$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: +4xmt41/anDhgYCuK8DJRQBiRSWf1Y3Kvjf36Ks9pms= Subject key identifier: 0B:3B:26:3E:23:3F:0C:D0:7F:4F:A3:17:05:7D:C1:13:15:AD:D3:0E Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 0167 Signing time: Sun 19 Oct 2025 06:51:22 +0000 Manifest this update: Sun 19 Oct 2025 06:51:21 +0000 Manifest next update: Sun 26 Oct 2025 06:51:21 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: eCcAEleFeJLiyBOzj3hWzCsjv0wv+x63xusUDicm70c=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: NmyQHlBil47JzTSCPQYz/6ZBa9AnAtiDqsHIcZPO3dA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: Oct 19 06:51:21 2025 GMT Not After : Oct 26 06:51:21 2025 GMT Subject: CN=68f48a6a-44dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:58:2a:93:11:96:e5:fb:01:86:b2:20:dd:3c: ce:e8:50:80:a0:e3:d9:4e:35:f0:ea:4e:db:a5:59: 2b:1b:72:5f:3c:af:89:89:a8:de:56:43:6d:94:6f: 56:77:71:bb:5b:59:d2:f6:28:e5:c6:8b:78:fd:7a: fe:ab:51:2c:ad:5f:5d:86:3a:56:8c:9b:20:e8:57: 57:45:93:25:f6:27:cd:d6:85:6c:39:2b:69:30:97: c4:be:86:55:fd:b7:7a:fa:91:1f:89:51:0b:0d:b4: 1e:f5:06:c8:6e:2d:84:f0:da:3f:72:70:38:f1:c6: eb:e9:ca:a5:66:df:d6:76:03:2e:9e:27:56:04:ff: bd:86:c0:97:34:93:47:07:c8:3b:53:29:4a:0a:16: 12:4f:90:b5:3c:64:09:c3:38:f9:21:6c:df:ae:c0: 0b:62:c5:78:ce:bc:20:d1:8d:8d:70:46:cd:37:c3: 87:bc:da:e6:48:51:0f:a5:ee:c0:37:b6:63:a5:1d: 5b:3f:be:34:c1:9e:88:64:05:80:1b:ac:3f:ba:89: 4b:e2:b3:0d:19:43:62:86:9d:f7:39:ec:49:9f:07: 12:ed:67:ca:6f:40:23:6d:59:be:9a:9a:02:5f:d1: 0f:27:f1:64:0d:f0:71:2c:15:d3:9c:7a:4b:99:2f: ce:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:3B:26:3E:23:3F:0C:D0:7F:4F:A3:17:05:7D:C1:13:15:AD:D3:0E X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:43:59:9a:83:43:77:2f:38:b0:ef:5e:c0:ab:54:36:d4:68: 0a:0b:37:82:82:0e:43:80:f7:96:eb:fe:df:aa:8d:ae:77:43: 83:c6:1b:c0:5b:32:90:51:a8:46:91:ae:69:3d:0a:ab:13:cf: 04:f6:94:b4:49:5c:6f:bb:e8:17:31:61:51:28:4b:d0:e1:7a: b6:c5:3a:c7:08:9c:8d:a1:a8:58:8a:6c:69:e3:ee:38:b8:fb: c5:e4:6e:61:b2:a9:46:56:64:a2:aa:41:8b:98:7f:a2:3f:bf: 87:0f:7d:c7:ef:8d:9a:b4:42:a0:d5:72:4e:03:a2:91:88:3f: 67:89:46:90:aa:82:6c:8c:a7:22:19:55:07:ed:20:28:1b:1e: cf:24:e3:ea:6e:b5:0d:0d:96:4b:23:65:3a:66:fe:a6:f0:b5: 11:a9:a5:da:dd:58:71:a0:31:7b:b7:75:88:e1:20:3a:c7:08: 5b:7a:6c:2c:4c:6b:8c:e2:24:cb:89:c2:76:27:fe:d5:b9:f4: 19:70:94:0d:4e:e2:4f:bb:08:5d:d2:bd:e1:26:24:55:57:b6: 4c:09:d9:46:6f:46:39:ec:1b:99:b1:cf:00:58:65:77:65:d1: 0b:0d:1c:c3:e7:00:72:a4:15:e1:b6:5e:04:bc:1e:00:52:18: 88:e7:f5:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjUxMDE5MDY1MTIxWhcNMjUxMDI2MDY1MTIxWjAYMRYwFAYD VQQDEw02OGY0OGE2YS00NGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VgqkxGW5fsBhrIg3TzO6FCAoOPZTjXw6k7bpVkrG3JfPK+JiajeVkNtlG9W d3G7W1nS9ijlxot4/Xr+q1EsrV9dhjpWjJsg6FdXRZMl9ifN1oVsOStpMJfEvoZV /bd6+pEfiVELDbQe9QbIbi2E8No/cnA48cbr6cqlZt/WdgMunidWBP+9hsCXNJNH B8g7UylKChYST5C1PGQJwzj5IWzfrsALYsV4zrwg0Y2NcEbNN8OHvNrmSFEPpe7A N7ZjpR1bP740wZ6IZAWAG6w/uolL4rMNGUNihp33OexJnwcS7WfKb0AjbVm+mpoC X9EPJ/FkDfBxLBXTnHpLmS/OSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAs7Jj4j PwzQf0+jFwV9wRMVrdMOMB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlCMC8xNEM5NDk2RTlGM0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0x T1BYSkdqU3piT2NZZWQyMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtQ1mag0N3Lziw717Aq1Q21GgKCzeCgg5DgPeW6/7fqo2ud0ODxhvA WzKQUahGka5pPQqrE88E9pS0SVxvu+gXMWFRKEvQ4Xq2xTrHCJyNoahYimxp4+44 uPvF5G5hsqlGVmSiqkGLmH+iP7+HD33H742atEKg1XJOA6KRiD9niUaQqoJsjKci GVUH7SAoGx7PJOPqbrUNDZZLI2U6Zv6m8LURqaXa3VhxoDF7t3WI4SA6xwhbemws TGuM4iTLicJ2J/7VufQZcJQNTuJPuwhd0r3hJiRVV7ZMCdlGb0Y57BuZsc8AWGV3 ZdELDRzD5wBypBXhtl4EvB4AUhiI5/Ut -----END CERTIFICATE-----Generated at Mon Oct 20 16:05:14 2025 by rpki-client