$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft File: OYVAYLL1jUyRnGTapLfrHwzfaDA.mft (raw, json) Hash identifier: +YmQRnn5mpCxe2nnhCVdLx9qzCG8UfNc2T7zEe/yot8= Subject key identifier: 82:D7:EC:F2:4E:DA:45:A1:7C:CA:0A:59:47:22:31:D1:20:94:DC:D8 Authority key identifier: 39:85:40:60:B2:F5:8D:4C:91:9C:64:DA:A4:B7:EB:1F:0C:DF:68:30 Certificate issuer: /CN=A91A1A51/serialNumber=39854060B2F58D4C919C64DAA4B7EB1F0CDF6830 Certificate serial: 0399 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft Manifest number: 0399 Signing time: Wed 05 Nov 2025 00:49:33 +0000 Manifest this update: Wed 05 Nov 2025 00:49:33 +0000 Manifest next update: Wed 12 Nov 2025 00:49:33 +0000 Files and hashes: 1: OYVAYLL1jUyRnGTapLfrHwzfaDA.crl (hash: h3gacUi1sd29pnjI9d2xfvf/TovNwt2ap52RwEDcIyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.crl rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 921 (0x399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1A51, serialNumber=39854060B2F58D4C919C64DAA4B7EB1F0CDF6830 Validity Not Before: Nov 5 00:49:33 2025 GMT Not After : Nov 12 00:49:33 2025 GMT Subject: CN=690a9f1d-fd52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:65:5b:3e:cc:c8:03:39:33:b8:86:59:b0:78: 51:b0:ae:ba:06:48:fd:cf:97:7d:55:7f:94:97:95: 0b:bf:35:cc:5b:9f:d1:fa:43:82:6d:4a:cf:13:fa: 6c:ae:8e:ea:1b:61:03:c8:ef:54:3f:a0:f9:21:86: 9e:ab:c0:67:6b:19:58:b6:e8:e1:5c:f0:ac:be:c5: 61:c5:fa:1a:88:a9:8c:2b:05:f8:23:77:97:18:fc: dc:8f:aa:ba:3d:ef:10:66:b2:0b:98:06:6f:e6:47: 96:2c:ee:51:15:65:4f:f8:b4:fb:e5:c8:e5:11:8f: 57:29:fb:95:61:02:4b:8d:74:bb:c0:a5:91:26:ac: 89:72:55:c3:51:0d:61:43:5d:f4:16:88:09:80:94: 38:56:86:6e:fc:3c:c7:69:58:1b:39:8a:44:20:d8: 09:ea:32:c0:2f:18:6f:d6:5f:de:bc:43:c4:13:26: 84:d2:75:f1:1b:e2:8b:33:22:32:15:a0:3c:27:7d: 98:d7:7f:36:9f:db:b3:cf:75:11:33:3a:d0:5a:2e: a3:b0:1f:3b:ee:38:74:d2:a4:31:9a:67:aa:72:5a: 48:0e:ab:d3:c2:8b:66:e0:62:f0:e8:f5:cc:88:15: ad:ac:fe:6a:86:59:20:ae:ad:fd:5a:73:ef:ec:7a: 02:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D7:EC:F2:4E:DA:45:A1:7C:CA:0A:59:47:22:31:D1:20:94:DC:D8 X509v3 Authority Key Identifier: keyid:39:85:40:60:B2:F5:8D:4C:91:9C:64:DA:A4:B7:EB:1F:0C:DF:68:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:df:83:54:97:8c:00:7c:73:7c:95:bf:e0:1f:40:ad:82:48: ee:7a:fd:2a:b2:d5:17:e4:6e:5e:9f:f4:dc:25:ec:0b:0e:c0: c6:83:10:f4:9e:e5:bb:40:7e:de:05:9b:62:7b:08:59:ec:d0: f1:0a:ea:f7:dc:a8:43:68:95:d1:2a:b6:1e:6b:de:df:88:6e: 65:d6:97:c0:fc:5f:f9:33:9f:f2:83:e3:e4:9d:53:12:8c:9b: ca:b0:f3:53:0e:61:50:16:15:4f:e9:fd:1a:08:5b:4e:78:a5: 8c:a9:4d:6f:72:7e:5d:ca:ee:eb:5e:cf:f2:12:31:e4:1d:b6: 2f:bb:40:c1:0f:ca:2f:29:98:74:05:b8:a2:13:d0:87:b6:cd: 76:c2:11:6a:5e:df:36:64:72:4f:7d:5f:5e:c5:b1:ef:59:8a: 64:ab:6e:58:42:59:40:c1:d9:5a:cd:e9:29:d3:e2:e7:60:d0: 04:58:2e:00:35:16:cd:49:92:8c:f0:08:23:08:01:71:bf:70: 37:15:51:d0:cb:a9:b5:4f:89:b9:0d:d4:c5:00:c5:bd:24:d7: ec:54:ea:35:24:2b:58:fe:0a:53:1d:c2:c6:3f:03:ae:b8:eb: 24:e9:c9:a9:88:95:d2:e7:04:05:f2:ab:5c:cd:4d:af:74:e4: b9:cf:c0:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFBNTExMTAvBgNVBAUTKDM5ODU0MDYwQjJGNThENEM5MTlDNjREQUE0QjdFQjFG MENERjY4MzAwHhcNMjUxMTA1MDA0OTMzWhcNMjUxMTEyMDA0OTMzWjAYMRYwFAYD VQQDEw02OTBhOWYxZC1mZDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWVbPszIAzkzuIZZsHhRsK66Bkj9z5d9VX+Ul5ULvzXMW5/R+kOCbUrPE/ps ro7qG2EDyO9UP6D5IYaeq8BnaxlYtujhXPCsvsVhxfoaiKmMKwX4I3eXGPzcj6q6 Pe8QZrILmAZv5keWLO5RFWVP+LT75cjlEY9XKfuVYQJLjXS7wKWRJqyJclXDUQ1h Q130FogJgJQ4VoZu/DzHaVgbOYpEINgJ6jLALxhv1l/evEPEEyaE0nXxG+KLMyIy FaA8J32Y1382n9uzz3URMzrQWi6jsB877jh00qQxmmeqclpIDqvTwotm4GLw6PXM iBWtrP5qhlkgrq39WnPv7HoCjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILX7PJO 2kWhfMoKWUciMdEglNzYMB8GA1UdIwQYMBaAFDmFQGCy9Y1MkZxk2qS36x8M32gw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUE1MS9BRjY5MEY2MEI5 MjAxMUVDOTkxNTY3NEZDNEY5QUUwMi9PWVZBWUxMMWpVeVJuR1RhcExmckh3emZh REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ZVkFZTEwxalV5Um5HVGFwTGZySHd6ZmFEQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUE1MS9BRjY5MEY2MEI5MjAxMUVDOTkxNTY3NEZDNEY5QUUwMi9PWVZBWUxMMWpV eVJuR1RhcExmckh3emZhREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM34NUl4wAfHN8lb/gH0Ctgkjuev0qstUX5G5en/TcJewLDsDGgxD0 nuW7QH7eBZtiewhZ7NDxCur33KhDaJXRKrYea97fiG5l1pfA/F/5M5/yg+PknVMS jJvKsPNTDmFQFhVP6f0aCFtOeKWMqU1vcn5dyu7rXs/yEjHkHbYvu0DBD8ovKZh0 BbiiE9CHts12whFqXt82ZHJPfV9exbHvWYpkq25YQllAwdlazekp0+LnYNAEWC4A NRbNSZKM8AgjCAFxv3A3FVHQy6m1T4m5DdTFAMW9JNfsVOo1JCtY/gpTHcLGPwOu uOsk6cmpiJXS5wQF8qtczU2vdOS5z8DP -----END CERTIFICATE-----Generated at Wed Nov 5 11:49:58 2025 by rpki-client