$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: EGzr1u7U/Tn7KBartkHyssG0rV0wguYJVBVchYSJCOo= Subject key identifier: 3F:B1:FE:92:9E:01:0C:1F:69:19:64:99:C4:B2:2F:C9:31:B7:F0:0E Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0372 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 036A Signing time: Mon 03 Nov 2025 00:51:45 +0000 Manifest this update: Mon 03 Nov 2025 00:51:44 +0000 Manifest next update: Mon 10 Nov 2025 00:51:44 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: eBGaPpWrFWv4Pa/f6qMYODkmE/dYZ6P7W9u0KMiB0J4=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 882 (0x372) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Nov 3 00:51:44 2025 GMT Not After : Nov 10 00:51:44 2025 GMT Subject: CN=6907fca1-e97f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7e:16:51:a6:e3:3e:e7:42:fe:eb:46:f3:af: 1f:31:45:fe:1a:a6:c7:1e:a2:e1:8f:61:8b:35:60: e4:a6:3f:87:a0:29:d7:65:86:e0:43:03:24:74:93: 13:1b:9c:92:29:c6:fe:96:13:24:33:13:5d:2c:94: 9e:92:d1:17:22:11:24:96:81:c5:c4:19:97:5b:31: cf:59:ae:ee:16:82:7b:d6:09:ec:0a:11:7b:b8:88: dd:9f:15:71:23:22:c1:c8:5e:d5:d2:ab:55:e6:cf: 6b:a9:45:36:63:60:33:7f:37:bf:d2:18:33:f7:65: 27:ef:7b:a9:62:ce:78:1a:fc:55:c2:d3:6e:b3:60: 95:d4:68:77:99:eb:e5:4e:24:91:7a:42:f3:a3:e0: 6d:af:f7:08:e0:b0:0a:dd:5b:d9:bc:cc:76:27:59: 27:d9:21:8e:e3:3e:41:c6:72:98:d0:e6:0d:61:e8: 35:03:58:b7:53:37:ad:9f:54:c2:9c:87:8c:fd:fc: 09:cf:76:3f:65:be:09:da:67:2c:8b:c8:a4:97:2e: 6d:65:4e:48:09:3c:bb:17:b0:ba:98:47:27:49:9d: 73:64:6d:ce:45:e2:69:e1:77:01:5c:93:80:f4:3c: a1:cb:8e:d2:f3:d0:c7:11:ae:fe:9c:59:0b:7e:4b: 7a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B1:FE:92:9E:01:0C:1F:69:19:64:99:C4:B2:2F:C9:31:B7:F0:0E X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:bb:4f:ad:ae:f2:6f:17:5c:fe:4e:bb:1e:48:94:c6:09:f4: 07:fd:9c:c7:af:27:51:7d:78:fd:58:71:5f:d1:83:b3:c4:f6: 3b:44:6d:f6:7c:1c:e6:77:f3:56:c1:9e:81:c0:73:b5:e8:d9: 6f:76:b4:3c:16:41:76:6a:c3:a9:b3:ca:a2:3b:1e:b2:d6:12: a0:41:2b:89:c4:01:64:2f:e7:aa:7b:83:35:15:2d:de:68:a3: 39:37:96:1e:b5:47:de:14:f0:74:bf:fd:d7:87:e8:1e:84:fe: 9c:23:b5:59:68:21:9b:a3:91:b9:91:a4:d2:d1:e2:ae:cd:d9: ab:68:07:e9:d4:d2:3e:58:47:c2:db:b3:06:8d:95:46:98:2d: 3b:08:3e:8b:a0:de:8b:a4:14:56:ba:15:71:86:d5:2c:90:e8: 6f:96:cc:47:e4:87:a9:5a:f2:68:8a:e2:60:00:fa:10:fe:0f: 01:4f:be:89:5b:c6:7f:a2:98:e1:dd:70:99:c8:d2:34:ae:9d: 62:ad:eb:97:48:b0:b7:ce:a6:0e:bc:b0:a8:8a:65:54:42:87: 7d:88:6b:a3:76:7c:28:75:86:8c:80:92:7b:e9:c1:e3:44:50: 87:7a:ce:00:59:b5:82:18:9b:04:00:45:0d:75:32:0b:b7:e9: 08:ca:06:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUxMTAzMDA1MTQ0WhcNMjUxMTEwMDA1MTQ0WjAYMRYwFAYD VQQDEw02OTA3ZmNhMS1lOTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoX4WUabjPudC/utG868fMUX+GqbHHqLhj2GLNWDkpj+HoCnXZYbgQwMkdJMT G5ySKcb+lhMkMxNdLJSektEXIhEkloHFxBmXWzHPWa7uFoJ71gnsChF7uIjdnxVx IyLByF7V0qtV5s9rqUU2Y2Azfze/0hgz92Un73upYs54GvxVwtNus2CV1Gh3mevl TiSRekLzo+Btr/cI4LAK3VvZvMx2J1kn2SGO4z5BxnKY0OYNYeg1A1i3Uzetn1TC nIeM/fwJz3Y/Zb4J2mcsi8ikly5tZU5ICTy7F7C6mEcnSZ1zZG3OReJp4XcBXJOA 9Dyhy47S89DHEa7+nFkLfkt6dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+x/pKe AQwfaRlkmcSyL8kxt/AOMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTu0+trvJvF1z+TrseSJTGCfQH/ZzHrydRfXj9WHFf0YOzxPY7RG32 fBzmd/NWwZ6BwHO16NlvdrQ8FkF2asOps8qiOx6y1hKgQSuJxAFkL+eqe4M1FS3e aKM5N5YetUfeFPB0v/3Xh+gehP6cI7VZaCGbo5G5kaTS0eKuzdmraAfp1NI+WEfC 27MGjZVGmC07CD6LoN6LpBRWuhVxhtUskOhvlsxH5IepWvJoiuJgAPoQ/g8BT76J W8Z/opjh3XCZyNI0rp1ireuXSLC3zqYOvLCoimVUQod9iGujdnwodYaMgJJ76cHj RFCHes4AWbWCGJsEAEUNdTILt+kIygYC -----END CERTIFICATE-----Generated at Tue Nov 4 18:35:39 2025 by rpki-client