$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: 9OPWML34eudD434cXF4iLtQ8IH5h5/lHQ43F8NPGTqA= Subject key identifier: 68:91:FA:51:92:30:60:DD:37:7A:4F:23:AB:3A:3D:4C:A6:58:F6:C4 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 0238 Signing time: Wed 05 Nov 2025 01:59:53 +0000 Manifest this update: Wed 05 Nov 2025 01:59:52 +0000 Manifest next update: Wed 12 Nov 2025 01:59:52 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: /90ru/BoA/rrVcAJLtJXOeSf+TH1G4WYnbQx1KFBMPk=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Nov 5 01:59:52 2025 GMT Not After : Nov 12 01:59:52 2025 GMT Subject: CN=690aaf99-2e3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ef:3b:f7:03:60:8a:c0:8a:3f:0e:0d:70:7c: da:7d:c3:89:52:fc:97:6b:72:e2:8f:dc:0a:78:40: 72:74:b0:ac:51:de:4e:67:00:79:a3:a3:76:ec:09: 05:c5:c1:1e:0f:96:cd:f6:37:95:d7:fa:25:5a:af: f8:af:62:ed:22:df:84:9d:47:6e:00:c7:5c:7c:e3: 2f:b6:a1:2c:9f:c7:b0:d1:6e:d0:e7:25:1a:1c:1f: 57:c0:9d:96:9b:6c:7e:db:01:e4:8d:f8:f2:5d:0d: c9:25:f1:e3:ff:45:11:41:bf:d1:86:2e:40:f5:36: 0d:5b:e7:e3:3d:73:c1:f4:33:cc:d8:8e:c9:ed:3d: be:e9:e7:8f:88:5b:10:e2:62:47:55:43:96:a1:2d: 49:61:17:7a:c4:4d:90:4b:98:b5:e0:2d:f6:e2:01: 0d:34:62:4c:16:76:17:6b:50:5a:3b:9a:6f:26:af: 31:5a:6f:64:86:3e:6e:02:f6:bb:35:6d:ec:26:cf: b2:d7:7b:0d:56:42:b7:ff:d5:9c:35:7e:b9:f7:1f: cc:45:ad:8b:6d:25:2a:45:9f:99:36:1d:c7:56:ed: 2e:fb:91:1c:07:25:d4:74:50:cb:44:95:5d:e1:b7: ec:06:0e:54:a1:f1:b4:35:a2:83:ba:33:76:29:b3: 69:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:91:FA:51:92:30:60:DD:37:7A:4F:23:AB:3A:3D:4C:A6:58:F6:C4 X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:93:aa:1d:e6:e0:68:fe:42:b6:90:ed:b8:89:d0:5e:4b:e8: 8b:8a:94:e2:e6:19:82:37:42:ee:5e:2e:c4:34:f7:ec:c2:9b: 65:02:e4:ab:6f:70:cb:99:2e:eb:8a:65:f4:16:5f:22:0f:59: db:f2:19:cb:df:99:8e:1d:af:76:16:e7:5f:72:fc:fd:b3:b3: d8:11:55:61:16:ad:75:f7:3b:46:69:70:9e:f2:20:04:76:99: 6c:f2:d7:e7:a7:ce:12:4e:67:c7:7c:16:c3:06:28:db:47:f6: 47:fa:cd:17:a9:31:c9:10:7b:d1:94:f4:e5:57:61:4d:ad:e7: ac:5a:e1:79:fa:29:ea:60:99:83:e4:dc:27:60:86:e3:bf:2f: 83:34:f5:94:5f:89:dc:b8:be:8e:99:bb:26:8a:3c:10:27:3c: 5a:18:48:8a:df:0c:52:a0:41:d3:09:a2:d9:e4:d8:63:7d:fc: d1:b8:c6:3a:18:3d:64:52:de:48:b9:07:1e:37:c7:03:9a:6e: 6d:ba:90:86:ce:14:04:89:76:c9:64:c0:51:50:34:69:77:95: 54:58:4d:2a:32:a2:f1:32:2b:d3:93:bf:5e:a3:3c:78:cf:bf: 94:2e:ac:ea:99:33:79:22:dd:1b:88:d3:b2:63:0d:ef:f3:2d: 68:93:df:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUxMTA1MDE1OTUyWhcNMjUxMTEyMDE1OTUyWjAYMRYwFAYD VQQDEw02OTBhYWY5OS0yZTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtO879wNgisCKPw4NcHzafcOJUvyXa3Lij9wKeEBydLCsUd5OZwB5o6N27AkF xcEeD5bN9jeV1/olWq/4r2LtIt+EnUduAMdcfOMvtqEsn8ew0W7Q5yUaHB9XwJ2W m2x+2wHkjfjyXQ3JJfHj/0URQb/Rhi5A9TYNW+fjPXPB9DPM2I7J7T2+6eePiFsQ 4mJHVUOWoS1JYRd6xE2QS5i14C324gENNGJMFnYXa1BaO5pvJq8xWm9khj5uAva7 NW3sJs+y13sNVkK3/9WcNX659x/MRa2LbSUqRZ+ZNh3HVu0u+5EcByXUdFDLRJVd 4bfsBg5UofG0NaKDujN2KbNpowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiR+lGS MGDdN3pPI6s6PUymWPbEMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpk6od5uBo/kK2kO24idBeS+iLipTi5hmCN0LuXi7ENPfswptlAuSr b3DLmS7rimX0Fl8iD1nb8hnL35mOHa92Fudfcvz9s7PYEVVhFq119ztGaXCe8iAE dpls8tfnp84STmfHfBbDBijbR/ZH+s0XqTHJEHvRlPTlV2FNreesWuF5+inqYJmD 5NwnYIbjvy+DNPWUX4ncuL6OmbsmijwQJzxaGEiK3wxSoEHTCaLZ5NhjffzRuMY6 GD1kUt5IuQceN8cDmm5tupCGzhQEiXbJZMBRUDRpd5VUWE0qMqLxMivTk79eozx4 z7+ULqzqmTN5It0biNOyYw3v8y1ok99T -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:18 2025 by rpki-client