$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: 5mLFyY42/y1dlErgb1M7lXs0SILqEN9xPx7UEOUjK5M= Subject key identifier: 94:D1:BA:BE:B1:95:E3:F9:F3:7C:F4:CD:38:DE:12:4A:BD:EE:8A:68 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 13B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 13AB Signing time: Tue 04 Nov 2025 17:03:21 +0000 Manifest this update: Tue 04 Nov 2025 17:03:21 +0000 Manifest next update: Tue 11 Nov 2025 17:03:21 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: wDgaoo9hi5K41UhEx++FVZjQDJYlWRs/EQzJ4hTTfoc=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5047 (0x13b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Nov 4 17:03:21 2025 GMT Not After : Nov 11 17:03:21 2025 GMT Subject: CN=690a31d9-f3d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f3:0f:8b:ad:2b:d9:f9:f6:35:5c:ff:a2:55: f4:89:04:4b:4d:c1:6d:c6:72:c5:37:bb:7d:20:4b: be:e6:06:a4:e1:6e:c2:e6:5f:d0:0a:3b:89:50:f5: a6:34:af:ec:2b:08:77:65:d3:eb:39:64:2c:87:9b: 8b:84:b1:e5:cf:ca:0f:a3:6e:43:88:58:10:68:dd: 0b:f8:2c:4d:18:61:af:67:04:87:a3:fd:88:e4:2e: 19:2e:d2:c0:ac:02:8b:b4:e7:91:99:fd:93:e8:de: 5b:1a:b4:07:b0:7b:e9:59:6e:8c:c0:e6:12:e2:ba: 88:8a:74:b4:80:88:36:74:44:7d:3d:e7:c3:c6:2a: dc:21:88:d9:83:0e:a5:e0:79:56:f5:12:c7:0b:0c: 24:d6:f2:64:1e:fd:cb:bc:e5:c1:57:42:b2:89:1f: 92:43:b1:20:2b:42:ad:93:5f:16:80:af:10:25:b1: 37:3e:ee:2d:00:ba:88:e0:92:fe:c1:5d:79:ac:05: 34:55:78:6c:25:c8:6a:e4:3f:39:c4:db:97:07:a7: 06:9c:04:b7:56:7f:49:e2:99:2d:a8:1f:94:4f:b1: 48:7d:db:8e:bb:ee:ca:29:98:48:7f:a2:13:5d:c7: 6e:31:66:1f:9c:04:ca:d0:27:15:8c:1b:9e:00:0a: ec:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D1:BA:BE:B1:95:E3:F9:F3:7C:F4:CD:38:DE:12:4A:BD:EE:8A:68 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:11:c4:ce:9e:b1:b9:11:50:aa:47:c1:73:96:21:57:0d:46: 21:d2:8d:83:20:dd:2f:56:63:4e:eb:59:34:d3:6b:2a:1c:9e: d3:2f:d1:49:57:8f:5d:12:a1:bc:f4:4a:4e:08:17:af:41:36: db:01:e4:64:91:b2:94:7d:16:72:a7:fc:f2:b1:0a:91:06:03: 6e:07:4e:70:06:79:95:84:11:26:76:4b:21:e0:73:bc:00:15: 69:a9:e7:c6:ba:e6:a5:07:6b:c7:97:dc:28:33:41:84:01:4c: 18:dc:58:24:32:9c:35:4a:19:c2:1f:54:fe:e0:b7:43:52:41: 35:42:52:80:55:67:4d:89:42:84:be:fc:48:92:c2:d9:48:88: f0:75:8e:c4:10:80:5f:3a:0e:6b:63:86:57:ce:72:2a:3c:62: a0:ed:af:32:2a:9d:b7:59:1c:3a:d9:75:74:8e:1c:20:37:f6: 43:2b:a8:0d:7b:b0:53:39:34:b9:ba:fb:6d:e6:92:59:62:47: f9:da:bd:aa:e8:bf:e5:5c:e4:39:47:0d:fd:83:1d:7c:2f:16: d1:6f:cd:42:77:16:13:a2:19:aa:bd:33:29:17:c7:a3:f8:ad: 9d:c1:46:63:12:d1:2a:ed:3e:6b:7c:be:6f:20:ab:5a:b8:ab: 08:bc:a1:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUxMTA0MTcwMzIxWhcNMjUxMTExMTcwMzIxWjAYMRYwFAYD VQQDEw02OTBhMzFkOS1mM2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/MPi60r2fn2NVz/olX0iQRLTcFtxnLFN7t9IEu+5gak4W7C5l/QCjuJUPWm NK/sKwh3ZdPrOWQsh5uLhLHlz8oPo25DiFgQaN0L+CxNGGGvZwSHo/2I5C4ZLtLA rAKLtOeRmf2T6N5bGrQHsHvpWW6MwOYS4rqIinS0gIg2dER9PefDxircIYjZgw6l 4HlW9RLHCwwk1vJkHv3LvOXBV0KyiR+SQ7EgK0Ktk18WgK8QJbE3Pu4tALqI4JL+ wV15rAU0VXhsJchq5D85xNuXB6cGnAS3Vn9J4pktqB+UT7FIfduOu+7KKZhIf6IT XcduMWYfnATK0CcVjBueAArsIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTRur6x leP583z0zTjeEkq97opoMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxEcTOnrG5EVCqR8FzliFXDUYh0o2DIN0vVmNO61k002sqHJ7TL9FJ V49dEqG89EpOCBevQTbbAeRkkbKUfRZyp/zysQqRBgNuB05wBnmVhBEmdksh4HO8 ABVpqefGuualB2vHl9woM0GEAUwY3FgkMpw1ShnCH1T+4LdDUkE1QlKAVWdNiUKE vvxIksLZSIjwdY7EEIBfOg5rY4ZXznIqPGKg7a8yKp23WRw62XV0jhwgN/ZDK6gN e7BTOTS5uvtt5pJZYkf52r2q6L/lXOQ5Rw39gx18LxbRb81CdxYTohmqvTMpF8ej +K2dwUZjEtEq7T5rfL5vIKtauKsIvKH1 -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:12 2025 by rpki-client