd:b9:22:bf:23:a6:38:18:b6:7f:93:40:69:a8:01: f5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:01:72:A3:D1:3F:59:F0:2C:76:9E:E7:C4:EA:16:C2:65:C8:F7:F7 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:8d:5b:05:f5:ec:a1:c6:6b:dd:1d:33:53:52:14:9c:aa:56: d1:65:ff:db:1f:62:47:97:69:b8:c1:db:cf:38:8a:69:63:90: ba:f1:d5:57:6b:ef:1f:f9:16:29:d9:8e:84:45:4a:34:56:c5: 29:a8:1f:4c:9c:26:44:af:21:d2:da:20:3d:f6:f1:c0:14:cc: e8:d5:f6:48:c4:5b:32:e0:c9:d9:b5:f4:24:2f:f7:fe:de:b6: 50:bc:4d:88:fe:c4:8a:04:e0:c0:9b:1d:91:e7:9c:96:19:5f: cd:9f:62:e0:ff:98:56:2d:c7:f0:91:b5:7d:78:8e:8e:1e:60: 0c:77:63:26:18:72:9a:11:89:a3:a5:c1:b0:1f:53:27:23:84: 97:e5:61:76:5d:bc:f9:2d:26:21:06:99:f9:8e:0f:9f:5e:a4: 4e:e6:f3:a5:5c:08:c4:0f:ad:fd:f1:11:3c:5f:a5:43:48:a2: 35:37:59:7b:0c:96:21:ac:10:2d:5e:f8:f3:6e:75:68:0c:02: 32:3f:a5:7e:8a:d0:30:88:0b:aa:5c:f7:28:34:c7:4e:43:6c: 9b:15:ba:e2:47:9c:2f:b5:83:3f:76:dc:27:d7:05:88:95:2a: 27:fa:63:a8:20:4c:aa:fd:f3:2c:a8:27:22:b9:17:f6:47:ae: 58:9e:34:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUxMDE5MDY0MzEzWhcNMjUxMDI2MDY0MzEzWjAYMRYwFAYD VQQDEw02OGY0ODg4MS05MjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6IZllRs+DxToDRfXTlr+DtKLBmxsII/dHg/cw+Zg8M8qeSV6SvGwQhR6G46d eTVm02EeKyIKZjyC++ahH2+ZL3XmK0h+7LtD77fOYKZwEAcxiRtHFc2PZz7KOsxM rSHjr93YbSU6tR/mSoqcHQkGB3aNKBnnfhZVJp1n6W2+w17LYWR2GBbmf10tWPpE 2FU7l7nnJgjVQEp/G4y2CxfE2Y69cfAnC9asxEv24rBSdwyPyqgn9XsnkI/gPW/W REtTWfkvCIcI1WQLKycT78qH9Cx6gvMCTE8Ly7/0Y0KxFzl2X6YHJMa1T2sx1w9S /Oj9uSK/I6Y4GLZ/k0BpqAH1jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMBcqPR P1nwLHae58TqFsJlyPf3MB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTjVsF9eyhxmvdHTNTUhScqlbRZf/bH2JHl2m4wdvPOIppY5C68dVX a+8f+RYp2Y6ERUo0VsUpqB9MnCZEryHS2iA99vHAFMzo1fZIxFsy4MnZtfQkL/f+ 3rZQvE2I/sSKBODAmx2R55yWGV/Nn2Lg/5hWLcfwkbV9eI6OHmAMd2MmGHKaEYmj pcGwH1MnI4SX5WF2Xbz5LSYhBpn5jg+fXqRO5vOlXAjED6398RE8X6VDSKI1N1l7 DJYhrBAtXvjzbnVoDAIyP6V+itAwiAuqXPcoNMdOQ2ybFbriR5wvtYM/dtwn1wWI lSon+mOoIEyq/fMsqCciuRf2R65YnjTZ -----END CERTIFICATE-----Generated at Mon Oct 20 19:26:02 2025 by rpki-client