$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: LBwGFekvBfd3OcrSdRu/ZuQiODYw0zODevqKCSk+lR0= Subject key identifier: 65:0F:2A:E2:05:74:C0:82:6C:41:67:9E:CA:88:9A:21:53:A4:75:35 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0365 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 035D Signing time: Tue 07 Oct 2025 01:09:41 +0000 Manifest this update: Tue 07 Oct 2025 01:09:41 +0000 Manifest next update: Tue 14 Oct 2025 01:09:41 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: AJoONxHicNen/UL0Rs7tqG+XldX2K2KEIMvYgSLGnJo=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 01:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 869 (0x365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Oct 7 01:09:41 2025 GMT Not After : Oct 14 01:09:41 2025 GMT Subject: CN=68e46855-c99d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:12:02:bc:c6:cc:dd:23:d8:af:6c:26:ba:26: 58:e3:59:9c:53:29:de:e1:2c:e5:a7:67:79:15:88: 1d:e2:65:df:ca:7d:e3:ba:f3:cd:11:56:9d:47:38: 7a:c8:54:ad:5f:b6:eb:61:0b:5a:ed:80:25:8e:cc: 79:81:89:77:7d:09:1e:72:dd:fc:84:c3:b8:27:52: 38:d5:36:f0:f0:81:00:4e:ce:3f:80:bb:2d:fb:13: 9c:8c:aa:5c:fa:ef:cf:67:34:36:69:d2:96:a8:fe: a1:2d:03:93:6c:8c:1e:66:65:16:de:13:d5:96:c6: 8d:a8:8b:0e:45:1f:36:16:2f:be:2b:0b:6a:19:b1: 77:06:d0:18:23:7d:3b:d4:5a:82:4d:f8:86:3d:c2: 54:0b:12:73:05:f7:c6:14:dc:9d:e2:85:c1:6a:d5: 1d:28:b0:c4:fc:cd:ef:5b:65:47:87:44:af:89:77: 22:fd:56:44:e8:61:b8:0e:d3:8b:ae:23:90:bf:e5: 2c:58:4a:ca:12:1e:dd:81:28:f4:04:df:ef:88:34: a4:79:13:6e:e5:f3:03:47:72:e1:fb:04:86:c7:1a: cd:46:10:69:31:18:1a:57:18:a4:f9:13:7a:fa:a3: c9:f7:f6:98:22:18:94:58:d4:12:46:b6:a4:23:58: 79:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:0F:2A:E2:05:74:C0:82:6C:41:67:9E:CA:88:9A:21:53:A4:75:35 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:06:f8:9f:87:33:88:93:d9:83:c7:bc:15:29:1b:c2:74:08: db:32:a5:02:ae:b2:76:72:94:61:2d:90:9f:43:f9:60:40:75: e6:67:e8:c0:95:c2:d0:b8:d0:c4:33:dc:b6:9c:cf:43:dd:d9: 32:28:3b:eb:dc:a5:09:4b:d7:25:b9:f0:35:68:44:78:99:82: 58:4d:88:fd:ea:de:ad:f5:67:2a:99:59:a6:f2:a9:cc:1d:b3: 84:14:3e:7d:0b:e7:fc:cf:1c:7c:bb:fc:d4:40:9f:17:fd:fb: da:4d:b7:4f:97:04:b6:7a:ae:39:c5:06:a3:b9:fd:8c:8a:e0: 7a:9b:01:35:30:cb:be:47:1e:fc:7e:f4:72:46:8e:5a:e5:ed: 3a:18:70:c9:dd:a2:ba:ae:97:da:78:d4:13:38:a4:6c:5a:ef: 7f:f8:fc:52:b5:11:d8:fa:48:a8:e6:99:70:2f:db:29:4e:b7: 23:09:29:e7:84:f7:54:a9:5d:c4:0f:ff:07:93:b4:e4:26:4e: a0:df:98:ab:5a:8e:5d:50:52:44:b9:46:da:32:86:ac:2c:60: eb:11:1d:66:ed:ec:33:56:af:7a:9e:e5:0c:94:c6:7b:29:6b: dc:66:38:6a:6d:8d:e3:e3:23:ca:48:e4:ef:e1:17:73:88:9d: 30:1e:94:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUxMDA3MDEwOTQxWhcNMjUxMDE0MDEwOTQxWjAYMRYwFAYD VQQDEw02OGU0Njg1NS1jOTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBICvMbM3SPYr2wmuiZY41mcUyne4Szlp2d5FYgd4mXfyn3juvPNEVadRzh6 yFStX7brYQta7YAljsx5gYl3fQkect38hMO4J1I41Tbw8IEATs4/gLst+xOcjKpc +u/PZzQ2adKWqP6hLQOTbIweZmUW3hPVlsaNqIsORR82Fi++KwtqGbF3BtAYI307 1FqCTfiGPcJUCxJzBffGFNyd4oXBatUdKLDE/M3vW2VHh0SviXci/VZE6GG4DtOL riOQv+UsWErKEh7dgSj0BN/viDSkeRNu5fMDR3Lh+wSGxxrNRhBpMRgaVxik+RN6 +qPJ9/aYIhiUWNQSRrakI1h5ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUPKuIF dMCCbEFnnsqImiFTpHU1MB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEBvifhzOIk9mDx7wVKRvCdAjbMqUCrrJ2cpRhLZCfQ/lgQHXmZ+jA lcLQuNDEM9y2nM9D3dkyKDvr3KUJS9clufA1aER4mYJYTYj96t6t9WcqmVmm8qnM HbOEFD59C+f8zxx8u/zUQJ8X/fvaTbdPlwS2eq45xQajuf2MiuB6mwE1MMu+Rx78 fvRyRo5a5e06GHDJ3aK6rpfaeNQTOKRsWu9/+PxStRHY+kio5plwL9spTrcjCSnn hPdUqV3ED/8Hk7TkJk6g35irWo5dUFJEuUbaMoasLGDrER1m7ewzVq96nuUMlMZ7 KWvcZjhqbY3j4yPKSOTv4RdziJ0wHpTr -----END CERTIFICATE-----Generated at Thu Oct 9 01:27:03 2025 by rpki-client