$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: fo3zRCIO7lK/gUy/D8Z+t5MQ8c1FG+jklS2a7Mr2Qb8= Subject key identifier: 27:66:4C:6F:20:8B:6F:CF:81:0E:51:F0:BD:57:DD:B6:36:B1:33:8B Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 3364 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 330E Signing time: Sat 18 Oct 2025 15:35:18 +0000 Manifest this update: Sat 18 Oct 2025 15:35:18 +0000 Manifest next update: Sat 25 Oct 2025 15:35:18 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: hSKszH2g6up3SzuPeT3PGEa2TrU/9tio+4KoZJ5K13o=) 2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=) 3: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=) 4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=) 5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13156 (0x3364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Oct 18 15:35:18 2025 GMT Not After : Oct 25 15:35:18 2025 GMT Subject: CN=68f3b3b6-8680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:aa:a3:0b:2d:9e:80:61:3b:c7:88:06:cc:99: 88:81:db:1f:ff:51:ab:b1:89:ba:50:8c:83:be:2b: b2:ee:da:47:7b:66:01:a8:82:11:4c:36:60:84:43: 8b:f0:a7:e8:5e:4c:24:f7:78:e6:25:5b:27:28:86: 86:37:a1:55:46:d1:18:ec:d5:f4:07:db:a6:be:5b: e6:47:56:55:9a:a8:aa:ea:f7:b5:d8:e0:0f:2a:10: 7c:a0:9a:4a:74:67:02:8e:7a:c2:99:98:3d:e4:f6: da:3c:16:f4:52:98:4a:bf:51:9a:19:d2:c9:30:d3: 7e:95:e1:df:9f:a6:f8:02:c6:dc:2a:89:98:20:93: e2:e5:0e:17:80:0a:f3:91:4b:7f:a5:0e:3f:80:0e: 36:5b:8e:a3:7e:11:7b:5c:bd:0b:5e:92:b1:65:ec: be:60:7d:58:ee:ee:4d:ea:25:30:cb:93:ec:1f:ff: 8f:41:d9:4b:e8:15:4d:5e:7f:4e:67:de:90:36:0a: 50:f7:82:92:52:ba:9c:c0:fe:31:dd:dc:bd:71:7d: e9:1c:a2:ca:1d:ef:be:36:80:f9:de:e0:e9:5a:af: 71:3a:4c:1b:57:85:2e:98:ae:22:cf:f4:85:36:50: d3:1b:c8:61:cc:1a:2e:13:06:38:d0:6a:4d:f9:79: 8f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:66:4C:6F:20:8B:6F:CF:81:0E:51:F0:BD:57:DD:B6:36:B1:33:8B X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:a9:b8:83:4a:f8:66:77:00:89:66:08:26:d1:ce:0e:ef:87: c2:6a:b6:c4:5e:02:63:99:36:62:21:c2:b6:a7:b9:d9:d3:d2: eb:c7:07:a5:fc:61:d2:01:7e:d0:67:f0:fd:c7:d8:ee:86:d2: c5:d9:4d:a0:23:98:c6:21:02:9e:bd:3b:ed:57:ce:67:84:f3: de:52:37:f0:85:32:8d:79:ae:11:e8:ad:10:ef:8f:08:73:da: 64:f6:b9:cb:4c:d3:5e:2d:47:72:b7:48:8c:1a:a2:fc:14:15: 0b:73:0f:80:d1:1f:0f:19:80:60:ae:09:b5:80:8a:86:59:8d: 97:02:73:61:1a:bc:9f:2c:49:e8:bf:92:25:eb:56:1c:73:98: 48:d7:02:94:f6:1e:a9:65:1b:3e:c4:09:32:1b:c3:cb:67:b3: d3:33:91:48:de:97:07:85:9e:28:c4:75:e9:38:60:07:fe:fc: 02:9c:9b:d3:06:58:74:67:6e:21:3a:33:81:b6:e7:52:48:95: 82:63:7b:be:2b:61:39:7f:a6:e7:cd:b9:98:7a:5f:bc:39:28: 05:93:6e:2b:3d:1c:52:be:0a:09:51:6b:3c:b8:09:c3:22:78: 7e:c2:5c:22:e2:47:7f:75:bd:89:df:a2:6c:d6:0f:4c:1c:4f: cc:01:be:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUxMDE4MTUzNTE4WhcNMjUxMDI1MTUzNTE4WjAYMRYwFAYD VQQDEw02OGYzYjNiNi04NjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qqjCy2egGE7x4gGzJmIgdsf/1GrsYm6UIyDviuy7tpHe2YBqIIRTDZghEOL 8KfoXkwk93jmJVsnKIaGN6FVRtEY7NX0B9umvlvmR1ZVmqiq6ve12OAPKhB8oJpK dGcCjnrCmZg95PbaPBb0UphKv1GaGdLJMNN+leHfn6b4AsbcKomYIJPi5Q4XgArz kUt/pQ4/gA42W46jfhF7XL0LXpKxZey+YH1Y7u5N6iUwy5PsH/+PQdlL6BVNXn9O Z96QNgpQ94KSUrqcwP4x3dy9cX3pHKLKHe++NoD53uDpWq9xOkwbV4UumK4iz/SF NlDTG8hhzBouEwY40GpN+XmPYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdmTG8g i2/PgQ5R8L1X3bY2sTOLMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQqbiDSvhmdwCJZggm0c4O74fCarbEXgJjmTZiIcK2p7nZ09Lrxwel /GHSAX7QZ/D9x9juhtLF2U2gI5jGIQKevTvtV85nhPPeUjfwhTKNea4R6K0Q748I c9pk9rnLTNNeLUdyt0iMGqL8FBULcw+A0R8PGYBgrgm1gIqGWY2XAnNhGryfLEno v5Il61Ycc5hI1wKU9h6pZRs+xAkyG8PLZ7PTM5FI3pcHhZ4oxHXpOGAH/vwCnJvT Blh0Z24hOjOBtudSSJWCY3u+K2E5f6bnzbmYel+8OSgFk24rPRxSvgoJUWs8uAnD Inh+wlwi4kd/db2J36Js1g9MHE/MAb5j -----END CERTIFICATE-----Generated at Mon Oct 20 07:59:01 2025 by rpki-client