$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft File: oUDUgGrgz2DnP-FYvyQvOag60AU.mft (raw, json) Hash identifier: phIqvWByRMs7orqlwu/jEfAzBC1M5eAi3mG+oNZcktc= Subject key identifier: AE:96:EC:12:66:7C:68:C1:D1:DE:33:06:1E:E0:7D:9A:AA:50:C5:9C Authority key identifier: A1:40:D4:80:6A:E0:CF:60:E7:3F:E1:58:BF:24:2F:39:A8:3A:D0:05 Certificate issuer: /CN=A91E1B78/serialNumber=A140D4806AE0CF60E73FE158BF242F39A83AD005 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft Manifest number: 67 Signing time: Sun 19 Oct 2025 10:24:56 +0000 Manifest this update: Sun 19 Oct 2025 10:24:56 +0000 Manifest next update: Sun 26 Oct 2025 10:24:56 +0000 Files and hashes: 1: oUDUgGrgz2DnP-FYvyQvOag60AU.crl (hash: Ap6DAg/0Z8f3nPWto0mrw592D0kZwSOIDMBuSvsCIbw=) 2: 47131A44145511F082FDAA7AC4F9AE02.roa (hash: btGSbXlYPwUm6r4aT9dqMB2WqeFs4xBX2s74blUbTR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.crl rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1B78, serialNumber=A140D4806AE0CF60E73FE158BF242F39A83AD005 Validity Not Before: Oct 19 10:24:56 2025 GMT Not After : Oct 26 10:24:56 2025 GMT Subject: CN=68f4bc78-cf04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:66:68:28:fb:91:dd:fd:86:5b:bb:0d:cc:ae: 9a:47:18:96:42:09:ac:43:be:51:28:69:54:9b:b1: 87:ab:60:62:99:2e:44:e3:99:6f:ad:64:11:c7:d7: 51:ee:1e:85:9e:57:af:1e:a3:82:33:09:98:25:e0: ff:f3:64:19:d5:6d:f3:c9:4a:2b:a3:95:71:63:a8: 8c:79:0a:01:46:34:14:7c:f9:48:0f:a6:58:75:f9: 53:7f:41:46:62:4f:1c:44:ef:bb:fd:a5:d0:98:f3: a1:36:ff:53:a9:7d:11:32:a9:80:53:15:c3:a9:b2: 50:d2:65:62:c4:2b:09:8b:a2:58:59:a2:5b:fc:7a: 43:81:6d:1f:0c:53:af:40:6a:2b:db:76:24:ae:5f: 5d:c5:ef:fc:bd:df:fd:a3:70:c0:c9:de:7f:2d:a4: b4:a8:b4:3e:cf:51:23:45:44:bf:77:fe:30:b5:d9: b7:eb:25:20:c4:b7:6e:47:94:d8:5e:ad:5a:81:2b: b3:d2:26:e3:a7:e5:b6:2a:b6:2a:a7:1a:58:e2:97: 05:5b:ab:fc:00:81:b3:70:ff:3b:73:38:85:5d:22: 83:a8:50:4b:62:ec:4a:b4:80:ad:a1:ea:57:16:ba: cb:02:d1:74:18:af:1e:d6:8f:97:d5:3a:83:f5:ec: 55:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:96:EC:12:66:7C:68:C1:D1:DE:33:06:1E:E0:7D:9A:AA:50:C5:9C X509v3 Authority Key Identifier: keyid:A1:40:D4:80:6A:E0:CF:60:E7:3F:E1:58:BF:24:2F:39:A8:3A:D0:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:ab:f1:9c:cf:d2:2b:f0:01:4f:32:2c:58:85:c4:b5:eb:78: 9e:aa:75:37:b6:fb:65:fb:29:9b:04:a3:80:ef:6b:75:b4:4d: 78:cc:33:00:3f:c9:25:53:7f:bf:5b:6f:8d:b3:ff:dd:7e:be: 60:06:a5:f3:14:58:e3:1c:2f:cb:3f:2f:5f:29:61:ef:d7:fc: ff:77:17:f0:91:4f:07:58:68:85:2b:78:de:73:d2:85:17:44: 7a:e6:9e:b1:9c:62:bd:c1:59:68:7a:85:64:44:85:bb:ef:50: c8:96:25:ca:7e:89:2b:bf:03:89:12:45:c9:60:05:6d:a3:eb: 9e:c5:3a:9a:32:b2:46:53:4b:e1:10:80:d5:09:4d:85:2c:4c: 43:55:7a:b3:c1:3e:f3:4e:b9:d8:61:13:35:2e:63:55:63:24: ed:41:86:a1:a3:54:c3:41:03:1a:40:a6:99:0d:72:41:15:15: c6:b1:5a:d8:fb:21:10:8d:56:40:fb:90:0c:47:a4:55:21:9f: f7:5b:b7:57:9e:a9:4e:44:21:d2:fc:b7:29:6c:5c:64:48:3d: 41:b0:7a:3f:75:cc:47:cb:1f:46:8a:71:bb:57:bc:f6:bd:a7: 4e:97:6b:00:2b:d0:e0:b5:72:2e:fb:d2:dd:82:7b:cb:55:88: 7e:ee:62:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUI3ODExMC8GA1UEBRMoQTE0MEQ0ODA2QUUwQ0Y2MEU3M0ZFMTU4QkYyNDJGMzlB ODNBRDAwNTAeFw0yNTEwMTkxMDI0NTZaFw0yNTEwMjYxMDI0NTZaMBgxFjAUBgNV BAMTDTY4ZjRiYzc4LWNmMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWZmgo+5Hd/YZbuw3MrppHGJZCCaxDvlEoaVSbsYerYGKZLkTjmW+tZBHH11Hu HoWeV68eo4IzCZgl4P/zZBnVbfPJSiujlXFjqIx5CgFGNBR8+UgPplh1+VN/QUZi TxxE77v9pdCY86E2/1OpfREyqYBTFcOpslDSZWLEKwmLolhZolv8ekOBbR8MU69A aivbdiSuX13F7/y93/2jcMDJ3n8tpLSotD7PUSNFRL93/jC12bfrJSDEt25HlNhe rVqBK7PSJuOn5bYqtiqnGljilwVbq/wAgbNw/ztzOIVdIoOoUEti7Eq0gK2h6lcW ussC0XQYrx7Wj5fVOoP17FXFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrpbsEmZ8 aMHR3jMGHuB9mqpQxZwwHwYDVR0jBBgwFoAUoUDUgGrgz2DnP+FYvyQvOag60AUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxQjc4L0M4REY0MUFDMTQ1 NDExRjBCM0I3QzY3OUM0RjlBRTAyL29VRFVnR3JnejJEblAtRll2eVF2T2FnNjBB VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1VEVWdHcmd6MkRuUC1GWXZ5UXZPYWc2MEFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx Qjc4L0M4REY0MUFDMTQ1NDExRjBCM0I3QzY3OUM0RjlBRTAyL29VRFVnR3JnejJE blAtRll2eVF2T2FnNjBBVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAByr8ZzP0ivwAU8yLFiFxLXreJ6qdTe2+2X7KZsEo4Dva3W0TXjMMwA/ ySVTf79bb42z/91+vmAGpfMUWOMcL8s/L18pYe/X/P93F/CRTwdYaIUreN5z0oUX RHrmnrGcYr3BWWh6hWREhbvvUMiWJcp+iSu/A4kSRclgBW2j657FOpoyskZTS+EQ gNUJTYUsTENVerPBPvNOudhhEzUuY1VjJO1BhqGjVMNBAxpAppkNckEVFcaxWtj7 IRCNVkD7kAxHpFUhn/dbt1eeqU5EIdL8tylsXGRIPUGwej91zEfLH0aKcbtXvPa9 p06XawAr0OC1ci770t2Ce8tViH7uYno= -----END CERTIFICATE-----Generated at Mon Oct 20 21:44:04 2025 by rpki-client