$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: 1RxDXmyvpX6mo35A0UHl6Didc8gkFIViRSxWxVwzlLM= Subject key identifier: E3:5B:48:80:F8:77:4C:A3:7F:31:9A:CB:4B:D9:4F:F2:4B:DE:61:04 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 02F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 02E5 Signing time: Mon 03 Nov 2025 01:15:44 +0000 Manifest this update: Mon 03 Nov 2025 01:15:44 +0000 Manifest next update: Mon 10 Nov 2025 01:15:44 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: DujfUtaGvda3vq+JZU83MvxHlF+0msntr/GIhMsrMhc=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 753 (0x2f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Nov 3 01:15:44 2025 GMT Not After : Nov 10 01:15:44 2025 GMT Subject: CN=69080240-289f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b1:b9:4a:e2:bf:c8:8c:7a:d1:04:b4:7b:6d: 3f:4d:ff:ca:ef:9e:a1:e4:82:80:ed:59:64:ac:9f: 6b:a2:0e:5d:6f:3e:a0:e5:42:47:63:ed:82:2c:fd: 15:da:b6:a4:89:bf:69:86:72:13:95:af:8a:9b:4a: 78:16:b4:15:eb:6a:d9:50:c0:a2:fe:cd:24:7b:09: 50:9f:51:c0:9a:a3:ae:d9:89:80:f2:59:a5:fa:07: 1f:ec:69:94:a6:d6:00:08:7a:2b:c9:70:7e:85:58: 08:7a:b3:62:1a:30:42:26:93:f0:e5:54:67:b7:49: c5:1f:6c:4d:5b:0e:a3:88:0b:3f:4d:b1:4a:ab:2f: d4:19:29:2c:be:86:94:f3:31:0f:72:f4:23:8e:42: 6d:2e:3e:94:9a:75:25:4b:4e:57:0f:11:81:ba:09: e6:43:93:98:98:3f:1e:33:77:65:da:86:1b:e6:43: 0f:66:03:d9:10:46:a2:0a:60:da:ab:0a:12:65:bf: 05:de:37:79:3e:b3:7b:6b:f9:9e:d3:f0:d7:6f:f7: 4c:2a:d5:4c:53:47:42:d4:61:84:ab:68:84:f8:96: f5:e8:f6:f6:f8:76:57:68:4f:4b:5d:02:46:67:7d: 61:4f:ff:f6:88:ff:57:76:01:b6:50:3e:10:6b:49: 87:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5B:48:80:F8:77:4C:A3:7F:31:9A:CB:4B:D9:4F:F2:4B:DE:61:04 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:ee:54:20:5a:9f:03:33:17:d2:45:3d:57:78:13:e1:f7:ec: e7:1e:f0:fa:be:6e:33:f9:96:2d:0d:d6:71:2f:9d:3e:63:25: 86:4c:17:be:b5:6b:b9:36:8a:50:ad:b1:40:25:95:49:25:dd: c4:ab:93:b3:f5:2f:01:5a:77:3d:9a:8d:a0:83:7a:92:b4:1e: 31:28:5e:9e:28:36:70:db:8a:35:30:3e:f8:8d:6f:c6:6e:90: 6c:aa:0b:d6:2b:85:88:b5:9a:87:b1:b6:61:f7:90:e2:f3:99: 9e:cb:f7:05:71:7b:13:91:83:59:00:03:ed:9d:2e:79:b4:95: 45:4b:6f:c1:31:03:cd:b9:27:76:cd:09:7f:70:c7:3f:78:41: 94:55:46:cb:e9:f2:d4:31:58:99:18:32:80:74:50:db:d9:e5: df:ee:b8:8f:92:5a:04:4d:8a:6b:ce:ec:23:87:69:a4:bf:ef: 47:45:a1:0e:c8:45:5a:82:03:8d:13:bc:07:3d:38:cf:5f:24: a3:07:71:88:b6:04:99:71:15:a2:f8:93:07:f7:7b:8e:2b:c6: ad:7b:bc:28:ad:d5:a2:4a:6a:7a:85:69:ac:fb:06:84:c9:06: bb:c6:f5:0c:b0:e1:1d:d8:47:5f:1d:be:93:78:28:00:52:bd: 09:bf:16:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUxMTAzMDExNTQ0WhcNMjUxMTEwMDExNTQ0WjAYMRYwFAYD VQQDEw02OTA4MDI0MC0yODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7G5SuK/yIx60QS0e20/Tf/K756h5IKA7VlkrJ9rog5dbz6g5UJHY+2CLP0V 2rakib9phnITla+Km0p4FrQV62rZUMCi/s0kewlQn1HAmqOu2YmA8lml+gcf7GmU ptYACHoryXB+hVgIerNiGjBCJpPw5VRnt0nFH2xNWw6jiAs/TbFKqy/UGSksvoaU 8zEPcvQjjkJtLj6UmnUlS05XDxGBugnmQ5OYmD8eM3dl2oYb5kMPZgPZEEaiCmDa qwoSZb8F3jd5PrN7a/me0/DXb/dMKtVMU0dC1GGEq2iE+Jb16Pb2+HZXaE9LXQJG Z31hT//2iP9XdgG2UD4Qa0mHDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONbSID4 d0yjfzGay0vZT/JL3mEEMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA27lQgWp8DMxfSRT1XeBPh9+znHvD6vm4z+ZYtDdZxL50+YyWGTBe+ tWu5NopQrbFAJZVJJd3Eq5Oz9S8BWnc9mo2gg3qStB4xKF6eKDZw24o1MD74jW/G bpBsqgvWK4WItZqHsbZh95Di85mey/cFcXsTkYNZAAPtnS55tJVFS2/BMQPNuSd2 zQl/cMc/eEGUVUbL6fLUMViZGDKAdFDb2eXf7riPkloETYprzuwjh2mkv+9HRaEO yEVaggONE7wHPTjPXySjB3GItgSZcRWi+JMH93uOK8ate7wordWiSmp6hWms+waE yQa7xvUMsOEd2EdfHb6TeCgAUr0JvxZT -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:51 2025 by rpki-client