$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: 33r/27zEo+bFMBx9j4Zg4AycXt65IM4FjPL8qFQ8rIo= Subject key identifier: FE:2F:A8:BB:21:46:7E:E6:99:13:FC:FC:22:04:20:75:F6:FE:4B:C7 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 30A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 3076 Signing time: Tue 28 Oct 2025 15:26:47 +0000 Manifest this update: Tue 28 Oct 2025 15:26:46 +0000 Manifest next update: Tue 04 Nov 2025 15:26:46 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: +iDlsMKPB6UigTQBuiUsBGHAuygZ/hssl7ElfjmnpdI=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: 1eHb69O06VCoxBVFTjIxU1eZxUsYuasvDB2d3Sv1+IY=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: Q3pwtlHxQOfBNfjg0rXQ1DaKhtCgPEj+Sbwz9SrcaHA=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: wILFdeIGXMZ8VMyQoHGFHEc5EcgVL0MxaSOGHfY+WMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 15:26:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12455 (0x30a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Oct 28 15:26:46 2025 GMT Not After : Nov 4 15:26:46 2025 GMT Subject: CN=6900e0b6-28e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e5:4c:2d:ba:d7:b1:c1:8f:58:d9:ae:c4:20: 07:32:e6:ab:78:49:3d:8a:9b:06:de:fd:19:88:51: c4:8b:c1:9d:6a:54:7e:c4:60:1e:2f:2c:3e:47:d6: d3:c7:7e:78:19:8a:80:28:11:c5:ad:56:f4:b3:ea: 9c:b4:6a:ff:99:17:60:96:0f:89:ff:6b:04:fc:c2: df:0b:de:09:a5:04:43:3b:80:e9:fb:91:58:2c:25: c1:78:26:03:31:a8:b0:bf:75:18:d2:47:31:69:d2: 7a:d8:31:83:a4:9b:5b:9b:c5:fd:30:6e:60:83:03: 71:1b:6b:81:7f:75:88:49:57:fb:be:22:ac:28:cb: 37:19:8e:2e:bd:a3:7f:ff:70:18:05:1c:6b:e9:5b: 72:44:b7:e5:62:91:7a:0e:b9:85:aa:00:5b:b2:fc: 06:49:e6:e3:0a:de:52:97:a6:82:5b:2d:ec:b5:8a: d7:a9:7b:9d:bf:6a:e2:92:d6:ae:bc:90:04:d2:55: d9:49:b5:b2:e9:66:e2:c8:04:7e:f8:be:9f:c6:6b: d8:12:12:da:98:1d:48:eb:e9:7d:d1:3e:32:da:f3: 37:eb:52:3d:9f:2e:6a:05:dc:b4:4f:29:82:c0:a7: 21:fb:e4:d5:60:3b:7b:eb:a6:cd:e1:91:c7:4c:69: df:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:2F:A8:BB:21:46:7E:E6:99:13:FC:FC:22:04:20:75:F6:FE:4B:C7 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:60:30:b4:17:86:4a:38:ab:f1:0a:60:a7:59:45:57:81:62: d6:09:bf:be:96:46:c8:a3:34:da:4a:65:50:92:e2:1d:ff:1c: d9:48:83:53:72:0b:30:0f:ab:f5:4e:44:1a:c1:02:61:77:fb: f7:6f:a9:bf:60:9a:11:68:99:cc:1d:32:63:fa:1d:d0:c3:ee: 0c:c8:a7:e3:a6:b9:d4:1d:0b:c3:93:27:3d:e0:a4:71:90:b4: e6:9d:03:47:02:07:cf:3a:28:9e:c0:71:93:c8:bc:d0:9c:30: 99:45:29:be:45:bf:a2:29:ec:a6:e7:2e:97:61:32:ac:98:7a: db:1b:ee:44:48:81:e9:a4:cc:d5:d7:86:4b:3f:ac:86:fc:96: 25:35:94:da:e9:7e:ac:da:9d:49:c8:ab:42:4e:e2:36:ae:0e: 3d:64:1d:ef:a8:2d:60:72:56:e2:d8:e0:f9:07:d3:85:48:ed: a9:6d:81:3f:b0:94:08:3a:44:24:62:d7:51:20:40:a1:99:63: 40:cb:5b:9e:ca:7f:76:19:dc:4f:95:0c:61:c4:af:ff:da:cc: 99:41:06:9c:35:6d:6a:b0:52:9a:88:5e:87:8b:59:ed:2d:00: 09:5f:22:ce:45:96:ae:a7:67:cd:fd:a8:6e:5f:c6:19:3b:5a: f0:5d:d1:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUxMDI4MTUyNjQ2WhcNMjUxMTA0MTUyNjQ2WjAYMRYwFAYD VQQDEw02OTAwZTBiNi0yOGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7eVMLbrXscGPWNmuxCAHMuareEk9ipsG3v0ZiFHEi8GdalR+xGAeLyw+R9bT x354GYqAKBHFrVb0s+qctGr/mRdglg+J/2sE/MLfC94JpQRDO4Dp+5FYLCXBeCYD Maiwv3UY0kcxadJ62DGDpJtbm8X9MG5ggwNxG2uBf3WISVf7viKsKMs3GY4uvaN/ /3AYBRxr6VtyRLflYpF6DrmFqgBbsvwGSebjCt5Sl6aCWy3stYrXqXudv2riktau vJAE0lXZSbWy6WbiyAR++L6fxmvYEhLamB1I6+l90T4y2vM361I9ny5qBdy0TymC wKch++TVYDt766bN4ZHHTGnf8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4vqLsh Rn7mmRP8/CIEIHX2/kvHMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7YDC0F4ZKOKvxCmCnWUVXgWLWCb++lkbIozTaSmVQkuId/xzZSINT cgswD6v1TkQawQJhd/v3b6m/YJoRaJnMHTJj+h3Qw+4MyKfjprnUHQvDkyc94KRx kLTmnQNHAgfPOiiewHGTyLzQnDCZRSm+Rb+iKeym5y6XYTKsmHrbG+5ESIHppMzV 14ZLP6yG/JYlNZTa6X6s2p1JyKtCTuI2rg49ZB3vqC1gclbi2OD5B9OFSO2pbYE/ sJQIOkQkYtdRIEChmWNAy1ueyn92GdxPlQxhxK//2syZQQacNW1qsFKaiF6Hi1nt LQAJXyLORZaup2fN/ahuX8YZO1rwXdEP -----END CERTIFICATE-----Generated at Tue Oct 28 21:50:11 2025 by rpki-client