$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: DZ8VsZ+22m8vjTGePf9BQ5Iq3YNhzp9et4qu8gthN/U= Subject key identifier: 23:92:39:72:ED:28:82:39:21:5F:AA:6A:E4:A1:26:02:1B:DF:1F:39 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 02B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 02AF Signing time: Mon 03 Nov 2025 01:26:26 +0000 Manifest this update: Mon 03 Nov 2025 01:26:25 +0000 Manifest next update: Mon 10 Nov 2025 01:26:25 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: dVe6jskHX5P5PxdA4p65C4CjyBomWiYkjyFoL1KcETA=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 00Bb5TLyF/J2CWzHDjxZA81Dz6rMiVp4bUBC6ncoYxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Nov 3 01:26:25 2025 GMT Not After : Nov 10 01:26:25 2025 GMT Subject: CN=690804c2-a96d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cb:4d:d4:fa:7b:6d:ea:25:ee:d2:c1:c2:3c: ce:73:b7:51:37:f5:26:ea:93:9b:8f:a5:21:f6:25: 9a:f3:cd:3e:d4:e7:d3:36:0a:c7:c6:59:52:ef:52: 34:c8:3f:5c:eb:67:87:90:00:c4:1d:ee:c1:6b:65: 48:2f:7e:a5:06:33:a1:4c:63:46:41:24:fa:9e:a2: 64:a4:f4:e5:7b:cf:2c:d0:f4:91:f4:af:9e:c2:a8: e3:4c:22:8e:42:06:7f:ba:05:11:2c:20:43:5d:13: 07:22:4a:c0:50:1c:9c:0f:79:aa:fa:3f:70:7f:cd: de:d6:f2:72:bd:b2:e8:95:ac:32:c9:a1:28:2b:5f: 86:e3:4e:f4:9d:81:5b:c5:66:1b:08:92:91:97:a5: 23:ce:a1:5a:1a:fc:0f:89:ee:4d:5a:47:b1:4d:a2: a3:fd:84:45:d4:e4:3b:ee:52:28:2c:7a:5d:eb:13: 5f:a9:99:73:b5:0b:ce:61:90:d8:c1:67:b7:14:e7: f2:c8:a4:eb:7f:4b:ae:13:5e:49:b9:43:1a:e4:1b: 58:c7:73:51:0e:5a:93:0f:ef:44:97:8f:e9:e2:d8: 57:89:71:d7:2e:e2:94:84:81:80:a8:3f:77:70:0e: 41:da:46:7c:3d:5c:92:f4:2c:d9:c6:6c:ee:db:d6: 62:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:92:39:72:ED:28:82:39:21:5F:AA:6A:E4:A1:26:02:1B:DF:1F:39 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:93:71:cc:b0:0a:99:de:9c:f6:dc:15:d8:03:80:8a:7e:81: 82:56:5b:66:58:5b:72:20:2c:f9:22:6c:d6:16:73:70:9c:4b: 4a:56:6d:34:ad:e6:fc:ba:8a:fe:a2:31:40:fd:b8:bd:46:00: 0d:e5:ac:bd:f2:19:02:68:27:59:1a:4d:27:91:a1:97:4b:23: a3:0a:22:f9:87:c5:27:3c:bf:06:b7:57:c7:0d:bc:16:8b:31: 8d:7e:56:b8:39:f5:53:79:49:30:9e:d8:d0:35:b3:e3:42:80: 01:e2:54:a3:a6:20:e4:b6:34:26:b8:bc:95:51:cd:17:df:cc: 74:e9:04:e2:94:41:ce:36:39:99:a5:36:13:90:ba:78:a3:70: 08:81:02:8e:a7:8c:9a:80:6d:7e:05:88:e4:9b:89:a9:85:f0: e0:71:f3:1b:33:fb:b6:b2:16:99:21:15:cc:e5:b7:40:c7:1e: 97:90:dc:c4:41:c3:55:f3:05:bc:05:25:7a:c3:17:67:78:be: 08:8e:60:aa:68:99:5b:64:0c:d9:ef:fe:2f:8f:72:cd:a8:8e: 10:66:e7:f9:57:ae:4d:b3:94:4b:7b:e2:53:f2:7c:e8:e5:6c: 77:91:0d:37:b6:a1:f3:24:c0:18:37:4e:5c:30:75:e8:c8:96: 1b:4a:ac:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUxMTAzMDEyNjI1WhcNMjUxMTEwMDEyNjI1WjAYMRYwFAYD VQQDEw02OTA4MDRjMi1hOTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMtN1Pp7beol7tLBwjzOc7dRN/Um6pObj6Uh9iWa880+1OfTNgrHxllS71I0 yD9c62eHkADEHe7Ba2VIL36lBjOhTGNGQST6nqJkpPTle88s0PSR9K+ewqjjTCKO QgZ/ugURLCBDXRMHIkrAUBycD3mq+j9wf83e1vJyvbLolawyyaEoK1+G4070nYFb xWYbCJKRl6UjzqFaGvwPie5NWkexTaKj/YRF1OQ77lIoLHpd6xNfqZlztQvOYZDY wWe3FOfyyKTrf0uuE15JuUMa5BtYx3NRDlqTD+9El4/p4thXiXHXLuKUhIGAqD93 cA5B2kZ8PVyS9CzZxmzu29ZiJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOSOXLt KII5IV+qauShJgIb3x85MB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6k3HMsAqZ3pz23BXYA4CKfoGCVltmWFtyICz5ImzWFnNwnEtKVm00 reb8uor+ojFA/bi9RgAN5ay98hkCaCdZGk0nkaGXSyOjCiL5h8UnPL8Gt1fHDbwW izGNfla4OfVTeUkwntjQNbPjQoAB4lSjpiDktjQmuLyVUc0X38x06QTilEHONjmZ pTYTkLp4o3AIgQKOp4yagG1+BYjkm4mphfDgcfMbM/u2shaZIRXM5bdAxx6XkNzE QcNV8wW8BSV6wxdneL4IjmCqaJlbZAzZ7/4vj3LNqI4QZuf5V65Ns5RLe+JT8nzo 5Wx3kQ03tqHzJMAYN05cMHXoyJYbSqxE -----END CERTIFICATE-----Generated at Tue Nov 4 21:09:21 2025 by rpki-client