$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: 8VYNXY9HFP5VzLudnFA//I7Qwb3yCRX0/T4j3dBK0MU= Subject key identifier: 3F:47:FA:C3:83:A4:16:98:33:7E:99:FD:A1:99:F9:53:3B:AD:25:43 Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 0A27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 0A15 Signing time: Tue 04 Nov 2025 19:55:57 +0000 Manifest this update: Tue 04 Nov 2025 19:55:57 +0000 Manifest next update: Tue 11 Nov 2025 19:55:57 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: WD6OgwTq9UkBW6N8/uj1WakwmgzaHpcS7fHY3qz6Oh8=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: Cf8bqRacvTWl+UzpH6e1kxekXSzzSxIQ9wSazOTj5Ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2599 (0xa27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE, serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: Nov 4 19:55:57 2025 GMT Not After : Nov 11 19:55:57 2025 GMT Subject: CN=690a5a4d-3cd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fe:5e:3b:59:72:3f:0f:7e:fa:b4:df:b9:d1: 79:db:a1:a8:b9:be:64:33:cb:f7:46:eb:2d:8b:f0: 1e:00:f2:5d:93:27:1e:a8:c5:d1:35:c1:e8:79:a2: 72:2b:65:a7:d7:d7:ec:55:72:f7:13:79:5d:32:07: e2:c1:3e:49:f2:c7:00:a2:b7:9a:74:45:1b:bc:50: 10:e8:ba:f5:17:91:51:2a:4b:aa:de:41:16:e1:6e: c0:6f:48:8c:8f:33:91:a4:c2:87:bf:9d:80:ea:49: 40:01:0c:fb:19:2f:03:fa:37:3f:61:06:d5:7b:4c: a3:06:10:f6:2e:35:b7:d4:98:36:a7:32:ad:0f:10: 4f:52:8b:5d:af:a2:ae:b1:d9:b7:67:18:df:ae:ff: 15:c6:2e:74:8c:d9:79:ee:35:3c:8e:34:97:7f:99: be:9b:99:0a:f7:a6:23:cf:49:29:d4:f9:17:4c:09: cc:a1:a5:f7:3c:66:29:c3:81:c5:23:72:75:7a:bf: 7a:0c:df:53:9d:32:06:90:ab:85:f7:e1:1a:91:d8: 5f:fb:e8:f3:04:37:78:ec:24:f4:13:bc:f3:b0:32: 13:f9:33:05:47:e1:a1:61:51:12:4d:76:c4:6c:be: 50:cb:4a:d2:82:81:0e:d2:6d:77:40:71:7e:4b:f1: d4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:47:FA:C3:83:A4:16:98:33:7E:99:FD:A1:99:F9:53:3B:AD:25:43 X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:7c:b3:97:3e:31:8e:fa:38:1d:6f:0c:16:81:32:fc:c7:b4: 7c:d2:1c:13:2f:23:5b:af:d5:df:07:e1:19:96:dc:d0:f6:51: b4:67:e1:87:46:8c:9a:46:51:de:79:d5:24:c3:f9:41:4c:8d: 16:62:2b:61:0e:34:82:e9:fa:88:79:c2:2c:02:a5:26:3b:43: 70:ea:d1:8a:d3:17:4e:e6:fe:1d:59:94:10:d0:65:5a:ca:3c: 0f:71:b1:ad:17:08:83:ae:8e:93:20:9c:60:c9:99:30:5c:83: 7f:47:e9:4f:40:da:fc:66:06:8a:64:9e:48:7c:d6:c5:6d:6b: cd:74:cd:c7:4d:00:17:a8:b9:62:06:03:27:ca:a0:71:ff:1a: a3:ff:68:b5:7a:7a:60:a8:55:4d:18:b4:2f:da:c2:55:90:56: b6:85:4e:c1:da:d5:f5:49:35:89:93:ff:1c:ad:f7:87:a8:c9: 30:e5:4c:ea:d3:93:4a:b8:b4:e1:2d:c7:61:3c:92:ce:c7:e1: 0c:88:03:02:d5:a5:c8:a6:f3:70:bd:5d:15:55:26:a4:73:bd: f7:b7:d4:65:62:3a:39:73:15:90:9f:16:7b:2e:d4:02:6c:0e: 83:ee:a8:27:f6:fd:29:0c:30:f4:89:1e:2d:ab:86:e2:ee:a2: 26:1d:6a:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjUxMTA0MTk1NTU3WhcNMjUxMTExMTk1NTU3WjAYMRYwFAYD VQQDEw02OTBhNWE0ZC0zY2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1v5eO1lyPw9++rTfudF526Goub5kM8v3Rusti/AeAPJdkyceqMXRNcHoeaJy K2Wn19fsVXL3E3ldMgfiwT5J8scAoreadEUbvFAQ6Lr1F5FRKkuq3kEW4W7Ab0iM jzORpMKHv52A6klAAQz7GS8D+jc/YQbVe0yjBhD2LjW31Jg2pzKtDxBPUotdr6Ku sdm3Zxjfrv8Vxi50jNl57jU8jjSXf5m+m5kK96Yjz0kp1PkXTAnMoaX3PGYpw4HF I3J1er96DN9TnTIGkKuF9+Eakdhf++jzBDd47CT0E7zzsDIT+TMFR+GhYVESTXbE bL5Qy0rSgoEO0m13QHF+S/HUaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9H+sOD pBaYM36Z/aGZ+VM7rSVDMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtfLOXPjGO+jgdbwwWgTL8x7R80hwTLyNbr9XfB+EZltzQ9lG0Z+GH RoyaRlHeedUkw/lBTI0WYithDjSC6fqIecIsAqUmO0Nw6tGK0xdO5v4dWZQQ0GVa yjwPcbGtFwiDro6TIJxgyZkwXIN/R+lPQNr8ZgaKZJ5IfNbFbWvNdM3HTQAXqLli BgMnyqBx/xqj/2i1enpgqFVNGLQv2sJVkFa2hU7B2tX1STWJk/8crfeHqMkw5Uzq 05NKuLThLcdhPJLOx+EMiAMC1aXIpvNwvV0VVSakc733t9RlYjo5cxWQnxZ7LtQC bA6D7qgn9v0pDDD0iR4tq4bi7qImHWob -----END CERTIFICATE-----Generated at Wed Nov 5 12:26:52 2025 by rpki-client