$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: ojU2Y7aC8Q+cTLzQYY1ORMLwqzpfyBoiItJ2q9yaMfk= Subject key identifier: 7B:58:DF:AC:D7:9A:CE:E5:0E:D7:3C:EC:67:62:C2:7E:90:18:DD:B4 Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 0A26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 0A14 Signing time: Sun 02 Nov 2025 19:48:09 +0000 Manifest this update: Sun 02 Nov 2025 19:48:08 +0000 Manifest next update: Sun 09 Nov 2025 19:48:08 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: 0D9w/HzOexWRsPzb495JwB2/R/D9CAjSoufPGilBegc=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: Cf8bqRacvTWl+UzpH6e1kxekXSzzSxIQ9wSazOTj5Ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2598 (0xa26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE, serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: Nov 2 19:48:08 2025 GMT Not After : Nov 9 19:48:08 2025 GMT Subject: CN=6907b578-bfe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7a:8f:8d:aa:4d:88:dd:d5:e4:08:3d:20:d9: bd:0f:d3:bc:94:58:14:d5:70:b9:3a:e0:6a:26:d4: 11:23:d8:40:a2:3c:14:5e:32:ab:cd:d5:50:c9:7e: 6c:a9:83:48:9e:56:54:e0:ed:07:b3:a1:ba:58:bc: fa:c8:85:41:42:9c:db:60:a5:54:53:fa:8f:ec:58: 51:22:e0:dd:fc:ea:c1:07:34:83:7a:5b:cc:3c:91: e0:ed:38:19:0c:b6:8d:6a:a6:28:92:21:86:a5:24: 05:f0:97:09:b6:c2:fa:36:9e:34:e4:5f:49:5b:12: cb:0e:45:a3:43:78:8f:50:b4:25:ab:47:aa:f1:a8: bf:a5:12:46:bc:ca:7f:51:b4:63:5c:18:a5:d6:4f: e0:b6:47:b4:07:23:50:5c:d0:d1:e1:ba:3f:74:95: 20:7f:c5:07:11:0f:64:4f:96:e4:79:c3:e6:7b:95: c8:63:35:ca:ba:6e:7e:28:28:4b:88:d2:ba:bb:ba: 87:ef:d2:bb:0e:be:c9:66:fa:4e:cf:c4:f8:a8:58: 17:00:2a:2a:e4:7b:19:7a:23:5c:80:2b:a5:1b:b3: 3e:a0:24:d4:24:c5:29:bb:3e:ea:bc:da:d4:13:36: c5:10:6a:01:8d:f2:0d:af:b7:3d:b7:4a:2f:d2:a5: a0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:58:DF:AC:D7:9A:CE:E5:0E:D7:3C:EC:67:62:C2:7E:90:18:DD:B4 X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:cc:b3:a4:25:1b:0f:31:26:5f:bc:51:d5:ea:9d:8c:37:c8: e1:86:8b:37:52:53:32:71:a4:13:6c:ce:cf:b7:68:83:e4:f6: a8:0a:fb:58:9a:ed:2c:3b:1c:68:33:3d:1e:12:58:d6:34:f9: 3c:fc:b2:cb:26:d3:c7:9d:e9:ef:e5:0e:54:82:2d:56:35:b0: 28:a1:b2:f5:84:74:37:a3:8e:41:b6:26:08:c1:fc:00:6c:d2: 03:17:ef:e4:c1:3c:51:d9:21:e5:4a:5b:ca:e5:26:18:0b:0a: 07:ef:f0:55:fc:3e:18:c8:46:09:2c:21:be:e7:89:fe:99:8c: 1b:e6:f8:73:f4:47:88:9d:1c:52:cd:69:76:53:9c:02:3f:83: ee:18:94:58:5e:c0:f4:c0:31:23:30:5d:b6:3b:4c:40:6d:58: 56:bc:5e:1d:6b:d3:25:de:5e:64:93:61:4f:e4:fe:81:87:e0: 98:c0:75:6f:4e:c1:73:0f:a0:0f:c5:ae:ce:da:87:73:68:05: 51:1e:c7:3f:7c:b4:58:ef:23:12:2a:86:fe:c1:9e:ea:6f:84: 7a:d4:69:5b:c8:20:21:c1:ae:19:b1:f9:26:53:58:6c:6d:2b: 7b:b7:66:32:67:53:a9:05:02:f1:85:7c:01:93:2c:75:a0:9c: 6c:79:d7:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjUxMTAyMTk0ODA4WhcNMjUxMTA5MTk0ODA4WjAYMRYwFAYD VQQDEw02OTA3YjU3OC1iZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXqPjapNiN3V5Ag9INm9D9O8lFgU1XC5OuBqJtQRI9hAojwUXjKrzdVQyX5s qYNInlZU4O0Hs6G6WLz6yIVBQpzbYKVUU/qP7FhRIuDd/OrBBzSDelvMPJHg7TgZ DLaNaqYokiGGpSQF8JcJtsL6Np405F9JWxLLDkWjQ3iPULQlq0eq8ai/pRJGvMp/ UbRjXBil1k/gtke0ByNQXNDR4bo/dJUgf8UHEQ9kT5bkecPme5XIYzXKum5+KChL iNK6u7qH79K7Dr7JZvpOz8T4qFgXACoq5HsZeiNcgCulG7M+oCTUJMUpuz7qvNrU EzbFEGoBjfINr7c9t0ov0qWggwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtY36zX ms7lDtc87Gdiwn6QGN20MB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqzLOkJRsPMSZfvFHV6p2MN8jhhos3UlMycaQTbM7Pt2iD5PaoCvtY mu0sOxxoMz0eEljWNPk8/LLLJtPHnenv5Q5Ugi1WNbAoobL1hHQ3o45BtiYIwfwA bNIDF+/kwTxR2SHlSlvK5SYYCwoH7/BV/D4YyEYJLCG+54n+mYwb5vhz9EeInRxS zWl2U5wCP4PuGJRYXsD0wDEjMF22O0xAbVhWvF4da9Ml3l5kk2FP5P6Bh+CYwHVv TsFzD6APxa7O2odzaAVRHsc/fLRY7yMSKob+wZ7qb4R61GlbyCAhwa4ZsfkmU1hs bSt7t2YyZ1OpBQLxhXwBkyx1oJxsedeP -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:29 2025 by rpki-client