$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: W5izsfTKq44JDn9UhsOTht9qcd/LgdplHexNBHYH/C0= Subject key identifier: D4:E2:CF:7A:21:55:4C:78:E5:DA:1D:65:F4:FF:B9:5F:29:43:76:6D Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 35BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 3556 Signing time: Tue 04 Nov 2025 14:52:27 +0000 Manifest this update: Tue 04 Nov 2025 14:52:27 +0000 Manifest next update: Tue 11 Nov 2025 14:52:27 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: Osq0oQJ4wTqDJ/laduKJXdEu3N9He8VN2u+HogjI6yM=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: Rp2RG1hF6yB5oGrywiGWXTiVHqNq8sdwd+lk50rYEfg=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: g01plAkOdieV4NPIP7/omEljoKEhVOT/UK1CPH/JcfQ=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: BrIt4ULt/nWqzogqGuBCD8Hp7rvk2fEABSPjkLFLvVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13754 (0x35ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Nov 4 14:52:27 2025 GMT Not After : Nov 11 14:52:27 2025 GMT Subject: CN=690a132b-73df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2d:f3:61:b3:0f:56:ac:c1:64:fa:cd:12:0f: 6d:83:c0:4d:a7:54:c9:d2:9a:6a:4f:22:3c:d5:6c: 31:7a:2c:6f:11:9c:16:40:b4:39:3e:62:29:ca:6f: 2f:2c:36:80:59:62:7f:0d:7f:25:71:d4:70:23:a6: a2:5e:a4:1a:2d:6d:2e:50:42:f7:c0:11:99:93:3e: af:e6:9b:fe:ba:22:fb:6a:cb:30:c7:5b:e3:94:1e: d5:a5:42:36:a0:56:36:02:c4:38:3a:d4:0f:da:d4: cd:a2:85:37:f2:ce:37:1a:a3:5a:96:45:32:cc:c2: 7a:31:71:85:e6:23:52:e3:58:38:01:3e:16:8f:32: c0:1f:c8:3b:b1:4c:d4:95:40:38:8f:5f:59:d4:cc: 96:58:c9:d4:ff:46:91:87:22:40:9c:79:b7:f7:59: 1c:16:3f:2f:c4:75:a9:f2:1b:5e:b6:3d:36:4c:30: e1:16:c2:b4:70:13:8d:04:75:0d:9f:d1:75:53:10: 83:84:05:2e:6b:13:cc:4a:15:9e:5f:aa:8f:e7:73: ab:93:ff:a0:7d:49:83:2a:9a:52:60:e7:9c:3c:ec: d3:1e:18:f7:62:74:9d:14:45:ff:fe:c4:11:bd:a0: 38:ce:d4:12:6a:1e:3d:4f:8c:73:b3:90:09:0e:74: 30:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E2:CF:7A:21:55:4C:78:E5:DA:1D:65:F4:FF:B9:5F:29:43:76:6D X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:e0:1a:f1:c6:49:6a:f0:b3:cc:91:b4:f7:11:dc:0a:e2:69: e5:39:ce:a1:bf:43:fb:3f:7b:31:38:1e:27:2d:f8:87:ca:3e: e3:0d:d7:43:2c:17:c8:bd:d0:7f:66:73:fe:41:a8:6e:9a:82: 47:b0:df:4b:d9:3b:4d:e5:36:88:6f:13:18:08:39:9e:34:70: 89:8f:0b:03:1d:ee:54:8b:3f:29:82:d8:2e:85:d4:fe:56:0a: 9a:b5:49:93:79:1e:74:3a:48:41:73:f2:df:40:72:a2:ac:92: f3:50:6f:70:5b:00:72:a9:73:f5:55:34:43:d5:36:6a:f0:2b: e9:34:8a:5a:14:8a:2b:40:a8:ba:ee:e7:d0:9f:bd:86:1a:5a: 58:39:0d:be:2b:b2:17:2b:50:2c:1a:f0:31:14:62:7d:11:e6: 3a:0d:fe:54:8f:be:c4:60:43:43:a4:16:4f:8d:be:b1:72:99: 1a:3e:8b:c4:af:a3:fd:96:a0:39:e2:64:55:ab:4a:ae:b0:79: 44:93:08:f7:ce:eb:5e:e9:fa:36:6c:cd:3d:de:98:94:7d:c5: e7:74:7d:ea:ca:af:d0:f3:07:5f:9c:f8:32:7c:31:2d:52:17: 79:19:e5:10:b3:86:cd:ff:f6:4e:ab:5c:31:c2:f8:2e:5c:34: c4:f6:54:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUxMTA0MTQ1MjI3WhcNMjUxMTExMTQ1MjI3WjAYMRYwFAYD VQQDEw02OTBhMTMyYi03M2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1S3zYbMPVqzBZPrNEg9tg8BNp1TJ0ppqTyI81WwxeixvEZwWQLQ5PmIpym8v LDaAWWJ/DX8lcdRwI6aiXqQaLW0uUEL3wBGZkz6v5pv+uiL7asswx1vjlB7VpUI2 oFY2AsQ4OtQP2tTNooU38s43GqNalkUyzMJ6MXGF5iNS41g4AT4WjzLAH8g7sUzU lUA4j19Z1MyWWMnU/0aRhyJAnHm391kcFj8vxHWp8htetj02TDDhFsK0cBONBHUN n9F1UxCDhAUuaxPMShWeX6qP53Ork/+gfUmDKppSYOecPOzTHhj3YnSdFEX//sQR vaA4ztQSah49T4xzs5AJDnQwJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTiz3oh VUx45dodZfT/uV8pQ3ZtMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB34Brxxklq8LPMkbT3EdwK4mnlOc6hv0P7P3sxOB4nLfiHyj7jDddD LBfIvdB/ZnP+QahumoJHsN9L2TtN5TaIbxMYCDmeNHCJjwsDHe5Uiz8pgtguhdT+ VgqatUmTeR50OkhBc/LfQHKirJLzUG9wWwByqXP1VTRD1TZq8CvpNIpaFIorQKi6 7ufQn72GGlpYOQ2+K7IXK1AsGvAxFGJ9EeY6Df5Uj77EYENDpBZPjb6xcpkaPovE r6P9lqA54mRVq0qusHlEkwj3zute6fo2bM093piUfcXndH3qyq/Q8wdfnPgyfDEt Uhd5GeUQs4bN//ZOq1wxwvguXDTE9lSs -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:46 2025 by rpki-client