$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: 26ITvrwzbTFfj2DEhtGlv/hMNGcue31CJwx9vPk3+sE= Subject key identifier: 6F:93:5A:BA:DC:B2:AE:35:D2:89:1C:58:8F:D6:1D:48:E5:5F:F8:30 Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 016E Signing time: Mon 03 Nov 2025 04:03:45 +0000 Manifest this update: Mon 03 Nov 2025 04:03:45 +0000 Manifest next update: Mon 10 Nov 2025 04:03:45 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: +Gi063T50E5kb2pN3vLeYACSfBjPazm23QiEuMB8OAo=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: NmyQHlBil47JzTSCPQYz/6ZBa9AnAtiDqsHIcZPO3dA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: Nov 3 04:03:45 2025 GMT Not After : Nov 10 04:03:45 2025 GMT Subject: CN=690829a1-c1c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f2:ee:86:ea:e1:89:1f:61:3f:9a:52:16:26: ad:89:dd:7a:bb:bc:7a:c6:dd:4a:20:77:e3:81:2f: 4b:81:3c:6f:0c:c0:d6:ed:4b:17:8d:40:96:6f:00: c3:99:c8:ac:c4:29:fe:3a:13:79:e6:de:1e:94:d9: f3:a0:68:6c:de:9f:c0:e9:21:68:e7:65:ce:cc:9a: 07:70:ac:c9:b0:22:8b:05:b9:15:f7:b7:30:6a:09: 39:84:74:a3:a7:5c:a6:43:b1:f8:0b:b7:c3:bf:fd: a5:03:2c:81:30:89:97:8e:9d:47:4a:55:ee:7e:53: bf:0b:0c:63:a3:86:5e:e0:2b:7b:ed:b6:0c:b2:20: e0:48:de:47:f8:15:ac:e3:a9:b2:a0:d2:d8:41:ed: 94:dc:ce:0f:56:90:52:9c:7e:da:83:90:93:5f:39: b6:22:42:a7:e3:12:b7:d8:55:eb:df:d9:50:dd:3c: 5d:a2:a8:40:a2:4e:98:d1:7f:4c:e1:1a:cf:e9:21: 32:d4:88:6c:1f:fa:f9:2b:4c:3a:3e:c2:c2:26:20: 54:4e:e6:81:be:fc:2e:97:5a:32:98:b1:08:17:7c: c1:a0:a7:bd:53:07:00:eb:49:c1:d0:74:8f:bc:31: db:75:5b:55:08:61:6e:bf:07:f6:67:88:a9:92:a0: c6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:93:5A:BA:DC:B2:AE:35:D2:89:1C:58:8F:D6:1D:48:E5:5F:F8:30 X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ea:95:b4:d9:90:2c:7d:8e:f9:25:11:b1:08:44:b5:74:51: 47:0d:0b:39:3c:c1:44:f5:a0:2a:6d:d5:0d:9e:be:13:38:3c: 44:c7:69:9a:e0:59:d9:ee:13:d4:36:11:ab:70:65:0d:50:21: 08:fd:8d:f5:67:cc:80:65:56:12:52:e0:c1:3e:f1:71:25:a2: 64:93:90:9e:6a:d3:1c:50:0b:36:dd:92:d7:1b:17:2f:6b:b2: 45:81:c4:b1:7d:91:86:7f:53:eb:b0:e9:06:ae:5e:54:6f:7d: 7a:fa:11:48:47:7e:22:a9:b6:68:b3:cb:2f:c1:08:69:26:ea: 12:cd:9f:cd:47:21:b8:6a:06:7e:6f:29:a0:45:be:48:24:f0: 54:10:91:da:85:fc:f9:67:81:26:23:d4:17:98:74:14:d0:e7: 88:24:48:59:b4:e7:c0:a8:b9:40:9a:6e:3c:0b:e7:c0:65:7c: 82:02:1f:86:aa:34:45:41:ab:69:fc:6d:7f:b0:01:da:b6:54: 74:05:e1:34:b7:b3:82:3a:f9:b5:66:75:da:ef:c1:42:88:8f: 0b:b8:fa:29:d0:b6:5f:a9:25:d9:65:dc:b1:b5:06:6e:45:99: 56:23:51:6c:97:23:77:1b:ba:fa:4d:54:b9:64:6e:45:24:16: d9:2f:fa:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjUxMTAzMDQwMzQ1WhcNMjUxMTEwMDQwMzQ1WjAYMRYwFAYD VQQDEw02OTA4MjlhMS1jMWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfLuhurhiR9hP5pSFiatid16u7x6xt1KIHfjgS9LgTxvDMDW7UsXjUCWbwDD mcisxCn+OhN55t4elNnzoGhs3p/A6SFo52XOzJoHcKzJsCKLBbkV97cwagk5hHSj p1ymQ7H4C7fDv/2lAyyBMImXjp1HSlXuflO/Cwxjo4Ze4Ct77bYMsiDgSN5H+BWs 46myoNLYQe2U3M4PVpBSnH7ag5CTXzm2IkKn4xK32FXr39lQ3TxdoqhAok6Y0X9M 4RrP6SEy1IhsH/r5K0w6PsLCJiBUTuaBvvwul1oymLEIF3zBoKe9UwcA60nB0HSP vDHbdVtVCGFuvwf2Z4ipkqDGKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+TWrrc sq410okcWI/WHUjlX/gwMB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlCMC8xNEM5NDk2RTlGM0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0x T1BYSkdqU3piT2NZZWQyMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx6pW02ZAsfY75JRGxCES1dFFHDQs5PMFE9aAqbdUNnr4TODxEx2ma 4FnZ7hPUNhGrcGUNUCEI/Y31Z8yAZVYSUuDBPvFxJaJkk5CeatMcUAs23ZLXGxcv a7JFgcSxfZGGf1PrsOkGrl5Ub316+hFIR34iqbZos8svwQhpJuoSzZ/NRyG4agZ+ bymgRb5IJPBUEJHahfz5Z4EmI9QXmHQU0OeIJEhZtOfAqLlAmm48C+fAZXyCAh+G qjRFQatp/G1/sAHatlR0BeE0t7OCOvm1ZnXa78FCiI8LuPop0LZfqSXZZdyxtQZu RZlWI1FslyN3G7r6TVS5ZG5FJBbZL/rs -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:35 2025 by rpki-client