$ rpki-client -vvf rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft File: OUPUJhV5zeDoKgXKKrVLOHulGTM.mft (raw, json) Hash identifier: +4Iyr/pLZ6XRaNKOD5OK7BjqPruZ8kh2twgRIM0rz4c= Subject key identifier: 2C:44:CD:B9:9C:1F:C8:BA:CE:3E:3C:E6:38:35:BF:6C:0C:30:FF:84 Authority key identifier: 39:43:D4:26:15:79:CD:E0:E8:2A:05:CA:2A:B5:4B:38:7B:A5:19:33 Certificate issuer: /CN=A919D88F/serialNumber=3943D4261579CDE0E82A05CA2AB54B387BA51933 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft Manifest number: C3 Signing time: Mon 03 Nov 2025 05:52:36 +0000 Manifest this update: Mon 03 Nov 2025 05:52:35 +0000 Manifest next update: Mon 10 Nov 2025 05:52:35 +0000 Files and hashes: 1: OUPUJhV5zeDoKgXKKrVLOHulGTM.crl (hash: c6chkOtpIVN4NL/WTd/LcdUcWJc8a7zNu8/o5xsU8ic=) 2: 31C36B64905F11EFAF49EB6BC4F9AE02.roa (hash: L+MQl2N4HWMJyowT/sQLapWMqlpwpjacwTEIlXHA4EM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.crl rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D88F, serialNumber=3943D4261579CDE0E82A05CA2AB54B387BA51933 Validity Not Before: Nov 3 05:52:35 2025 GMT Not After : Nov 10 05:52:35 2025 GMT Subject: CN=69084324-38ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cb:ef:6d:8c:2b:a6:d2:44:7d:f8:00:4e:a4: 5e:13:f0:a3:a3:34:20:b4:8e:37:3d:6a:47:fb:5a: 2c:bd:c4:75:f2:c2:74:73:0c:a7:01:e0:63:ad:f6: ba:c4:54:e7:d1:aa:38:e6:02:6f:01:78:f0:94:63: 5a:84:51:d7:dc:00:e3:07:4a:c9:52:a7:3e:08:4c: da:2d:8c:34:5e:12:85:59:e5:10:ab:cc:c7:bf:62: cd:82:9c:64:b9:27:48:42:8a:c6:5f:90:7d:12:a1: 52:de:99:f8:c4:73:ca:16:1e:a5:30:81:71:13:79: c0:e8:b5:9d:6f:00:50:a6:fe:83:1a:c6:19:c8:57: 91:cc:f3:4e:b4:3a:3c:44:9e:fd:47:5d:f6:bf:77: d5:8a:66:36:35:e6:b5:36:e5:01:3f:13:e8:6b:f0: 54:08:b8:25:2e:a7:a6:e1:5a:0d:ec:dd:cc:d9:d1: 29:1c:3a:4c:cf:95:f3:9e:0a:38:67:80:a7:8c:3d: 7a:22:4d:31:12:3f:9b:b5:2a:b3:22:16:d9:5c:84: e6:0c:54:be:32:8c:dd:66:e9:ee:ff:a5:aa:19:f0: 35:09:c2:44:dd:96:61:eb:e3:fb:aa:2e:9e:2d:99: 39:c3:41:ef:7f:fa:fd:a6:5e:e0:aa:0c:d9:8a:c3: 76:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:44:CD:B9:9C:1F:C8:BA:CE:3E:3C:E6:38:35:BF:6C:0C:30:FF:84 X509v3 Authority Key Identifier: keyid:39:43:D4:26:15:79:CD:E0:E8:2A:05:CA:2A:B5:4B:38:7B:A5:19:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:db:6d:1b:3d:69:5f:c0:34:93:23:d9:17:d0:d1:a6:e3:57: f4:30:c0:b2:0d:30:67:10:55:b2:b6:85:23:9b:be:b4:b7:da: 0c:5c:c2:7a:ff:e4:e1:69:24:b5:d1:2c:06:34:4f:e7:6c:fb: 44:4d:b1:6d:27:8b:82:2d:f0:a5:df:70:68:aa:c6:1b:04:9c: a5:e0:b1:c4:16:28:bd:1b:69:a0:11:86:4f:bd:fc:0f:5f:a0: 71:94:f5:7f:44:ee:e1:24:f2:fe:53:26:67:79:3c:36:8a:08: c7:c9:77:e1:f0:11:a7:b1:98:ad:a0:dd:8d:a5:31:7c:a3:ea: ee:86:5a:d2:5f:5a:5f:2c:92:14:af:52:8f:7e:17:a0:a9:75: 6b:88:14:9d:2d:48:d8:b1:70:c1:21:89:7f:52:c4:dc:b0:ea: 2b:1b:f7:1c:e8:be:ed:ef:fb:1a:45:f6:71:d9:d9:c3:0f:e4: fa:9c:f9:51:04:ed:45:13:23:6c:b3:6d:71:44:a8:21:c5:bf: 8d:fd:ef:8b:7e:4f:16:e3:aa:5e:7e:d1:67:4e:d0:58:e8:5c: 4b:15:dc:7e:ea:0d:51:36:74:55:58:0a:b2:f4:f4:ea:5a:56: d4:a9:8a:84:ed:d3:fa:cd:4a:87:52:ec:aa:be:b4:02:87:48: 4c:c6:7b:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ4OEYxMTAvBgNVBAUTKDM5NDNENDI2MTU3OUNERTBFODJBMDVDQTJBQjU0QjM4 N0JBNTE5MzMwHhcNMjUxMTAzMDU1MjM1WhcNMjUxMTEwMDU1MjM1WjAYMRYwFAYD VQQDEw02OTA4NDMyNC0zOGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcvvbYwrptJEffgATqReE/CjozQgtI43PWpH+1osvcR18sJ0cwynAeBjrfa6 xFTn0ao45gJvAXjwlGNahFHX3ADjB0rJUqc+CEzaLYw0XhKFWeUQq8zHv2LNgpxk uSdIQorGX5B9EqFS3pn4xHPKFh6lMIFxE3nA6LWdbwBQpv6DGsYZyFeRzPNOtDo8 RJ79R132v3fVimY2Nea1NuUBPxPoa/BUCLglLqem4VoN7N3M2dEpHDpMz5Xzngo4 Z4CnjD16Ik0xEj+btSqzIhbZXITmDFS+MozdZunu/6WqGfA1CcJE3ZZh6+P7qi6e LZk5w0Hvf/r9pl7gqgzZisN2swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxEzbmc H8i6zj485jg1v2wMMP+EMB8GA1UdIwQYMBaAFDlD1CYVec3g6CoFyiq1Szh7pRkz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDg4Ri84NEE1QkM4MDkw NUQxMUVGQTRGMzFEMkVDNEY5QUUwMi9PVVBVSmhWNXplRG9LZ1hLS3JWTE9IdWxH VE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VUFVKaFY1emVEb0tnWEtLclZMT0h1bEdUTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDg4Ri84NEE1QkM4MDkwNUQxMUVGQTRGMzFEMkVDNEY5QUUwMi9PVVBVSmhWNXpl RG9LZ1hLS3JWTE9IdWxHVE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU220bPWlfwDSTI9kX0NGm41f0MMCyDTBnEFWytoUjm760t9oMXMJ6 /+ThaSS10SwGNE/nbPtETbFtJ4uCLfCl33BoqsYbBJyl4LHEFii9G2mgEYZPvfwP X6BxlPV/RO7hJPL+UyZneTw2igjHyXfh8BGnsZitoN2NpTF8o+ruhlrSX1pfLJIU r1KPfhegqXVriBSdLUjYsXDBIYl/UsTcsOorG/cc6L7t7/saRfZx2dnDD+T6nPlR BO1FEyNss21xRKghxb+N/e+Lfk8W46peftFnTtBY6FxLFdx+6g1RNnRVWAqy9PTq WlbUqYqE7dP6zUqHUuyqvrQCh0hMxnvN -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:30 2025 by rpki-client