$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: XVKKYKZ8KVngaDJIBIGWs+rwlf545gkxxqP4peq9/RQ= Subject key identifier: 51:34:8A:7D:02:EC:D4:E5:39:A3:42:9E:FA:C5:FF:0B:54:53:0F:44 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 018B Signing time: Sun 19 Oct 2025 06:09:00 +0000 Manifest this update: Sun 19 Oct 2025 06:08:59 +0000 Manifest next update: Sun 26 Oct 2025 06:08:59 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: wraqfy9zQ5u248IkDbuBXEnrwZZCVFQAzwkfG/xAIN8=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: RkTUA678ggeVul1y+nwQF7cmzTi/KyCvH3jL9UTL73c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804, serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: Oct 19 06:08:59 2025 GMT Not After : Oct 26 06:08:59 2025 GMT Subject: CN=68f4807c-634e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e5:31:a5:ce:aa:c5:1c:74:8c:c5:eb:0b:ee: 04:55:6c:c4:1f:f1:0b:06:8f:8b:8e:9c:02:d5:e8: e9:58:2a:7d:70:97:28:c7:d2:6e:dd:34:42:e1:2a: 24:98:a8:a4:bb:83:3b:2c:47:7c:f7:63:e0:15:55: cd:e9:cb:1b:73:1a:79:dc:9d:f4:9a:8e:7d:96:f7: d3:6f:d0:4d:18:f9:74:0b:9d:2c:a7:7e:e7:14:10: 6f:a5:68:ec:e6:e9:c9:e0:48:ca:d9:64:69:95:6f: 74:dd:57:64:3b:1e:fa:cd:20:4f:6e:fd:05:83:bf: 5b:10:11:75:e5:ea:ea:35:28:79:0e:ae:04:30:18: f9:63:c4:05:ae:0e:5b:73:34:69:c8:58:4a:74:05: 33:12:11:b1:0d:07:25:18:b2:d0:6b:f4:bd:8d:32: e8:b8:28:d2:68:b5:04:8a:ed:98:ad:70:7d:e9:02: 82:3a:44:47:e8:c7:05:3b:e2:86:49:75:eb:f7:ed: c5:e6:cb:a6:9c:ac:b9:8e:c1:70:77:b1:1f:76:8f: 25:78:46:f1:b1:34:72:60:dc:ff:13:e3:50:4b:73: 33:93:29:b2:a1:ca:46:c5:de:8a:81:87:1a:13:5a: 48:0b:c1:1e:d5:91:f3:18:38:49:0f:c4:09:d0:bb: 1b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:34:8A:7D:02:EC:D4:E5:39:A3:42:9E:FA:C5:FF:0B:54:53:0F:44 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:c3:23:b8:87:8b:a4:0f:9c:92:51:35:f4:62:9c:80:f0:b4: d7:07:94:9d:b0:78:08:81:c2:fe:56:61:5d:ac:ef:07:8b:59: b8:f6:db:e0:23:0b:d3:59:4d:9c:75:59:68:a2:4b:c9:3b:f3: f2:6d:7e:cf:fe:64:ce:16:18:2f:5b:df:01:cb:76:d6:68:4a: 92:14:04:bd:54:2b:4e:3a:a8:af:7e:4d:df:4e:dd:75:9e:4f: 52:3e:cd:b9:85:83:b0:a4:e7:c6:5e:38:a3:85:35:e2:8c:1a: e8:53:a7:11:9c:1c:cc:2d:85:41:02:bd:a4:0b:4a:97:e8:b1: b2:ee:e7:35:b8:8c:a2:80:48:cb:b6:5d:53:3c:27:8f:c1:86: c2:1a:f0:d0:e5:48:82:06:61:e1:83:61:c5:15:2d:c2:f2:fc: 7f:ed:cc:46:82:c5:10:dc:b8:ee:be:33:64:a2:bb:1b:9d:81: 7e:38:0b:5e:8f:c3:97:a6:71:36:3e:ac:dd:48:7f:f6:2e:48: 5b:ab:2c:47:1d:05:40:9b:43:b9:4a:8e:58:44:27:c7:1c:18: 34:4d:37:ad:44:fa:e9:84:69:e1:ce:17:3b:f2:21:8d:63:f5: b5:aa:87:32:8e:ac:ec:ee:0a:d0:3a:a6:8c:3b:4c:b7:91:f1: 2c:5c:f0:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjUxMDE5MDYwODU5WhcNMjUxMDI2MDYwODU5WjAYMRYwFAYD VQQDEw02OGY0ODA3Yy02MzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuUxpc6qxRx0jMXrC+4EVWzEH/ELBo+LjpwC1ejpWCp9cJcox9Ju3TRC4Sok mKiku4M7LEd892PgFVXN6csbcxp53J30mo59lvfTb9BNGPl0C50sp37nFBBvpWjs 5unJ4EjK2WRplW903VdkOx76zSBPbv0Fg79bEBF15erqNSh5Dq4EMBj5Y8QFrg5b czRpyFhKdAUzEhGxDQclGLLQa/S9jTLouCjSaLUEiu2YrXB96QKCOkRH6McFO+KG SXXr9+3F5sumnKy5jsFwd7Efdo8leEbxsTRyYNz/E+NQS3MzkymyocpGxd6KgYca E1pIC8Ee1ZHzGDhJD8QJ0LsbvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFE0in0C 7NTlOaNCnvrF/wtUUw9EMB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEwyO4h4ukD5ySUTX0YpyA8LTXB5SdsHgIgcL+VmFdrO8Hi1m49tvg IwvTWU2cdVlookvJO/PybX7P/mTOFhgvW98By3bWaEqSFAS9VCtOOqivfk3fTt11 nk9SPs25hYOwpOfGXjijhTXijBroU6cRnBzMLYVBAr2kC0qX6LGy7uc1uIyigEjL tl1TPCePwYbCGvDQ5UiCBmHhg2HFFS3C8vx/7cxGgsUQ3LjuvjNkorsbnYF+OAte j8OXpnE2PqzdSH/2LkhbqyxHHQVAm0O5So5YRCfHHBg0TTetRPrphGnhzhc78iGN Y/W1qocyjqzs7grQOqaMO0y3kfEsXPBC -----END CERTIFICATE-----Generated at Tue Oct 21 04:53:22 2025 by rpki-client