$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: ndlKSrVP+s/sfHcFj+uwN/PWiyfAt7Q5fkHrNZlIZqE= Subject key identifier: AA:D4:A4:FE:35:64:23:C6:28:AA:22:98:54:59:F7:EE:CE:72:1D:55 Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: 8C Signing time: Sun 19 Oct 2025 10:00:33 +0000 Manifest this update: Sun 19 Oct 2025 10:00:33 +0000 Manifest next update: Sun 26 Oct 2025 10:00:33 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: gu2ELwBG2C3ut7m2PJBIOl0UjSOiY+hGpQeHkrpvuFo=) 2: 7F9864BC278511F08A309E80C4F9AE02.roa (hash: Qmy+i9C5Rc4mKmMkW3mFXP5ni+MgnYfnd/vlrjppwOw=) 3: 965254F8278811F09217002CC4F9AE02.roa (hash: 43x78k+dzhsv7ZCDVrgKApUESFB1ajmPRMXQlcEBmxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Oct 19 10:00:33 2025 GMT Not After : Oct 26 10:00:33 2025 GMT Subject: CN=68f4b6c1-067b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5a:17:ff:98:31:07:26:85:db:06:ac:d8:be: 24:e1:a2:47:8d:90:14:04:97:bb:86:7a:9c:7c:29: a3:4c:0a:18:d6:1b:15:d4:f2:1f:6b:b2:64:6e:2e: 4f:32:e1:f2:f2:b9:55:ba:be:8d:66:f9:0c:bd:69: f7:11:37:a8:4f:9d:ee:09:6a:22:0e:9f:3d:45:d7: 88:4b:44:bf:b6:b8:b4:7a:5f:2d:e8:17:d7:e7:4a: 26:61:08:85:10:4b:e2:a7:59:ae:59:75:11:78:ac: fe:fe:53:fb:3f:79:2b:f2:4c:b2:64:99:b9:91:bd: 8e:d6:87:b6:27:db:a2:13:b1:43:6e:83:5d:01:e4: 36:39:92:b2:77:07:d5:6f:8f:a1:20:69:23:af:20: b3:3e:90:2e:07:c2:53:fb:d3:77:b8:e7:3a:98:1f: 45:78:b6:53:9c:01:6b:82:ad:95:27:84:02:96:1c: cb:9b:65:cc:3b:e2:ae:42:58:2e:f3:ba:b3:1f:03: 01:92:a2:5c:3c:06:f8:3f:98:7b:4a:88:6f:1d:48: d2:b2:16:60:81:34:2a:3a:d1:f0:b7:0d:ae:ff:4a: e9:21:da:74:41:92:c9:3a:dd:1e:08:7d:fc:ff:68: 08:87:82:71:74:a3:b4:53:ff:b3:16:75:1a:9c:47: 9c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D4:A4:FE:35:64:23:C6:28:AA:22:98:54:59:F7:EE:CE:72:1D:55 X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d8:cc:13:bc:f2:81:d3:4c:41:3a:ec:7e:af:83:a9:f6:ce: c0:a2:22:ed:70:03:c2:1a:07:c2:c8:69:b9:f1:14:15:d4:f5: 72:22:f1:2d:2a:3d:46:79:2a:b2:8e:97:68:38:0a:a9:c3:ae: 6a:22:ec:e0:60:f4:b1:8e:33:df:8f:ad:c9:b8:17:d4:b8:68: 3f:c5:29:47:d8:28:6b:37:80:95:c5:07:05:ee:3f:d8:dd:37: ef:3d:25:bb:e4:49:02:67:e2:54:7a:96:63:8e:fa:77:d9:f8: ca:f4:f1:91:4c:ad:aa:d1:8e:bc:9a:07:a1:9a:e1:fd:a2:dc: a5:a8:5a:43:d3:2c:9c:3a:96:52:1b:78:bd:87:42:88:20:2d: 90:58:82:65:c1:33:e3:f3:a4:f5:56:c2:59:e2:8e:80:dd:ca: 51:bb:48:7d:31:21:1c:aa:4d:27:76:3d:01:d5:ef:77:a6:75: ad:cb:be:ef:08:f0:55:8a:37:40:0a:f0:19:33:2a:e7:b9:02: c7:37:47:c2:d8:b8:6a:f6:b2:a7:56:45:1d:d6:87:a4:52:43: 8d:ee:d4:ee:0a:94:e9:62:0d:10:99:2d:9d:0b:7d:e5:71:c1: 50:c6:36:34:b2:14:e3:6f:f8:9e:ae:7a:71:55:81:90:5e:5a: 8f:1d:bc:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI2OEMxMTAvBgNVBAUTKEEyMjg4Rjg5NjRENjE2OUE4Nzk1RjJGNEVGMDVFMEQ1 RTZFMTNCMDkwHhcNMjUxMDE5MTAwMDMzWhcNMjUxMDI2MTAwMDMzWjAYMRYwFAYD VQQDEw02OGY0YjZjMS0wNjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VoX/5gxByaF2was2L4k4aJHjZAUBJe7hnqcfCmjTAoY1hsV1PIfa7Jkbi5P MuHy8rlVur6NZvkMvWn3ETeoT53uCWoiDp89RdeIS0S/tri0el8t6BfX50omYQiF EEvip1muWXUReKz+/lP7P3kr8kyyZJm5kb2O1oe2J9uiE7FDboNdAeQ2OZKydwfV b4+hIGkjryCzPpAuB8JT+9N3uOc6mB9FeLZTnAFrgq2VJ4QClhzLm2XMO+KuQlgu 87qzHwMBkqJcPAb4P5h7SohvHUjSshZggTQqOtHwtw2u/0rpIdp0QZLJOt0eCH38 /2gIh4JxdKO0U/+zFnUanEecnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrUpP41 ZCPGKKoimFRZ9+7Och1VMB8GA1UdIwQYMBaAFKIoj4lk1haah5Xy9O8F4NXm4TsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjY4Qy8xN0QxMDNBOEVB QjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0ZwcUhsZkwwN3dYZzFlYmhP d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0Zw cUhsZkwwN3dYZzFlYmhPd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn2MwTvPKB00xBOux+r4Op9s7AoiLtcAPCGgfCyGm58RQV1PVyIvEt Kj1GeSqyjpdoOAqpw65qIuzgYPSxjjPfj63JuBfUuGg/xSlH2ChrN4CVxQcF7j/Y 3TfvPSW75EkCZ+JUepZjjvp32fjK9PGRTK2q0Y68mgehmuH9otylqFpD0yycOpZS G3i9h0KIIC2QWIJlwTPj86T1VsJZ4o6A3cpRu0h9MSEcqk0ndj0B1e93pnWty77v CPBVijdACvAZMyrnuQLHN0fC2Lhq9rKnVkUd1oekUkON7tTuCpTpYg0QmS2dC33l ccFQxjY0shTjb/iernpxVYGQXlqPHbzr -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:34 2025 by rpki-client