$ rpki-client -vvf rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft File: opsbaAnOwakkcMWcbDa_pc84cYY.mft (raw, json) Hash identifier: FqCbMPcZvs4jc2yAoCl62QKeSocgUWYN3ivY73J26qw= Subject key identifier: 8F:7D:30:69:51:0A:E4:CA:25:9A:0E:C5:58:F3:2F:B7:28:50:DF:EE Authority key identifier: A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 Certificate issuer: /CN=A9187BAC/serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft Manifest number: 9D Signing time: Mon 03 Nov 2025 06:24:33 +0000 Manifest this update: Mon 03 Nov 2025 06:24:32 +0000 Manifest next update: Mon 10 Nov 2025 06:24:32 +0000 Files and hashes: 1: opsbaAnOwakkcMWcbDa_pc84cYY.crl (hash: u+C1HgxNym3za5wPFu06pNqZXI29LALUsEDgPj/KFhE=) 2: 7404496836E411F0A95FB239C4F9AE02.roa (hash: WHGMZh9P2RExWIeMMaDkbGi0VRoxW1Iai0A3Zb9yWT4=) 3: 7375238236E411F0A95FB239C4F9AE02.roa (hash: 6GqewoLZaVKTqsSzxgnIGXRwmj2ShKpEerZMfS7j+UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:24:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187BAC, serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Validity Not Before: Nov 3 06:24:32 2025 GMT Not After : Nov 10 06:24:32 2025 GMT Subject: CN=69084aa0-9744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ea:ff:8a:7e:34:7d:47:74:bc:39:d8:f2:78: f9:49:c6:d2:ed:62:cf:ca:cc:d9:69:b8:84:30:0a: ee:4f:27:59:a6:7c:88:11:2a:4b:4b:b6:fe:b1:e8: 33:89:89:ed:d2:d9:71:27:95:0a:55:8a:f4:ea:a4: f6:5d:ba:b7:b7:72:de:2d:e2:ec:61:35:c7:eb:08: 07:c9:d6:fd:4f:78:51:6e:5f:13:e9:cd:5e:c1:e6: 06:a1:43:0e:28:f9:0d:28:26:28:8e:29:1d:97:c9: f2:08:91:9c:ae:a1:f9:2c:e1:f0:84:05:c4:a2:1e: 72:a0:10:cb:59:7e:bd:aa:ab:45:4d:ea:c3:ce:9c: 20:9c:b8:8f:37:0e:0a:52:41:91:cb:92:20:83:58: e8:3e:7a:74:53:38:7d:41:ec:eb:06:ac:4c:96:db: 41:20:96:47:7b:0c:55:d4:d5:d6:46:21:44:3e:2b: d9:ae:91:9b:b4:e8:e1:db:43:c5:59:7d:4b:da:96: a5:b6:c1:95:9c:ab:0e:48:d5:49:46:d4:69:83:f1: 49:d3:eb:54:4d:8a:9f:c3:d7:13:54:d1:bb:93:76: 6e:c0:82:cc:4d:60:c0:81:d6:8a:fb:22:db:67:4d: bb:de:8c:18:9a:38:0e:e5:73:c6:47:49:fe:21:8e: 32:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7D:30:69:51:0A:E4:CA:25:9A:0E:C5:58:F3:2F:B7:28:50:DF:EE X509v3 Authority Key Identifier: keyid:A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:de:03:b9:a7:55:24:eb:d2:2c:76:67:44:db:c1:4a:bb:70: 95:da:c3:bd:35:ed:64:2a:f7:cf:4c:48:3a:8d:67:b4:84:8b: 21:ed:b7:b3:f1:82:a7:52:8a:7f:39:9a:bd:ad:d4:78:af:d9: de:fa:21:b8:f8:39:ab:96:38:cf:dd:17:de:12:41:30:04:9f: 78:1c:16:b8:13:b0:3a:c0:08:2f:52:30:83:ea:f0:7e:a1:89: 5f:92:0d:4a:ff:36:07:cd:f5:a8:eb:33:c0:2f:1b:f8:e0:1c: df:56:7e:b4:8c:bd:66:98:98:1d:e6:9b:80:d5:ea:53:83:d5: df:38:70:b6:e5:28:79:c3:f3:d5:94:00:33:35:2f:ec:6f:f1: c1:52:e2:22:02:96:a7:d6:1c:b4:64:97:24:0e:bb:73:5b:8d: 76:b9:f8:46:28:79:fe:9a:c5:aa:be:10:c6:31:dd:cb:31:97: 1f:ca:e0:03:74:a1:ce:2e:53:b0:ef:b1:47:22:30:e1:ab:57: 8f:92:52:e0:f1:cf:01:6c:eb:85:9f:0c:04:c9:eb:f9:a6:98: d2:a2:4b:1b:b3:09:8b:4d:ad:2d:4b:fe:59:7a:7f:57:93:32: 10:97:0a:fe:20:41:cf:2d:5a:e9:a1:a1:80:53:6f:a7:f8:9a: 66:e1:0f:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdCQUMxMTAvBgNVBAUTKEEyOUIxQjY4MDlDRUMxQTkyNDcwQzU5QzZDMzZCRkE1 Q0YzODcxODYwHhcNMjUxMTAzMDYyNDMyWhcNMjUxMTEwMDYyNDMyWjAYMRYwFAYD VQQDEw02OTA4NGFhMC05NzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+r/in40fUd0vDnY8nj5ScbS7WLPyszZabiEMAruTydZpnyIESpLS7b+segz iYnt0tlxJ5UKVYr06qT2Xbq3t3LeLeLsYTXH6wgHydb9T3hRbl8T6c1eweYGoUMO KPkNKCYojikdl8nyCJGcrqH5LOHwhAXEoh5yoBDLWX69qqtFTerDzpwgnLiPNw4K UkGRy5Igg1joPnp0Uzh9QezrBqxMlttBIJZHewxV1NXWRiFEPivZrpGbtOjh20PF WX1L2paltsGVnKsOSNVJRtRpg/FJ0+tUTYqfw9cTVNG7k3ZuwILMTWDAgdaK+yLb Z0273owYmjgO5XPGR0n+IY4yeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI99MGlR CuTKJZoOxVjzL7coUN/uMB8GA1UdIwQYMBaAFKKbG2gJzsGpJHDFnGw2v6XPOHGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0JBQy9DNkFEM0UwQUQw MkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dha2tjTVdjYkRhX3BjODRj WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wc2JhQW5Pd2Fra2NNV2NiRGFfcGM4NGNZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 N0JBQy9DNkFEM0UwQUQwMkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dh a2tjTVdjYkRhX3BjODRjWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy3gO5p1Uk69IsdmdE28FKu3CV2sO9Ne1kKvfPTEg6jWe0hIsh7bez 8YKnUop/OZq9rdR4r9ne+iG4+DmrljjP3RfeEkEwBJ94HBa4E7A6wAgvUjCD6vB+ oYlfkg1K/zYHzfWo6zPALxv44BzfVn60jL1mmJgd5puA1epTg9XfOHC25Sh5w/PV lAAzNS/sb/HBUuIiApan1hy0ZJckDrtzW412ufhGKHn+msWqvhDGMd3LMZcfyuAD dKHOLlOw77FHIjDhq1ePklLg8c8BbOuFnwwEyev5ppjSoksbswmLTa0tS/5Zen9X kzIQlwr+IEHPLVrpoaGAU2+n+Jpm4Q8m -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:59 2025 by rpki-client