$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: kqCaKO6lylfkcBvKshvG0T7h2r3olse2f4vystp7J+c= Subject key identifier: 87:5D:DF:AB:74:DA:58:0C:41:28:C6:7D:E0:85:57:B5:3B:B3:A2:2B Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 015B Signing time: Mon 13 Oct 2025 06:56:02 +0000 Manifest this update: Mon 13 Oct 2025 06:56:01 +0000 Manifest next update: Mon 20 Oct 2025 06:56:01 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: dJLA4JXiQzmEkykuDJYMwf2B3i7CEremjgluIccZht0=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 06:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Oct 13 06:56:01 2025 GMT Not After : Oct 20 06:56:01 2025 GMT Subject: CN=68eca281-1c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a8:f2:92:5f:18:f7:79:aa:20:81:ec:b4:2f: 35:cd:e8:f6:ac:ca:bd:21:c1:1f:45:b5:32:1d:38: 7b:cb:22:d0:a0:5c:41:be:e8:82:60:f1:a2:bd:46: 37:34:30:cc:7f:3c:71:73:1d:ae:55:6c:47:a1:5f: 8a:9b:b0:b1:cb:df:67:e1:39:65:5d:d3:63:e8:de: e6:e2:bd:f9:86:01:6b:d8:39:a1:76:3b:59:0a:a3: 77:7d:1b:23:97:e8:01:59:37:08:ce:f1:14:21:87: 9a:f8:24:35:3a:39:1b:34:f3:64:70:25:bd:d0:b7: 64:c7:f3:ab:a1:67:cd:02:46:8a:26:21:36:39:ea: 8d:7f:62:4d:2c:2b:7a:54:36:1e:8c:46:53:f3:fa: e1:39:36:f8:b4:e7:b3:19:99:96:b4:28:68:c2:6c: b3:0a:57:77:cc:e4:ba:9a:ff:66:c9:44:70:4c:fc: bf:15:25:3f:50:d4:6f:3a:02:05:fb:14:67:3d:31: 1d:46:c8:15:66:b9:fd:39:20:c8:9e:8b:2f:ce:a6: a4:75:6c:50:c9:59:37:6b:11:29:cd:0c:eb:b2:d4: 0b:0a:fe:e7:3a:31:ca:64:b0:22:a1:f5:7a:a3:3e: d0:a4:c4:63:57:42:ab:c2:a8:0a:2c:e0:ff:c1:80: 96:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5D:DF:AB:74:DA:58:0C:41:28:C6:7D:E0:85:57:B5:3B:B3:A2:2B X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:9a:de:5c:4e:d1:3d:98:15:6c:54:a9:fd:94:db:30:ec:ac: e4:d6:40:48:1a:97:16:23:74:14:36:68:59:2e:02:a6:9a:24: ba:bc:5f:62:4e:7a:d6:a3:17:6f:49:d4:fb:d5:cd:30:26:19: bf:be:09:06:a5:c0:3a:96:99:64:df:0d:8b:d7:04:e1:8a:09: 91:bf:37:d1:ab:4c:6b:2a:72:88:b1:80:30:62:53:a6:a6:0e: a1:24:e9:bf:a5:76:d3:b5:e0:29:e3:55:94:7a:32:94:c3:3d: 45:6e:0a:bd:35:26:a4:86:22:b6:d4:51:31:3d:1f:dd:28:3a: 5c:71:66:2f:b6:a9:f7:c0:cb:c1:fd:02:06:fb:fc:f9:45:87: a7:6f:5f:51:34:18:47:4e:91:78:8b:1d:24:38:d0:a6:7f:31: 6b:30:0f:0d:bd:ce:d1:68:78:92:83:0d:d0:ed:bd:e2:dc:ee: 97:a3:3f:80:9a:08:1d:82:1f:b7:3d:45:89:79:bb:cc:6c:75: 1b:90:a4:24:98:34:3b:f4:ab:f1:ea:10:c5:fb:af:52:af:b4: 74:59:e2:e9:68:cd:9b:4f:db:e4:6a:24:09:97:7d:0c:f8:5a: 2c:7e:47:93:3f:e1:b9:07:f4:8c:93:ce:53:e4:d4:79:18:ef: 8f:c4:ac:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUxMDEzMDY1NjAxWhcNMjUxMDIwMDY1NjAxWjAYMRYwFAYD VQQDEw02OGVjYTI4MS0xYzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtajykl8Y93mqIIHstC81zej2rMq9IcEfRbUyHTh7yyLQoFxBvuiCYPGivUY3 NDDMfzxxcx2uVWxHoV+Km7Cxy99n4TllXdNj6N7m4r35hgFr2DmhdjtZCqN3fRsj l+gBWTcIzvEUIYea+CQ1OjkbNPNkcCW90Ldkx/OroWfNAkaKJiE2OeqNf2JNLCt6 VDYejEZT8/rhOTb4tOezGZmWtChowmyzCld3zOS6mv9myURwTPy/FSU/UNRvOgIF +xRnPTEdRsgVZrn9OSDInosvzqakdWxQyVk3axEpzQzrstQLCv7nOjHKZLAiofV6 oz7QpMRjV0KrwqgKLOD/wYCW2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdd36t0 2lgMQSjGfeCFV7U7s6IrMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmmt5cTtE9mBVsVKn9lNsw7Kzk1kBIGpcWI3QUNmhZLgKmmiS6vF9i TnrWoxdvSdT71c0wJhm/vgkGpcA6lplk3w2L1wThigmRvzfRq0xrKnKIsYAwYlOm pg6hJOm/pXbTteAp41WUejKUwz1Fbgq9NSakhiK21FExPR/dKDpccWYvtqn3wMvB /QIG+/z5RYenb19RNBhHTpF4ix0kONCmfzFrMA8Nvc7RaHiSgw3Q7b3i3O6Xoz+A mggdgh+3PUWJebvMbHUbkKQkmDQ79Kvx6hDF+69Sr7R0WeLpaM2bT9vkaiQJl30M +FosfkeTP+G5B/SMk85T5NR5GO+PxKwy -----END CERTIFICATE-----Generated at Tue Oct 14 12:41:45 2025 by rpki-client