$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: rRsYyjJokbzgvupsG/vDdm8DoL4vJvgo/xxKNhuaZ1w= Subject key identifier: 5E:97:33:9B:BA:90:4A:85:F5:25:61:A0:CF:4B:15:6D:AC:38:6D:CB Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 336D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 3317 Signing time: Tue 04 Nov 2025 15:26:14 +0000 Manifest this update: Tue 04 Nov 2025 15:26:13 +0000 Manifest next update: Tue 11 Nov 2025 15:26:13 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: hfVuF1dR5/zTeXq2IF2f/CArsY4j70BhIIWcLX4LyHE=) 2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=) 3: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=) 4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=) 5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:26:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13165 (0x336d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Nov 4 15:26:13 2025 GMT Not After : Nov 11 15:26:13 2025 GMT Subject: CN=690a1b15-2ca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f8:77:fe:6f:bf:04:e7:a0:e4:29:77:6d:74: 6b:bb:b1:f3:d2:8c:f6:12:3f:83:90:bb:0d:d1:5d: 4c:b9:49:5c:2e:95:49:e2:45:61:93:84:a5:e6:59: 44:98:19:aa:1e:23:6a:2d:03:fd:c9:7e:28:76:5d: 31:24:45:26:74:36:88:59:91:85:df:8d:75:7d:f1: 75:09:c1:74:67:83:ad:9c:75:14:b5:5b:df:48:ae: b8:ca:4c:19:11:bd:82:37:3f:09:88:28:3c:9c:b7: cf:df:2a:5b:60:5f:63:f0:e7:38:1c:c4:8c:0d:d1: 16:46:b0:8c:4c:31:11:8e:5b:c2:da:15:a1:e9:0d: 14:6f:45:20:ae:4d:fa:f4:f9:4c:b2:3f:e1:bd:db: d5:d1:ba:47:ed:a5:62:64:6f:5f:4a:45:b0:bf:b7: b6:e0:1c:91:b4:e0:0b:d1:79:5f:0d:ca:2b:c9:1d: 85:ec:ea:27:05:22:20:29:f7:18:59:f8:61:a7:b3: 80:b0:1b:cf:1e:5b:60:88:c4:d2:d4:50:91:70:eb: ec:2c:05:38:e1:2a:2b:b2:17:e8:dc:69:f3:c4:73: d3:b7:5b:4c:52:56:63:8e:a6:8b:02:78:28:d9:0e: 67:2a:0c:f9:7d:0e:fc:08:e0:ba:48:6c:79:8f:ca: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:97:33:9B:BA:90:4A:85:F5:25:61:A0:CF:4B:15:6D:AC:38:6D:CB X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:be:8d:5b:34:26:d1:15:26:c8:af:53:08:eb:4f:25:55:a9: c4:8b:91:e0:34:d5:bb:20:4b:7a:1b:db:23:fd:e2:de:05:96: 14:4c:b8:ba:3a:ca:b9:7a:28:3d:b6:61:ab:ed:7b:69:51:53: a9:87:e3:d8:5d:07:85:f3:7a:8a:59:8e:15:00:9d:d3:e5:c5: 4b:65:fa:65:74:00:c1:9c:4f:c0:54:ad:fa:e2:11:b4:ab:4a: 3f:26:53:9f:02:25:62:1f:a5:6b:7d:05:87:a2:aa:7d:6a:03: 47:3f:39:e9:d2:da:ac:1a:ab:03:5e:ee:ac:c7:07:ed:a4:eb: 62:eb:5c:88:af:8b:eb:f3:ba:a6:f8:7d:56:e8:66:41:f7:bf: 60:bd:4f:67:11:a7:22:8e:ab:54:86:8d:9a:0c:98:53:01:ca: 95:2c:d9:af:ca:6c:6d:42:58:07:bb:d4:9c:7a:14:77:2d:37: 8b:4e:f1:af:74:78:f5:db:b7:05:4f:69:b0:8b:c1:81:bc:a9: b7:e2:20:26:35:9b:34:a5:52:02:be:8d:cf:ec:d4:14:92:85: aa:73:0a:2d:ee:54:52:ef:f5:48:91:39:13:49:b2:b1:07:69: 64:79:4c:c0:58:84:a4:98:c6:04:e0:eb:6e:ee:6b:45:11:6b: 96:38:17:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUxMTA0MTUyNjEzWhcNMjUxMTExMTUyNjEzWjAYMRYwFAYD VQQDEw02OTBhMWIxNS0yY2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvh3/m+/BOeg5Cl3bXRru7Hz0oz2Ej+DkLsN0V1MuUlcLpVJ4kVhk4Sl5llE mBmqHiNqLQP9yX4odl0xJEUmdDaIWZGF3411ffF1CcF0Z4OtnHUUtVvfSK64ykwZ Eb2CNz8JiCg8nLfP3ypbYF9j8Oc4HMSMDdEWRrCMTDERjlvC2hWh6Q0Ub0Ugrk36 9PlMsj/hvdvV0bpH7aViZG9fSkWwv7e24ByRtOAL0XlfDcoryR2F7OonBSIgKfcY Wfhhp7OAsBvPHltgiMTS1FCRcOvsLAU44Sorshfo3GnzxHPTt1tMUlZjjqaLAngo 2Q5nKgz5fQ78COC6SGx5j8ocvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6XM5u6 kEqF9SVhoM9LFW2sOG3LMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPvo1bNCbRFSbIr1MI608lVanEi5HgNNW7IEt6G9sj/eLeBZYUTLi6 Osq5eig9tmGr7XtpUVOph+PYXQeF83qKWY4VAJ3T5cVLZfpldADBnE/AVK364hG0 q0o/JlOfAiViH6VrfQWHoqp9agNHPznp0tqsGqsDXu6sxwftpOti61yIr4vr87qm +H1W6GZB979gvU9nEacijqtUho2aDJhTAcqVLNmvymxtQlgHu9ScehR3LTeLTvGv dHj127cFT2mwi8GBvKm34iAmNZs0pVICvo3P7NQUkoWqcwot7lRS7/VIkTkTSbKx B2lkeUzAWISkmMYE4Otu7mtFEWuWOBcB -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:04 2025 by rpki-client