$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: c9BFh6+Pi5IZfsYslmUnI4dkMjuo3QrCDqDMTVf4E7E= Subject key identifier: B0:75:A0:61:3D:68:56:69:CD:33:40:AB:9B:D4:18:74:E9:80:AA:DA Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 0179 Signing time: Sun 19 Oct 2025 06:22:35 +0000 Manifest this update: Sun 19 Oct 2025 06:22:35 +0000 Manifest next update: Sun 26 Oct 2025 06:22:35 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: ZMm/qfuNLH5s0PM58SWISWGZTBerly+cZq8xk82YqIw=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: jA0W89c1BQKBxWNTk4xZxdglmPbz/0n9ymbDdZwOT6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Oct 19 06:22:35 2025 GMT Not After : Oct 26 06:22:35 2025 GMT Subject: CN=68f483ab-8227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:51:9a:0b:23:41:e4:64:89:fd:ac:08:0e:ae: d6:31:86:3d:b9:17:24:ba:f0:fc:39:a4:8e:48:2c: e0:c7:3a:5b:20:cc:7b:38:a5:4d:09:f2:67:6c:ad: fb:d2:54:16:a6:72:89:21:ce:87:ec:2e:a8:96:17: e9:49:98:a9:e8:b5:ba:ba:27:31:4c:ad:09:ef:75: 37:c4:65:7f:55:89:e8:10:4f:0f:6b:05:71:43:a0: c6:17:ff:db:4f:01:d7:94:0d:99:0f:65:b3:d4:03: 6b:93:88:e2:d0:26:24:ca:a5:7f:98:e5:a5:8e:5f: e6:17:d2:30:58:05:9f:3f:b6:ff:86:ef:38:12:61: 15:fc:c6:c1:53:9b:9e:ed:b5:ec:7b:70:02:2d:cf: 0f:89:17:19:1a:65:00:6f:0a:9b:e6:66:b9:c3:19: f8:50:f7:72:10:c5:7d:c9:45:87:f2:63:7d:d3:6a: 09:23:06:2e:fa:e2:2e:cd:35:2a:96:17:7f:21:60: a1:1c:e0:eb:c1:a3:b2:39:1a:e5:5f:92:ac:11:35: 4c:f8:2f:4a:ce:47:9a:0d:b7:b3:e4:0d:66:78:e9: 5e:2e:27:78:c5:55:30:32:84:ba:26:f3:9b:1e:61: 3c:af:a5:94:17:3b:8d:16:c3:23:7d:06:76:6f:7a: 00:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:75:A0:61:3D:68:56:69:CD:33:40:AB:9B:D4:18:74:E9:80:AA:DA X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:d5:6d:f0:98:1c:ad:5b:5b:7b:dd:eb:71:7f:96:29:84:45: a9:c7:96:9a:8a:2d:0a:ce:0a:b5:08:66:2a:96:6f:84:ed:3a: db:eb:e1:bb:8c:80:2b:a2:db:5a:5b:9b:e7:de:3a:1a:87:87: 2d:93:2a:fc:1c:e0:50:94:9c:9b:28:ce:cf:57:ef:9e:bb:98: b8:c6:f1:a8:1b:bc:45:d8:68:2c:cb:30:6a:03:f2:c7:53:84: 0a:46:13:ef:a0:f6:06:fe:e2:a5:f5:51:c2:5f:e1:b5:db:ec: b0:4d:02:08:6a:c1:41:de:bf:6b:1f:a8:4b:f7:0d:9f:c3:d6: 40:ea:9d:fa:03:25:c3:dd:af:32:48:85:8c:c3:49:b5:1b:55: b0:be:b3:59:a8:46:ca:17:d8:b9:c5:d4:93:90:11:7c:99:9e: 5d:9e:f4:cb:ab:3e:36:31:8d:38:55:fc:a7:be:a2:34:c3:bb: 93:6e:39:f2:13:58:0b:89:c8:ff:68:53:fd:4f:a7:f0:a7:07: e6:c5:9b:02:5d:58:e1:17:b0:d8:28:94:87:7a:bf:44:6b:b4: 90:56:09:7e:a8:34:1b:8b:09:a1:08:52:7f:b4:f1:42:1b:44: 21:33:37:88:23:84:af:0d:f5:0f:d6:e8:6e:6b:41:ea:0d:b6: df:4f:92:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjUxMDE5MDYyMjM1WhcNMjUxMDI2MDYyMjM1WjAYMRYwFAYD VQQDEw02OGY0ODNhYi04MjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VGaCyNB5GSJ/awIDq7WMYY9uRckuvD8OaSOSCzgxzpbIMx7OKVNCfJnbK37 0lQWpnKJIc6H7C6olhfpSZip6LW6uicxTK0J73U3xGV/VYnoEE8PawVxQ6DGF//b TwHXlA2ZD2Wz1ANrk4ji0CYkyqV/mOWljl/mF9IwWAWfP7b/hu84EmEV/MbBU5ue 7bXse3ACLc8PiRcZGmUAbwqb5ma5wxn4UPdyEMV9yUWH8mN902oJIwYu+uIuzTUq lhd/IWChHODrwaOyORrlX5KsETVM+C9KzkeaDbez5A1meOleLid4xVUwMoS6JvOb HmE8r6WUFzuNFsMjfQZ2b3oAuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLB1oGE9 aFZpzTNAq5vUGHTpgKraMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB11W3wmBytW1t73etxf5YphEWpx5aaii0Kzgq1CGYqlm+E7Trb6+G7 jIArottaW5vn3joah4ctkyr8HOBQlJybKM7PV++eu5i4xvGoG7xF2GgsyzBqA/LH U4QKRhPvoPYG/uKl9VHCX+G12+ywTQIIasFB3r9rH6hL9w2fw9ZA6p36AyXD3a8y SIWMw0m1G1WwvrNZqEbKF9i5xdSTkBF8mZ5dnvTLqz42MY04VfynvqI0w7uTbjny E1gLicj/aFP9T6fwpwfmxZsCXVjhF7DYKJSHer9Ea7SQVgl+qDQbiwmhCFJ/tPFC G0QhMzeII4SvDfUP1uhua0HqDbbfT5Jr -----END CERTIFICATE-----Generated at Mon Oct 20 04:12:12 2025 by rpki-client