$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: LuEZdwn2Go3TqFnK48prqVxd+RQ2bKjXG8LoJGsnuyQ= Subject key identifier: 88:FD:63:7C:21:6B:BC:F8:E9:9C:05:20:DE:EF:71:03:0B:25:F0:2D Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 35B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 3555 Signing time: Sun 02 Nov 2025 14:49:20 +0000 Manifest this update: Sun 02 Nov 2025 14:49:20 +0000 Manifest next update: Sun 09 Nov 2025 14:49:20 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: yRLgqkm29TvijYAZoyl0lefyXxiQ4a0ni7PehmKNz1Y=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: Rp2RG1hF6yB5oGrywiGWXTiVHqNq8sdwd+lk50rYEfg=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: g01plAkOdieV4NPIP7/omEljoKEhVOT/UK1CPH/JcfQ=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: BrIt4ULt/nWqzogqGuBCD8Hp7rvk2fEABSPjkLFLvVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13753 (0x35b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Nov 2 14:49:20 2025 GMT Not After : Nov 9 14:49:20 2025 GMT Subject: CN=69076f70-75b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3b:5d:65:1a:7b:6e:d0:42:fd:42:3c:97:45: 2e:f0:af:35:ec:b2:b6:8e:78:fa:7d:a4:91:2f:f7: 7b:6f:32:e7:ae:a5:bf:92:3d:88:9e:e3:29:d6:ac: b7:1b:ca:19:cd:9c:88:ec:f7:e2:af:28:34:4f:4f: 0f:ba:4b:57:81:e9:06:d0:f3:2c:b0:70:e5:6a:1f: 4f:01:68:aa:84:54:de:76:55:dc:21:69:08:9b:b1: 31:bc:45:a9:a1:ee:01:50:75:52:9e:45:e7:40:4b: c1:c0:24:83:d4:77:62:2a:23:a1:2c:05:69:88:d7: 7c:9a:cf:f3:7b:f8:05:b4:f9:94:ca:94:9a:52:2c: 27:e3:b4:b0:70:73:b5:c4:91:93:cf:26:e8:7a:00: 6c:9f:ed:76:5b:96:06:2a:95:1c:4a:a6:e1:32:9c: aa:1c:2f:da:93:91:7c:03:d2:24:52:63:d3:a4:2d: 5c:27:f1:2d:58:eb:e4:bd:e0:6f:30:03:15:ad:47: 08:c2:a1:e5:d7:2d:0b:9e:73:bf:01:f6:07:2a:cb: 98:2f:f1:60:c1:92:df:23:07:56:fc:97:82:39:74: 5a:ee:65:5a:19:a2:93:8b:71:4b:17:61:36:f1:22: d2:af:14:bf:70:81:94:b0:c2:3c:18:2e:20:6f:72: 1c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:FD:63:7C:21:6B:BC:F8:E9:9C:05:20:DE:EF:71:03:0B:25:F0:2D X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:29:ec:77:46:89:90:a8:2b:70:12:2f:1e:ab:01:a5:f9:c1: 42:92:de:51:f7:ea:94:6a:76:77:6d:3e:4e:d7:9d:7c:52:f8: 05:17:15:65:4b:1d:27:37:11:7e:19:4e:c8:8a:bf:e6:12:54: 8f:f7:97:b4:75:16:e4:33:36:ed:2a:47:da:85:91:e4:c8:61: 91:76:d5:4a:4d:3a:a9:c7:0a:30:38:e8:4a:b4:d4:d8:cb:8b: e5:d1:9e:14:82:40:8b:94:a7:9d:f7:69:90:1b:bd:40:75:38: d7:84:f7:3f:2e:9a:4d:db:44:3a:23:8b:b6:ab:1f:0d:60:a7: ce:17:ae:2b:d3:17:b9:07:a4:75:e4:61:79:85:ab:a4:3b:93: bd:7e:22:6e:f2:8f:1e:4f:27:d8:f0:82:b5:0b:d2:76:d9:45: 45:c1:f9:37:f5:af:49:8a:57:51:f4:1b:8a:0a:a7:2d:69:b1: 36:74:27:30:09:ae:c7:69:d6:92:6e:63:4d:07:8d:59:90:df: cb:c9:1c:d8:bc:ed:cd:15:32:d2:80:13:c5:12:e6:fc:f7:b4: c8:ad:da:bc:f6:ac:c9:98:ae:31:b4:36:e3:9a:cf:8e:6b:e2: b1:83:97:97:5d:43:b8:e4:e0:3f:4b:d3:fa:54:ea:ae:b4:1f: bc:35:83:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUxMTAyMTQ0OTIwWhcNMjUxMTA5MTQ0OTIwWjAYMRYwFAYD VQQDEw02OTA3NmY3MC03NWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjtdZRp7btBC/UI8l0Uu8K817LK2jnj6faSRL/d7bzLnrqW/kj2InuMp1qy3 G8oZzZyI7Pfiryg0T08PuktXgekG0PMssHDlah9PAWiqhFTedlXcIWkIm7ExvEWp oe4BUHVSnkXnQEvBwCSD1HdiKiOhLAVpiNd8ms/ze/gFtPmUypSaUiwn47SwcHO1 xJGTzyboegBsn+12W5YGKpUcSqbhMpyqHC/ak5F8A9IkUmPTpC1cJ/EtWOvkveBv MAMVrUcIwqHl1y0LnnO/AfYHKsuYL/FgwZLfIwdW/JeCOXRa7mVaGaKTi3FLF2E2 8SLSrxS/cIGUsMI8GC4gb3IcxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIj9Y3wh a7z46ZwFIN7vcQMLJfAtMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARKex3RomQqCtwEi8eqwGl+cFCkt5R9+qUanZ3bT5O1518UvgFFxVl Sx0nNxF+GU7Iir/mElSP95e0dRbkMzbtKkfahZHkyGGRdtVKTTqpxwowOOhKtNTY y4vl0Z4UgkCLlKed92mQG71AdTjXhPc/LppN20Q6I4u2qx8NYKfOF64r0xe5B6R1 5GF5haukO5O9fiJu8o8eTyfY8IK1C9J22UVFwfk39a9JildR9BuKCqctabE2dCcw Ca7HadaSbmNNB41ZkN/LyRzYvO3NFTLSgBPFEub897TIrdq89qzJmK4xtDbjms+O a+Kxg5eXXUO45OA/S9P6VOqutB+8NYPJ -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:30 2025 by rpki-client