$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft File: ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft (raw, json) Hash identifier: 6igpeYYJjkFIOWCSyJZKeAnk/IaplE1qDTfXzGZ8w38= Subject key identifier: 3F:6B:A5:FA:E9:F6:A5:37:AA:C9:3B:EA:D8:07:5B:12:30:29:AB:89 Authority key identifier: A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 Certificate issuer: /CN=A91EDF00/serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Certificate serial: 04AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft Manifest number: 04A8 Signing time: Sun 19 Oct 2025 01:46:13 +0000 Manifest this update: Sun 19 Oct 2025 01:46:12 +0000 Manifest next update: Sun 26 Oct 2025 01:46:12 +0000 Files and hashes: 1: ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl (hash: VxGKps5xRhyHaEp5nFB3x+nGzEcH1161ScZBjxMaFPE=) 2: 1B97FEB84E8111ECA3589560C4F9AE02.roa (hash: xAvVS/7W7xtAjphmjIYm8eiwHHWi2VdeCNpBEO7D7og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDF00, serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Validity Not Before: Oct 19 01:46:12 2025 GMT Not After : Oct 26 01:46:12 2025 GMT Subject: CN=68f442e4-f70d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e0:41:6b:c2:5f:27:4f:03:c9:49:3e:6f:aa: ba:99:be:3b:6d:e1:ea:13:17:da:22:59:d7:a9:03: 92:bc:6c:c4:f4:2d:dd:30:93:3c:51:ba:b5:3b:49: be:9f:66:3d:b8:49:1d:c5:5e:3a:62:a6:b0:5a:31: ae:6f:ac:e2:65:0c:26:e7:00:52:3f:fd:3a:d2:65: 07:6f:82:a9:c9:1b:17:0c:aa:9c:f0:93:66:84:c5: 2d:5c:c1:b9:51:8a:85:11:c8:cc:c4:a0:26:ea:71: 44:08:61:28:0f:db:97:18:4e:13:11:6c:84:a8:35: d2:0f:4b:ec:41:df:70:18:ad:82:1d:b0:95:58:72: 36:75:61:c7:a4:92:bc:49:58:0b:e5:05:e4:2d:9d: e6:6a:2c:69:b5:70:9c:96:a0:bd:d7:5f:5a:4e:4a: 16:e3:bf:99:f5:32:ac:1c:ba:ac:be:92:3d:18:ef: a1:80:f8:ff:55:23:03:85:07:8a:e3:7a:ee:1f:e9: c1:c9:eb:eb:2b:63:95:a4:f9:1c:17:c3:3d:12:f6: fd:e5:c2:bb:07:ab:af:3e:a0:21:2d:a7:c3:9d:a0: 32:9f:68:fe:ea:56:61:99:61:c7:91:dd:f6:8b:84: 0b:cd:bb:37:ad:7e:16:32:fb:46:81:79:96:4d:0d: da:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6B:A5:FA:E9:F6:A5:37:AA:C9:3B:EA:D8:07:5B:12:30:29:AB:89 X509v3 Authority Key Identifier: keyid:A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:a0:66:56:f6:6c:6c:4d:bc:be:d2:14:85:ae:bf:0c:b5:e6: f1:7e:dc:46:49:5b:a0:06:b2:ca:64:9c:77:35:74:d2:df:9c: 54:97:f3:2c:f9:46:cf:67:5c:14:39:e6:46:63:8d:78:ce:99: e8:fd:c0:37:48:c2:df:78:dd:a4:6d:57:d9:7c:3c:7a:01:c9: c3:6d:fd:1d:04:da:fc:15:df:97:a7:5f:98:48:70:7d:e5:ae: c3:6a:85:35:5d:ca:a5:5f:27:78:62:0a:48:c7:d1:1d:28:f8: b5:49:b3:d5:a6:48:f8:fc:bc:9c:a0:07:50:e0:0d:4f:d8:0c: 70:cb:6f:e3:58:22:c5:00:f5:cb:23:5e:a3:6e:f9:5f:05:55: 2b:91:1c:6f:f2:58:29:93:74:88:c9:16:d6:e9:06:01:14:0e: c8:4b:1e:a5:43:eb:fe:e6:62:58:89:7e:c1:9e:09:e0:a4:5f: f3:8b:69:13:cb:67:f8:90:99:76:43:ec:80:58:34:c3:45:71: 24:61:53:97:53:c1:6e:e2:7a:ab:da:6e:6b:6d:04:75:cb:8d: 6e:ce:58:9f:9c:54:9e:5c:bf:6b:5a:30:12:75:7f:4c:ad:f2: dc:b1:cb:c7:af:f0:af:e2:32:37:4c:d9:3d:6d:3c:20:3c:d9: 0c:6d:88:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURGMDAxMTAvBgNVBAUTKEEzM0NDQTgxQjU1RTA0NjU1RDFCNUE3RTJDRTY4OEMz RTQ2RkM1MzAwHhcNMjUxMDE5MDE0NjEyWhcNMjUxMDI2MDE0NjEyWjAYMRYwFAYD VQQDEw02OGY0NDJlNC1mNzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquBBa8JfJ08DyUk+b6q6mb47beHqExfaIlnXqQOSvGzE9C3dMJM8Ubq1O0m+ n2Y9uEkdxV46YqawWjGub6ziZQwm5wBSP/060mUHb4KpyRsXDKqc8JNmhMUtXMG5 UYqFEcjMxKAm6nFECGEoD9uXGE4TEWyEqDXSD0vsQd9wGK2CHbCVWHI2dWHHpJK8 SVgL5QXkLZ3maixptXCclqC9119aTkoW47+Z9TKsHLqsvpI9GO+hgPj/VSMDhQeK 43ruH+nByevrK2OVpPkcF8M9Evb95cK7B6uvPqAhLafDnaAyn2j+6lZhmWHHkd32 i4QLzbs3rX4WMvtGgXmWTQ3arwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9rpfrp 9qU3qsk76tgHWxIwKauJMB8GA1UdIwQYMBaAFKM8yoG1XgRlXRtafizmiMPkb8Uw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREYwMC8zQUUwMDM0QTRF N0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJHVmRHMXAtTE9hSXctUnZ4 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ektnYlZlQkdWZEcxcC1MT2FJdy1SdnhUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REYwMC8zQUUwMDM0QTRFN0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJH VmRHMXAtTE9hSXctUnZ4VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjoGZW9mxsTby+0hSFrr8MtebxftxGSVugBrLKZJx3NXTS35xUl/Ms +UbPZ1wUOeZGY414zpno/cA3SMLfeN2kbVfZfDx6AcnDbf0dBNr8Fd+Xp1+YSHB9 5a7DaoU1XcqlXyd4YgpIx9EdKPi1SbPVpkj4/LycoAdQ4A1P2Axwy2/jWCLFAPXL I16jbvlfBVUrkRxv8lgpk3SIyRbW6QYBFA7ISx6lQ+v+5mJYiX7BngngpF/zi2kT y2f4kJl2Q+yAWDTDRXEkYVOXU8Fu4nqr2m5rbQR1y41uzlifnFSeXL9rWjASdX9M rfLcscvHr/Cv4jI3TNk9bTwgPNkMbYgZ -----END CERTIFICATE-----Generated at Mon Oct 20 04:14:28 2025 by rpki-client