$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: ZYbFPt6xb2mrZ1qdUy/Y/XGx4kR609peI/TiDxwSWwE= Subject key identifier: 52:5C:EA:80:79:85:43:17:34:63:5B:FB:6D:23:CE:30:BE:22:AB:7D Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 02EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 02DE Signing time: Sun 19 Oct 2025 03:27:38 +0000 Manifest this update: Sun 19 Oct 2025 03:27:37 +0000 Manifest next update: Sun 26 Oct 2025 03:27:37 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: 4UqsQys78SHaNEypuyvbWfRuhNJulcwNx+1pbyKlrjU=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 746 (0x2ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Oct 19 03:27:37 2025 GMT Not After : Oct 26 03:27:37 2025 GMT Subject: CN=68f45aaa-2862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d4:7c:7d:77:7d:ee:9c:6c:5e:50:6c:dd:7a: cb:57:51:97:17:eb:e5:c7:11:8f:4c:56:e9:07:68: 02:d1:84:99:ea:b1:86:dd:a9:45:a0:8d:9c:13:29: 48:43:76:70:66:79:69:c8:01:c5:42:d5:fc:e9:af: 6b:b5:a6:36:b0:62:ea:dd:72:37:46:2d:0d:df:53: 7e:b5:5a:bb:fd:7b:78:ce:18:8a:13:5f:62:59:c4: 14:3c:eb:e2:1a:ee:49:5c:b8:aa:55:28:88:68:c3: 6f:d1:0a:de:4b:8a:0a:52:4a:0b:a2:10:bf:2f:e2: bf:23:75:46:cb:de:ed:ad:6a:c4:a7:c9:5a:5e:bb: 8b:e8:f1:48:d8:21:32:77:61:02:32:26:40:b8:31: 84:70:5f:ac:d3:e3:6a:a3:a4:64:bb:07:1e:c0:d6: 32:6f:55:ff:3b:50:48:06:cb:51:57:49:00:18:f2: d8:b3:d0:d1:9f:07:f9:e4:44:42:db:0c:3b:ee:8d: c4:ea:09:b9:c7:de:78:db:8f:a7:aa:2f:8f:ff:c3: 81:0e:17:24:82:bd:0a:c8:b7:47:a2:23:3d:4b:15: a6:5f:b7:30:b0:be:b4:30:8f:a4:e3:a8:43:62:73: d8:51:4c:8f:e7:f2:54:63:83:5e:e9:25:bc:ce:f8: 90:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5C:EA:80:79:85:43:17:34:63:5B:FB:6D:23:CE:30:BE:22:AB:7D X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ef:4a:90:b5:ca:9c:3b:05:78:41:aa:dd:1f:a6:d9:58:cd: f2:34:25:3a:37:18:17:e4:ce:26:30:78:5e:a8:08:c4:80:8e: f6:fb:17:b9:84:77:77:1c:74:90:31:bb:fb:7e:d0:19:2b:c5: 5c:41:64:23:e2:ae:2c:50:b7:9b:38:b8:80:9a:72:01:df:03: b6:05:57:84:08:31:d4:54:1f:31:5c:8e:23:7f:8d:63:72:67: d8:fb:56:fc:b6:cd:c6:e8:42:e5:0d:fe:5c:07:25:cb:6b:73: d3:f8:e0:60:1e:b1:1b:6a:cd:ba:5e:f7:e5:4e:1e:f0:7b:b6: 57:e7:fb:d3:13:ac:aa:06:3c:a7:91:23:2d:be:4c:bd:cf:8b: fc:62:ec:e6:d3:c6:24:72:3c:e4:8c:9c:31:07:1e:85:6b:65: 82:44:53:d6:43:35:bc:a1:e6:e5:df:ec:6c:e4:72:7d:af:09: 26:cf:10:40:a1:9d:7d:16:8a:7d:9d:f8:a1:59:a2:a1:87:da: 31:99:a9:81:d6:e3:26:14:07:b3:3f:a3:63:74:cc:3d:28:4b: 5f:22:c9:d7:84:81:7f:18:17:11:79:8e:a4:45:3d:cb:4d:31: 3d:6f:5f:91:9e:ce:f5:fd:0f:35:1c:da:d9:60:26:98:b7:47: 57:de:81:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUxMDE5MDMyNzM3WhcNMjUxMDI2MDMyNzM3WjAYMRYwFAYD VQQDEw02OGY0NWFhYS0yODYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9R8fXd97pxsXlBs3XrLV1GXF+vlxxGPTFbpB2gC0YSZ6rGG3alFoI2cEylI Q3ZwZnlpyAHFQtX86a9rtaY2sGLq3XI3Ri0N31N+tVq7/Xt4zhiKE19iWcQUPOvi Gu5JXLiqVSiIaMNv0QreS4oKUkoLohC/L+K/I3VGy97trWrEp8laXruL6PFI2CEy d2ECMiZAuDGEcF+s0+Nqo6RkuwcewNYyb1X/O1BIBstRV0kAGPLYs9DRnwf55ERC 2ww77o3E6gm5x95424+nqi+P/8OBDhckgr0KyLdHoiM9SxWmX7cwsL60MI+k46hD YnPYUUyP5/JUY4Ne6SW8zviQIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJc6oB5 hUMXNGNb+20jzjC+Iqt9MB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw70qQtcqcOwV4QardH6bZWM3yNCU6NxgX5M4mMHheqAjEgI72+xe5 hHd3HHSQMbv7ftAZK8VcQWQj4q4sULebOLiAmnIB3wO2BVeECDHUVB8xXI4jf41j cmfY+1b8ts3G6ELlDf5cByXLa3PT+OBgHrEbas26XvflTh7we7ZX5/vTE6yqBjyn kSMtvky9z4v8Yuzm08YkcjzkjJwxBx6Fa2WCRFPWQzW8oebl3+xs5HJ9rwkmzxBA oZ19Fop9nfihWaKhh9oxmamB1uMmFAezP6NjdMw9KEtfIsnXhIF/GBcReY6kRT3L TTE9b1+Rns71/Q81HNrZYCaYt0dX3oEC -----END CERTIFICATE-----Generated at Mon Oct 20 21:36:07 2025 by rpki-client