$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: 99B3Ts1FIB3ARahHgVzBt8olcYKLSm8REQv0Nc32pRI= Subject key identifier: 35:B5:9D:68:58:0C:BC:B6:2B:CA:6C:AA:48:33:ED:90:02:AD:01:FF Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 0213 Signing time: Sun 19 Oct 2025 04:31:35 +0000 Manifest this update: Sun 19 Oct 2025 04:31:35 +0000 Manifest next update: Sun 26 Oct 2025 04:31:35 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: d8UFmBdiicoo3eziaIWi3oMRuZwJZjDgySVklGVBkqA=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: KfdVVRr1UwfhsTtUMM0Ph6w9qtVR9qcrLdXdVzGndCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Oct 19 04:31:35 2025 GMT Not After : Oct 26 04:31:35 2025 GMT Subject: CN=68f469a7-0632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3f:79:9c:73:2e:46:2e:14:09:ed:90:15:fa: 4a:59:3b:3c:a8:f3:cc:e6:fd:1a:d0:f1:bf:06:b3: 92:ca:7f:7c:70:7d:7d:df:47:eb:8a:99:86:11:25: 51:6e:d8:a1:99:7e:3d:7e:45:5a:d7:16:74:31:49: d7:3f:32:c5:f3:52:0e:95:90:ef:63:12:e6:4d:d3: a3:1e:fc:01:ae:ff:fa:ee:e5:a4:e4:fd:e1:ab:fb: 93:39:bb:15:ee:57:c7:09:30:5c:6a:21:1d:cf:6a: c8:8a:32:2f:4d:64:16:70:4f:ff:11:df:dd:27:61: df:34:94:00:06:0a:e4:3a:55:53:76:28:3b:29:4a: ee:de:25:a4:fb:27:37:aa:6a:60:97:d3:64:18:74: 02:e2:7e:69:f3:09:ca:de:09:d2:53:3f:bd:93:f5: 3d:3e:d0:91:f7:b4:64:eb:52:1a:f1:a9:34:2f:a9: 2e:60:ef:09:9c:df:ef:98:93:b5:6b:7c:49:e6:ce: 42:9d:79:f8:5f:f4:64:4c:25:91:16:73:f0:d8:c1: b5:44:38:b9:a5:a4:84:c5:69:85:1c:da:39:68:f6: 19:b1:8f:c3:e7:d6:6e:b2:2c:92:14:d9:e7:09:2d: a8:16:60:85:79:96:62:c3:81:69:b8:41:b9:96:c2: a2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B5:9D:68:58:0C:BC:B6:2B:CA:6C:AA:48:33:ED:90:02:AD:01:FF X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:e0:67:12:4d:32:f0:01:8d:cf:57:b3:d7:3b:97:30:fe:de: 73:b1:e3:ca:85:5b:aa:65:d8:6f:98:46:64:32:6b:90:36:5d: d5:9f:26:52:47:aa:7e:4d:11:23:34:07:a1:f2:ef:31:3f:f7: 50:99:a4:23:b7:e0:9b:b1:00:d3:e4:30:9e:c6:cb:25:2f:b2: b5:0c:64:ac:18:e4:30:f8:d9:c6:b0:b0:de:f8:96:fe:53:2c: e6:b3:7d:03:21:10:32:e8:8b:ce:d5:dc:f4:41:b4:f6:3f:32: 35:df:f0:fd:cd:96:b6:18:36:8c:27:20:87:f6:9c:f7:fb:cf: 25:dd:19:85:16:f9:c1:e5:3f:f3:5f:fd:c0:eb:f9:a4:10:c6: 79:20:a5:6a:87:df:ac:9e:85:e0:71:43:09:c8:28:f5:ea:3a: 02:50:b3:ba:30:85:77:67:38:6c:f9:04:0f:58:bd:82:68:9f: c1:82:a7:57:54:fa:a6:e6:3a:c5:79:fe:9f:5c:ad:35:f6:de: 44:dd:5c:fb:5f:06:03:bc:a9:7d:b8:9e:0d:a8:10:80:e4:5a: be:7b:a0:08:77:f9:7e:43:e2:1b:c9:24:8a:02:f5:39:ab:e1: 31:c5:9b:cc:99:20:ad:15:b8:5c:aa:0c:52:94:09:a9:85:07: 38:17:5f:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUxMDE5MDQzMTM1WhcNMjUxMDI2MDQzMTM1WjAYMRYwFAYD VQQDEw02OGY0NjlhNy0wNjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzz95nHMuRi4UCe2QFfpKWTs8qPPM5v0a0PG/BrOSyn98cH1930fripmGESVR btihmX49fkVa1xZ0MUnXPzLF81IOlZDvYxLmTdOjHvwBrv/67uWk5P3hq/uTObsV 7lfHCTBcaiEdz2rIijIvTWQWcE//Ed/dJ2HfNJQABgrkOlVTdig7KUru3iWk+yc3 qmpgl9NkGHQC4n5p8wnK3gnSUz+9k/U9PtCR97Rk61Ia8ak0L6kuYO8JnN/vmJO1 a3xJ5s5CnXn4X/RkTCWRFnPw2MG1RDi5paSExWmFHNo5aPYZsY/D59ZusiySFNnn CS2oFmCFeZZiw4FpuEG5lsKiFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDW1nWhY DLy2K8psqkgz7ZACrQH/MB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ4GcSTTLwAY3PV7PXO5cw/t5zsePKhVuqZdhvmEZkMmuQNl3VnyZS R6p+TREjNAeh8u8xP/dQmaQjt+CbsQDT5DCexsslL7K1DGSsGOQw+NnGsLDe+Jb+ Uyzms30DIRAy6IvO1dz0QbT2PzI13/D9zZa2GDaMJyCH9pz3+88l3RmFFvnB5T/z X/3A6/mkEMZ5IKVqh9+snoXgcUMJyCj16joCULO6MIV3Zzhs+QQPWL2CaJ/BgqdX VPqm5jrFef6fXK019t5E3Vz7XwYDvKl9uJ4NqBCA5Fq+e6AId/l+Q+IbySSKAvU5 q+ExxZvMmSCtFbhcqgxSlAmphQc4F18G -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:12 2025 by rpki-client