$ rpki-client -vvf rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft File: OIgNuTaszJvXTT2434iHsyjleI0.mft (raw, json) Hash identifier: z/3S45TDLSpAOY6PvaxwX9ZtEe5RslX9za78MqkJlaU= Subject key identifier: F7:9F:C1:A1:1F:66:AD:B1:49:39:CE:7E:95:DD:38:8E:25:38:D7:B2 Authority key identifier: 38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D Certificate issuer: /CN=A912E411/serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Certificate serial: 08DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft Manifest number: 14EF Signing time: Sat 18 Oct 2025 19:30:01 +0000 Manifest this update: Sat 18 Oct 2025 19:30:00 +0000 Manifest next update: Sat 25 Oct 2025 19:30:00 +0000 Files and hashes: 1: OIgNuTaszJvXTT2434iHsyjleI0.crl (hash: oe0XiKItcno0AaDxJr16fGoifCCed1bIEmsxB1nSOuM=) 2: F6EC251224E711F087B2F571C4F9AE02.roa (hash: ixwNvaFcfk2na9cvy/T/P4B71LV0FaS6LsHWYtDlPXs=) 3: C766E398C0EE11EA94A1F146C4F9AE02.roa (hash: 4Kv7xQwln4PVRYcYiLH9p6kQ8sftutG3ICgl5f6YZnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2268 (0x8dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E411, serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Validity Not Before: Oct 18 19:30:00 2025 GMT Not After : Oct 25 19:30:00 2025 GMT Subject: CN=68f3eab9-d372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cb:de:fd:5f:d0:ad:7b:09:1a:22:2d:98:92: df:51:5f:8c:b7:48:4f:13:53:d0:f5:ae:c9:9a:34: c7:b9:14:e3:53:85:e4:cc:b4:ec:94:42:81:57:54: e7:ea:67:10:9b:81:80:1d:26:8f:39:25:86:fb:b8: 54:27:75:28:0b:99:eb:ff:5e:2d:64:86:bb:09:3a: bb:41:ee:5e:07:8c:b8:84:c5:5f:cb:79:84:bd:12: 9e:41:3a:57:15:09:04:b9:1e:8a:87:85:7c:0f:e8: 3f:4e:ea:5b:8e:7f:be:da:d4:9e:e3:26:74:56:f3: 35:e6:67:5e:d6:3d:ed:5d:00:94:f0:c9:bb:19:91: 0f:e1:ac:17:d9:a4:2f:8d:9d:60:18:e7:0b:a3:b0: ca:e0:f4:73:39:ea:f4:4a:67:e1:c6:a4:f6:74:b1: ad:2e:7f:3c:07:23:9f:ff:fd:62:e0:4b:f7:06:c8: 99:c4:79:db:e1:b9:75:34:d5:d4:19:64:08:34:ec: c9:5d:c7:f5:61:7a:0e:ed:68:e7:b4:02:7a:20:f9: 8b:40:38:6e:4c:0d:ab:53:c7:16:e2:c6:f8:e3:63: 2d:9d:0c:5a:88:d0:96:fe:ad:b6:60:d5:b0:8b:42: f4:5d:5a:5d:65:ab:d6:3e:4e:bf:70:d0:89:a3:bf: 37:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:9F:C1:A1:1F:66:AD:B1:49:39:CE:7E:95:DD:38:8E:25:38:D7:B2 X509v3 Authority Key Identifier: keyid:38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:8b:b9:4b:73:97:76:a7:78:fd:26:24:e3:62:c2:69:4b:96: fd:e3:ef:df:3b:e1:21:dc:d5:21:48:7c:36:39:9b:88:60:f7: 6b:b8:71:11:81:79:e1:58:3c:cf:ee:18:9d:76:a0:df:94:7a: 22:1b:e4:68:7c:59:ab:14:2f:e7:12:15:58:c4:31:d5:7d:da: c3:da:d6:93:05:82:97:d5:f1:0e:ff:e6:02:46:40:a3:4b:e0: 18:53:3c:42:45:da:36:3f:f7:36:f5:00:19:50:7c:3c:80:b4: 22:d6:f4:1e:a0:6d:8d:f8:22:42:b1:f5:3d:56:b6:0d:0f:dc: 04:3c:19:ed:d4:0e:36:ad:79:12:8d:b3:f9:48:30:a4:ad:a4: 0b:77:1b:a0:51:f3:ed:0c:03:91:c0:60:3e:bf:5f:92:0c:91: 7a:32:53:3e:0a:5b:09:e5:e7:cd:af:ef:d5:d2:08:ed:31:b1: c3:23:03:e9:63:a0:2e:eb:6c:28:9c:c9:d6:30:6d:37:b6:2b: cc:af:1f:88:15:9c:0f:ca:51:45:50:f4:7d:09:b2:3e:10:a7: bd:9b:84:3a:74:93:85:ef:d7:74:55:88:af:2b:69:02:34:25: f9:55:b7:cf:60:7a:b2:22:ac:b6:10:ec:d7:77:30:ac:7e:b7: 89:64:ba:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU0MTExMTAvBgNVBAUTKDM4ODgwREI5MzZBQ0NDOUJENzREM0RCOERGODg4N0Iz MjhFNTc4OEQwHhcNMjUxMDE4MTkzMDAwWhcNMjUxMDI1MTkzMDAwWjAYMRYwFAYD VQQDEw02OGYzZWFiOS1kMzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMve/V/QrXsJGiItmJLfUV+Mt0hPE1PQ9a7JmjTHuRTjU4XkzLTslEKBV1Tn 6mcQm4GAHSaPOSWG+7hUJ3UoC5nr/14tZIa7CTq7Qe5eB4y4hMVfy3mEvRKeQTpX FQkEuR6Kh4V8D+g/Tupbjn++2tSe4yZ0VvM15mde1j3tXQCU8Mm7GZEP4awX2aQv jZ1gGOcLo7DK4PRzOer0SmfhxqT2dLGtLn88ByOf//1i4Ev3BsiZxHnb4bl1NNXU GWQINOzJXcf1YXoO7WjntAJ6IPmLQDhuTA2rU8cW4sb442MtnQxaiNCW/q22YNWw i0L0XVpdZavWPk6/cNCJo783wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPefwaEf Zq2xSTnOfpXdOI4lONeyMB8GA1UdIwQYMBaAFDiIDbk2rMyb1009uN+Ih7Mo5XiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTQxMS9GMEIwMEVCNDE5 MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pKdlhUVDI0MzRpSHN5amxl STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZ051VGFzekp2WFRUMjQzNGlIc3lqbGVJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTQxMS9GMEIwMEVCNDE5MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pK dlhUVDI0MzRpSHN5amxlSTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARi7lLc5d2p3j9JiTjYsJpS5b94+/fO+Eh3NUhSHw2OZuIYPdruHER gXnhWDzP7hiddqDflHoiG+RofFmrFC/nEhVYxDHVfdrD2taTBYKX1fEO/+YCRkCj S+AYUzxCRdo2P/c29QAZUHw8gLQi1vQeoG2N+CJCsfU9VrYND9wEPBnt1A42rXkS jbP5SDCkraQLdxugUfPtDAORwGA+v1+SDJF6MlM+ClsJ5efNr+/V0gjtMbHDIwPp Y6Au62wonMnWMG03tivMrx+IFZwPylFFUPR9CbI+EKe9m4Q6dJOF79d0VYivK2kC NCX5VbfPYHqyIqy2EOzXdzCsfreJZLq0 -----END CERTIFICATE-----Generated at Mon Oct 20 14:07:58 2025 by rpki-client