$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: 3j9TKcpXL/FuUPFo7lOWfJACLYdCBbYmBxdvvA8mJ1c= Subject key identifier: 5B:70:D7:5E:8D:77:72:3D:57:B3:AC:2C:42:3C:33:D8:45:74:65:32 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 082F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0827 Signing time: Sun 02 Nov 2025 20:48:13 +0000 Manifest this update: Sun 02 Nov 2025 20:48:13 +0000 Manifest next update: Sun 09 Nov 2025 20:48:13 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: rh/uhfGx2i76kC3wz5nRe55weAS8Y8PF0rh9ZGUs59A=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2095 (0x82f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Nov 2 20:48:13 2025 GMT Not After : Nov 9 20:48:13 2025 GMT Subject: CN=6907c38d-e18f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b5:be:67:dd:ac:89:12:f0:ad:57:c1:d5:77: 13:c7:84:7e:ce:db:93:3b:1b:29:72:d3:36:41:d4: 6e:29:6e:7b:f5:3e:4a:97:90:cd:a4:e7:e2:1e:09: 57:5c:bc:90:23:93:56:8a:9e:90:65:3c:43:aa:57: b6:61:88:f2:e2:4d:df:4b:88:be:f7:0f:6a:f0:27: 22:1e:ec:b6:0e:1e:23:dd:12:f2:9e:6e:c9:cd:37: d3:d8:e6:83:6f:d9:51:6f:ac:52:0a:1b:e1:74:8d: 1f:9e:11:fe:74:d0:e9:95:f9:b3:93:88:cd:42:19: 23:e3:1b:3c:12:bc:23:71:8e:a7:ee:c6:bb:3f:fc: 58:dd:12:cf:d1:5d:a5:82:d0:af:52:9e:f3:ed:ec: 6b:6c:75:7f:72:80:36:ba:a5:14:6c:ee:5f:bd:95: 40:db:4b:74:23:92:97:15:3e:b1:01:00:8e:99:4d: 46:fd:ee:29:db:b3:ad:35:08:c1:0c:e4:d8:53:81: e3:ec:ee:25:6a:03:7f:69:60:fe:65:a7:9d:2a:1e: 3c:ca:80:1a:3b:cc:f0:3b:c7:5d:d5:76:0c:f0:8e: 89:73:70:03:81:ca:ab:48:2c:a0:d3:c0:57:06:39: e1:82:7b:9a:55:18:a8:a2:ab:74:a0:20:e6:88:6d: 1f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:70:D7:5E:8D:77:72:3D:57:B3:AC:2C:42:3C:33:D8:45:74:65:32 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:c8:ca:5a:28:1e:f0:bb:c8:5a:0f:12:12:8f:fc:59:6a:32: e7:54:44:35:95:aa:1a:ea:4c:cd:d4:57:8d:93:72:66:bf:e0: d8:35:87:d6:ff:39:32:20:d5:5f:16:5f:93:53:8b:78:71:2f: be:e2:90:34:c3:cd:50:ce:a9:5e:79:16:50:32:0d:2b:40:67: 43:08:f3:b7:32:d0:2a:2d:f0:86:54:2c:13:4d:fd:83:4a:95: 5d:32:79:d7:19:a6:d3:17:3a:35:ef:89:b3:14:0c:2d:6d:79: 02:f4:0f:12:d6:7d:2d:85:90:dd:f4:ca:b4:20:ea:50:af:f9: 36:88:0e:a8:3a:cd:33:fc:6c:7d:52:ac:37:48:ef:09:26:3d: c9:40:83:3b:1b:fa:3a:fa:f5:4b:d4:97:09:81:13:46:e2:0d: c7:84:ae:8f:fd:74:d5:37:dd:f8:ac:30:34:e8:fe:d6:b1:93: d1:ad:d0:be:dc:4b:69:f6:ae:8e:a5:6f:1e:4c:95:fc:b1:33: 9f:ca:5d:0e:aa:65:04:22:e7:de:6a:12:71:12:f0:1c:b1:d9: 91:a2:60:31:45:c8:e3:55:a2:cc:33:d9:3c:e6:42:61:14:6f: f5:e0:96:b1:c6:aa:9f:a7:d9:b1:d6:66:df:7d:5d:55:aa:4c: 3d:aa:2a:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUxMTAyMjA0ODEzWhcNMjUxMTA5MjA0ODEzWjAYMRYwFAYD VQQDEw02OTA3YzM4ZC1lMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rW+Z92siRLwrVfB1XcTx4R+ztuTOxspctM2QdRuKW579T5Kl5DNpOfiHglX XLyQI5NWip6QZTxDqle2YYjy4k3fS4i+9w9q8CciHuy2Dh4j3RLynm7JzTfT2OaD b9lRb6xSChvhdI0fnhH+dNDplfmzk4jNQhkj4xs8ErwjcY6n7sa7P/xY3RLP0V2l gtCvUp7z7exrbHV/coA2uqUUbO5fvZVA20t0I5KXFT6xAQCOmU1G/e4p27OtNQjB DOTYU4Hj7O4lagN/aWD+ZaedKh48yoAaO8zwO8dd1XYM8I6Jc3ADgcqrSCyg08BX BjnhgnuaVRiooqt0oCDmiG0f8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtw116N d3I9V7OsLEI8M9hFdGUyMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANyMpaKB7wu8haDxISj/xZajLnVEQ1laoa6kzN1FeNk3Jmv+DYNYfW /zkyINVfFl+TU4t4cS++4pA0w81QzqleeRZQMg0rQGdDCPO3MtAqLfCGVCwTTf2D SpVdMnnXGabTFzo174mzFAwtbXkC9A8S1n0thZDd9Mq0IOpQr/k2iA6oOs0z/Gx9 Uqw3SO8JJj3JQIM7G/o6+vVL1JcJgRNG4g3HhK6P/XTVN934rDA06P7WsZPRrdC+ 3Etp9q6OpW8eTJX8sTOfyl0OqmUEIufeahJxEvAcsdmRomAxRcjjVaLMM9k85kJh FG/14Jaxxqqfp9mx1mbffV1Vqkw9qirr -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:59 2025 by rpki-client