$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: MHVGn3tDyEU8u5A+9kCtHsX1I5ZcCjU7u0lmPulzvcQ= Subject key identifier: 98:29:18:12:A9:68:04:39:91:74:7C:35:6F:6F:C4:16:79:D3:E9:6A Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 13FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 13F1 Signing time: Sat 18 Oct 2025 17:24:41 +0000 Manifest this update: Sat 18 Oct 2025 17:24:41 +0000 Manifest next update: Sat 25 Oct 2025 17:24:41 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: M9OZTwR42ExgoAACUnNusB1nbw5pGulVfyiUL+VYAj4=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: M9FXaqMN3xRXkYSG9XQqHpw6Lro8+iU9Ajk3i3+nJw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5116 (0x13fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639, serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: Oct 18 17:24:41 2025 GMT Not After : Oct 25 17:24:41 2025 GMT Subject: CN=68f3cd59-fc4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ed:f7:4d:a6:6d:9f:36:14:9d:7f:b0:e0:dc: ec:ee:dc:ab:13:ae:d4:63:b2:72:2d:c7:63:e9:5a: 12:35:e4:cc:2e:01:2a:e6:98:38:ee:22:5f:90:9b: 95:09:d9:85:e7:47:92:21:6e:51:32:9c:cc:41:fe: f2:07:f4:60:4a:f1:54:2e:46:2a:d1:74:63:f4:75: 6d:bb:9a:b7:16:60:34:f4:7a:4c:fc:17:29:66:06: 35:66:9d:9a:38:bb:7d:26:74:05:49:96:c4:43:70: 75:12:55:02:7a:69:54:7e:b5:18:87:e6:e2:8e:97: 81:90:7b:f8:fd:35:37:28:81:48:92:0f:02:ff:0a: ac:a3:07:ac:fd:6d:2f:26:6e:16:92:12:4d:22:53: ba:c9:1f:91:90:61:53:d4:f3:6e:b4:3b:e3:72:ae: d0:77:67:a4:88:91:94:47:e3:62:63:b5:b6:24:71: 7c:5f:59:6f:a7:15:7b:70:68:13:d7:71:b9:79:31: ab:08:04:ce:56:62:b8:b6:75:a3:e5:10:d0:df:67: 23:d0:f2:a8:82:54:1a:19:20:a7:5e:01:79:21:2e: 5d:63:bf:68:af:fe:c1:69:2e:e2:20:b2:e8:ec:b9: 62:14:48:fa:34:c7:db:4e:83:cc:f7:7c:25:2e:43: 4b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:29:18:12:A9:68:04:39:91:74:7C:35:6F:6F:C4:16:79:D3:E9:6A X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:4b:ba:1d:15:75:5f:0e:6f:ab:97:67:86:77:95:8d:51:39: 85:95:5a:0f:9c:ac:e9:13:11:f6:ab:6e:96:a7:f0:44:4a:a4: fe:3c:fd:53:60:37:2d:91:7e:5e:a3:a7:95:83:22:0b:b6:41: 3f:82:49:7a:60:ca:4a:09:65:f8:18:80:cd:40:5b:ef:b5:62: 16:c5:23:d0:8b:c7:30:49:f8:28:29:d0:dc:03:ac:d5:05:c0: 5c:e6:75:0b:0b:40:d8:95:a5:bd:f6:2c:99:16:e4:b7:d2:9b: 1b:08:02:c6:89:2e:2a:ff:7b:5f:fe:97:88:2e:06:62:a0:b9: bc:8c:d4:66:69:0e:9b:db:9a:26:4b:f5:40:ed:8f:68:36:62: 2a:54:2f:e6:da:55:18:ef:a6:75:ec:3f:c8:9b:02:ba:b1:c1: 73:83:3c:11:dc:30:d6:c0:2e:b1:45:46:96:f0:5a:ac:d2:e8: cc:55:b5:1d:c7:bc:33:06:94:3b:4e:31:35:68:3e:a0:e8:fa: 2d:ae:f7:54:75:2a:b9:f3:80:6f:77:f8:d0:3a:6d:64:4a:bb: 40:4d:31:b3:00:79:54:0f:b7:fe:0f:d7:0c:b3:aa:c1:39:29: 09:a2:25:32:bb:35:b1:50:67:68:47:cb:a6:9c:0d:c5:59:70: 74:ab:98:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjUxMDE4MTcyNDQxWhcNMjUxMDI1MTcyNDQxWjAYMRYwFAYD VQQDEw02OGYzY2Q1OS1mYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuu33TaZtnzYUnX+w4Nzs7tyrE67UY7JyLcdj6VoSNeTMLgEq5pg47iJfkJuV CdmF50eSIW5RMpzMQf7yB/RgSvFULkYq0XRj9HVtu5q3FmA09HpM/BcpZgY1Zp2a OLt9JnQFSZbEQ3B1ElUCemlUfrUYh+bijpeBkHv4/TU3KIFIkg8C/wqsowes/W0v Jm4WkhJNIlO6yR+RkGFT1PNutDvjcq7Qd2ekiJGUR+NiY7W2JHF8X1lvpxV7cGgT 13G5eTGrCATOVmK4tnWj5RDQ32cj0PKoglQaGSCnXgF5IS5dY79or/7BaS7iILLo 7LliFEj6NMfbToPM93wlLkNLVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgpGBKp aAQ5kXR8NW9vxBZ50+lqMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1S7odFXVfDm+rl2eGd5WNUTmFlVoPnKzpExH2q26Wp/BESqT+PP1T YDctkX5eo6eVgyILtkE/gkl6YMpKCWX4GIDNQFvvtWIWxSPQi8cwSfgoKdDcA6zV BcBc5nULC0DYlaW99iyZFuS30psbCALGiS4q/3tf/peILgZioLm8jNRmaQ6b25om S/VA7Y9oNmIqVC/m2lUY76Z17D/ImwK6scFzgzwR3DDWwC6xRUaW8Fqs0ujMVbUd x7wzBpQ7TjE1aD6g6PotrvdUdSq584Bvd/jQOm1kSrtATTGzAHlUD7f+D9cMs6rB OSkJoiUyuzWxUGdoR8umnA3FWXB0q5gi -----END CERTIFICATE-----Generated at Mon Oct 20 13:34:25 2025 by rpki-client