$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: noH4aWh3nLyZvDQMwKU/dvqzWEnf3P4Yg/1FqedDSlk= Subject key identifier: 9A:EC:A9:E3:48:6D:AC:61:88:AE:92:40:25:59:88:88:CB:F9:5E:A7 Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 0181 Signing time: Mon 03 Nov 2025 03:39:07 +0000 Manifest this update: Mon 03 Nov 2025 03:39:07 +0000 Manifest next update: Mon 10 Nov 2025 03:39:07 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: Nccj2eUkZx9ieobeWgq3p6CS9UxJLcdVlKDWunGkj3k=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: jA0W89c1BQKBxWNTk4xZxdglmPbz/0n9ymbDdZwOT6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Nov 3 03:39:07 2025 GMT Not After : Nov 10 03:39:07 2025 GMT Subject: CN=690823db-4ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ea:11:02:08:7b:cb:9d:54:96:d8:94:11:7a: 21:30:e3:d2:4b:96:fd:03:a5:4e:a9:85:c6:76:d0: 53:33:be:03:3c:9b:dc:c1:89:08:7e:5e:a7:05:84: d1:3e:6b:dd:f6:24:a5:61:7d:57:1e:97:7a:c0:77: b6:f7:34:d0:5b:af:7c:c6:0b:6c:73:f7:ad:3f:a6: b3:f7:34:7b:13:ee:99:62:de:9c:b9:da:1c:40:1f: 0c:15:1b:9e:e8:06:39:5b:b2:3f:c5:7d:ed:03:dc: fb:41:c3:c9:39:47:c4:1e:39:57:01:37:6f:08:75: 36:1c:30:13:98:dc:aa:1e:8a:24:32:7c:d3:ef:94: 6b:b5:e4:85:95:80:1a:10:f3:4b:5a:3f:2a:cc:ac: ad:7d:60:4f:f7:40:94:1d:82:57:a7:30:e8:12:7f: db:f9:41:c6:b8:d6:d5:8e:ae:a2:d6:f1:82:8f:4a: 19:7a:d4:b7:b4:94:64:2c:e3:4d:8c:22:48:fe:6e: 95:91:c5:e0:ba:16:4a:14:4a:4b:1e:0a:78:8a:5a: 66:a1:06:00:70:be:cd:36:00:4c:0d:2b:9c:88:f3: 6c:fb:f8:8d:16:ad:37:f4:64:54:1d:03:f6:79:07: ce:bf:14:d6:03:04:19:fa:75:04:08:90:6e:e2:32: f5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:EC:A9:E3:48:6D:AC:61:88:AE:92:40:25:59:88:88:CB:F9:5E:A7 X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:d6:33:67:ba:80:71:71:93:f5:6b:82:5b:a5:a6:67:cc:83: 61:13:d1:3e:88:2f:f5:cb:ee:49:5a:16:f4:60:34:26:0f:75: 08:17:e9:96:a3:43:a1:d2:1e:de:f8:3a:1f:01:f8:cc:b3:74: 3e:9e:88:a9:ca:f2:90:cf:ad:de:ec:af:d0:56:bf:97:87:8f: 8c:22:9e:50:a6:88:cc:e3:41:ac:ab:9d:9a:69:27:44:b6:6f: 06:3c:f1:12:b6:fb:e4:2e:26:13:9f:fd:fb:c3:1a:7a:7c:a5: e4:00:4b:cf:63:3f:29:df:e6:e9:6d:7d:1d:89:2a:19:73:e3: 18:37:8a:63:18:2b:5c:62:0d:73:de:b2:a6:05:b2:19:7b:a6: c9:c6:11:d3:a9:99:5b:98:96:31:51:97:8e:52:6b:cc:e8:6c: ad:6b:e0:ca:76:05:3b:39:f8:dd:e1:31:ca:0d:98:0c:3a:18: e0:40:ad:4b:fa:4c:d3:16:cc:41:97:05:27:51:c0:19:29:f3: 6b:b3:6e:e6:cc:1e:b6:01:3b:80:70:b9:7f:e7:bd:08:4a:ff: cd:57:e6:59:79:1d:78:4c:78:63:0c:b3:30:7a:36:c1:c3:44: c1:45:f8:2e:c6:f7:5b:9e:94:20:cd:3b:cb:54:47:00:19:e6: d7:a8:55:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjUxMTAzMDMzOTA3WhcNMjUxMTEwMDMzOTA3WjAYMRYwFAYD VQQDEw02OTA4MjNkYi00ZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOoRAgh7y51UltiUEXohMOPSS5b9A6VOqYXGdtBTM74DPJvcwYkIfl6nBYTR Pmvd9iSlYX1XHpd6wHe29zTQW698xgtsc/etP6az9zR7E+6ZYt6cudocQB8MFRue 6AY5W7I/xX3tA9z7QcPJOUfEHjlXATdvCHU2HDATmNyqHookMnzT75RrteSFlYAa EPNLWj8qzKytfWBP90CUHYJXpzDoEn/b+UHGuNbVjq6i1vGCj0oZetS3tJRkLONN jCJI/m6VkcXguhZKFEpLHgp4ilpmoQYAcL7NNgBMDSuciPNs+/iNFq039GRUHQP2 eQfOvxTWAwQZ+nUECJBu4jL1AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrsqeNI baxhiK6SQCVZiIjL+V6nMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh1jNnuoBxcZP1a4JbpaZnzINhE9E+iC/1y+5JWhb0YDQmD3UIF+mW o0Oh0h7e+DofAfjMs3Q+noipyvKQz63e7K/QVr+Xh4+MIp5QpojM40Gsq52aaSdE tm8GPPEStvvkLiYTn/37wxp6fKXkAEvPYz8p3+bpbX0diSoZc+MYN4pjGCtcYg1z 3rKmBbIZe6bJxhHTqZlbmJYxUZeOUmvM6Gyta+DKdgU7Ofjd4THKDZgMOhjgQK1L +kzTFsxBlwUnUcAZKfNrs27mzB62ATuAcLl/570ISv/NV+ZZeR14THhjDLMwejbB w0TBRfguxvdbnpQgzTvLVEcAGebXqFX7 -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:21 2025 by rpki-client