$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: T0vZlWA2ZPlix8zH0wskie8gWT/4Zz2CCDvh7rJoc/k= Subject key identifier: 92:82:12:5B:65:8E:EE:11:78:2A:7D:15:03:85:AE:69:A7:AC:BA:64 Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 019D Signing time: Tue 04 Nov 2025 17:46:29 +0000 Manifest this update: Tue 04 Nov 2025 17:46:29 +0000 Manifest next update: Tue 11 Nov 2025 17:46:29 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: t4cKxisZEKkQ8qY6v210fk8JVlMI1dmFhc15ts2PNdA=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: a5Y/yZKxW3IrKI0721MYV+ivPl5QgwwgGyen+XzCmBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Nov 4 17:46:29 2025 GMT Not After : Nov 11 17:46:29 2025 GMT Subject: CN=690a3bf5-151d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1b:99:ec:92:e1:79:ed:a3:9e:6e:ea:0c:f1: 31:fd:88:73:94:b2:4d:9b:55:97:a9:92:d2:ce:73: ca:dc:f2:57:e2:e9:60:f7:8b:6b:3f:0c:4d:f2:0a: 10:5e:33:27:ef:b3:2b:cb:e8:7d:df:5f:76:70:1a: 3a:be:22:c1:00:3d:2c:83:ab:bc:d1:5c:a2:83:6e: cc:95:50:4a:b9:be:ed:53:62:03:d6:fc:93:a6:f6: 4c:a0:9f:45:b2:c2:be:5c:a2:f8:07:54:97:1e:5d: 92:94:b2:bc:a5:fc:3b:92:ad:71:6e:8e:24:f8:a4: 44:d7:c0:ed:11:c3:1c:15:5a:e2:d2:c5:cb:a0:75: f0:4e:04:60:7a:c5:4d:2c:6a:c0:86:7d:ad:d5:82: 8d:06:c7:12:7f:17:0b:22:5b:96:ec:b1:2b:92:e8: c2:27:79:0f:fe:83:88:23:84:ae:fe:b4:b0:5b:05: 1c:20:d4:d3:5b:8d:40:d7:1c:c2:12:13:82:56:5d: a9:46:a1:00:2a:8e:04:20:15:9b:7b:bc:0f:da:ee: 11:74:0e:f5:4a:b0:5a:6d:ee:3a:8d:cd:ef:5b:6a: 14:41:5d:8b:b3:a4:eb:fb:54:db:b1:db:e4:da:86: 30:6c:ff:c2:b5:65:df:26:78:9f:f7:f6:e1:ba:b3: 0d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:82:12:5B:65:8E:EE:11:78:2A:7D:15:03:85:AE:69:A7:AC:BA:64 X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:88:00:98:fc:d1:d1:e7:32:33:13:ed:7b:4e:68:11:9c:4b: 80:31:7b:7b:b7:f9:e7:3f:0c:20:9f:48:43:61:69:40:6a:7f: 79:46:57:3f:b7:c8:82:5d:0e:15:16:94:5f:a0:76:0f:21:b9: ee:85:b0:a0:29:12:bc:64:7a:22:98:2d:b4:6c:28:f2:2e:49: 35:e3:23:95:35:85:79:f3:24:09:e4:83:e6:8d:3b:ba:1a:4d: 86:ea:71:5d:f0:fb:6f:18:68:95:c7:94:99:8e:b7:b2:1b:51: a2:f6:b9:0f:1f:75:2d:56:f8:67:5c:f4:29:d8:ec:d2:64:00: 9e:e4:cf:7e:90:ad:5a:71:1a:2d:93:62:d1:1f:2e:14:c1:b7: c3:2e:b5:ad:da:43:0a:93:0b:5b:89:8a:ca:95:62:01:c1:6b: ec:e6:19:93:d2:5b:51:c5:0a:ff:40:e5:a6:86:e2:21:b1:13: 33:d5:a5:51:79:90:12:1e:3c:c2:ec:f8:09:38:96:93:3f:df: 5e:fb:fc:16:a5:e2:66:4d:4d:52:8a:84:7d:80:dd:81:11:e5: 21:d0:49:16:f0:b3:6e:df:b7:c1:ee:44:74:ba:bd:be:41:fc: 13:b2:f9:77:57:25:dd:ef:ad:56:22:d9:88:bb:12:f8:68:55: 3b:34:c0:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjUxMTA0MTc0NjI5WhcNMjUxMTExMTc0NjI5WjAYMRYwFAYD VQQDEw02OTBhM2JmNS0xNTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxuZ7JLhee2jnm7qDPEx/YhzlLJNm1WXqZLSznPK3PJX4ulg94trPwxN8goQ XjMn77Mry+h93192cBo6viLBAD0sg6u80Vyig27MlVBKub7tU2ID1vyTpvZMoJ9F ssK+XKL4B1SXHl2SlLK8pfw7kq1xbo4k+KRE18DtEcMcFVri0sXLoHXwTgRgesVN LGrAhn2t1YKNBscSfxcLIluW7LErkujCJ3kP/oOII4Su/rSwWwUcINTTW41A1xzC EhOCVl2pRqEAKo4EIBWbe7wP2u4RdA71SrBabe46jc3vW2oUQV2Ls6Tr+1Tbsdvk 2oYwbP/CtWXfJnif9/bhurMNWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKCEltl ju4ReCp9FQOFrmmnrLpkMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDciACY/NHR5zIzE+17TmgRnEuAMXt7t/nnPwwgn0hDYWlAan95Rlc/ t8iCXQ4VFpRfoHYPIbnuhbCgKRK8ZHoimC20bCjyLkk14yOVNYV58yQJ5IPmjTu6 Gk2G6nFd8PtvGGiVx5SZjreyG1Gi9rkPH3UtVvhnXPQp2OzSZACe5M9+kK1acRot k2LRHy4UwbfDLrWt2kMKkwtbiYrKlWIBwWvs5hmT0ltRxQr/QOWmhuIhsRMz1aVR eZASHjzC7PgJOJaTP99e+/wWpeJmTU1SioR9gN2BEeUh0EkW8LNu37fB7kR0ur2+ QfwTsvl3VyXd761WItmIuxL4aFU7NMAw -----END CERTIFICATE-----Generated at Thu Nov 6 08:02:42 2025 by rpki-client