$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: X+NLJA5l7rWoH5DZ+e+CzjYm0Nf/5p2rtadv6cTlvnM= Subject key identifier: 14:24:9B:7E:D5:15:E5:EF:2A:D2:5D:6B:B6:2E:79:87:DE:9E:56:97 Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 5B Signing time: Mon 03 Nov 2025 07:13:32 +0000 Manifest this update: Mon 03 Nov 2025 07:13:31 +0000 Manifest next update: Mon 10 Nov 2025 07:13:31 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: amxfJB9xE7pbMZhb8gumbjTRq8cNa7xar0II8Ci/hag=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: UYhhmkQaI1q3+QjYEo/76mR50UYMRxm9p33lOpn/bSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Nov 3 07:13:31 2025 GMT Not After : Nov 10 07:13:31 2025 GMT Subject: CN=6908561b-3c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ae:33:a8:f5:ed:18:7d:92:21:82:62:c4:3e: 9e:13:0d:f5:f0:a0:5d:81:c3:77:b0:f4:b5:7e:9e: 5a:1e:45:2b:9c:5a:3b:3f:9a:0c:25:d0:ad:e9:36: c4:1e:bc:96:6c:dd:24:2e:3a:d8:42:c4:50:09:cb: b9:32:cc:5f:b9:d9:d5:89:4e:4d:de:05:c3:2a:bf: d7:be:20:b6:74:e4:e9:8d:1f:fc:3e:53:c7:df:0f: 1c:3b:fa:6a:4b:e9:05:84:7f:7e:1d:76:f6:51:d4: 2e:fa:b8:6c:2a:fa:d2:03:d1:b0:55:04:48:5b:48: 70:58:88:ac:91:9d:60:c5:19:9d:2d:c0:ce:86:94: 38:21:ed:e4:2b:fd:32:68:b5:ce:04:24:66:b7:d7: c1:11:35:d9:2c:b6:1b:df:d0:65:a4:10:98:5d:55: cd:50:2a:eb:3b:97:68:71:b6:ef:fa:5b:3a:b5:7b: c6:36:cc:22:1c:d4:f5:e7:f9:69:53:61:ab:5d:26: 39:74:41:4a:81:e7:52:8c:e0:97:c1:dc:a6:4c:c1: ec:2e:6f:60:ee:59:ad:15:03:12:9c:72:c6:3a:92: 6a:0b:0c:51:5b:12:23:ae:17:b6:37:23:a7:3b:63: f3:63:18:95:c3:2b:f8:5f:1a:ba:c9:a6:04:2d:76: 3d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:24:9B:7E:D5:15:E5:EF:2A:D2:5D:6B:B6:2E:79:87:DE:9E:56:97 X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:a7:c5:a0:c7:29:59:2b:92:6c:bf:d3:57:ca:66:a0:ac:97: 7b:df:50:3e:a1:5d:a9:e6:24:28:e6:56:98:81:dc:2e:8d:e7: 47:9d:a4:13:fc:82:a7:ff:88:34:2e:fa:43:02:76:6a:45:ca: c7:e2:80:4e:1f:62:39:ee:52:5d:27:dc:8a:fb:29:a8:72:39: a9:8b:31:2d:d0:65:6c:0b:b8:bc:4f:a2:68:4b:0d:89:d6:f3: 64:09:44:d1:f3:ad:8b:ba:5b:aa:36:eb:31:12:c7:67:c3:44: 1a:98:8a:d0:c5:41:6f:96:27:b7:7c:7d:8c:a5:bd:c4:34:88: 8d:50:2d:da:a1:43:b9:14:1b:eb:e6:67:67:fd:9b:a3:50:21: 54:67:5b:ca:f1:5a:cb:fe:40:ac:c1:ce:05:71:fa:4a:2f:08: 6d:23:2f:b3:94:a2:4a:54:77:c7:19:9b:7f:a4:6d:9b:ee:06: e5:a1:9d:c2:97:68:8c:4f:6f:be:07:f3:e3:58:3b:3f:e7:ce: 80:51:13:56:e0:7c:ec:8d:67:c5:11:98:37:00:e5:e6:42:e6: 8f:e8:77:ce:b0:6a:9e:60:4b:9d:71:7c:63:77:6c:2a:5c:79: 36:50:a7:49:a3:4b:eb:c4:95:c1:e0:94:77:ab:6d:1c:e0:7b: ca:1c:65:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUMwMzExMC8GA1UEBRMoQTI0RDk2MzgzMzU5Q0I0OTY2QTE1QjlBOTA2OTEzRUI1 NDU2NjU3QjAeFw0yNTExMDMwNzEzMzFaFw0yNTExMTAwNzEzMzFaMBgxFjAUBgNV BAMTDTY5MDg1NjFiLTNjMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7rjOo9e0YfZIhgmLEPp4TDfXwoF2Bw3ew9LV+nloeRSucWjs/mgwl0K3pNsQe vJZs3SQuOthCxFAJy7kyzF+52dWJTk3eBcMqv9e+ILZ05OmNH/w+U8ffDxw7+mpL 6QWEf34ddvZR1C76uGwq+tID0bBVBEhbSHBYiKyRnWDFGZ0twM6GlDgh7eQr/TJo tc4EJGa318ERNdksthvf0GWkEJhdVc1QKus7l2hxtu/6Wzq1e8Y2zCIc1PXn+WlT YatdJjl0QUqB51KM4JfB3KZMwewub2DuWa0VAxKccsY6kmoLDFFbEiOuF7Y3I6c7 Y/NjGJXDK/hfGrrJpgQtdj07AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFCSbftUV 5e8q0l1rti55h96eVpcwHwYDVR0jBBgwFoAUok2WODNZy0lmoVuakGkT61RWZXsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QzAzLzM3RDE4QTE2MzlB MzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pY cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2syV09ETlp5MGxtb1Z1YWtHa1Q2MVJXWlhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QzAzLzM3RDE4QTE2MzlBMzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBs bW9WdWFrR2tUNjFSV1pYcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAWnxaDHKVkrkmy/01fKZqCsl3vfUD6hXanmJCjmVpiB3C6N50edpBP8 gqf/iDQu+kMCdmpFysfigE4fYjnuUl0n3Ir7KahyOamLMS3QZWwLuLxPomhLDYnW 82QJRNHzrYu6W6o26zESx2fDRBqYitDFQW+WJ7d8fYylvcQ0iI1QLdqhQ7kUG+vm Z2f9m6NQIVRnW8rxWsv+QKzBzgVx+kovCG0jL7OUokpUd8cZm3+kbZvuBuWhncKX aIxPb74H8+NYOz/nzoBRE1bgfOyNZ8URmDcA5eZC5o/od86wap5gS51xfGN3bCpc eTZQp0mjS+vElcHglHerbRzge8ocZfc= -----END CERTIFICATE-----Generated at Tue Nov 4 19:13:32 2025 by rpki-client