$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: TCE362m5LHCeYdnQfOdYL1fAcN0/wxsCY1AUXdPmwUA= Subject key identifier: C0:96:56:85:6A:59:51:6E:91:70:40:F4:FD:36:D4:99:F7:1E:FD:6D Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 1403 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 13F8 Signing time: Fri 31 Oct 2025 17:04:27 +0000 Manifest this update: Fri 31 Oct 2025 17:04:27 +0000 Manifest next update: Fri 07 Nov 2025 17:04:27 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: gKgKtADHiuiWN0fnMeOxhHg1WxyIWllCJkpwf5D2Cm8=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: M9FXaqMN3xRXkYSG9XQqHpw6Lro8+iU9Ajk3i3+nJw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 17:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5123 (0x1403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639, serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: Oct 31 17:04:27 2025 GMT Not After : Nov 7 17:04:27 2025 GMT Subject: CN=6904ec1b-bfda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a7:2e:34:21:51:9f:fd:1b:e0:39:ec:a2:5e: de:7a:9d:93:e5:b5:62:95:e8:47:bd:80:17:87:c2: e8:d8:a4:af:67:9c:02:96:bf:81:84:b2:62:57:00: cb:19:a9:c7:0b:69:b8:13:13:b6:d9:eb:1f:9d:c0: 06:e1:ae:5a:87:63:c2:ed:62:e0:0a:e1:0b:03:79: 2f:5c:25:94:f4:c3:99:3c:3d:a3:18:d5:d4:71:01: d4:2f:cd:d9:01:43:b1:af:34:07:1c:bb:19:08:9b: a4:46:8e:3e:77:5b:5f:39:c4:ec:27:75:83:fc:93: 11:7e:f2:c7:ca:43:af:5f:62:d5:52:f6:08:3b:5c: 26:17:68:de:fa:e9:bf:98:12:23:d0:59:ee:06:9f: 56:fd:39:d1:2a:b6:e2:37:1b:19:20:94:2f:65:bb: 00:25:ec:74:e3:04:5b:6a:49:92:5c:18:32:1a:cb: b6:10:02:f8:72:db:fb:ff:50:89:d4:f7:2e:d7:79: 8a:31:64:6a:16:43:44:9f:bb:aa:12:94:f5:2b:51: 2e:bd:bc:45:15:c0:2d:1d:86:a5:76:8a:78:18:d4: cd:95:f4:39:e5:e0:03:72:85:53:36:9c:5d:6b:4f: 18:68:6e:45:04:94:7c:48:ca:dd:f7:ec:b2:33:d5: 5b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:96:56:85:6A:59:51:6E:91:70:40:F4:FD:36:D4:99:F7:1E:FD:6D X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:26:3e:1d:cd:72:1c:9b:87:17:d6:b1:f8:a2:c7:94:5a:f3: d6:8b:31:87:ea:6a:49:cc:19:1f:33:b9:ab:d7:de:bf:dc:88: b7:fd:6a:64:82:0d:ed:34:59:a6:e6:63:99:b5:a8:32:62:bb: 13:1c:63:ac:1c:23:a0:be:00:59:1c:e2:e1:50:c9:4b:28:80: 2c:ca:0a:3c:08:ab:ca:5a:36:de:3f:65:e1:5e:fd:a8:89:f1: dd:b1:0f:da:4d:77:44:6b:50:76:0b:bc:45:ac:0a:1b:1f:5d: 3a:cc:4e:11:cd:c6:e7:9a:b0:66:99:47:8a:8a:b3:7f:28:59: 88:e6:d5:1f:45:33:d6:7b:c3:ec:4a:b3:cc:ab:54:38:64:d0: 13:26:90:2b:23:20:06:50:77:d2:16:48:1f:f5:dd:dc:c8:a8: 05:86:fb:38:d9:d0:ab:e9:8d:67:10:7c:7f:49:db:44:56:a6: c4:a6:bc:81:ac:37:b3:78:cf:f2:c7:2b:82:c4:b4:9e:61:68: 5b:c2:5f:76:84:e4:34:e6:ef:60:2e:11:f4:e4:a9:50:25:ad: 31:34:01:08:75:3d:3c:ca:51:3d:0d:9e:be:86:d0:5d:70:f6: af:db:65:06:23:12:b5:fa:65:a7:94:83:8d:45:29:07:3a:0b: 07:52:88:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjUxMDMxMTcwNDI3WhcNMjUxMTA3MTcwNDI3WjAYMRYwFAYD VQQDEw02OTA0ZWMxYi1iZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0acuNCFRn/0b4Dnsol7eep2T5bVilehHvYAXh8Lo2KSvZ5wClr+BhLJiVwDL GanHC2m4ExO22esfncAG4a5ah2PC7WLgCuELA3kvXCWU9MOZPD2jGNXUcQHUL83Z AUOxrzQHHLsZCJukRo4+d1tfOcTsJ3WD/JMRfvLHykOvX2LVUvYIO1wmF2je+um/ mBIj0FnuBp9W/TnRKrbiNxsZIJQvZbsAJex04wRbakmSXBgyGsu2EAL4ctv7/1CJ 1Pcu13mKMWRqFkNEn7uqEpT1K1EuvbxFFcAtHYaldop4GNTNlfQ55eADcoVTNpxd a08YaG5FBJR8SMrd9+yyM9VbgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCWVoVq WVFukXBA9P021Jn3Hv1tMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+Jj4dzXIcm4cX1rH4oseUWvPWizGH6mpJzBkfM7mr196/3Ii3/Wpk gg3tNFmm5mOZtagyYrsTHGOsHCOgvgBZHOLhUMlLKIAsygo8CKvKWjbeP2XhXv2o ifHdsQ/aTXdEa1B2C7xFrAobH106zE4RzcbnmrBmmUeKirN/KFmI5tUfRTPWe8Ps SrPMq1Q4ZNATJpArIyAGUHfSFkgf9d3cyKgFhvs42dCr6Y1nEHx/SdtEVqbEpryB rDezeM/yxyuCxLSeYWhbwl92hOQ05u9gLhH05KlQJa0xNAEIdT08ylE9DZ6+htBd cPav22UGIxK1+mWnlIONRSkHOgsHUogT -----END CERTIFICATE-----Generated at Sat Nov 1 18:07:34 2025 by rpki-client