$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: fg4QJqErmk9p41T8OFIH6nqqMIz3/KWSk2P1Y5drFa8= Subject key identifier: 20:28:88:42:60:7A:80:5D:20:DD:C4:0C:C2:CA:B9:37:16:31:00:7A Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0A59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0A4A Signing time: Tue 04 Nov 2025 19:47:49 +0000 Manifest this update: Tue 04 Nov 2025 19:47:48 +0000 Manifest next update: Tue 11 Nov 2025 19:47:48 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: xc+brff/IoLd6VRQCjvAgyLbXglOLsw1DKVJjfTvsWU=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: vryPQgJZ9HPQvb4c/vnzkdnAafqVRFouOd+j23S6sMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2649 (0xa59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Nov 4 19:47:48 2025 GMT Not After : Nov 11 19:47:48 2025 GMT Subject: CN=690a5865-efd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:0f:ae:4c:da:bc:b7:1b:4a:cb:74:f8:ba:28: 7b:bc:cc:35:1b:a1:73:ce:a1:80:ea:ed:a1:25:98: 0a:b5:05:c8:00:0a:b7:aa:70:ab:9e:8d:a9:1c:d6: 5e:9b:dc:00:ac:98:48:39:e9:dd:76:4b:2c:e6:ee: 88:f3:3a:23:01:e2:22:5b:be:e1:12:4b:aa:20:f0: a3:f0:7e:94:9d:8a:c7:8f:76:40:1d:79:96:3e:5a: 14:a0:3d:6f:0a:fb:84:97:be:35:ae:9c:5a:10:88: b7:1e:7a:3d:20:67:5b:58:69:1b:a3:9c:31:63:0d: 01:e5:db:0a:7d:f4:08:a8:c7:fe:0c:62:64:f1:0e: 80:a7:4c:4b:96:29:d0:63:ff:d6:19:49:b7:7d:99: 66:4b:34:5b:cc:f7:f4:56:90:b4:4b:da:92:f8:9d: c4:3f:87:ee:a6:1e:58:92:38:a6:60:c8:d0:32:76: b2:7f:56:92:b8:90:8c:bf:d1:81:4b:20:74:8a:eb: 16:3a:01:ed:51:c4:fe:25:cc:b6:05:07:3f:76:ae: 37:57:6c:ed:23:bd:5b:6f:fd:2d:2b:3f:60:e1:d5: ed:33:49:f7:fd:15:c2:1f:70:03:f1:8f:ad:f9:ed: ff:13:b0:6e:9e:f2:16:90:b1:bb:bd:9a:47:ae:c4: 9b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:28:88:42:60:7A:80:5D:20:DD:C4:0C:C2:CA:B9:37:16:31:00:7A X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:c5:20:d4:e4:f0:10:e6:9b:0a:38:eb:7c:1f:79:62:ce:35: 7e:f2:7c:d3:1d:dc:31:56:81:ab:dc:95:8c:80:ab:18:85:9d: 68:56:20:1d:29:d9:db:33:79:c0:4e:7f:f6:24:1b:88:a9:7c: a4:8c:97:55:7f:30:6a:f3:52:60:0d:c3:35:be:58:04:1b:79: 10:80:7d:f3:56:ba:a2:7b:cc:40:6b:c0:da:bd:41:72:08:07: 0f:e3:29:10:60:16:f4:e6:57:31:23:09:71:42:a7:fd:ba:b6: ca:0c:5c:99:5e:d8:94:ea:44:51:9e:1d:06:b0:2b:de:74:8e: 96:ed:76:f3:8c:fb:6b:6a:f3:e5:6e:e7:b0:90:6b:2a:7a:3a: 68:bf:97:85:37:70:2b:0d:f1:6e:f0:68:01:dd:e0:3d:26:68: 12:a8:af:cb:6e:3e:4c:5c:da:c2:e0:6c:26:1d:bf:e9:54:52: a7:88:33:60:3e:44:16:ca:8a:92:98:7c:d8:47:cf:0d:39:39: 56:52:63:5d:01:ad:be:28:93:1b:5b:86:e4:f9:2d:ac:17:24: d2:38:b8:5d:13:39:40:6f:10:3d:fb:44:31:6e:43:14:db:04: f9:fa:cd:1e:7c:b1:ee:a4:b4:c0:29:2b:ac:38:d0:2a:93:8a: 05:d0:64:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjUxMTA0MTk0NzQ4WhcNMjUxMTExMTk0NzQ4WjAYMRYwFAYD VQQDEw02OTBhNTg2NS1lZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Q+uTNq8txtKy3T4uih7vMw1G6FzzqGA6u2hJZgKtQXIAAq3qnCrno2pHNZe m9wArJhIOenddkss5u6I8zojAeIiW77hEkuqIPCj8H6UnYrHj3ZAHXmWPloUoD1v CvuEl741rpxaEIi3Hno9IGdbWGkbo5wxYw0B5dsKffQIqMf+DGJk8Q6Ap0xLlinQ Y//WGUm3fZlmSzRbzPf0VpC0S9qS+J3EP4fuph5YkjimYMjQMnayf1aSuJCMv9GB SyB0iusWOgHtUcT+Jcy2BQc/dq43V2ztI71bb/0tKz9g4dXtM0n3/RXCH3AD8Y+t +e3/E7BunvIWkLG7vZpHrsSbNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAoiEJg eoBdIN3EDMLKuTcWMQB6MB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAExSDU5PAQ5psKOOt8H3lizjV+8nzTHdwxVoGr3JWMgKsYhZ1oViAd KdnbM3nATn/2JBuIqXykjJdVfzBq81JgDcM1vlgEG3kQgH3zVrqie8xAa8DavUFy CAcP4ykQYBb05lcxIwlxQqf9urbKDFyZXtiU6kRRnh0GsCvedI6W7XbzjPtravPl buewkGsqejpov5eFN3ArDfFu8GgB3eA9JmgSqK/Lbj5MXNrC4GwmHb/pVFKniDNg PkQWyoqSmHzYR88NOTlWUmNdAa2+KJMbW4bk+S2sFyTSOLhdEzlAbxA9+0QxbkMU 2wT5+s0efLHupLTAKSusONAqk4oF0GRn -----END CERTIFICATE-----Generated at Wed Nov 5 19:30:19 2025 by rpki-client