$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: 2oy/HJGwZghEhjRQkRRCcNuoEiJNgBxoGD8UXzWWecI= Subject key identifier: 48:1F:5F:C1:F8:6B:05:3A:2B:A0:0C:A9:42:94:36:EB:74:6D:B7:7C Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 5C Signing time: Wed 05 Nov 2025 07:24:58 +0000 Manifest this update: Wed 05 Nov 2025 07:24:57 +0000 Manifest next update: Wed 12 Nov 2025 07:24:57 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: ScYC8hgYjrVmUPeUPqlzUjQGJfu+OJXjf2ULKHb/S0I=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: UYhhmkQaI1q3+QjYEo/76mR50UYMRxm9p33lOpn/bSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Nov 5 07:24:57 2025 GMT Not After : Nov 12 07:24:57 2025 GMT Subject: CN=690afbca-31aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:47:9e:8b:01:4e:2f:b6:4c:87:91:6a:01:d8: 79:ec:c1:40:2f:a4:b3:70:b4:e2:d2:d3:a0:11:44: 53:98:67:a4:62:6a:c3:41:47:73:f3:5b:06:c6:e3: e7:d0:dc:e1:3b:f7:2e:0c:b0:4f:c4:00:47:8e:83: 3c:c6:33:06:31:f6:5a:9b:eb:f1:62:d2:71:0b:7a: ec:e3:b2:86:ba:ce:0a:92:7c:b2:e8:9e:48:62:0e: 3d:d2:2f:5c:c3:ff:2c:03:97:22:ca:15:66:3c:22: c2:d9:42:c7:c9:0e:f3:dc:c0:c4:db:04:c1:8c:0c: fc:66:a5:e8:f9:a9:84:7e:2e:4a:a6:5e:d9:c4:0b: db:df:9e:93:00:ff:79:73:1f:c5:79:3e:88:9b:03: c9:ee:cf:5b:ab:34:11:fb:97:7b:33:e2:27:c0:d2: cd:1e:73:e7:03:ce:a3:f0:1b:1c:5d:c8:fe:ca:94: 1b:ff:63:4c:3d:04:43:48:60:97:06:7f:dc:67:d1: 8b:35:f2:62:7f:23:d1:af:4c:8b:a8:09:e7:1b:ac: 4a:35:dc:6d:7f:17:e3:65:a3:1d:28:10:0c:6f:fa: b7:b6:14:88:53:c2:0d:c0:89:d1:64:41:ca:ca:da: ce:a6:bb:1d:6d:d5:f5:ab:76:f6:f6:71:7e:ef:83: 7b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1F:5F:C1:F8:6B:05:3A:2B:A0:0C:A9:42:94:36:EB:74:6D:B7:7C X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:f6:6b:07:7a:da:4b:df:e2:f4:70:0a:36:b9:a0:84:57:9f: f4:12:85:f5:19:61:27:de:e3:6e:c3:4c:e0:3b:e1:a8:c7:02: 0a:a7:8b:3b:30:9a:ce:48:3e:94:05:f9:4b:17:aa:b7:96:98: f9:c5:d9:ca:8b:c1:9b:a0:6b:c4:e0:d3:57:6b:a5:ec:a2:53: 8a:2a:80:df:56:9f:31:9e:22:8d:b6:c6:9d:ad:cc:9b:1f:7e: cd:2b:b6:f3:de:0f:63:cb:8f:bd:1b:76:24:81:b8:d0:b6:d2: e1:45:38:c3:a7:6a:79:74:33:8f:e1:16:47:fd:4e:fc:d7:38: f3:8e:0a:5f:73:f4:76:5f:30:28:81:8d:9b:c9:ba:91:06:49: 97:26:66:9c:40:14:62:14:83:7c:0d:3e:78:13:71:eb:7f:7e: c6:ca:8e:07:66:5d:2b:f2:49:e3:e1:71:9e:54:78:7c:25:e7: e0:c9:8d:1c:87:27:96:4f:ba:af:da:0e:f0:63:ed:86:95:5c: cb:a6:95:6b:b2:9d:15:28:6e:b5:52:9b:8b:34:d7:bd:b1:56: 3f:ec:da:6e:51:40:97:5f:8b:7e:f3:b1:ac:f2:9a:6f:f4:86: e5:1b:44:73:11:75:e6:4f:8e:f7:c8:16:8d:07:49:2d:c5:ff: 02:be:19:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUMwMzExMC8GA1UEBRMoQTI0RDk2MzgzMzU5Q0I0OTY2QTE1QjlBOTA2OTEzRUI1 NDU2NjU3QjAeFw0yNTExMDUwNzI0NTdaFw0yNTExMTIwNzI0NTdaMBgxFjAUBgNV BAMTDTY5MGFmYmNhLTMxYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAR56LAU4vtkyHkWoB2HnswUAvpLNwtOLS06ARRFOYZ6RiasNBR3PzWwbG4+fQ 3OE79y4MsE/EAEeOgzzGMwYx9lqb6/Fi0nELeuzjsoa6zgqSfLLonkhiDj3SL1zD /ywDlyLKFWY8IsLZQsfJDvPcwMTbBMGMDPxmpej5qYR+LkqmXtnEC9vfnpMA/3lz H8V5PoibA8nuz1urNBH7l3sz4ifA0s0ec+cDzqPwGxxdyP7KlBv/Y0w9BENIYJcG f9xn0Ys18mJ/I9GvTIuoCecbrEo13G1/F+Nlox0oEAxv+re2FIhTwg3AidFkQcrK 2s6mux1t1fWrdvb2cX7vg3tfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSB9fwfhr BToroAypQpQ263Rtt3wwHwYDVR0jBBgwFoAUok2WODNZy0lmoVuakGkT61RWZXsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QzAzLzM3RDE4QTE2MzlB MzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pY cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2syV09ETlp5MGxtb1Z1YWtHa1Q2MVJXWlhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QzAzLzM3RDE4QTE2MzlBMzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBs bW9WdWFrR2tUNjFSV1pYcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACj2awd62kvf4vRwCja5oIRXn/QShfUZYSfe427DTOA74ajHAgqnizsw ms5IPpQF+UsXqreWmPnF2cqLwZuga8Tg01drpeyiU4oqgN9WnzGeIo22xp2tzJsf fs0rtvPeD2PLj70bdiSBuNC20uFFOMOnanl0M4/hFkf9TvzXOPOOCl9z9HZfMCiB jZvJupEGSZcmZpxAFGIUg3wNPngTcet/fsbKjgdmXSvySePhcZ5UeHwl5+DJjRyH J5ZPuq/aDvBj7YaVXMumlWuynRUobrVSm4s0172xVj/s2m5RQJdfi37zsazymm/0 huUbRHMRdeZPjvfIFo0HSS3F/wK+GeQ= -----END CERTIFICATE-----Generated at Wed Nov 5 13:27:39 2025 by rpki-client