$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft File: ogavyWamnnC0ibOPEEg9wfpdPiI.mft (raw, json) Hash identifier: VJCA3etOibtjIuonr0bQ/0oCew4NErCnfCUuOa4X5Q8= Subject key identifier: E1:E7:EC:88:1E:9C:32:0E:3A:3F:23:B9:34:65:60:A7:14:15:81:AA Authority key identifier: A2:06:AF:C9:66:A6:9E:70:B4:89:B3:8F:10:48:3D:C1:FA:5D:3E:22 Certificate issuer: /CN=A91E4B6A/serialNumber=A206AFC966A69E70B489B38F10483DC1FA5D3E22 Certificate serial: 0420 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft Manifest number: 041C Signing time: Sun 19 Oct 2025 02:17:29 +0000 Manifest this update: Sun 19 Oct 2025 02:17:28 +0000 Manifest next update: Sun 26 Oct 2025 02:17:28 +0000 Files and hashes: 1: ogavyWamnnC0ibOPEEg9wfpdPiI.crl (hash: DYgXw5D6jmmNwArNdWDrFJIA4cVkuND/Gy9Ytu45iIA=) 2: F7335D9484D911EC89E5246EC4F9AE02.roa (hash: zIQCvO1cYT9GDGEyMPF0tBOYTt1JAajUXmcBSrFDxrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.crl rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1056 (0x420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4B6A, serialNumber=A206AFC966A69E70B489B38F10483DC1FA5D3E22 Validity Not Before: Oct 19 02:17:28 2025 GMT Not After : Oct 26 02:17:28 2025 GMT Subject: CN=68f44a39-e991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ac:31:e9:f4:2a:a3:5d:37:b6:b5:69:c7:11: cc:63:a1:cb:32:a6:66:b9:9f:d3:60:39:74:66:6e: 69:58:dd:ee:de:f0:6a:8a:04:74:3c:f4:2d:fe:35: 46:8e:2b:0f:64:36:69:d1:84:42:d2:32:6a:b4:4d: 56:7c:58:d0:cf:02:e7:84:34:cf:10:44:ae:78:b3: 8c:93:81:9e:3d:1f:c8:c2:b7:78:b2:0d:9f:b0:6a: 20:4e:f4:73:f4:d4:9b:42:6f:4a:0a:8e:bf:25:37: 65:af:28:65:2f:07:63:c2:84:08:4e:69:54:eb:43: f7:34:29:62:1c:df:6e:11:3d:d7:96:e4:a9:12:8b: 28:29:b6:36:3c:a3:07:ce:e7:eb:66:c1:63:67:8b: 76:1c:46:6f:77:88:ac:09:82:76:51:ef:06:95:d5: 4f:6b:6e:88:58:70:45:ce:20:9d:52:81:c7:7b:57: 45:7e:0c:fe:34:35:10:5e:ea:30:60:51:d7:dd:70: e6:25:e4:d3:a0:33:c9:6c:49:45:24:ab:21:dd:59: e4:e6:67:15:3a:0c:bd:b9:f5:e1:a8:cb:d9:cc:29: 2e:0c:73:d3:37:d9:e7:e0:05:d9:ed:2d:c3:7d:29: bb:8f:d3:c9:d9:b3:5e:cc:72:46:36:4f:58:36:97: 09:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E7:EC:88:1E:9C:32:0E:3A:3F:23:B9:34:65:60:A7:14:15:81:AA X509v3 Authority Key Identifier: keyid:A2:06:AF:C9:66:A6:9E:70:B4:89:B3:8F:10:48:3D:C1:FA:5D:3E:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:28:0b:28:60:f7:dd:33:b0:51:8c:f9:1d:e4:b5:51:e0:d5: 96:ab:33:6e:1d:79:37:ce:ee:6e:d5:7b:25:0d:56:0e:4b:88: 2a:8b:29:cb:7c:91:cf:94:e8:43:70:07:f8:16:21:6b:39:ef: f5:36:84:de:6d:7c:88:83:c3:f4:c5:e2:a5:1a:01:27:c1:b7: dd:4a:fb:9a:1a:bc:57:c5:fc:3f:b8:24:57:f0:09:48:bd:ff: dd:0e:0d:07:b6:dd:15:43:8f:98:0f:82:ec:a0:41:a8:34:d5: bb:8d:9e:eb:55:af:72:5f:54:52:82:2e:c0:17:87:16:85:b2: 61:2f:4e:d9:f2:fa:38:d9:8f:ad:0f:16:cb:47:30:e4:c6:a6: cf:88:f5:9d:d0:95:d5:ed:90:65:9b:bd:a6:ab:fb:04:ae:95: 01:6f:df:75:5e:8f:89:45:a2:75:ad:da:89:18:a6:3f:b9:1f: b6:80:df:88:a3:b0:6d:3e:2e:d8:e6:2d:fa:f0:cb:f3:c7:94: 0b:cb:b2:d0:84:b3:83:5f:f8:72:e8:2f:fc:01:c8:bc:60:81: 2d:0b:30:99:b5:75:6a:6b:46:e3:4d:20:98:cc:db:51:58:77: 6f:06:d4:ea:d4:ab:68:ba:de:fd:ca:10:5a:eb:f7:4c:13:c9: cc:2d:e6:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCNkExMTAvBgNVBAUTKEEyMDZBRkM5NjZBNjlFNzBCNDg5QjM4RjEwNDgzREMx RkE1RDNFMjIwHhcNMjUxMDE5MDIxNzI4WhcNMjUxMDI2MDIxNzI4WjAYMRYwFAYD VQQDEw02OGY0NGEzOS1lOTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqawx6fQqo103trVpxxHMY6HLMqZmuZ/TYDl0Zm5pWN3u3vBqigR0PPQt/jVG jisPZDZp0YRC0jJqtE1WfFjQzwLnhDTPEESueLOMk4GePR/Iwrd4sg2fsGogTvRz 9NSbQm9KCo6/JTdlryhlLwdjwoQITmlU60P3NCliHN9uET3XluSpEosoKbY2PKMH zufrZsFjZ4t2HEZvd4isCYJ2Ue8GldVPa26IWHBFziCdUoHHe1dFfgz+NDUQXuow YFHX3XDmJeTToDPJbElFJKsh3Vnk5mcVOgy9ufXhqMvZzCkuDHPTN9nn4AXZ7S3D fSm7j9PJ2bNezHJGNk9YNpcJHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHn7Ige nDIOOj8juTRlYKcUFYGqMB8GA1UdIwQYMBaAFKIGr8lmpp5wtImzjxBIPcH6XT4i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEI2QS9CNDgxMzM0Mjg0 RDcxMUVDOEUwNzQxNkRDNEY5QUUwMi9vZ2F2eVdhbW5uQzBpYk9QRUVnOXdmcGRQ aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29nYXZ5V2Ftbm5DMGliT1BFRWc5d2ZwZFBpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEI2QS9CNDgxMzM0Mjg0RDcxMUVDOEUwNzQxNkRDNEY5QUUwMi9vZ2F2eVdhbW5u QzBpYk9QRUVnOXdmcGRQaUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtKAsoYPfdM7BRjPkd5LVR4NWWqzNuHXk3zu5u1XslDVYOS4gqiynL fJHPlOhDcAf4FiFrOe/1NoTebXyIg8P0xeKlGgEnwbfdSvuaGrxXxfw/uCRX8AlI vf/dDg0Htt0VQ4+YD4LsoEGoNNW7jZ7rVa9yX1RSgi7AF4cWhbJhL07Z8vo42Y+t DxbLRzDkxqbPiPWd0JXV7ZBlm72mq/sErpUBb991Xo+JRaJ1rdqJGKY/uR+2gN+I o7BtPi7Y5i368Mvzx5QLy7LQhLODX/hy6C/8Aci8YIEtCzCZtXVqa0bjTSCYzNtR WHdvBtTq1Ktout79yhBa6/dME8nMLeZd -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:12 2025 by rpki-client