$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: xK7LO3V0n+fdQ1LsSJU6/Vj1ns8ItgfZYsadgCxqpaw= Subject key identifier: E5:5C:03:4B:A7:43:1F:E8:72:7E:0F:85:70:F1:52:9B:E2:78:FD:9F Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 0235 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 022F Signing time: Sun 19 Oct 2025 04:11:24 +0000 Manifest this update: Sun 19 Oct 2025 04:11:23 +0000 Manifest next update: Sun 26 Oct 2025 04:11:23 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: WPLPqCPuIzYFEYJTvXE1V+hHCEYe5TOKKmqbWUfVQig=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Oct 19 04:11:23 2025 GMT Not After : Oct 26 04:11:23 2025 GMT Subject: CN=68f464eb-4b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:19:1d:28:10:6f:f5:d0:9e:0c:54:2d:f7:63: 54:e9:91:09:23:c6:38:7c:d9:8b:8d:f0:f1:d5:e9: d6:82:55:db:0c:52:48:9b:22:25:c7:18:47:e4:09: 40:ca:05:fd:9f:a6:3a:5e:74:c5:ae:95:b6:9a:ca: 54:36:dd:04:f4:30:3c:7e:22:4e:c7:d9:16:b2:0d: fa:0e:70:b4:b8:51:f7:c1:91:95:df:fc:4a:27:01: a3:27:bc:35:7c:f7:25:87:15:60:3d:1a:5c:00:6b: bc:3f:1e:30:ac:70:93:34:9b:4f:5b:fc:25:9b:32: 8a:33:c8:8b:83:cd:ed:20:ee:4b:ca:74:5f:0a:f2: 6c:5d:37:2f:d2:bb:c9:5a:56:81:ae:87:c4:58:75: bc:3f:46:4d:af:09:b2:e5:fb:f1:51:fa:68:dc:f4: ef:22:db:6d:79:f6:91:72:82:dc:73:7e:17:75:07: b7:22:07:a4:a3:6e:c4:c8:6c:38:8b:68:2f:85:e5: 88:e7:87:ae:7e:88:a2:71:c5:9e:c2:ab:df:b9:3f: c9:bc:68:71:c0:51:57:4c:c1:08:50:35:ea:53:90: fa:32:1f:b8:07:2b:81:9f:c5:c2:2c:8d:00:a4:dd: bd:d6:57:6b:25:aa:4d:36:22:93:e7:cb:21:d4:b8: 7b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5C:03:4B:A7:43:1F:E8:72:7E:0F:85:70:F1:52:9B:E2:78:FD:9F X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:95:07:49:84:9b:ba:92:c3:b7:26:12:43:2e:a2:91:c0:a4: 67:87:c1:ad:9d:40:c6:59:4f:be:45:7c:a3:02:7c:2c:9e:a0: ba:f7:13:24:a2:48:75:d6:cc:35:e9:3f:2d:c1:7d:fe:e8:24: 53:d4:22:ea:53:7c:59:c4:26:d6:ba:99:d0:f0:ac:b3:38:e8: 45:bb:29:20:37:c1:03:ce:d5:c2:9c:2a:72:6b:cf:35:af:aa: cf:ed:fe:02:c5:32:b2:86:57:a5:7f:e4:ca:31:d1:9a:fb:73: 38:63:98:08:f0:6c:ef:7c:14:86:50:7b:13:9d:25:f0:10:bd: a7:f1:2e:98:6d:ee:45:47:59:40:7f:0c:22:ff:16:57:78:87: 84:f3:fd:0f:03:54:b3:54:66:c1:c1:31:f9:10:9d:f8:ba:aa: 06:05:f0:96:e3:08:a7:c8:e9:a3:b3:29:a6:10:b5:06:34:09: e8:e2:c1:79:23:db:92:c6:8e:c7:06:60:d1:c9:1f:21:ed:5b: bc:94:63:86:bb:6b:33:c5:f9:a1:cf:fb:04:24:0d:75:f2:a2: 08:41:db:76:cc:96:4a:ad:ad:9e:ac:6a:4b:8b:e9:22:72:fa: 80:db:ff:25:f2:4a:36:a1:71:dc:71:57:b6:94:93:ce:fa:0b: 49:a5:8b:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUxMDE5MDQxMTIzWhcNMjUxMDI2MDQxMTIzWjAYMRYwFAYD VQQDEw02OGY0NjRlYi00YjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RkdKBBv9dCeDFQt92NU6ZEJI8Y4fNmLjfDx1enWglXbDFJImyIlxxhH5AlA ygX9n6Y6XnTFrpW2mspUNt0E9DA8fiJOx9kWsg36DnC0uFH3wZGV3/xKJwGjJ7w1 fPclhxVgPRpcAGu8Px4wrHCTNJtPW/wlmzKKM8iLg83tIO5LynRfCvJsXTcv0rvJ WlaBrofEWHW8P0ZNrwmy5fvxUfpo3PTvItttefaRcoLcc34XdQe3Igeko27EyGw4 i2gvheWI54eufoiiccWewqvfuT/JvGhxwFFXTMEIUDXqU5D6Mh+4ByuBn8XCLI0A pN291ldrJapNNiKT58sh1Lh76wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVcA0un Qx/ocn4PhXDxUpvieP2fMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtlQdJhJu6ksO3JhJDLqKRwKRnh8GtnUDGWU++RXyjAnwsnqC69xMk okh11sw16T8twX3+6CRT1CLqU3xZxCbWupnQ8KyzOOhFuykgN8EDztXCnCpya881 r6rP7f4CxTKyhlelf+TKMdGa+3M4Y5gI8GzvfBSGUHsTnSXwEL2n8S6Ybe5FR1lA fwwi/xZXeIeE8/0PA1SzVGbBwTH5EJ34uqoGBfCW4winyOmjsymmELUGNAno4sF5 I9uSxo7HBmDRyR8h7Vu8lGOGu2szxfmhz/sEJA118qIIQdt2zJZKra2erGpLi+ki cvqA2/8l8ko2oXHccVe2lJPO+gtJpYu0 -----END CERTIFICATE-----Generated at Mon Oct 20 12:45:32 2025 by rpki-client