$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: 19VQpPbirrwH/tHDY2ip+IyMZWwiudPVPa0AR/0QXfQ= Subject key identifier: AF:7B:6D:5E:85:6C:75:D0:F7:31:4C:60:18:06:CA:F7:F7:C8:37:04 Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 016A Signing time: Mon 03 Nov 2025 04:00:47 +0000 Manifest this update: Mon 03 Nov 2025 04:00:46 +0000 Manifest next update: Mon 10 Nov 2025 04:00:46 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: 6djxlHymBznN7SJ/gmxDg4Rc5/VlWTYMIMc9opVOZqc=) 2: 7F6FE074B84811F091A01766C4F9AE02.roa (hash: Xgl6MR7u5W2huYUpGaD0galzVLmRgghmaKbymP8qDb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Nov 3 04:00:46 2025 GMT Not After : Nov 10 04:00:46 2025 GMT Subject: CN=690828ee-ceb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ab:8f:43:2c:0d:78:65:fa:e0:00:c8:de:c4: 7a:0d:19:1a:cf:3d:1d:16:65:bc:f2:d7:9a:2f:f1: cb:b4:f1:6b:40:6d:28:b3:70:90:43:d5:da:0b:31: fe:18:71:2b:39:dd:52:e2:6d:14:8b:26:5c:1a:d8: 96:b3:65:0d:c7:fd:00:00:6b:e7:ce:c4:eb:da:5d: 7c:c5:40:d2:cb:0e:25:6c:18:16:01:41:1c:b9:0e: ac:a3:4f:59:dc:41:33:74:52:fe:48:38:68:f0:db: 79:8f:69:97:f3:47:c9:08:25:8d:39:25:3d:d7:f1: 7c:28:f1:d1:10:77:38:a4:90:99:64:9c:23:ed:fb: 0b:f1:11:31:4f:d3:43:e2:ca:3e:d7:ea:ec:69:c4: 19:3f:d8:22:fe:9a:d0:d4:ac:f7:36:6d:b0:64:ae: 17:9a:fc:cd:1b:a5:14:4a:c5:10:9a:24:fd:17:6a: 8c:60:9a:c7:e8:d3:d8:e5:fa:0b:15:33:f1:d6:24: 4c:70:ac:37:df:3d:45:26:1a:3b:0a:fd:73:bf:3e: d1:b9:9f:5c:42:f3:ca:15:73:4e:3b:7d:ee:e1:36: c9:9e:d5:0e:50:fc:4c:0d:f4:b7:ec:17:dc:ba:b9: ad:88:fa:15:c7:8b:a4:89:7a:b9:ab:60:8f:c3:70: 93:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7B:6D:5E:85:6C:75:D0:F7:31:4C:60:18:06:CA:F7:F7:C8:37:04 X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:6a:20:fe:87:f4:a6:97:9e:c6:18:33:d6:5e:58:3c:92:0d: 9a:e1:f0:83:d9:fa:5b:a6:78:a3:08:a0:6b:83:a8:c6:ea:58: 6e:d5:dd:87:59:85:14:5f:51:97:3a:dc:b4:5f:5a:65:f0:59: ab:dd:50:63:ac:46:70:16:e4:da:bd:0c:09:99:2e:e6:a6:11: fe:f1:c1:3f:96:33:e7:c3:0c:77:3d:be:d3:61:4b:9b:d9:16: 7a:95:2c:90:48:35:92:9e:d6:c0:a5:72:6f:8b:f5:e8:ea:10: aa:9a:af:a8:6e:95:31:c1:02:9f:43:41:b3:a9:7d:0d:8a:f8: 0a:1c:8f:42:12:08:7d:01:ee:17:74:f3:55:e6:6d:2c:d3:71: a2:d3:3b:7e:e6:bc:71:1a:3f:77:57:6a:88:0e:6d:40:88:60: e4:07:18:e6:31:a6:6a:88:1d:de:72:75:8e:10:e4:6f:9e:53: 73:ee:b2:8e:44:4b:1c:74:33:10:8d:0d:ad:dd:fd:b3:c7:8e: 5c:8f:00:21:33:f3:e8:6e:01:47:39:4a:b7:ec:09:30:5a:35: 54:bd:a4:77:f8:5f:be:16:35:72:eb:29:17:af:19:63:ed:97: 64:58:ad:ff:7e:00:11:ca:8d:6f:56:4f:94:66:e2:f5:bd:6c: be:0e:b0:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUxMTAzMDQwMDQ2WhcNMjUxMTEwMDQwMDQ2WjAYMRYwFAYD VQQDEw02OTA4MjhlZS1jZWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6uPQywNeGX64ADI3sR6DRkazz0dFmW88teaL/HLtPFrQG0os3CQQ9XaCzH+ GHErOd1S4m0UiyZcGtiWs2UNx/0AAGvnzsTr2l18xUDSyw4lbBgWAUEcuQ6so09Z 3EEzdFL+SDho8Nt5j2mX80fJCCWNOSU91/F8KPHREHc4pJCZZJwj7fsL8RExT9ND 4so+1+rsacQZP9gi/prQ1Kz3Nm2wZK4XmvzNG6UUSsUQmiT9F2qMYJrH6NPY5foL FTPx1iRMcKw33z1FJho7Cv1zvz7RuZ9cQvPKFXNOO33u4TbJntUOUPxMDfS37Bfc urmtiPoVx4ukiXq5q2CPw3CTMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK97bV6F bHXQ9zFMYBgGyvf3yDcEMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbaiD+h/Sml57GGDPWXlg8kg2a4fCD2fpbpnijCKBrg6jG6lhu1d2H WYUUX1GXOty0X1pl8Fmr3VBjrEZwFuTavQwJmS7mphH+8cE/ljPnwwx3Pb7TYUub 2RZ6lSyQSDWSntbApXJvi/Xo6hCqmq+obpUxwQKfQ0GzqX0NivgKHI9CEgh9Ae4X dPNV5m0s03Gi0zt+5rxxGj93V2qIDm1AiGDkBxjmMaZqiB3ecnWOEORvnlNz7rKO REscdDMQjQ2t3f2zx45cjwAhM/PobgFHOUq37AkwWjVUvaR3+F++FjVy6ykXrxlj 7ZdkWK3/fgARyo1vVk+UZuL1vWy+DrAE -----END CERTIFICATE-----Generated at Tue Nov 4 08:18:20 2025 by rpki-client