$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: 4a3K2W3dLNVaevRbuQeydSyVHtt8DU0E4qVw8prwU/U= Subject key identifier: AF:85:A7:43:A8:78:0E:D0:19:4F:A8:3A:75:8B:F1:66:72:9D:B9:D2 Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 0185 Signing time: Wed 05 Nov 2025 03:49:22 +0000 Manifest this update: Wed 05 Nov 2025 03:49:21 +0000 Manifest next update: Wed 12 Nov 2025 03:49:21 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: PMeawQmbf8PAmxxwyBO5r/AfCK0QHUnLOkLvp2bmJ+U=) 2: 8E87CD5A8D4C11F0AD32532AC4F9AE02.roa (hash: T+njLY2SFAOPX3VSAe1EY/xCteiDMwgUqIpmnoo6/ro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B, serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: Nov 5 03:49:21 2025 GMT Not After : Nov 12 03:49:21 2025 GMT Subject: CN=690ac941-4564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:34:2d:c4:6b:98:e9:73:93:0e:ba:fc:40:2e: 6d:b7:82:92:28:a0:4a:87:26:0a:6a:05:25:d8:af: c8:7d:26:c5:af:75:ba:fc:6e:0f:70:b3:f4:87:9a: 54:a5:1c:c1:ff:83:8c:19:93:a2:4e:9b:83:07:2b: 8d:21:03:9f:cd:0d:48:1b:26:6b:b6:b8:a6:e7:25: d6:86:6c:5d:b1:34:5e:cd:b2:35:ee:e7:05:11:07: 86:aa:52:01:fe:87:d5:6a:7e:2c:fb:6c:2d:30:bb: c5:89:ca:de:3e:b3:a8:a7:e2:6d:d1:b7:93:1a:b6: 03:3a:37:d8:81:66:3e:d9:e5:35:bd:df:0d:a2:df: fb:b8:6b:7b:75:b0:9e:36:b9:82:9e:e8:4f:e1:bf: b5:cd:e9:4c:c8:57:ae:65:bc:cb:b4:2b:9a:f9:a3: da:8d:e0:5e:19:bd:8e:14:15:d6:9c:7a:5d:9a:10: 65:72:0a:d6:b5:9b:49:ee:60:e9:f0:b5:4d:2d:5e: 4e:2f:49:ac:e9:3a:82:b6:a5:25:80:aa:62:23:e0: 1f:39:b5:2c:c6:a8:ed:4e:c1:a4:ee:c1:f2:37:78: a7:e0:12:b9:e9:9e:a1:b6:d3:33:df:f4:4f:f2:07: 83:e4:1b:96:02:2c:bb:4b:a5:15:b2:5a:54:01:e4: e0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:85:A7:43:A8:78:0E:D0:19:4F:A8:3A:75:8B:F1:66:72:9D:B9:D2 X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:9d:7f:ae:d4:13:fb:0c:1a:80:1f:ba:d8:55:47:88:e0:75: cf:df:42:2d:c6:3c:8b:ff:25:1b:02:46:18:7e:04:32:e4:85: 7d:cc:1a:0a:ad:16:a9:d1:c2:aa:4e:c2:b6:1d:82:de:ae:15: 27:94:c9:3c:50:bd:18:aa:75:94:63:bb:0c:29:c7:4f:63:13: 47:0b:81:9e:db:ba:47:b3:19:87:25:98:70:6a:89:20:c6:e1: a5:92:86:a0:8f:a0:e0:98:ea:1e:14:69:01:16:2a:d3:46:df: 1b:7e:26:c7:26:31:d1:f1:a0:bf:4c:ae:02:f3:db:5d:7c:0d: 77:47:4c:1d:68:74:a1:df:98:68:e4:02:2a:51:6f:67:64:e6: 9b:63:07:12:23:d6:25:ce:20:fb:c9:b2:2f:f1:49:a4:09:b2: 53:d1:df:2c:d4:d3:83:31:24:6e:c2:f5:91:c5:30:e5:f8:b7: 91:4c:71:82:5d:b6:e3:28:45:2d:19:14:cb:4f:38:1e:60:04: b5:7a:9b:1a:18:47:13:52:c3:3b:f5:ae:39:d2:40:b6:c2:0f: 3c:2b:ff:cd:64:6e:42:92:fd:63:2c:f2:b7:7c:2a:32:96:c7: 79:7f:9c:e8:75:0e:8d:49:ab:0b:d9:b2:90:53:d6:87:22:1c: 2b:29:91:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjUxMTA1MDM0OTIxWhcNMjUxMTEyMDM0OTIxWjAYMRYwFAYD VQQDEw02OTBhYzk0MS00NTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zQtxGuY6XOTDrr8QC5tt4KSKKBKhyYKagUl2K/IfSbFr3W6/G4PcLP0h5pU pRzB/4OMGZOiTpuDByuNIQOfzQ1IGyZrtrim5yXWhmxdsTRezbI17ucFEQeGqlIB /ofVan4s+2wtMLvFicrePrOop+Jt0beTGrYDOjfYgWY+2eU1vd8Not/7uGt7dbCe NrmCnuhP4b+1zelMyFeuZbzLtCua+aPajeBeGb2OFBXWnHpdmhBlcgrWtZtJ7mDp 8LVNLV5OL0ms6TqCtqUlgKpiI+AfObUsxqjtTsGk7sHyN3in4BK56Z6httMz3/RP 8geD5BuWAiy7S6UVslpUAeTg9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+Fp0Oo eA7QGU+oOnWL8WZynbnSMB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBq WjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsnX+u1BP7DBqAH7rYVUeI4HXP30ItxjyL/yUbAkYYfgQy5IV9zBoK rRap0cKqTsK2HYLerhUnlMk8UL0YqnWUY7sMKcdPYxNHC4Ge27pHsxmHJZhwaokg xuGlkoagj6DgmOoeFGkBFirTRt8bfibHJjHR8aC/TK4C89tdfA13R0wdaHSh35ho 5AIqUW9nZOabYwcSI9YlziD7ybIv8UmkCbJT0d8s1NODMSRuwvWRxTDl+LeRTHGC XbbjKEUtGRTLTzgeYAS1epsaGEcTUsM79a450kC2wg88K//NZG5Ckv1jLPK3fCoy lsd5f5zodQ6NSasL2bKQU9aHIhwrKZE0 -----END CERTIFICATE-----Generated at Wed Nov 5 16:40:13 2025 by rpki-client