$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft File: oNGf1mnyVeFici98GdiGS7Brc5k.mft (raw, json) Hash identifier: oqQXya4R9kw1CUsq7kdrnu82YlexsKiJvgZSO7QJZ0E= Subject key identifier: 59:EB:18:B8:A3:B1:03:2A:FD:9C:51:6C:82:21:87:BA:DA:31:14:4A Authority key identifier: A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 Certificate issuer: /CN=A91DEC72/serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft Manifest number: 01A0 Signing time: Mon 03 Nov 2025 03:18:13 +0000 Manifest this update: Mon 03 Nov 2025 03:18:12 +0000 Manifest next update: Mon 10 Nov 2025 03:18:12 +0000 Files and hashes: 1: oNGf1mnyVeFici98GdiGS7Brc5k.crl (hash: 2rIXrIjOMOZt6pumu7WahvJNMDB/83AyEBTxQM8gZh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:18:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC72, serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Validity Not Before: Nov 3 03:18:12 2025 GMT Not After : Nov 10 03:18:12 2025 GMT Subject: CN=69081ef4-8d8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cf:3a:04:0c:d7:17:c1:04:4a:ea:80:d1:af: 88:f5:6b:af:b9:fc:73:9f:f8:aa:1e:74:23:b0:d2: a5:83:49:ca:ca:e7:54:5d:04:cf:5c:8f:73:da:d7: 75:ca:df:17:9c:48:7b:ed:35:2a:7f:d3:08:aa:fa: 5a:5f:38:bb:e7:e1:7c:ed:8c:0a:3d:f3:75:20:a8: d2:94:78:a8:de:97:a0:ec:d5:ff:61:05:6d:01:e5: c3:d3:34:89:b7:18:f9:92:44:cc:7f:db:ab:00:f7: 6d:10:c3:eb:71:24:b8:d9:a9:6d:cb:3c:4a:74:c1: 8f:d3:6c:de:4d:94:62:07:8d:f7:0d:ad:ef:08:93: cf:d1:41:0c:a3:fd:10:e8:01:24:1e:54:f4:fd:b7: fb:db:e3:df:e2:8d:fd:d0:92:61:5c:3e:13:de:9b: 5a:1c:a3:70:42:99:cf:26:03:58:db:94:e5:6a:59: 8b:40:b8:db:5e:e9:e6:47:13:22:10:da:f7:41:cd: 92:7a:e8:29:d6:2d:2b:87:da:cd:16:be:f8:90:7a: b1:87:4d:e0:7c:e2:87:49:db:04:bc:5a:6f:90:11: a8:9f:bc:38:ae:70:5a:8d:ff:5c:4a:9b:31:e5:d4: 5a:7d:a4:a4:af:ee:31:15:aa:ad:ef:c9:d7:2e:a0: 54:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EB:18:B8:A3:B1:03:2A:FD:9C:51:6C:82:21:87:BA:DA:31:14:4A X509v3 Authority Key Identifier: keyid:A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:4a:bc:bd:86:2c:3d:42:0a:26:07:d6:f8:1d:55:a2:bc:c9: af:4f:eb:39:72:4c:66:3a:66:29:0e:3e:b9:08:31:45:df:02: 86:f2:7b:d6:e3:22:5e:a1:8d:67:f9:21:45:ac:91:7c:82:e7: 2c:03:c0:30:f5:65:1d:ef:a6:7d:89:dd:d7:c9:5c:93:46:b5: 52:62:0b:40:af:a2:fa:65:e7:a4:36:df:f1:b7:02:10:8c:e3: 49:38:54:7f:da:c9:66:78:fc:1b:c7:a7:2c:a3:5d:c0:75:9a: b9:cd:3a:30:be:a4:6e:fc:84:0c:f6:da:cd:d7:44:c6:5e:0b: 01:01:cb:37:a6:9b:56:ab:56:a5:97:93:55:ab:e4:b2:8a:15: b5:db:77:bb:b2:40:13:af:79:39:2e:07:9e:e8:b8:54:91:91: fa:b3:53:1f:69:4d:cc:41:4b:91:79:c1:f1:a0:66:4a:7f:18: 74:78:71:88:9c:13:e8:0e:dc:e4:e4:1e:28:7a:28:8a:f6:64: 84:85:6c:39:44:08:1a:69:0e:87:61:c2:eb:ce:05:ed:f9:f2: 66:55:64:aa:b1:bc:81:ff:38:14:f9:7d:0f:7a:2d:df:58:69: bd:ce:b7:68:a9:4a:ce:ac:52:cc:49:3c:84:e2:e2:3e:73:c9: c1:0b:78:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDNzIxMTAvBgNVBAUTKEEwRDE5RkQ2NjlGMjU1RTE2MjcyMkY3QzE5RDg4NjRC QjA2QjczOTkwHhcNMjUxMTAzMDMxODEyWhcNMjUxMTEwMDMxODEyWjAYMRYwFAYD VQQDEw02OTA4MWVmNC04ZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3M86BAzXF8EESuqA0a+I9Wuvufxzn/iqHnQjsNKlg0nKyudUXQTPXI9z2td1 yt8XnEh77TUqf9MIqvpaXzi75+F87YwKPfN1IKjSlHio3peg7NX/YQVtAeXD0zSJ txj5kkTMf9urAPdtEMPrcSS42altyzxKdMGP02zeTZRiB433Da3vCJPP0UEMo/0Q 6AEkHlT0/bf72+Pf4o390JJhXD4T3ptaHKNwQpnPJgNY25TlalmLQLjbXunmRxMi ENr3Qc2Seugp1i0rh9rNFr74kHqxh03gfOKHSdsEvFpvkBGon7w4rnBajf9cSpsx 5dRafaSkr+4xFaqt78nXLqBUiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnrGLij sQMq/ZxRbIIhh7raMRRKMB8GA1UdIwQYMBaAFKDRn9Zp8lXhYnIvfBnYhkuwa3OZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUM3Mi8zRjcxRkY4ODNC OTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZlRmljaTk4R2RpR1M3QnJj NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OR2YxbW55VmVGaWNpOThHZGlHUzdCcmM1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUM3Mi8zRjcxRkY4ODNCOTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZl RmljaTk4R2RpR1M3QnJjNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvSry9hiw9QgomB9b4HVWivMmvT+s5ckxmOmYpDj65CDFF3wKG8nvW 4yJeoY1n+SFFrJF8gucsA8Aw9WUd76Z9id3XyVyTRrVSYgtAr6L6ZeekNt/xtwIQ jONJOFR/2slmePwbx6cso13AdZq5zTowvqRu/IQM9trN10TGXgsBAcs3pptWq1al l5NVq+SyihW123e7skATr3k5Lgee6LhUkZH6s1MfaU3MQUuRecHxoGZKfxh0eHGI nBPoDtzk5B4oeiiK9mSEhWw5RAgaaQ6HYcLrzgXt+fJmVWSqsbyB/zgU+X0Pei3f WGm9zrdoqUrOrFLMSTyE4uI+c8nBC3jf -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:08 2025 by rpki-client