$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: 0TB3mWkRDDWvQFuNVg2X8+8ztm0h48oH7ILMgQrxVPk= Subject key identifier: 89:ED:BA:C1:CD:86:0A:47:1B:B3:D5:3B:69:8E:EE:D3:41:6E:38:6C Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 02F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 02E6 Signing time: Wed 05 Nov 2025 01:23:31 +0000 Manifest this update: Wed 05 Nov 2025 01:23:30 +0000 Manifest next update: Wed 12 Nov 2025 01:23:30 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: I78XuTHqVLHgwrwqd4BamgyNjEgFHieE1qwiIyaeF4E=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 754 (0x2f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Nov 5 01:23:30 2025 GMT Not After : Nov 12 01:23:30 2025 GMT Subject: CN=690aa712-22cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:25:d5:6f:6c:c9:51:7a:b5:fb:65:7a:b9: 58:e3:a9:5e:72:75:95:64:c1:70:e7:69:45:b7:0a: b8:14:60:5a:f9:86:83:74:fe:db:77:f7:1f:5b:e0: 8c:2a:95:4b:13:60:76:b6:38:e4:24:6c:7d:76:24: d8:99:35:c7:ae:e4:af:70:3b:d9:8e:36:ec:1b:18: 50:73:fe:d6:50:2a:98:67:4a:8d:f0:5c:d7:d2:1f: a1:52:8d:94:09:32:f8:ca:d1:65:ae:4a:40:e3:f4: da:3d:cf:b4:08:3c:31:f6:4b:7f:86:d3:7f:3f:92: ec:bf:ac:94:c5:5c:92:7b:dc:7f:65:de:c8:e6:bf: ed:5c:78:00:89:64:53:e1:a9:12:68:50:2d:ae:a0: ca:a9:c0:a0:86:c6:31:e8:e2:df:52:71:91:2f:b0: cb:20:1b:f8:56:15:24:61:6e:d0:c8:03:ba:a6:f1: e2:fb:13:67:00:91:fd:20:99:d8:1e:9a:e7:6d:77: 8a:0e:35:60:44:a8:35:5f:9e:fa:dd:3d:cf:26:2c: f6:d7:c2:23:9e:c4:85:e0:42:d0:57:3c:ab:c5:ea: d2:4f:5c:8f:71:32:81:b6:6a:9f:09:bb:9d:b9:c2: 1f:54:b3:fd:c2:df:3e:01:4b:cb:4d:9a:fc:aa:77: 68:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:ED:BA:C1:CD:86:0A:47:1B:B3:D5:3B:69:8E:EE:D3:41:6E:38:6C X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:f3:ce:1e:e6:8a:ff:c4:60:d3:c3:71:f4:79:81:6b:1b:8e: 64:37:bc:87:5b:bc:bc:7d:28:c4:2d:79:7f:9e:52:30:27:4c: 6f:88:fb:ff:0f:56:b7:82:56:2e:79:d5:ba:58:13:1b:5f:39: ab:62:a0:ef:64:76:71:fc:96:1e:38:90:96:de:a2:65:07:23: 10:64:5b:cf:61:f7:83:de:47:17:bb:9b:44:00:13:5a:70:e9: 0c:5d:99:10:84:b5:48:63:27:2b:8f:d7:fe:be:5c:fc:ab:5e: a9:a8:d7:42:62:31:91:57:7e:c3:9d:20:fb:ed:4c:68:bf:d7: e9:99:e4:83:4f:2e:87:a7:ed:f4:ed:e7:63:31:49:8a:40:cf: 8d:ee:7f:b3:0f:e0:e2:62:2d:02:ab:37:25:9f:9c:ee:28:d4: b7:2a:7c:7c:94:03:fb:bf:04:b3:63:ee:53:78:fc:7e:13:05: d4:19:88:6b:4a:93:59:17:ae:eb:e6:97:60:ce:15:de:c6:ee: 63:92:45:14:5a:8e:13:b2:04:f9:c3:11:9c:0f:b6:00:35:a3: a0:f2:58:2a:03:59:63:06:9f:90:06:d7:43:48:2f:7d:11:c5: 9e:73:c8:05:c5:43:bb:2e:5f:1b:a5:e5:a3:24:8a:cf:af:93: 8b:3b:d7:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUxMTA1MDEyMzMwWhcNMjUxMTEyMDEyMzMwWjAYMRYwFAYD VQQDEw02OTBhYTcxMi0yMmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskAl1W9syVF6tftlerlY46lecnWVZMFw52lFtwq4FGBa+YaDdP7bd/cfW+CM KpVLE2B2tjjkJGx9diTYmTXHruSvcDvZjjbsGxhQc/7WUCqYZ0qN8FzX0h+hUo2U CTL4ytFlrkpA4/TaPc+0CDwx9kt/htN/P5Lsv6yUxVySe9x/Zd7I5r/tXHgAiWRT 4akSaFAtrqDKqcCghsYx6OLfUnGRL7DLIBv4VhUkYW7QyAO6pvHi+xNnAJH9IJnY HprnbXeKDjVgRKg1X5763T3PJiz218IjnsSF4ELQVzyrxerST1yPcTKBtmqfCbud ucIfVLP9wt8+AUvLTZr8qndodwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIntusHN hgpHG7PVO2mO7tNBbjhsMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB884e5or/xGDTw3H0eYFrG45kN7yHW7y8fSjELXl/nlIwJ0xviPv/ D1a3glYuedW6WBMbXzmrYqDvZHZx/JYeOJCW3qJlByMQZFvPYfeD3kcXu5tEABNa cOkMXZkQhLVIYycrj9f+vlz8q16pqNdCYjGRV37DnSD77Uxov9fpmeSDTy6Hp+30 7edjMUmKQM+N7n+zD+DiYi0Cqzcln5zuKNS3Knx8lAP7vwSzY+5TePx+EwXUGYhr SpNZF67r5pdgzhXexu5jkkUUWo4TsgT5wxGcD7YANaOg8lgqA1ljBp+QBtdDSC99 EcWec8gFxUO7Ll8bpeWjJIrPr5OLO9cL -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:42 2025 by rpki-client