$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: fRNW6mLe1lrUrIrdWEOZFSBphKL5Y3/qlQKRaTHqLa8= Subject key identifier: DE:60:BD:C6:B5:E2:F8:13:21:26:46:36:3C:EE:C6:3A:1E:34:F1:CD Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 0192 Signing time: Wed 05 Nov 2025 03:34:08 +0000 Manifest this update: Wed 05 Nov 2025 03:34:07 +0000 Manifest next update: Wed 12 Nov 2025 03:34:07 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: KoVXAcjDNy86D2j0wUjflYBdkU486KXBjLBaEtlrwzc=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: 3nZkRqzVFhraaOpvrG0LDJguOxKECxTU8dAQntDOqqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Nov 5 03:34:07 2025 GMT Not After : Nov 12 03:34:07 2025 GMT Subject: CN=690ac5b0-18fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d0:9b:4b:6f:3b:57:a7:41:06:f6:3c:3d:7c: ee:14:8c:b2:09:4f:68:fe:ad:b7:f4:5c:07:d8:5d: eb:2e:a5:b8:d0:8f:c0:d3:b7:c3:33:e1:fd:f3:dd: ba:87:9c:7c:6d:55:0f:56:b7:7f:7e:53:99:72:00: 39:94:6c:38:6d:17:76:d2:e2:c6:dc:91:54:fe:fa: 16:31:f1:0a:82:a0:62:52:55:aa:0e:1f:97:1f:01: 65:3a:b2:a7:82:a0:57:3e:b0:af:ad:32:1b:87:e0: 78:1c:c7:40:ff:1a:c2:e0:a3:95:ba:f4:a5:0a:38: c7:ff:bc:ae:4a:ba:43:c4:2f:63:17:9b:f8:a3:31: aa:c3:2d:ac:56:69:d1:3a:16:67:18:7b:e9:23:a6: 62:e6:7e:a5:30:6a:08:11:f4:f0:64:c1:70:e9:f7: f8:f9:06:44:32:e8:54:d1:a3:f2:16:4a:8d:17:0d: 0e:1d:61:4f:3e:d5:c2:49:0d:6f:75:34:22:3f:3a: 8b:ca:ee:9e:bb:03:69:a8:db:fd:c2:3e:7b:1f:17: 48:9a:bf:8d:ff:7f:77:1c:69:5a:05:07:8a:00:25: 12:c4:52:35:27:24:0a:ed:44:af:c8:95:f5:66:06: 20:15:f6:73:c3:bc:c9:9d:6a:92:65:b5:7d:93:c3: 47:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:60:BD:C6:B5:E2:F8:13:21:26:46:36:3C:EE:C6:3A:1E:34:F1:CD X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:86:40:22:92:b0:36:35:11:48:c7:85:9f:11:51:7a:00:fa: 23:0c:7a:00:81:76:18:cb:70:5b:21:31:23:f7:00:e2:79:a2: a9:ce:f7:95:58:ad:bd:f5:35:14:74:17:be:33:07:17:34:b9: b5:12:2a:c5:0e:92:ff:28:79:bb:36:64:09:a3:79:01:90:d3: 85:e8:08:b8:98:29:e9:d5:a4:9c:a3:bb:7f:18:fb:b9:5f:57: 3f:ce:95:69:2e:63:e9:40:eb:d8:d3:ba:88:c4:9e:51:3a:eb: 27:b1:b1:0d:e2:6f:83:2b:aa:59:38:e7:bc:cb:7c:22:5b:a8: 7b:db:af:33:91:77:a9:2f:7a:93:b4:88:b5:5d:e2:43:e5:21: ab:57:55:48:74:86:70:7f:a1:7b:98:88:28:32:2a:0d:97:50: 9a:e8:c2:9a:ab:f7:68:d0:9a:3d:24:99:23:00:f4:27:45:49: 04:96:ed:16:7a:79:77:1a:27:8c:a4:7b:b5:4b:35:d8:12:ff: 63:0f:11:92:c1:d9:eb:1c:da:23:56:b7:db:5e:dc:4f:39:1a: df:97:89:ad:96:1e:7b:ee:c0:a1:8c:7b:77:4e:34:de:69:ac: ce:56:21:ee:66:ef:43:8e:98:d9:55:1c:b9:a0:4b:4e:6a:94: 9e:95:7d:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjUxMTA1MDMzNDA3WhcNMjUxMTEyMDMzNDA3WjAYMRYwFAYD VQQDEw02OTBhYzViMC0xOGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttCbS287V6dBBvY8PXzuFIyyCU9o/q239FwH2F3rLqW40I/A07fDM+H98926 h5x8bVUPVrd/flOZcgA5lGw4bRd20uLG3JFU/voWMfEKgqBiUlWqDh+XHwFlOrKn gqBXPrCvrTIbh+B4HMdA/xrC4KOVuvSlCjjH/7yuSrpDxC9jF5v4ozGqwy2sVmnR OhZnGHvpI6Zi5n6lMGoIEfTwZMFw6ff4+QZEMuhU0aPyFkqNFw0OHWFPPtXCSQ1v dTQiPzqLyu6euwNpqNv9wj57HxdImr+N/393HGlaBQeKACUSxFI1JyQK7USvyJX1 ZgYgFfZzw7zJnWqSZbV9k8NHLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5gvca1 4vgTISZGNjzuxjoeNPHNMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7hkAikrA2NRFIx4WfEVF6APojDHoAgXYYy3BbITEj9wDieaKpzveV WK299TUUdBe+MwcXNLm1EirFDpL/KHm7NmQJo3kBkNOF6Ai4mCnp1aSco7t/GPu5 X1c/zpVpLmPpQOvY07qIxJ5ROusnsbEN4m+DK6pZOOe8y3wiW6h7268zkXepL3qT tIi1XeJD5SGrV1VIdIZwf6F7mIgoMioNl1Ca6MKaq/do0Jo9JJkjAPQnRUkElu0W enl3GieMpHu1SzXYEv9jDxGSwdnrHNojVrfbXtxPORrfl4mtlh577sChjHt3TjTe aazOViHuZu9DjpjZVRy5oEtOapSelX21 -----END CERTIFICATE-----Generated at Thu Nov 6 00:42:13 2025 by rpki-client