$ rpki-client -vvf rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft File: OIX50v0IYCg7VTgfHE9KWjoe7z8.mft (raw, json) Hash identifier: BMsdkJyYfRACstC1Ct9BWZXwl2CLcJC2OBaUuJjvA68= Subject key identifier: 6C:CC:58:CE:0E:5D:86:79:50:23:A6:EB:B3:3C:6E:AE:36:06:35:5E Authority key identifier: 38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F Certificate issuer: /CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft Manifest number: 0115 Signing time: Sat 25 Oct 2025 08:27:15 +0000 Manifest this update: Sat 25 Oct 2025 08:27:15 +0000 Manifest next update: Sat 01 Nov 2025 08:27:15 +0000 Files and hashes: 1: OIX50v0IYCg7VTgfHE9KWjoe7z8.crl (hash: 44JzF/Ngd7NzPXr2bOeDJGjxGWO6BE32UeF8Y3tJTcg=) 2: 744D8A1005EE11EF851FA42FC4F9AE02.roa (hash: g7/I1107TKCwjJnWd7arEQMGj8EBr7MRJOF1ZUaFXNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 08:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847C2, serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Validity Not Before: Oct 25 08:27:15 2025 GMT Not After : Nov 1 08:27:15 2025 GMT Subject: CN=68fc89e3-4cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e5:89:3e:68:0a:af:81:ca:41:b6:04:de:0a: 68:66:e0:a5:fd:f1:3d:fa:62:de:b0:c4:c2:17:59: 8f:67:a2:54:88:78:87:ce:ee:ce:7d:ac:06:36:40: 7c:9b:b7:46:be:04:07:c4:d5:36:d0:c3:41:b0:db: 8a:11:d7:c5:e2:be:97:03:51:14:95:f1:d2:aa:ff: e7:79:2c:7a:b8:bd:23:13:55:5b:9d:d6:eb:80:b8: 4c:cc:33:72:13:98:4c:e2:3d:e8:9a:0f:83:2c:50: e9:bb:71:02:b8:d0:7f:5b:1b:4b:a5:ef:73:94:2a: 3f:fb:5c:fd:0d:d1:8f:08:38:46:a1:92:cc:0f:f0: 8f:d0:35:7c:05:24:b5:70:71:cd:dd:a8:13:5b:e5: 5c:e8:df:28:08:a3:11:cc:a3:f1:fb:df:d3:c8:bb: bf:3e:f4:dc:7b:40:09:b1:77:b3:7a:b0:ec:5a:f3: be:c4:99:39:09:3b:c7:72:04:6e:4a:1d:0c:6c:07: 3c:c3:a8:c4:fa:9e:5a:fc:4d:9e:7e:ef:94:11:6b: 0d:3d:bd:8f:3f:03:d3:96:db:47:68:a2:a5:0c:c1: 82:95:ae:1c:61:e1:3a:e2:2c:b6:e9:bc:9e:ff:5b: 80:15:d9:f8:bd:c6:e4:31:f9:b1:da:7f:d6:91:41: 7e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CC:58:CE:0E:5D:86:79:50:23:A6:EB:B3:3C:6E:AE:36:06:35:5E X509v3 Authority Key Identifier: keyid:38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:c6:b4:27:81:64:b8:2b:2f:86:05:1f:7c:5d:ee:c0:33:f5: 3d:09:97:fc:27:8f:d1:34:f4:3f:dd:29:e0:32:4a:3d:c9:ba: f3:16:f1:e5:c8:2b:29:98:42:61:c7:06:88:ee:7e:e7:b8:ca: a6:0d:c7:90:c8:5c:ec:6a:21:cf:13:c0:3f:18:3e:7f:e4:71: 9e:11:14:8c:28:b9:e5:19:5a:83:67:a5:b4:e4:7f:47:68:0a: 90:9c:ed:29:0d:10:92:10:78:46:ee:50:45:ca:11:ba:ff:17: 9e:a2:3c:a6:76:3e:4e:be:96:a4:34:a2:07:47:ce:33:c0:b8: 15:74:3b:aa:28:02:26:d7:38:08:07:16:10:c4:ad:e3:1b:1c: 47:50:e5:52:1c:b5:12:e2:29:91:50:1b:0e:d5:8d:c9:f0:8b: de:9f:80:07:84:e3:0b:50:e5:26:34:60:4e:fb:70:62:fc:15: 11:71:44:a4:33:2a:5a:71:cc:6a:14:98:4c:11:cc:78:53:58: 62:4d:ab:87:9d:3c:49:a2:6f:77:30:08:1b:1d:95:74:58:cd: b1:8a:84:d0:8d:d9:a4:7b:78:00:d2:29:ec:e7:a1:fe:0e:a8: 9b:0d:2c:9d:90:23:48:cd:f9:77:42:aa:c1:f5:9e:72:1c:15: 9d:a7:f7:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QzIxMTAvBgNVBAUTKDM4ODVGOUQyRkQwODYwMjgzQjU1MzgxRjFDNEY0QTVB M0ExRUVGM0YwHhcNMjUxMDI1MDgyNzE1WhcNMjUxMTAxMDgyNzE1WjAYMRYwFAYD VQQDEw02OGZjODllMy00Y2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uWJPmgKr4HKQbYE3gpoZuCl/fE9+mLesMTCF1mPZ6JUiHiHzu7OfawGNkB8 m7dGvgQHxNU20MNBsNuKEdfF4r6XA1EUlfHSqv/neSx6uL0jE1VbndbrgLhMzDNy E5hM4j3omg+DLFDpu3ECuNB/WxtLpe9zlCo/+1z9DdGPCDhGoZLMD/CP0DV8BSS1 cHHN3agTW+Vc6N8oCKMRzKPx+9/TyLu/PvTce0AJsXezerDsWvO+xJk5CTvHcgRu Sh0MbAc8w6jE+p5a/E2efu+UEWsNPb2PPwPTlttHaKKlDMGCla4cYeE64iy26bye /1uAFdn4vcbkMfmx2n/WkUF+CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzMWM4O XYZ5UCOm67M8bq42BjVeMB8GA1UdIwQYMBaAFDiF+dL9CGAoO1U4HxxPSlo6Hu8/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdDMi9COTJCRkFENDA1 RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlDZzdWVGdmSEU5S1dqb2U3 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JWDUwdjBJWUNnN1ZUZ2ZIRTlLV2pvZTd6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdDMi9COTJCRkFENDA1RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlD ZzdWVGdmSEU5S1dqb2U3ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUxrQngWS4Ky+GBR98Xe7AM/U9CZf8J4/RNPQ/3SngMko9ybrzFvHl yCspmEJhxwaI7n7nuMqmDceQyFzsaiHPE8A/GD5/5HGeERSMKLnlGVqDZ6W05H9H aAqQnO0pDRCSEHhG7lBFyhG6/xeeojymdj5OvpakNKIHR84zwLgVdDuqKAIm1zgI BxYQxK3jGxxHUOVSHLUS4imRUBsO1Y3J8Iven4AHhOMLUOUmNGBO+3Bi/BURcUSk MypaccxqFJhMEcx4U1hiTauHnTxJom93MAgbHZV0WM2xioTQjdmke3gA0ins56H+ DqibDSydkCNIzfl3QqrB9Z5yHBWdp/db -----END CERTIFICATE-----Generated at Sun Oct 26 07:18:52 2025 by rpki-client