$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: IoSWHoCa1vOo1xSlGb3kItCAKsXuAKo9nxuaqqeG1kE= Subject key identifier: AB:9C:88:58:8E:DC:D7:64:FB:BA:3F:AB:32:59:00:61:C1:D6:31:5D Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 30AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 3079 Signing time: Sun 02 Nov 2025 15:26:54 +0000 Manifest this update: Sun 02 Nov 2025 15:26:54 +0000 Manifest next update: Sun 09 Nov 2025 15:26:54 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: lxAymmmFScg8W2TTDbArfBSCpFZSvwlCYCp0L+vdOhQ=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: 1eHb69O06VCoxBVFTjIxU1eZxUsYuasvDB2d3Sv1+IY=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: Q3pwtlHxQOfBNfjg0rXQ1DaKhtCgPEj+Sbwz9SrcaHA=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: wILFdeIGXMZ8VMyQoHGFHEc5EcgVL0MxaSOGHfY+WMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12458 (0x30aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Nov 2 15:26:54 2025 GMT Not After : Nov 9 15:26:54 2025 GMT Subject: CN=6907783e-f9ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c3:61:be:95:7e:8a:86:fb:f1:48:40:54:e2: 6b:97:86:96:e6:76:6a:bf:82:14:91:b6:3a:17:5c: b4:98:8d:a3:1d:50:3c:33:d6:72:32:66:99:f8:73: fe:a9:1a:00:0e:71:26:50:8c:54:4b:32:6e:3c:2c: ae:11:5a:33:4c:b1:bc:69:d3:c8:4e:d8:44:dc:78: 14:aa:bf:57:3e:56:01:34:ff:0d:61:09:85:5c:8b: 50:6b:8b:f7:2e:cd:fb:9d:d4:f5:e0:83:89:e4:47: 05:c8:5e:be:d5:02:0e:94:11:64:da:70:45:61:08: 50:43:21:bb:21:fa:00:55:81:f4:9f:da:59:63:c7: 9a:75:5c:47:fa:12:1b:af:f1:99:f2:ce:e7:f4:f7: f2:70:86:fd:a7:2d:16:96:2c:b2:a4:3c:9a:91:90: a0:98:aa:6d:3b:c9:35:85:3e:4b:fc:a7:5a:39:3f: ec:f2:e2:72:8c:0a:c8:09:a0:07:63:9b:8c:b0:07: 64:36:6a:78:96:cb:0f:b0:91:fa:57:e7:45:03:b5: 15:0b:86:8f:b8:e1:b6:8c:f5:3a:6a:89:85:46:57: d7:d3:dd:be:2e:ba:27:33:c9:6d:84:12:7a:f7:92: 78:9d:fe:eb:e9:32:b8:31:fb:89:be:34:f2:40:e0: b5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9C:88:58:8E:DC:D7:64:FB:BA:3F:AB:32:59:00:61:C1:D6:31:5D X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:ab:21:b4:85:55:06:eb:e1:2d:77:61:c3:e4:5e:29:95:86: 1b:b2:cf:59:b5:d6:01:f7:f9:1a:db:cc:b9:b4:35:15:f1:d3: 3c:c0:1f:50:00:86:24:4c:9f:1c:c1:dc:6d:64:40:86:75:42: a4:cc:56:ce:fe:5d:95:05:93:eb:cb:17:61:4f:bb:bb:06:c2: fa:80:02:5f:e6:bd:64:cf:49:15:9a:2e:8b:54:e2:85:3f:e7: f5:f4:2f:62:30:c1:46:78:0d:5d:9f:d7:30:35:d8:a7:2b:be: f1:b7:84:d8:3d:7f:a7:26:89:31:e5:48:81:ea:bf:f5:04:a1: 75:15:da:fd:c7:87:e0:e0:a9:1a:9c:5c:c2:06:14:06:ae:74: c7:e0:af:bf:7f:e5:74:d5:09:c1:42:e9:89:77:f1:d3:8d:ee: 7e:c7:7f:b7:93:cc:33:c3:27:ff:00:ea:79:aa:81:7a:7b:93: 78:2b:de:49:83:83:43:13:87:9c:aa:03:15:b6:f6:cc:aa:15: 84:9b:e0:01:ca:7d:db:bb:dc:38:8c:7a:0f:8b:b6:8b:a4:cb: 19:5e:b6:a2:b1:ba:29:de:05:8b:95:57:1c:46:86:82:b1:81: 0e:0c:9b:e4:e9:7f:09:4c:5b:1d:97:b5:be:30:3d:31:6e:a1: c7:54:08:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUxMTAyMTUyNjU0WhcNMjUxMTA5MTUyNjU0WjAYMRYwFAYD VQQDEw02OTA3NzgzZS1mOWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cNhvpV+iob78UhAVOJrl4aW5nZqv4IUkbY6F1y0mI2jHVA8M9ZyMmaZ+HP+ qRoADnEmUIxUSzJuPCyuEVozTLG8adPITthE3HgUqr9XPlYBNP8NYQmFXItQa4v3 Ls37ndT14IOJ5EcFyF6+1QIOlBFk2nBFYQhQQyG7IfoAVYH0n9pZY8eadVxH+hIb r/GZ8s7n9PfycIb9py0WliyypDyakZCgmKptO8k1hT5L/KdaOT/s8uJyjArICaAH Y5uMsAdkNmp4lssPsJH6V+dFA7UVC4aPuOG2jPU6aomFRlfX092+LronM8lthBJ6 95J4nf7r6TK4MfuJvjTyQOC1MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuciFiO 3Ndk+7o/qzJZAGHB1jFdMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQqyG0hVUG6+Etd2HD5F4plYYbss9ZtdYB9/ka28y5tDUV8dM8wB9Q AIYkTJ8cwdxtZECGdUKkzFbO/l2VBZPryxdhT7u7BsL6gAJf5r1kz0kVmi6LVOKF P+f19C9iMMFGeA1dn9cwNdinK77xt4TYPX+nJokx5UiB6r/1BKF1Fdr9x4fg4Kka nFzCBhQGrnTH4K+/f+V01QnBQumJd/HTje5+x3+3k8wzwyf/AOp5qoF6e5N4K95J g4NDE4ecqgMVtvbMqhWEm+AByn3bu9w4jHoPi7aLpMsZXraisbop3gWLlVccRoaC sYEODJvk6X8JTFsdl7W+MD0xbqHHVAig -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:54 2025 by rpki-client