$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft File: opeisJM4LkUIbKB87myXs2vkws0.mft (raw, json) Hash identifier: eR8QiQbe6msX/Vnip4/GAqjt2mO+RXgrxwkBdYafsNQ= Subject key identifier: 8B:58:71:CC:85:96:D3:1E:23:4B:21:82:51:BF:29:96:AB:1F:37:FC Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD Certificate issuer: /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Certificate serial: 0764 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft Manifest number: 075D Signing time: Thu 30 Oct 2025 21:38:07 +0000 Manifest this update: Thu 30 Oct 2025 21:38:07 +0000 Manifest next update: Thu 06 Nov 2025 21:38:07 +0000 Files and hashes: 1: opeisJM4LkUIbKB87myXs2vkws0.crl (hash: ZcWCq8G1EuCQpbAR/sHkRPFL9muKfBBK6fLv4VLi1fk=) 2: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (hash: YjRfOOPCw2f3bTp4JIxEV1Qp+ImYc99rwjJvwjX7itk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 21:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1892 (0x764) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C82, serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Validity Not Before: Oct 30 21:38:07 2025 GMT Not After : Nov 6 21:38:07 2025 GMT Subject: CN=6903dabf-3a59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7a:ea:e6:a4:49:99:7a:0d:c3:8e:05:2b:2d: 73:e2:dc:2e:b0:0e:9c:f0:ae:53:c2:89:1d:bc:8f: 7c:a2:9f:a6:7d:aa:5d:1c:e9:d8:e6:3d:8d:1d:8f: 9a:43:03:cc:e6:71:1c:86:92:ae:8f:a9:e3:39:c9: e3:28:2f:cf:21:12:82:1b:52:ac:7b:ed:87:5c:c7: 82:6f:64:4b:e5:08:98:2c:f5:47:95:66:0d:8e:dd: e1:97:2f:6b:38:66:a3:e8:de:ff:df:08:b6:3d:30: ac:a5:f5:a8:30:9c:f0:a2:d9:1c:6e:98:f6:45:c0: 86:60:79:fa:5f:57:09:00:8a:0a:21:c7:b1:fc:e7: 67:5d:7d:a1:0f:5e:2f:64:8b:e9:eb:dc:01:d4:6b: 91:ef:4f:27:d3:fb:7c:88:2d:71:53:66:d1:6b:72: 27:f3:40:ef:f2:e3:9e:d8:93:ba:c6:c7:22:94:f9: 99:30:e8:3e:a6:3d:9a:89:90:92:02:99:ee:71:97: 08:04:1f:c5:67:bc:46:30:81:9a:49:be:f7:fa:a4: f1:c4:2c:b6:bc:c6:34:75:be:0d:13:d6:47:c5:8f: 20:22:e1:2e:49:9f:0f:21:64:65:f6:2c:75:90:ee: d8:75:7f:f0:29:f7:54:33:a5:27:5d:78:68:46:b4: b9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:58:71:CC:85:96:D3:1E:23:4B:21:82:51:BF:29:96:AB:1F:37:FC X509v3 Authority Key Identifier: keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:9a:53:c8:4c:0f:aa:34:0e:52:d5:dd:02:b6:a4:40:64:56: 1b:ab:7f:f6:47:b0:6c:84:29:5c:d0:1d:5a:af:10:bd:48:e4: a6:6a:b6:17:a9:f0:69:76:51:5e:68:34:e0:9c:98:52:51:f4: 6b:e2:ea:c4:db:6c:c8:92:50:ae:4c:46:2e:26:db:71:84:f4: 32:00:4e:cc:21:34:46:bc:13:97:38:85:25:c7:10:fe:e4:c7: 3c:be:18:aa:08:97:9a:81:fd:ec:29:3a:79:7d:ed:88:45:de: f1:97:72:33:77:8f:ad:01:22:ad:8c:9e:72:68:e6:d9:89:7c: 80:9e:e8:fa:eb:62:81:29:91:e9:c6:93:ea:29:50:0f:d1:72: 0c:7b:8b:68:8d:5e:b1:e0:89:7b:38:2c:d1:33:3b:fa:e5:a7: b4:39:a4:ab:44:05:a9:bc:21:7c:a6:72:49:bb:d2:f2:f6:83: 6d:18:81:0f:ea:89:68:9a:9a:3b:4e:ba:7f:33:80:7e:a1:dc: da:1c:a9:07:08:4d:ee:53:b9:0a:e4:8d:02:ad:a1:d7:60:1b: ed:a9:c1:2a:3c:3b:b0:0d:98:3e:91:dd:60:c5:25:aa:8e:82: 2f:77:ea:70:f9:9e:5c:de:6a:61:67:d4:1b:ee:12:e8:50:ce: d1:5b:fb:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDODIxMTAvBgNVBAUTKEEyOTdBMkIwOTMzODJFNDUwODZDQTA3Q0VFNkM5N0Iz NkJFNEMyQ0QwHhcNMjUxMDMwMjEzODA3WhcNMjUxMTA2MjEzODA3WjAYMRYwFAYD VQQDEw02OTAzZGFiZi0zYTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3rq5qRJmXoNw44FKy1z4twusA6c8K5TwokdvI98op+mfapdHOnY5j2NHY+a QwPM5nEchpKuj6njOcnjKC/PIRKCG1Kse+2HXMeCb2RL5QiYLPVHlWYNjt3hly9r OGaj6N7/3wi2PTCspfWoMJzwotkcbpj2RcCGYHn6X1cJAIoKIcex/OdnXX2hD14v ZIvp69wB1GuR708n0/t8iC1xU2bRa3In80Dv8uOe2JO6xscilPmZMOg+pj2aiZCS ApnucZcIBB/FZ7xGMIGaSb73+qTxxCy2vMY0db4NE9ZHxY8gIuEuSZ8PIWRl9ix1 kO7YdX/wKfdUM6UnXXhoRrS5eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItYccyF ltMeI0shglG/KZarHzf8MB8GA1UdIwQYMBaAFKKXorCTOC5FCGygfO5sl7Nr5MLN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM4Mi8xOEREQkZEMjNE RTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExrVUliS0I4N215WHMydmt3 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZWlzSk00TGtVSWJLQjg3bXlYczJ2a3dzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUM4Mi8xOEREQkZEMjNERTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExr VUliS0I4N215WHMydmt3czAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCmlPITA+qNA5S1d0CtqRAZFYbq3/2R7BshClc0B1arxC9SOSmarYX qfBpdlFeaDTgnJhSUfRr4urE22zIklCuTEYuJttxhPQyAE7MITRGvBOXOIUlxxD+ 5Mc8vhiqCJeagf3sKTp5fe2IRd7xl3Izd4+tASKtjJ5yaObZiXyAnuj662KBKZHp xpPqKVAP0XIMe4tojV6x4Il7OCzRMzv65ae0OaSrRAWpvCF8pnJJu9Ly9oNtGIEP 6olompo7Trp/M4B+odzaHKkHCE3uU7kK5I0CraHXYBvtqcEqPDuwDZg+kd1gxSWq joIvd+pw+Z5c3mphZ9Qb7hLoUM7RW/vI -----END CERTIFICATE-----Generated at Fri Oct 31 05:39:11 2025 by rpki-client