$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: WyfmqSVwnokz5A68NLjDUoox78HqcoL1bdWI9J+pnPk= Subject key identifier: D5:62:A6:67:62:E1:65:71:71:EA:EE:AF:6C:1A:6D:7F:71:9B:AD:86 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 0830 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0828 Signing time: Tue 04 Nov 2025 20:54:47 +0000 Manifest this update: Tue 04 Nov 2025 20:54:46 +0000 Manifest next update: Tue 11 Nov 2025 20:54:46 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: PsQMXrDaAU++pA626QezV9U4gK3qFw6IEIfTbIFMATk=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Nov 4 20:54:46 2025 GMT Not After : Nov 11 20:54:46 2025 GMT Subject: CN=690a6817-574c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:40:28:c0:30:a2:4f:d2:67:11:2e:5f:a2:ec: dd:a7:3f:a4:ac:a5:c8:99:b8:3e:11:27:fb:d9:15: b0:35:56:e7:01:0a:94:aa:d2:0e:36:a3:80:52:c7: 87:5d:4b:3e:0a:a3:aa:c4:74:d9:71:53:2b:23:ac: a9:ad:f0:e4:af:83:9e:d9:99:b5:f1:9e:f1:b0:8d: 8a:ab:f7:10:07:65:57:ad:d3:21:74:84:47:35:3a: d0:25:29:f0:c7:40:4e:9a:02:04:16:dc:a8:83:5e: b7:82:fe:e3:20:4c:24:9a:fc:91:62:94:2f:b1:26: c4:8a:c0:a8:00:98:56:c2:e7:66:fe:57:eb:57:43: f5:48:cb:c2:5e:01:99:cb:f2:24:88:96:f8:90:6a: 38:04:b6:6e:8a:73:3b:28:a4:00:5a:f6:0a:c0:8a: d3:d2:0a:fa:a3:28:bb:aa:71:f1:a5:f3:b1:5e:4b: 7c:d9:4b:a0:97:d4:9f:b2:64:7d:25:ef:46:68:52: c5:38:3b:05:90:74:ec:b7:b4:e3:51:b8:da:fd:3f: 0a:22:86:77:09:a2:ba:de:45:70:c0:2a:40:5d:69: 0a:fd:e2:5e:d7:99:b9:f3:f9:f6:4e:d0:36:65:ad: 2b:f4:de:70:89:5b:e7:f0:fd:f9:dd:d0:9b:a1:96: 7d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:62:A6:67:62:E1:65:71:71:EA:EE:AF:6C:1A:6D:7F:71:9B:AD:86 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:43:93:12:04:d1:7a:3a:d9:52:20:a5:9f:16:23:1f:9d:8b: c6:53:e8:0b:e2:f6:c4:d0:70:1a:39:46:94:63:f2:22:bd:29: cf:0e:79:fb:4d:b6:56:b9:70:97:51:e3:00:bd:15:55:d3:cf: ac:d9:c9:31:1d:55:06:e1:6e:93:cc:1f:7b:80:87:d0:ce:4b: b5:21:ee:c7:7d:a3:29:38:e8:99:7f:95:9a:ee:17:70:87:02: 01:f7:ca:30:6c:72:2d:97:4a:cd:84:d8:c4:37:cc:d8:6b:69: fe:87:fb:47:b5:fa:05:00:b3:2c:2b:3c:8e:de:3c:e8:3f:b0: 2c:1f:73:d9:a1:e2:55:9c:d9:f6:bc:50:de:09:b1:2d:f5:a2: c5:94:70:4f:36:ca:75:16:a5:cb:b2:59:a8:a6:aa:54:16:14: 4c:e3:ac:00:e4:b2:7f:25:93:f4:26:92:a9:79:25:4f:b0:63: 52:fc:50:71:44:07:81:92:ef:4c:d1:91:0f:b2:d8:26:4e:1a: 3d:f5:5d:1f:a8:8e:2b:8c:27:a0:1f:f9:bc:bf:76:4b:43:23: e1:74:91:5e:bb:94:b2:56:c2:1f:dd:9e:63:aa:cd:1b:d6:6a: 75:50:a7:a7:ee:c5:98:23:6d:14:82:e1:6d:2b:e4:31:cb:d0: 54:d0:0a:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUxMTA0MjA1NDQ2WhcNMjUxMTExMjA1NDQ2WjAYMRYwFAYD VQQDEw02OTBhNjgxNy01NzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkAowDCiT9JnES5fouzdpz+krKXImbg+ESf72RWwNVbnAQqUqtIONqOAUseH XUs+CqOqxHTZcVMrI6yprfDkr4Oe2Zm18Z7xsI2Kq/cQB2VXrdMhdIRHNTrQJSnw x0BOmgIEFtyog163gv7jIEwkmvyRYpQvsSbEisCoAJhWwudm/lfrV0P1SMvCXgGZ y/IkiJb4kGo4BLZuinM7KKQAWvYKwIrT0gr6oyi7qnHxpfOxXkt82Uugl9SfsmR9 Je9GaFLFODsFkHTst7TjUbja/T8KIoZ3CaK63kVwwCpAXWkK/eJe15m58/n2TtA2 Za0r9N5wiVvn8P353dCboZZ9ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVipmdi 4WVxcerur2wabX9xm62GMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoQ5MSBNF6OtlSIKWfFiMfnYvGU+gL4vbE0HAaOUaUY/IivSnPDnn7 TbZWuXCXUeMAvRVV08+s2ckxHVUG4W6TzB97gIfQzku1Ie7HfaMpOOiZf5Wa7hdw hwIB98owbHItl0rNhNjEN8zYa2n+h/tHtfoFALMsKzyO3jzoP7AsH3PZoeJVnNn2 vFDeCbEt9aLFlHBPNsp1FqXLslmopqpUFhRM46wA5LJ/JZP0JpKpeSVPsGNS/FBx RAeBku9M0ZEPstgmTho99V0fqI4rjCegH/m8v3ZLQyPhdJFeu5SyVsIf3Z5jqs0b 1mp1UKen7sWYI20UguFtK+Qxy9BU0ArC -----END CERTIFICATE-----Generated at Wed Nov 5 10:28:40 2025 by rpki-client