$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: m8sUJneRRqXdNz5z1bTQ5CT8zwJELakgqdWIrH2HrdY= Subject key identifier: 53:35:E2:BD:E9:68:5A:C2:6E:CC:AF:0C:4D:39:05:F1:CC:4A:8B:F0 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 0827 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 081F Signing time: Sat 18 Oct 2025 22:03:33 +0000 Manifest this update: Sat 18 Oct 2025 22:03:32 +0000 Manifest next update: Sat 25 Oct 2025 22:03:32 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: DX+vTEMF5pI4f8qQj6D1SLsbgllY9Lzix7qd/L9tXE4=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2087 (0x827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Oct 18 22:03:32 2025 GMT Not After : Oct 25 22:03:32 2025 GMT Subject: CN=68f40eb4-4948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:af:3e:62:26:8a:bb:8f:f2:e5:5f:c0:19:c9: f8:16:be:27:1a:83:7a:10:4b:2b:d9:c4:03:44:bb: c5:80:1e:38:47:8d:24:b2:7d:35:56:83:99:69:f1: ed:88:ae:42:fa:0c:81:d6:52:06:53:17:f3:ea:e1: 41:27:4a:11:0b:00:c0:73:78:65:86:3f:e3:4f:a8: 06:f3:e4:41:61:86:35:5c:62:36:14:be:2f:3e:75: f0:46:68:a9:dc:ed:51:cc:5f:91:0f:82:ef:1f:5a: 69:c6:78:7a:2b:bd:a9:c0:4f:8a:7f:6f:79:bd:29: a3:f6:17:c9:af:f9:a5:32:88:05:44:65:79:3f:c6: 16:4f:ef:9e:f6:0d:ee:9a:a3:22:68:43:01:f0:2a: f3:dc:e7:5e:b1:b4:b2:21:40:cb:97:76:4c:31:9a: 2f:a8:05:8c:f1:9d:5c:8f:de:07:d7:6e:f1:83:bf: 3a:11:f2:d6:9d:cc:43:d5:ac:fa:4b:78:6f:bd:1b: 81:b9:05:7c:42:42:9b:c5:b7:5e:51:8d:22:02:fb: 7a:fe:9b:e5:db:52:9a:dc:23:da:08:b1:6b:83:bb: a5:a9:6b:5b:33:54:7f:c9:77:3b:5e:cc:d0:c4:86: b7:a5:65:aa:34:09:4e:17:09:ec:ec:c9:c7:81:c8: 2d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:35:E2:BD:E9:68:5A:C2:6E:CC:AF:0C:4D:39:05:F1:CC:4A:8B:F0 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:58:cf:16:f6:4b:07:77:dc:fe:6f:e3:b7:9b:d9:02:6c:19: 2e:78:8c:b7:9c:dc:81:94:1e:00:81:d6:c1:ee:d7:25:e7:a9: 11:b8:f3:51:2e:65:7d:a2:31:de:8c:df:2e:f0:24:26:e7:64: 10:6c:3b:b6:31:ed:f6:c9:1e:ca:5c:93:1e:85:6f:c3:61:54: 94:e0:ad:fe:15:be:d3:a7:7a:1f:eb:28:6a:f4:91:98:4a:16: b1:19:7d:ed:96:a8:9b:31:cc:ad:d9:3e:e3:cf:70:da:71:d4: 39:26:39:23:f1:5c:81:80:1c:5a:c0:a3:ac:39:8b:99:f3:b1: 11:68:ee:be:cd:92:5c:ce:0c:f8:9d:6c:c2:01:0f:51:d8:7c: 52:1c:03:46:c7:56:95:f7:e0:52:7c:9e:67:91:ab:d8:c9:73: 3e:d7:24:36:60:27:28:c9:85:04:75:80:47:0f:42:8d:e0:68: e0:f5:ec:71:3d:f0:21:9e:33:7e:28:0e:f9:8b:bc:9a:62:78: be:8c:63:c7:c6:b4:11:4c:4c:7e:e2:30:46:d2:9b:e3:29:cd: 68:cc:5d:aa:6a:61:72:f7:37:f3:27:89:37:a3:77:27:dc:31: bd:7e:65:a5:66:95:bc:c9:d0:36:9d:72:78:f6:d4:19:6c:e6: 3e:1e:f1:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUxMDE4MjIwMzMyWhcNMjUxMDI1MjIwMzMyWjAYMRYwFAYD VQQDEw02OGY0MGViNC00OTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK8+YiaKu4/y5V/AGcn4Fr4nGoN6EEsr2cQDRLvFgB44R40ksn01VoOZafHt iK5C+gyB1lIGUxfz6uFBJ0oRCwDAc3hlhj/jT6gG8+RBYYY1XGI2FL4vPnXwRmip 3O1RzF+RD4LvH1ppxnh6K72pwE+Kf295vSmj9hfJr/mlMogFRGV5P8YWT++e9g3u mqMiaEMB8Crz3OdesbSyIUDLl3ZMMZovqAWM8Z1cj94H127xg786EfLWncxD1az6 S3hvvRuBuQV8QkKbxbdeUY0iAvt6/pvl21Ka3CPaCLFrg7ulqWtbM1R/yXc7XszQ xIa3pWWqNAlOFwns7MnHgcgtPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFM14r3p aFrCbsyvDE05BfHMSovwMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmWM8W9ksHd9z+b+O3m9kCbBkueIy3nNyBlB4AgdbB7tcl56kRuPNR LmV9ojHejN8u8CQm52QQbDu2Me32yR7KXJMehW/DYVSU4K3+Fb7Tp3of6yhq9JGY ShaxGX3tlqibMcyt2T7jz3DacdQ5Jjkj8VyBgBxawKOsOYuZ87ERaO6+zZJczgz4 nWzCAQ9R2HxSHANGx1aV9+BSfJ5nkavYyXM+1yQ2YCcoyYUEdYBHD0KN4Gjg9exx PfAhnjN+KA75i7yaYni+jGPHxrQRTEx+4jBG0pvjKc1ozF2qamFy9zfzJ4k3o3cn 3DG9fmWlZpW8ydA2nXJ49tQZbOY+HvHN -----END CERTIFICATE-----Generated at Mon Oct 20 11:32:18 2025 by rpki-client