$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: tobpnEjYIb3X+awrIJyFWXRcqKpK6jXJ9U7nCNqPNqc= Subject key identifier: 79:C3:95:39:BA:66:D3:53:4E:FB:87:9E:F0:2F:18:2C:6F:A1:4C:8C Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 98 Signing time: Wed 05 Nov 2025 06:35:54 +0000 Manifest this update: Wed 05 Nov 2025 06:35:53 +0000 Manifest next update: Wed 12 Nov 2025 06:35:53 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: 2LlnNfkA0kuw9/7TLrbQil5vZsbKPjwwFyzfOQ0v/UE=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Nov 5 06:35:53 2025 GMT Not After : Nov 12 06:35:53 2025 GMT Subject: CN=690af049-49b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fc:49:b0:bd:05:ab:a8:79:ba:c0:f1:36:4c: da:46:79:72:67:36:1d:b1:02:16:fe:f8:d7:b9:02: ba:c9:8c:1f:91:64:5c:5e:e8:84:41:8d:70:70:76: 3b:63:5a:0b:8c:bd:88:ba:4a:e1:8b:99:d1:f4:b5: 4c:cc:38:43:55:ad:c9:ea:66:65:ef:d6:07:16:bf: 5e:0b:65:dd:70:f5:d8:ec:83:6a:99:d4:4a:f6:0d: 94:a4:21:00:8b:b4:f9:af:97:18:16:22:d0:87:50: 6e:98:4c:aa:ee:dc:f4:bf:fe:29:cb:ec:c4:d3:1a: 9f:43:c8:1d:8f:b5:6d:64:a9:08:9d:43:a6:a7:00: 16:00:0f:02:6d:59:b8:fb:49:34:fd:e3:9d:e5:29: b6:dd:5e:bd:96:ce:96:67:a1:42:c6:b8:73:7a:56: 49:ae:18:4f:53:7b:34:a0:74:e7:d7:d0:e2:12:06: 73:4e:35:c9:00:7a:1a:5b:07:d4:e5:17:a1:48:3a: da:6a:ac:2c:ac:f8:0b:6b:93:bd:bb:60:f9:ef:dc: 87:dc:64:40:ca:d1:94:3f:1f:00:d0:91:55:8a:4f: 7a:9b:21:08:c2:1f:78:c3:ea:bc:ce:f5:e7:59:88: f7:d0:e6:f0:d2:da:32:e4:40:4e:4c:1a:6e:f8:76: 90:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C3:95:39:BA:66:D3:53:4E:FB:87:9E:F0:2F:18:2C:6F:A1:4C:8C X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:66:fb:ec:4e:a4:af:89:e7:d3:bb:07:bf:75:4e:12:0c:9f: 4b:aa:94:b3:d3:60:a0:f3:9b:58:91:bc:35:76:3a:d5:ea:5d: f8:c8:a0:ba:27:d2:e0:5e:4f:0c:f0:b7:8d:ad:3d:df:30:08: f5:0a:cc:ca:32:16:a9:30:db:ea:8c:6b:80:08:18:f3:90:82: 8c:4e:79:52:d8:a0:cd:78:e6:62:a9:f4:f9:25:8b:44:b1:55: 3a:ea:40:45:ba:06:19:c3:2f:72:69:7c:ee:33:67:de:31:2c: 87:86:bf:b5:dd:ff:66:da:3b:6a:d6:07:90:78:f8:b7:3a:e0: 34:33:fd:c9:55:52:1e:93:cc:d5:6e:7c:17:05:b2:2e:83:81: 2b:f5:d6:c8:2e:c1:d2:fb:bd:97:01:ea:79:6d:32:1e:25:2f: 3d:42:64:29:84:58:5b:64:33:db:93:67:36:e1:30:5b:ff:db: 7c:fe:c7:ff:0c:2e:f3:96:b9:1e:0f:43:e2:e5:f9:e5:5d:04: f1:db:51:ad:d7:35:d4:63:75:1f:d8:d8:9e:b0:49:4a:14:49: cf:fc:44:b2:68:ff:3e:8b:fa:23:82:c5:79:fe:99:1e:7d:16: b1:14:0b:80:65:0f:1c:e8:c0:1a:8a:c3:19:bb:4a:e5:a5:1d: a6:57:44:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjMxMTAvBgNVBAUTKEEwRUEyQTcyMENBQzMxQzgzNzVGNTU2Q0Y5NEJGRUY4 RDExMTY5RjYwHhcNMjUxMTA1MDYzNTUzWhcNMjUxMTEyMDYzNTUzWjAYMRYwFAYD VQQDEw02OTBhZjA0OS00OWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfxJsL0Fq6h5usDxNkzaRnlyZzYdsQIW/vjXuQK6yYwfkWRcXuiEQY1wcHY7 Y1oLjL2Iukrhi5nR9LVMzDhDVa3J6mZl79YHFr9eC2XdcPXY7INqmdRK9g2UpCEA i7T5r5cYFiLQh1BumEyq7tz0v/4py+zE0xqfQ8gdj7VtZKkInUOmpwAWAA8CbVm4 +0k0/eOd5Sm23V69ls6WZ6FCxrhzelZJrhhPU3s0oHTn19DiEgZzTjXJAHoaWwfU 5RehSDraaqwsrPgLa5O9u2D579yH3GRAytGUPx8A0JFVik96myEIwh94w+q8zvXn WYj30Obw0toy5EBOTBpu+HaQrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnDlTm6 ZtNTTvuHnvAvGCxvoUyMMB8GA1UdIwQYMBaAFKDqKnIMrDHIN19VbPlL/vjREWn2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGMy82MEUyMDdCQ0Qw QjkxMUVGQTA4NDg4MjVDNEY5QUUwMi9vT29xY2d5c01jZzNYMVZzLVV2LS1ORVJh ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGMy82MEUyMDdCQ0QwQjkxMUVGQTA4NDg4MjVDNEY5QUUwMi9vT29xY2d5c01j ZzNYMVZzLVV2LS1ORVJhZlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmZvvsTqSviefTuwe/dU4SDJ9LqpSz02Cg85tYkbw1djrV6l34yKC6 J9LgXk8M8LeNrT3fMAj1CszKMhapMNvqjGuACBjzkIKMTnlS2KDNeOZiqfT5JYtE sVU66kBFugYZwy9yaXzuM2feMSyHhr+13f9m2jtq1geQePi3OuA0M/3JVVIek8zV bnwXBbIug4Er9dbILsHS+72XAep5bTIeJS89QmQphFhbZDPbk2c24TBb/9t8/sf/ DC7zlrkeD0Pi5fnlXQTx21Gt1zXUY3Uf2NiesElKFEnP/ESyaP8+i/ojgsV5/pke fRaxFAuAZQ8c6MAaisMZu0rlpR2mV0Tl -----END CERTIFICATE-----Generated at Wed Nov 5 12:26:56 2025 by rpki-client