$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: 7e6TZkVNVSqcgrJlVmIMMObAc3+HI6IAZgcSvn9q3H0= Subject key identifier: 53:F6:31:E6:96:FE:BF:9B:AF:9C:71:71:00:03:3E:4F:E9:E2:8A:13 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 0165 Signing time: Mon 03 Nov 2025 03:57:07 +0000 Manifest this update: Mon 03 Nov 2025 03:57:07 +0000 Manifest next update: Mon 10 Nov 2025 03:57:07 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: aCYOoDbLAjg4E+OYIZ9DkRIj+oE75gn3tZ3eHI46658=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Nov 3 03:57:07 2025 GMT Not After : Nov 10 03:57:07 2025 GMT Subject: CN=69082813-a3d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d0:43:68:2d:b6:92:4b:7a:81:f8:f9:29:0d: f2:a6:ba:e4:4f:ad:22:b4:8b:61:02:f1:0a:4e:dc: 35:60:7e:df:05:ee:74:ff:77:c2:8d:4e:05:df:25: 4a:77:c0:35:e0:84:e2:e1:9b:87:5b:e0:2d:2b:25: e4:f8:a4:9a:e4:75:22:31:e0:6c:a8:d1:f6:dd:35: 20:ea:83:fd:b8:26:6d:cf:9b:3d:a1:72:17:a5:ad: 2b:b4:7b:ad:e4:66:9a:b4:35:55:31:3b:fd:c8:23: 2a:a0:b8:97:fa:fc:b0:86:cc:0a:f5:26:24:0d:81: 86:57:58:0d:3b:da:37:01:7f:7e:e3:9c:21:98:d1: 05:47:d8:b7:b2:9d:a7:22:f7:e2:7b:bb:d7:3a:6a: 25:00:59:c8:9e:7d:ae:65:aa:a5:a1:71:72:1f:fe: d1:72:f6:64:a0:6c:11:ef:0f:20:23:d4:2b:17:99: 80:17:20:5e:30:54:a9:72:dd:d3:cc:9b:d5:78:3a: a7:60:27:41:f7:5d:64:34:08:32:ef:e6:f1:aa:e3: fa:4a:64:99:51:25:80:ff:79:e4:0c:f4:65:04:4d: 44:64:a0:f3:5d:a3:da:cc:f1:9f:4f:8b:cb:dd:ad: 6f:1b:ed:62:6a:09:da:2d:d5:11:8e:cb:bd:20:e1: df:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:F6:31:E6:96:FE:BF:9B:AF:9C:71:71:00:03:3E:4F:E9:E2:8A:13 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:62:b6:29:94:7f:94:54:4e:67:a5:f2:53:ce:15:cb:f1:8b: ab:df:5b:82:2a:41:3d:9d:53:d1:9d:21:7d:a5:34:bb:e5:13: 2f:8d:f8:48:4d:b4:9e:d2:b3:a3:df:bb:7d:5e:80:20:19:57: 75:08:90:13:c6:34:25:47:76:6e:07:80:ac:42:67:fe:85:95: 9b:de:fa:b0:15:58:69:06:e0:24:6f:1d:1b:a7:0d:8b:47:ad: 1a:91:39:eb:34:88:51:60:1c:82:c2:25:76:63:b9:d4:de:72: 02:9b:4c:0a:81:4c:d2:ae:24:e2:78:5b:45:a2:b3:a5:ba:cc: c2:87:7e:7b:8b:b8:95:bb:c0:b0:36:39:fb:68:3c:8b:40:5f: 25:0c:69:dc:22:05:42:fb:6f:f4:42:b5:53:54:50:c2:61:3d: a0:55:54:c2:4a:c5:a8:c7:c1:fa:50:99:0d:9c:8b:ab:c3:7e: d8:7c:f4:ce:0d:6c:da:0a:6a:9c:14:d9:0b:d1:9c:5e:4d:98: 58:69:50:26:12:3a:33:b5:7c:a1:f9:97:af:a0:fd:2f:8e:ff: 81:ce:9a:ae:1c:4f:6b:9f:97:e0:2e:14:c5:b1:6d:c7:da:6e: 04:a8:f9:ef:fd:28:a3:a9:c7:f8:d7:e2:70:aa:25:c4:4e:53: 33:d9:c8:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUxMTAzMDM1NzA3WhcNMjUxMTEwMDM1NzA3WjAYMRYwFAYD VQQDEw02OTA4MjgxMy1hM2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptBDaC22kkt6gfj5KQ3yprrkT60itIthAvEKTtw1YH7fBe50/3fCjU4F3yVK d8A14ITi4ZuHW+AtKyXk+KSa5HUiMeBsqNH23TUg6oP9uCZtz5s9oXIXpa0rtHut 5GaatDVVMTv9yCMqoLiX+vywhswK9SYkDYGGV1gNO9o3AX9+45whmNEFR9i3sp2n Ivfie7vXOmolAFnInn2uZaqloXFyH/7RcvZkoGwR7w8gI9QrF5mAFyBeMFSpct3T zJvVeDqnYCdB911kNAgy7+bxquP6SmSZUSWA/3nkDPRlBE1EZKDzXaPazPGfT4vL 3a1vG+1iagnaLdURjsu9IOHfhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFP2MeaW /r+br5xxcQADPk/p4ooTMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbYrYplH+UVE5npfJTzhXL8Yur31uCKkE9nVPRnSF9pTS75RMvjfhI TbSe0rOj37t9XoAgGVd1CJATxjQlR3ZuB4CsQmf+hZWb3vqwFVhpBuAkbx0bpw2L R60akTnrNIhRYByCwiV2Y7nU3nICm0wKgUzSriTieFtForOluszCh357i7iVu8Cw Njn7aDyLQF8lDGncIgVC+2/0QrVTVFDCYT2gVVTCSsWox8H6UJkNnIurw37YfPTO DWzaCmqcFNkL0ZxeTZhYaVAmEjoztXyh+ZevoP0vjv+BzpquHE9rn5fgLhTFsW3H 2m4EqPnv/Sijqcf41+JwqiXETlMz2cji -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:08 2025 by rpki-client