$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft File: oAM_SUNjDclOLd9fKmuI6GZGGuc.mft (raw, json) Hash identifier: rTByWxEaBWEvICrOiO7e4+OGLR1vHUw/p/lcky4M8F8= Subject key identifier: BA:72:04:A0:24:4F:B5:50:AA:57:04:BD:35:9B:7B:11:34:F4:7F:3F Authority key identifier: A0:03:3F:49:43:63:0D:C9:4E:2D:DF:5F:2A:6B:88:E8:66:46:1A:E7 Certificate issuer: /CN=A91DC0F2/serialNumber=A0033F4943630DC94E2DDF5F2A6B88E866461AE7 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft Manifest number: 0124 Signing time: Wed 05 Nov 2025 04:52:47 +0000 Manifest this update: Wed 05 Nov 2025 04:52:46 +0000 Manifest next update: Wed 12 Nov 2025 04:52:46 +0000 Files and hashes: 1: oAM_SUNjDclOLd9fKmuI6GZGGuc.crl (hash: DXJAcdggumVsqTb6HUdddk1JosWT6yUZyxFe9CIXQUw=) 2: EE647C1418A411EFBA690F60C4F9AE02.roa (hash: 1sKQhDe4XE+z/iEwFOdjuVVtLfzSNo7ytvziBnxPEOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.crl rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:52:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC0F2, serialNumber=A0033F4943630DC94E2DDF5F2A6B88E866461AE7 Validity Not Before: Nov 5 04:52:46 2025 GMT Not After : Nov 12 04:52:46 2025 GMT Subject: CN=690ad81e-6fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3a:e2:a2:44:2e:a8:69:cd:fd:1d:01:d8:23: e0:e0:b5:d8:20:48:1d:57:53:e0:4a:eb:49:dd:de: 2a:b4:c5:eb:25:db:3b:a3:f6:39:1e:b4:90:f8:6b: 72:8d:d0:0b:d1:91:ab:01:72:78:e7:d2:44:0c:ec: 06:5b:ef:d7:b2:5c:d3:eb:58:29:04:d5:92:33:c6: 65:44:8e:66:e0:1b:ca:10:3b:0b:7c:21:36:b4:7a: 7f:39:34:52:d1:9d:c7:8e:93:0b:b9:30:87:b7:ee: 01:2c:4a:a9:36:bf:60:25:7b:cf:e9:3a:93:9a:48: 56:7d:be:f4:48:30:4c:ec:80:c8:51:a8:39:62:df: af:b4:f7:7c:2c:33:9d:d8:b6:b8:18:a1:6a:df:5d: 95:7d:f2:c4:cb:85:62:f4:90:2f:db:80:85:6a:ba: 76:66:3f:8e:92:bb:e9:79:c2:e3:91:fd:85:fc:4c: 8d:3e:49:b2:6a:db:77:86:2c:68:8f:2f:82:de:0a: 24:38:ee:12:4b:a3:c3:46:7a:b9:9a:46:b9:21:ee: 45:86:17:3d:e7:64:6f:77:b3:79:d8:a6:52:a4:a4: 54:92:0d:6f:36:09:b6:80:48:d6:dd:e4:63:67:e6: 77:05:20:73:f6:01:ce:b9:1d:88:cf:f5:51:fa:b7: 90:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:72:04:A0:24:4F:B5:50:AA:57:04:BD:35:9B:7B:11:34:F4:7F:3F X509v3 Authority Key Identifier: keyid:A0:03:3F:49:43:63:0D:C9:4E:2D:DF:5F:2A:6B:88:E8:66:46:1A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:ec:70:49:b6:aa:e3:ed:de:cd:3c:18:ae:90:da:da:40:f2: a5:22:62:02:b2:6a:c7:ed:86:c5:71:93:de:c9:70:00:5c:ce: 91:15:e6:fd:78:b3:77:c3:5e:a2:02:d9:a7:e6:ef:ab:77:69: d6:06:2d:53:2b:c7:7f:33:3b:7d:d2:82:c1:39:98:d1:b2:a5: 8b:57:4b:73:9c:08:4f:3c:2e:66:39:22:b2:07:3a:4a:c7:1c: 9b:14:bd:3a:5a:fa:82:3f:6d:bd:e4:ea:51:19:10:d4:16:53: 11:4c:ed:f9:39:66:2c:0c:bd:b9:9b:96:74:c1:e4:fe:92:c8: 88:f8:0e:b1:c2:c1:c9:b2:78:04:a4:75:66:50:87:3e:29:e2: 6e:d6:56:d4:a3:ef:ad:7a:91:57:db:45:ed:79:f5:0a:05:b2: 22:ae:cd:d3:5a:b3:63:21:b0:ff:dd:8a:8e:55:57:9a:0e:c9: 1f:cc:ae:51:16:45:3d:2d:41:42:05:fe:0f:99:49:9d:60:ba: b9:94:60:4e:ba:d6:8f:bb:25:64:cc:07:05:06:8e:57:31:8d: e2:23:7f:a7:0c:5c:71:5e:10:23:ba:92:57:49:1b:b2:6c:49: bb:30:9c:43:bd:ec:1b:a2:c8:c3:b4:e4:33:58:28:ad:1a:be: 73:8f:ff:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwRjIxMTAvBgNVBAUTKEEwMDMzRjQ5NDM2MzBEQzk0RTJEREY1RjJBNkI4OEU4 NjY0NjFBRTcwHhcNMjUxMTA1MDQ1MjQ2WhcNMjUxMTEyMDQ1MjQ2WjAYMRYwFAYD VQQDEw02OTBhZDgxZS02ZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDriokQuqGnN/R0B2CPg4LXYIEgdV1PgSutJ3d4qtMXrJds7o/Y5HrSQ+Gty jdAL0ZGrAXJ459JEDOwGW+/XslzT61gpBNWSM8ZlRI5m4BvKEDsLfCE2tHp/OTRS 0Z3HjpMLuTCHt+4BLEqpNr9gJXvP6TqTmkhWfb70SDBM7IDIUag5Yt+vtPd8LDOd 2La4GKFq312VffLEy4Vi9JAv24CFarp2Zj+OkrvpecLjkf2F/EyNPkmyatt3hixo jy+C3gokOO4SS6PDRnq5mka5Ie5Fhhc952Rvd7N52KZSpKRUkg1vNgm2gEjW3eRj Z+Z3BSBz9gHOuR2Iz/VR+reQ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpyBKAk T7VQqlcEvTWbexE09H8/MB8GA1UdIwQYMBaAFKADP0lDYw3JTi3fXypriOhmRhrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzBGMi83RjMzRUUyNEZE N0UxMUVFQTFCMzUzNUNDNEY5QUUwMi9vQU1fU1VOakRjbE9MZDlmS211STZHWkdH dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BTV9TVU5qRGNsT0xkOWZLbXVJNkdaR0d1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzBGMi83RjMzRUUyNEZEN0UxMUVFQTFCMzUzNUNDNEY5QUUwMi9vQU1fU1VOakRj bE9MZDlmS211STZHWkdHdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw7HBJtqrj7d7NPBiukNraQPKlImICsmrH7YbFcZPeyXAAXM6RFeb9 eLN3w16iAtmn5u+rd2nWBi1TK8d/Mzt90oLBOZjRsqWLV0tznAhPPC5mOSKyBzpK xxybFL06WvqCP2295OpRGRDUFlMRTO35OWYsDL25m5Z0weT+ksiI+A6xwsHJsngE pHVmUIc+KeJu1lbUo++tepFX20XtefUKBbIirs3TWrNjIbD/3YqOVVeaDskfzK5R FkU9LUFCBf4PmUmdYLq5lGBOutaPuyVkzAcFBo5XMY3iI3+nDFxxXhAjupJXSRuy bEm7MJxDvewbosjDtOQzWCitGr5zj//C -----END CERTIFICATE-----Generated at Wed Nov 5 17:52:32 2025 by rpki-client