$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: xCFNtZlNpo/tp5UCGqmFdC0cffiDG90vw94J/RwOAp4= Subject key identifier: F2:BD:59:3F:CE:C5:88:76:18:2E:4D:3C:3B:E5:CB:CB:BD:03:C5:03 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 0193 Signing time: Wed 05 Nov 2025 03:35:49 +0000 Manifest this update: Wed 05 Nov 2025 03:35:48 +0000 Manifest next update: Wed 12 Nov 2025 03:35:48 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: QlBPTmOQIJKuWdcGXBS3v3pGN9cuQwWEcq42DzJVjeQ=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: RkTUA678ggeVul1y+nwQF7cmzTi/KyCvH3jL9UTL73c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804, serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: Nov 5 03:35:48 2025 GMT Not After : Nov 12 03:35:48 2025 GMT Subject: CN=690ac615-3201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e2:62:2d:37:d2:42:00:48:7a:d4:8f:f9:59: 8c:bc:a9:37:3a:f7:23:15:50:d9:c0:2b:5f:77:24: 2a:16:2f:8f:42:72:d5:0d:5b:89:4b:6a:36:c4:67: ac:f7:d2:aa:2a:c8:8c:49:d9:24:4f:bc:f0:ae:82: e2:96:33:c4:24:f5:8a:2b:54:ac:95:fa:8f:c6:51: 49:8f:66:e9:28:3e:f2:80:00:c5:a3:91:10:92:38: 78:2d:cc:1b:27:09:bf:80:56:b0:cf:a4:ef:54:41: dc:fc:d6:69:d5:c6:c2:fd:4b:48:3f:62:4e:93:f5: 7f:29:46:61:cb:42:f1:b9:d2:2c:c7:df:2b:e6:d0: b2:e7:ba:1c:91:61:d1:31:6c:55:02:3b:d3:03:f6: be:94:ef:55:b0:a4:23:d5:50:71:94:68:79:99:98: 52:f4:94:f6:80:3b:b1:31:05:a4:12:07:f2:a0:d6: 88:cd:0d:0b:bf:09:ef:33:8a:c7:8d:75:5b:82:36: 74:f2:44:17:6b:72:ff:54:56:46:6a:c9:09:3c:92: 33:99:83:19:5e:df:af:ce:4c:00:27:32:87:16:52: af:55:15:74:70:ba:bd:f4:58:c9:33:2a:03:48:f1: 37:b0:27:9a:13:0d:c8:78:06:10:68:a9:9a:69:bd: fe:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BD:59:3F:CE:C5:88:76:18:2E:4D:3C:3B:E5:CB:CB:BD:03:C5:03 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:22:24:77:29:55:62:59:b5:5a:e6:7e:ea:7f:16:f8:13:7e: 7a:cc:8a:63:3d:b5:fb:d7:6a:82:9a:a2:75:e2:1c:2f:cb:f9: 15:f0:d7:23:f9:13:4b:fe:69:0b:38:c6:a7:18:f9:ca:7a:79: 38:b7:ad:75:f5:40:ee:d7:f7:b9:38:58:f8:ce:b7:1d:b9:5f: 83:94:0c:0a:31:05:ff:00:b5:00:ad:ea:53:fe:a9:5c:ae:f1: 1b:00:d1:15:99:9b:b5:29:be:aa:92:f9:58:36:fc:1e:8f:ec: a8:55:f3:f9:63:01:25:4d:49:cb:89:d1:4a:7d:7a:89:ad:15: 22:42:a1:b0:16:0a:4d:d6:d3:ee:94:3c:85:e6:1e:7c:22:fc: 9e:3f:71:8e:c3:b6:92:46:f9:eb:5d:7f:22:ec:f4:83:02:2d: ba:a8:42:5e:52:74:ed:02:36:21:00:4b:f1:66:04:d6:80:da: fc:b1:81:d2:fc:97:f9:60:ae:6d:09:25:ca:f3:50:f9:5c:99: b2:f1:8f:fd:8d:22:e2:87:a6:e0:0e:38:16:94:e8:dd:77:a6: 98:fb:77:38:d2:a0:62:14:9c:9e:38:92:1d:82:3b:22:95:fa: 08:81:7f:b8:56:18:58:70:dd:51:7e:26:e6:75:ea:e6:e8:80: 90:a3:b1:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjUxMTA1MDMzNTQ4WhcNMjUxMTEyMDMzNTQ4WjAYMRYwFAYD VQQDEw02OTBhYzYxNS0zMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OJiLTfSQgBIetSP+VmMvKk3OvcjFVDZwCtfdyQqFi+PQnLVDVuJS2o2xGes 99KqKsiMSdkkT7zwroLiljPEJPWKK1SslfqPxlFJj2bpKD7ygADFo5EQkjh4Lcwb Jwm/gFawz6TvVEHc/NZp1cbC/UtIP2JOk/V/KUZhy0LxudIsx98r5tCy57ockWHR MWxVAjvTA/a+lO9VsKQj1VBxlGh5mZhS9JT2gDuxMQWkEgfyoNaIzQ0LvwnvM4rH jXVbgjZ08kQXa3L/VFZGaskJPJIzmYMZXt+vzkwAJzKHFlKvVRV0cLq99FjJMyoD SPE3sCeaEw3IeAYQaKmaab3+fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPK9WT/O xYh2GC5NPDvly8u9A8UDMB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrIiR3KVViWbVa5n7qfxb4E356zIpjPbX712qCmqJ14hwvy/kV8Ncj +RNL/mkLOManGPnKenk4t6119UDu1/e5OFj4zrcduV+DlAwKMQX/ALUArepT/qlc rvEbANEVmZu1Kb6qkvlYNvwej+yoVfP5YwElTUnLidFKfXqJrRUiQqGwFgpN1tPu lDyF5h58IvyeP3GOw7aSRvnrXX8i7PSDAi26qEJeUnTtAjYhAEvxZgTWgNr8sYHS /Jf5YK5tCSXK81D5XJmy8Y/9jSLih6bgDjgWlOjdd6aY+3c40qBiFJyeOJIdgjsi lfoIgX+4VhhYcN1Rfibmderm6ICQo7GE -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:39 2025 by rpki-client