$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: os4cSBo5jTjXAsOXPoH2m3v0DeWIwfkYDlcFMQtd/hk= Subject key identifier: 00:39:E6:13:9A:67:9A:77:B5:AF:F6:45:E9:28:6F:C4:AD:BE:81:D9 Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 0AF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 0AE9 Signing time: Tue 04 Nov 2025 19:31:06 +0000 Manifest this update: Tue 04 Nov 2025 19:31:06 +0000 Manifest next update: Tue 11 Nov 2025 19:31:06 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: fQ8Af1S4dHWGyKHcIxZTbaNKyGfHq1JTLDzeIBr8WSw=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: iGeCqjea5TKx5w3j1RMFWZOzP6n/8IBkqpNhUcYz96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:31:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2803 (0xaf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0, serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: Nov 4 19:31:06 2025 GMT Not After : Nov 11 19:31:06 2025 GMT Subject: CN=690a547a-63aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a8:5c:0c:0d:3a:12:62:cf:92:bd:8b:1d:48: 8d:37:18:27:56:e5:7d:25:01:7a:79:f9:6e:c7:e3: 74:b4:38:97:f6:88:45:b9:7f:d0:52:f1:bd:d5:31: 25:bb:0f:6f:81:9f:b9:aa:4b:2b:6b:b7:6b:0b:14: 2e:46:a7:79:37:e6:e5:ee:f7:8b:a6:a6:6d:04:98: b6:f3:17:de:1c:8e:34:5e:0e:62:ad:af:58:60:f1: 4d:37:a5:95:4d:72:24:66:f9:b2:29:33:7b:b2:41: 65:88:9e:b1:eb:30:e2:85:7d:df:c5:99:1a:45:96: 23:8e:5c:33:b1:f2:4b:af:e3:b6:c8:7e:2c:62:29: 33:07:31:b0:55:ec:5e:b3:a6:54:db:7a:b4:f7:c6: 4b:3a:e6:5e:14:6b:54:67:11:7c:0c:48:78:f5:cc: 9d:e0:78:e2:6d:fe:e5:38:5f:00:bc:0c:68:03:76: 4f:a1:ec:db:21:31:60:f2:7b:f5:97:6d:24:f1:dd: c6:67:cc:49:77:c0:33:72:f2:23:f2:be:01:8d:5a: 6d:83:7b:1d:a5:81:2e:59:56:54:1d:4c:04:30:a4: 51:fd:a2:1c:59:a4:6b:cc:f4:f8:e0:5e:d7:60:08: 75:65:15:37:ca:73:93:9c:42:b3:de:27:86:57:68: 3f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:39:E6:13:9A:67:9A:77:B5:AF:F6:45:E9:28:6F:C4:AD:BE:81:D9 X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:64:81:83:3e:21:40:c7:0a:e6:39:a7:70:f3:3c:99:77:fe: 88:ea:3c:03:1e:cf:0f:6f:71:9f:92:79:ff:b9:92:91:9e:84: a3:dc:da:a1:a7:6e:62:32:e6:cc:ab:39:a0:61:1b:d0:f4:e8: 9f:e1:7a:a9:c9:8e:b7:ea:22:29:4a:00:b6:36:cc:a0:13:2b: 81:4f:e5:8b:13:ee:da:14:08:a4:61:78:de:ad:31:78:cc:92: 96:7d:45:56:9c:a8:dc:8a:5c:ff:62:aa:8c:00:21:bd:6b:85: ce:78:c6:01:44:74:00:03:1d:0d:26:e4:bd:71:c3:9d:88:d9: 66:65:5a:02:6f:d9:06:dd:b9:e0:0b:67:c4:99:07:46:83:a2: c2:9a:4d:77:8b:b0:22:eb:f2:68:70:35:4d:c1:2e:ca:df:0e: 8f:52:b7:3e:f8:7f:29:fc:6d:33:ab:0b:2f:f1:60:65:92:f2: 33:c3:c7:d3:7d:b3:54:d5:79:b6:0e:d2:b3:05:d1:13:8f:6e: a3:e1:f8:26:6a:7d:15:8d:ae:3f:91:15:50:6f:1f:34:77:ae: 5b:73:bc:15:7a:ed:55:81:c8:65:78:20:e5:76:90:b5:77:3b: f5:5e:a8:75:87:45:a8:18:c4:58:b2:ec:86:cd:5d:be:fd:ca: 8e:bf:35:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjUxMTA0MTkzMTA2WhcNMjUxMTExMTkzMTA2WjAYMRYwFAYD VQQDEw02OTBhNTQ3YS02M2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6hcDA06EmLPkr2LHUiNNxgnVuV9JQF6eflux+N0tDiX9ohFuX/QUvG91TEl uw9vgZ+5qksra7drCxQuRqd5N+bl7veLpqZtBJi28xfeHI40Xg5ira9YYPFNN6WV TXIkZvmyKTN7skFliJ6x6zDihX3fxZkaRZYjjlwzsfJLr+O2yH4sYikzBzGwVexe s6ZU23q098ZLOuZeFGtUZxF8DEh49cyd4Hjibf7lOF8AvAxoA3ZPoezbITFg8nv1 l20k8d3GZ8xJd8AzcvIj8r4BjVptg3sdpYEuWVZUHUwEMKRR/aIcWaRrzPT44F7X YAh1ZRU3ynOTnEKz3ieGV2g/HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAA55hOa Z5p3ta/2Rekob8StvoHZMB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3ZIGDPiFAxwrmOadw8zyZd/6I6jwDHs8Pb3Gfknn/uZKRnoSj3Nqh p25iMubMqzmgYRvQ9Oif4XqpyY636iIpSgC2NsygEyuBT+WLE+7aFAikYXjerTF4 zJKWfUVWnKjcilz/YqqMACG9a4XOeMYBRHQAAx0NJuS9ccOdiNlmZVoCb9kG3bng C2fEmQdGg6LCmk13i7Ai6/JocDVNwS7K3w6PUrc++H8p/G0zqwsv8WBlkvIzw8fT fbNU1Xm2DtKzBdETj26j4fgman0Vja4/kRVQbx80d65bc7wVeu1VgchleCDldpC1 dzv1Xqh1h0WoGMRYsuyGzV2+/cqOvzUZ -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:34 2025 by rpki-client