$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: vnxrv+GNTCFBNmBWv9qxrtnSwoFzGMqsiOYoFjcCSg4= Subject key identifier: 4F:B9:FB:35:D0:5C:89:18:EE:F9:B5:AC:63:E6:7E:20:E9:A8:52:53 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 01D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 01CF Signing time: Wed 05 Nov 2025 02:58:59 +0000 Manifest this update: Wed 05 Nov 2025 02:58:58 +0000 Manifest next update: Wed 12 Nov 2025 02:58:58 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: 4tc8O2+QNflT5N6D00rlBSETV5XuRAvsw3yqUjn39x4=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Nov 5 02:58:58 2025 GMT Not After : Nov 12 02:58:58 2025 GMT Subject: CN=690abd72-7f1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0e:45:40:24:ff:7e:8f:74:aa:35:47:e9:06: 1d:6e:af:e8:83:d0:73:71:50:d5:84:f0:cd:f1:c3: 0e:0f:a4:de:8a:cc:3e:e8:13:78:b6:24:4b:40:49: f1:db:c4:b9:98:7a:7e:0f:a1:c2:c8:5b:6f:c4:91: 92:ff:d6:7b:9b:eb:42:28:69:a9:c9:8b:fe:fd:1b: 25:0d:91:9d:b2:8e:65:d3:e1:b7:7a:4d:a7:c6:5f: a2:70:ae:14:f2:93:20:65:83:48:4b:19:85:80:d5: 6a:3b:18:fb:2c:3c:c4:b8:5a:54:e3:82:d3:01:b1: bc:ab:8c:b0:68:b1:31:be:0c:fc:b2:5a:02:91:40: fe:fd:4f:e6:4a:53:37:3c:2b:86:e0:c7:a7:7e:7d: 9e:8a:27:7e:5c:5f:ea:5a:3e:96:a8:9d:34:d7:69: b0:c5:dd:1f:33:6d:06:a2:1e:b9:7f:3d:f1:31:ef: 6c:00:b5:0f:ad:3c:95:e4:75:5b:a1:01:5c:6f:66: 6a:5b:80:02:a7:4c:91:ef:9c:2c:fc:73:ac:ee:a8: 7c:c3:1d:37:cd:61:0b:6c:b0:73:af:74:be:80:7d: f8:70:ed:14:41:64:9d:91:f1:cf:da:68:97:29:db: 94:86:e1:d5:9d:5b:b6:44:c9:0f:8c:33:af:54:60: 51:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B9:FB:35:D0:5C:89:18:EE:F9:B5:AC:63:E6:7E:20:E9:A8:52:53 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:93:85:65:2c:d8:e4:32:c4:fc:93:74:ca:16:82:09:07:15: 48:c1:51:f7:c7:21:95:3d:6f:a2:0a:73:cc:f0:73:21:24:0c: b3:74:9b:2b:86:67:f9:d1:9b:9f:77:a8:6b:4b:5e:01:9e:af: f4:25:3d:7c:0b:e5:00:23:60:20:25:4d:d9:54:45:99:1c:f4: 45:23:9d:d4:72:9f:12:f5:60:14:78:68:2f:0e:e2:40:1a:fa: da:56:f8:2a:21:bf:f5:f7:7a:4f:75:a9:5f:8e:1b:0d:60:e3: 94:f1:d9:04:6f:6c:52:9a:1c:49:66:fe:98:f2:ce:6c:08:a1: 16:d1:e7:37:09:58:e2:74:30:d3:87:0b:af:c0:a7:54:cb:b7: fb:08:27:bf:27:59:b4:eb:40:3d:c2:9d:ec:76:23:be:61:a3: 6e:ee:24:60:e8:a9:1a:07:94:87:b9:17:ab:d3:88:be:ee:8d: bc:49:e8:9d:6a:9f:a0:a9:e5:13:cb:58:93:d3:a3:c1:09:e7: 73:99:e7:c5:46:9e:64:e1:b7:0e:63:7a:b9:c3:57:23:55:8c: bd:4d:45:33:d2:3f:a4:f1:3c:23:08:5a:01:84:01:ff:32:d6: 94:62:a1:57:90:8e:a1:8f:c6:24:11:07:5c:b6:01:21:86:45: 69:d0:5a:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUxMTA1MDI1ODU4WhcNMjUxMTEyMDI1ODU4WjAYMRYwFAYD VQQDEw02OTBhYmQ3Mi03ZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlg5FQCT/fo90qjVH6QYdbq/og9BzcVDVhPDN8cMOD6Teisw+6BN4tiRLQEnx 28S5mHp+D6HCyFtvxJGS/9Z7m+tCKGmpyYv+/RslDZGdso5l0+G3ek2nxl+icK4U 8pMgZYNISxmFgNVqOxj7LDzEuFpU44LTAbG8q4ywaLExvgz8sloCkUD+/U/mSlM3 PCuG4Menfn2eiid+XF/qWj6WqJ0012mwxd0fM20Goh65fz3xMe9sALUPrTyV5HVb oQFcb2ZqW4ACp0yR75ws/HOs7qh8wx03zWELbLBzr3S+gH34cO0UQWSdkfHP2miX KduUhuHVnVu2RMkPjDOvVGBRXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+5+zXQ XIkY7vm1rGPmfiDpqFJTMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnk4VlLNjkMsT8k3TKFoIJBxVIwVH3xyGVPW+iCnPM8HMhJAyzdJsr hmf50Zufd6hrS14Bnq/0JT18C+UAI2AgJU3ZVEWZHPRFI53Ucp8S9WAUeGgvDuJA GvraVvgqIb/193pPdalfjhsNYOOU8dkEb2xSmhxJZv6Y8s5sCKEW0ec3CVjidDDT hwuvwKdUy7f7CCe/J1m060A9wp3sdiO+YaNu7iRg6KkaB5SHuRer04i+7o28Seid ap+gqeUTy1iT06PBCedzmefFRp5k4bcOY3q5w1cjVYy9TUUz0j+k8TwjCFoBhAH/ MtaUYqFXkI6hj8YkEQdctgEhhkVp0FrB -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:25 2025 by rpki-client