$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: EW03d66JjOLar7J178nR/A0dBWg0AzYEQLtdcSSXWSE= Subject key identifier: 9F:97:DC:FD:12:6B:99:F8:90:C3:A5:9F:AE:6F:ED:AD:33:27:74:85 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 02AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 02A8 Signing time: Sun 19 Oct 2025 03:42:26 +0000 Manifest this update: Sun 19 Oct 2025 03:42:26 +0000 Manifest next update: Sun 26 Oct 2025 03:42:26 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: gV0/PF81YrSTN0a6ViW7P8IYn7GeI5Y23ooI1rIpYFg=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 00Bb5TLyF/J2CWzHDjxZA81Dz6rMiVp4bUBC6ncoYxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Oct 19 03:42:26 2025 GMT Not After : Oct 26 03:42:26 2025 GMT Subject: CN=68f45e22-8928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2e:d5:e2:2a:54:54:fa:e1:d1:27:bb:14:e2: 5b:c2:a4:e4:34:88:7e:17:f7:db:9f:7f:03:52:08: 5a:6c:43:2a:35:ac:26:4e:1c:e4:37:fa:10:69:e5: de:05:c7:4f:5b:d4:1c:d9:fc:51:40:8c:45:47:f8: f9:b6:b2:78:b0:d5:2e:23:6d:90:df:fd:e1:e4:38: f1:d5:6a:e0:ce:cd:15:fd:77:76:f8:65:c1:79:73: cc:e9:3f:1d:c4:35:e5:3b:99:13:3d:5a:7a:d9:b0: bb:87:eb:8c:80:cc:14:22:a5:1e:28:fa:41:88:1c: 56:b2:bb:1d:1a:d7:f4:17:2a:7a:14:6c:a0:d3:fa: a0:27:93:31:d7:a8:24:78:3f:21:98:a4:cc:93:b1: d2:ef:c2:fc:19:2c:cb:1b:8b:16:19:5d:ec:b7:a1: 0b:41:11:27:c2:ac:8b:af:95:c9:f7:f3:88:39:c9: 4e:35:04:83:38:00:19:57:b3:5a:ab:28:61:11:77: 27:d1:6b:70:cc:91:63:df:ac:b3:4d:7f:06:10:aa: 6c:3f:39:47:e4:9e:e0:0c:f9:f2:bd:4e:60:63:38: e6:1e:23:9b:df:b5:f6:b2:87:a5:de:4c:c5:99:56: f3:e6:b1:00:5d:a5:19:d5:e9:16:02:67:49:41:e1: f9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:97:DC:FD:12:6B:99:F8:90:C3:A5:9F:AE:6F:ED:AD:33:27:74:85 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:5f:4e:f8:81:e3:00:9a:3f:9d:47:61:ed:3d:0b:d3:e0:ff: 6e:38:80:11:80:b3:ff:37:03:0a:ab:44:96:be:e0:79:4c:6e: 4a:25:89:0e:b2:47:03:09:49:c7:38:6c:f1:5c:00:de:51:81: 35:b8:47:79:27:7d:f2:4c:29:bf:aa:33:5a:eb:15:d5:95:1c: 21:45:b3:53:ce:7e:ac:8d:ed:38:ff:35:94:55:1b:72:b1:4b: 8f:b0:ab:7f:84:4d:3b:1b:66:73:81:37:5e:76:78:83:1f:b7: bc:8b:20:18:4b:1e:54:98:d6:5e:b3:3d:c2:72:33:5f:df:f1: 55:ce:d6:1a:c5:47:f2:8f:1f:f4:90:6e:6e:c8:53:77:5e:45: 79:0d:c4:9a:8c:05:dd:bb:52:02:5d:27:05:e9:77:29:66:52: 71:fd:2a:91:36:f7:05:c6:90:59:67:b4:50:5e:6c:2a:cf:39: c7:f2:76:6e:3d:07:70:1c:c4:02:37:63:a1:db:39:3f:68:dd: a1:06:a1:69:bb:78:82:a6:d4:b1:55:c1:f2:24:04:5e:96:3b: c6:2a:ea:d2:89:5f:5f:54:bc:e4:37:d5:1b:dc:75:15:ec:35: 07:f2:aa:9c:85:22:d3:b3:e7:bd:ea:13:6c:3f:20:2b:c1:50: aa:94:3f:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUxMDE5MDM0MjI2WhcNMjUxMDI2MDM0MjI2WjAYMRYwFAYD VQQDEw02OGY0NWUyMi04OTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6i7V4ipUVPrh0Se7FOJbwqTkNIh+F/fbn38DUghabEMqNawmThzkN/oQaeXe BcdPW9Qc2fxRQIxFR/j5trJ4sNUuI22Q3/3h5Djx1Wrgzs0V/Xd2+GXBeXPM6T8d xDXlO5kTPVp62bC7h+uMgMwUIqUeKPpBiBxWsrsdGtf0Fyp6FGyg0/qgJ5Mx16gk eD8hmKTMk7HS78L8GSzLG4sWGV3st6ELQREnwqyLr5XJ9/OIOclONQSDOAAZV7Na qyhhEXcn0WtwzJFj36yzTX8GEKpsPzlH5J7gDPnyvU5gYzjmHiOb37X2soel3kzF mVbz5rEAXaUZ1ekWAmdJQeH5YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+X3P0S a5n4kMOln65v7a0zJ3SFMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3X074geMAmj+dR2HtPQvT4P9uOIARgLP/NwMKq0SWvuB5TG5KJYkO skcDCUnHOGzxXADeUYE1uEd5J33yTCm/qjNa6xXVlRwhRbNTzn6sje04/zWUVRty sUuPsKt/hE07G2ZzgTdedniDH7e8iyAYSx5UmNZesz3CcjNf3/FVztYaxUfyjx/0 kG5uyFN3XkV5DcSajAXdu1ICXScF6XcpZlJx/SqRNvcFxpBZZ7RQXmwqzznH8nZu PQdwHMQCN2Oh2zk/aN2hBqFpu3iCptSxVcHyJAReljvGKurSiV9fVLzkN9Ub3HUV 7DUH8qqchSLTs+e96hNsPyArwVCqlD+7 -----END CERTIFICATE-----Generated at Mon Oct 20 20:23:10 2025 by rpki-client