$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: JQMKmpTxwbbtQylajxpOvlZc7Ojs1ND2JfCOF9vb3w0= Subject key identifier: A6:50:B1:D2:B6:5F:47:A5:A8:0C:66:B8:B6:52:07:47:76:00:FE:7C Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 222C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 21E2 Signing time: Sat 18 Oct 2025 16:08:59 +0000 Manifest this update: Sat 18 Oct 2025 16:08:59 +0000 Manifest next update: Sat 25 Oct 2025 16:08:59 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: q5w+RwBkn9Gf71h+3Qt7vDC9rDeQCIZBs5AsoFnd7tw=) 2: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 9qbnU5NoZnRKr5UON4q3pztK39xd0U7HOmGKLDSw1XM=) 3: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: IkaJ8i577C8HJn9L10GXsDg7dnEgDNc7V/0u1lmvtUc=) 4: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: W3kQqETMCmWx1rkG4UQFdMD9AvtHip25lMvzH/UT/O4=) 5: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: d+3xI/dPiUPnPzisac55VOoaa2WbK4PwW/+8FsppPKo=) 6: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: VRoVKZ5apQPibJfYuezBj0SVEXkfapSpmG0vCNALPFk=) 7: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: tha3MuUqAY4uta6oQkpRf/6b/EDrjv+89kT9R3U6DBE=) 8: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 8CfQ0/1GwUUp0J0kvZBXA7fizuzpoZuw6UptgYm1mO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8748 (0x222c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Oct 18 16:08:59 2025 GMT Not After : Oct 25 16:08:59 2025 GMT Subject: CN=68f3bb9b-6ae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e1:03:c8:7c:6d:0f:e5:95:ef:c0:b9:ec:ac: 3a:30:3f:b8:7c:b7:61:76:4c:8f:a3:df:ab:ee:3f: 05:be:a4:8f:40:19:73:63:1c:28:30:1f:1e:f3:9c: 13:2b:27:85:aa:28:a1:5e:89:b3:cd:07:96:93:cc: a3:9e:df:17:83:ae:2b:d4:04:d7:ea:26:d6:14:e7: 3e:f9:d5:d3:eb:80:7e:e0:7e:20:85:de:89:9a:db: 51:da:db:f3:54:1d:57:c2:67:53:11:1c:71:64:ef: 0a:a4:52:28:0c:db:eb:c7:b0:f5:71:cd:c2:c9:05: 4e:7b:30:48:d5:89:8f:bc:0e:c2:31:ea:1b:99:6f: 86:a3:11:47:78:95:33:19:79:83:84:ab:fe:6f:81: ed:dd:75:31:31:74:2e:af:b0:eb:5d:35:d3:12:10: 6e:d4:7f:70:6e:dd:34:88:82:1c:fc:c9:6f:db:f5: 26:b1:e5:a1:8b:b3:4e:18:c5:bf:8c:22:4f:bb:b2: 78:1b:4f:2d:35:d2:30:dc:4b:e3:6d:f9:ed:d2:37: 85:cd:18:c9:02:7b:32:22:64:4f:9f:cf:bd:fe:34: 65:81:bb:02:78:f2:6a:cb:fe:c8:52:79:52:7b:9d: 6b:12:4b:d2:8a:9d:c1:74:dd:0b:57:be:78:0d:3c: e0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:50:B1:D2:B6:5F:47:A5:A8:0C:66:B8:B6:52:07:47:76:00:FE:7C X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:83:6c:c1:0f:a0:91:f8:09:bb:68:12:69:8e:81:c1:78:60: fc:7b:ef:ec:ff:03:25:31:f0:de:b6:7e:08:b7:6b:78:44:28: 2a:f5:d7:82:2e:a8:5f:af:4a:11:c0:ba:35:40:d9:31:9b:cd: 9a:3a:28:b2:63:1f:fc:7e:40:57:51:d6:f8:7a:21:3a:d3:6f: d4:0e:dd:29:20:28:b9:61:9b:a0:4d:df:21:8d:63:b9:19:37: 42:86:3e:ef:d9:70:ba:dc:f5:cf:ca:6c:b4:82:a5:05:2c:94: c5:12:80:ef:af:49:b3:5a:78:93:cc:b3:32:53:d2:d6:c8:13: cd:80:06:b2:b2:03:0c:23:dd:c7:17:21:b8:fb:ce:ad:6a:d9: e2:97:aa:6e:b5:ea:d7:f3:24:0d:b6:4e:36:52:8d:86:e9:bf: 6c:f7:2b:ac:37:82:83:f5:64:57:5f:39:86:6b:fc:e1:89:57: 66:0a:2a:3e:7a:9d:37:64:5b:32:0e:80:24:2b:b3:dd:dc:22: 11:1e:39:9c:34:6c:2c:57:66:6e:a3:38:93:ff:c2:d8:75:25: 14:35:1e:9c:36:12:db:6b:d3:91:cd:bf:e3:93:6c:e1:62:b3: 65:9f:9d:de:37:92:7c:fe:c9:24:02:65:08:b3:6c:e3:81:c0: 4b:46:fa:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUxMDE4MTYwODU5WhcNMjUxMDI1MTYwODU5WjAYMRYwFAYD VQQDEw02OGYzYmI5Yi02YWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+EDyHxtD+WV78C57Kw6MD+4fLdhdkyPo9+r7j8FvqSPQBlzYxwoMB8e85wT KyeFqiihXomzzQeWk8yjnt8Xg64r1ATX6ibWFOc++dXT64B+4H4ghd6JmttR2tvz VB1XwmdTERxxZO8KpFIoDNvrx7D1cc3CyQVOezBI1YmPvA7CMeobmW+GoxFHeJUz GXmDhKv+b4Ht3XUxMXQur7DrXTXTEhBu1H9wbt00iIIc/Mlv2/UmseWhi7NOGMW/ jCJPu7J4G08tNdIw3Evjbfnt0jeFzRjJAnsyImRPn8+9/jRlgbsCePJqy/7IUnlS e51rEkvSip3BdN0LV754DTzgRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZQsdK2 X0elqAxmuLZSB0d2AP58MB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApg2zBD6CR+Am7aBJpjoHBeGD8e+/s/wMlMfDetn4It2t4RCgq9deC Lqhfr0oRwLo1QNkxm82aOiiyYx/8fkBXUdb4eiE602/UDt0pICi5YZugTd8hjWO5 GTdChj7v2XC63PXPymy0gqUFLJTFEoDvr0mzWniTzLMyU9LWyBPNgAaysgMMI93H FyG4+86tatnil6puterX8yQNtk42Uo2G6b9s9yusN4KD9WRXXzmGa/zhiVdmCio+ ep03ZFsyDoAkK7Pd3CIRHjmcNGwsV2ZuoziT/8LYdSUUNR6cNhLba9ORzb/jk2zh YrNln53eN5J8/skkAmUIs2zjgcBLRvqd -----END CERTIFICATE-----Generated at Mon Oct 20 04:25:26 2025 by rpki-client