$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft File: OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft (raw, json) Hash identifier: UzQdJfT1MVXKP2qL3jtGaIpK1KIo086XRnMALIMTqrA= Subject key identifier: D7:7D:80:D5:5F:A9:FD:B9:6B:7D:7D:E1:AE:76:6C:9C:5B:50:71:BF Authority key identifier: 38:EB:0D:8E:7A:F1:EB:18:7D:5A:A3:FC:5F:79:41:91:33:8B:DB:66 Certificate issuer: /CN=A91D0F0F/serialNumber=38EB0D8E7AF1EB187D5AA3FC5F794191338BDB66 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft Manifest number: 3E Signing time: Mon 03 Nov 2025 07:28:47 +0000 Manifest this update: Mon 03 Nov 2025 07:28:46 +0000 Manifest next update: Mon 10 Nov 2025 07:28:46 +0000 Files and hashes: 1: OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl (hash: 5W7z1w1PjiMqIlTu3lMv1aCt9oEtWWCLwqrrYN4NVEM=) 2: CCD6F0DE5DE711F0BC6E0A50C4F9AE02.roa (hash: oCx5plSmqi8Rm6TAvFIAJcsQRs4OdtkOfKnCiaRUGsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0F0F, serialNumber=38EB0D8E7AF1EB187D5AA3FC5F794191338BDB66 Validity Not Before: Nov 3 07:28:46 2025 GMT Not After : Nov 10 07:28:46 2025 GMT Subject: CN=690859af-ae6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dc:17:59:36:77:bb:7c:f1:04:8a:4c:2d:e9: b4:3a:0e:bf:2e:f6:6d:b0:c2:c9:16:4a:f5:c9:dc: b6:15:c3:fd:e8:0d:f5:96:74:ed:00:c9:12:e9:f2: c7:fc:0d:0b:cc:ba:9f:e0:11:70:a6:e8:48:04:13: c4:e3:45:fe:bf:2e:e3:6a:b2:f8:52:a9:13:67:ad: 3c:51:98:a0:a5:9a:52:55:41:32:5a:75:29:b6:78: 05:cc:2e:37:51:6e:86:59:96:4b:75:36:49:22:46: db:ea:98:85:7f:dc:b4:ed:db:38:ce:59:96:84:e8: 88:ce:62:c7:40:30:a1:9d:67:ba:ee:e6:c6:fe:66: 76:16:9e:dc:73:4d:e2:94:49:92:28:77:6e:76:60: 41:7d:30:37:d8:a2:dd:6f:db:51:bb:d7:a2:58:f5: 31:e0:e8:83:39:9b:4f:33:11:b9:95:00:ed:56:ef: e0:b0:96:59:28:bb:9b:ef:1f:a3:fc:7f:49:f2:7b: 0b:f2:54:94:48:76:d7:81:71:24:7b:6a:58:51:45: d1:fa:93:e6:f0:7d:a3:31:bd:18:5d:df:3d:aa:53: 06:c3:f6:1a:a6:4c:dc:6a:11:ea:ad:11:56:fb:5c: 9e:10:e4:df:49:c2:99:08:23:33:73:ee:12:2a:02: de:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:7D:80:D5:5F:A9:FD:B9:6B:7D:7D:E1:AE:76:6C:9C:5B:50:71:BF X509v3 Authority Key Identifier: keyid:38:EB:0D:8E:7A:F1:EB:18:7D:5A:A3:FC:5F:79:41:91:33:8B:DB:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:90:a1:db:de:07:78:10:d9:d9:c5:58:0a:a8:ca:7a:c0:c7: d6:f5:3d:f4:40:e4:a8:3b:e5:e4:5e:d3:9c:11:a2:fd:e9:2e: 57:a5:ac:2b:ea:a5:ee:0c:54:98:01:b0:47:50:3c:87:bc:68: c8:fb:9c:06:c7:90:0d:88:30:28:8e:05:62:6c:7c:71:29:e9: 83:f7:2b:99:67:25:c4:06:f8:47:53:fb:da:38:9b:b4:0e:ca: 5f:01:77:50:0e:be:eb:89:86:df:7d:ca:fd:e5:12:59:35:0b: 37:c0:9b:98:c5:d4:8c:8b:db:c5:cd:ab:f0:12:36:88:59:c7: 07:57:01:9e:10:a1:bd:7c:fe:e3:72:7d:9e:2e:7f:f8:0f:e6: d7:16:c4:36:81:3f:8f:3f:5e:3a:10:64:3b:02:9b:b2:f0:39: 35:dd:61:2b:16:25:3b:c2:9f:91:bf:74:d4:0d:ed:1c:42:62: 44:10:a8:17:54:fb:1c:17:b0:bf:2e:c6:cd:b0:48:d8:0c:93: cb:d4:28:38:b9:ab:a0:ed:aa:81:3b:c5:6d:ea:17:6b:15:60: 8d:68:93:a7:29:4d:57:59:7b:93:b0:a7:66:d1:13:0c:57:ec: 3b:7d:d3:ff:70:2c:12:ed:8e:07:c2:0c:7a:23:a5:81:87:2a: e7:a4:dc:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEYwRjExMC8GA1UEBRMoMzhFQjBEOEU3QUYxRUIxODdENUFBM0ZDNUY3OTQxOTEz MzhCREI2NjAeFw0yNTExMDMwNzI4NDZaFw0yNTExMTAwNzI4NDZaMBgxFjAUBgNV BAMTDTY5MDg1OWFmLWFlNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF3BdZNne7fPEEikwt6bQ6Dr8u9m2wwskWSvXJ3LYVw/3oDfWWdO0AyRLp8sf8 DQvMup/gEXCm6EgEE8TjRf6/LuNqsvhSqRNnrTxRmKClmlJVQTJadSm2eAXMLjdR boZZlkt1NkkiRtvqmIV/3LTt2zjOWZaE6IjOYsdAMKGdZ7ru5sb+ZnYWntxzTeKU SZIod252YEF9MDfYot1v21G716JY9THg6IM5m08zEbmVAO1W7+Cwllkou5vvH6P8 f0nyewvyVJRIdteBcSR7alhRRdH6k+bwfaMxvRhd3z2qUwbD9hqmTNxqEeqtEVb7 XJ4Q5N9JwpkIIzNz7hIqAt7pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU132A1V+p /blrfX3hrnZsnFtQcb8wHwYDVR0jBBgwFoAUOOsNjnrx6xh9WqP8X3lBkTOL22Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwRjBGLzVDMThBNjEyNURF NzExRjBBODY3OTE0RUM0RjlBRTAyL09Pc05qbnJ4NnhoOVdxUDhYM2xCa1RPTDIy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT09zTmpucng2eGg5V3FQOFgzbEJrVE9MMjJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw RjBGLzVDMThBNjEyNURFNzExRjBBODY3OTE0RUM0RjlBRTAyL09Pc05qbnJ4Nnho OVdxUDhYM2xCa1RPTDIyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAyQodveB3gQ2dnFWAqoynrAx9b1PfRA5Kg75eRe05wRov3pLlelrCvq pe4MVJgBsEdQPIe8aMj7nAbHkA2IMCiOBWJsfHEp6YP3K5lnJcQG+EdT+9o4m7QO yl8Bd1AOvuuJht99yv3lElk1CzfAm5jF1IyL28XNq/ASNohZxwdXAZ4Qob18/uNy fZ4uf/gP5tcWxDaBP48/XjoQZDsCm7LwOTXdYSsWJTvCn5G/dNQN7RxCYkQQqBdU +xwXsL8uxs2wSNgMk8vUKDi5q6DtqoE7xW3qF2sVYI1ok6cpTVdZe5Owp2bREwxX 7Dt90/9wLBLtjgfCDHojpYGHKuek3No= -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:10 2025 by rpki-client