$ rpki-client -vvf rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft File: OOHW4K0CW7AuZUgYPvKoIABQo2U.mft (raw, json) Hash identifier: F5nCPSyBaLWtvBFG5bQapxmxW2kBicOIGctwtv+9yC0= Subject key identifier: B2:37:A4:74:2E:E2:79:B1:94:A1:A7:71:33:F9:CE:DB:7E:CA:CE:3A Authority key identifier: 38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 Certificate issuer: /CN=A9135EC4/serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Certificate serial: 34DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft Manifest number: 34D8 Signing time: Sat 18 Oct 2025 14:34:26 +0000 Manifest this update: Sat 18 Oct 2025 14:34:25 +0000 Manifest next update: Sat 25 Oct 2025 14:34:25 +0000 Files and hashes: 1: OOHW4K0CW7AuZUgYPvKoIABQo2U.crl (hash: glaHu3apcUtm1gaKAtVavU+2cPXRmLLAPEDePq69h68=) 2: E89AA63C3A3411EDA5928760C4F9AE02.roa (hash: 4I+3xavxeBJbyMnYsMSj2G6sjqqfZ0aCKkQ3nfnxOP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:34:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13534 (0x34de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135EC4, serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Validity Not Before: Oct 18 14:34:25 2025 GMT Not After : Oct 25 14:34:25 2025 GMT Subject: CN=68f3a572-2ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:de:69:65:92:6f:af:3d:c7:a8:b9:b7:03:4b: ae:42:4e:c0:26:f2:49:41:cd:93:1a:e4:74:0a:bb: bc:17:de:a6:16:70:72:9f:fd:f3:44:53:da:ab:7b: 95:d3:31:e4:9f:28:10:db:bd:6b:4c:3b:89:44:18: 1f:19:a5:01:25:08:66:b9:bd:88:e6:b7:29:a4:c3: 1f:93:01:bb:a7:76:1c:81:1b:84:20:2c:7b:8c:05: 8c:2c:fd:a3:f2:97:77:4e:1f:ae:87:fd:45:7d:74: c9:b7:8f:07:46:1b:1b:de:70:96:96:c0:3e:90:81: f8:04:85:e6:a9:64:90:0f:67:81:b5:05:2f:1e:09: 14:71:4f:8b:74:c5:20:18:8b:f5:10:22:68:af:1d: 52:6a:59:c0:89:09:9d:d0:89:57:96:7e:09:dc:6b: 2c:0e:10:06:fa:b5:1a:72:13:80:5b:86:cc:28:60: 03:fc:72:9a:09:17:8f:96:8e:70:5b:53:b5:19:90: 89:e1:7e:fe:fa:7e:8a:91:3e:13:cd:95:6c:b3:38: b4:ed:5a:81:09:b8:8e:4c:5b:af:5c:08:03:02:3c: db:70:e0:21:bf:f9:f4:6a:0f:62:3a:5f:44:c1:8a: 94:82:6d:3a:72:e4:da:f9:9c:ed:be:29:2c:10:5c: 1f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:37:A4:74:2E:E2:79:B1:94:A1:A7:71:33:F9:CE:DB:7E:CA:CE:3A X509v3 Authority Key Identifier: keyid:38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:1d:2a:aa:6c:93:b5:0e:af:e5:26:29:ae:10:4d:cd:e4:52: 9a:9d:1b:50:68:a0:05:83:a1:ac:a3:fc:15:a4:d8:8d:43:9d: 89:93:74:3c:c0:fa:4e:e5:b5:9e:81:d7:44:e1:8b:6a:28:57: 6b:86:be:cc:ef:95:be:84:ad:c4:a8:9d:23:07:88:44:4f:9e: d2:21:5b:bc:4a:ce:3c:84:a0:20:05:fd:33:aa:b6:68:99:ec: b3:73:28:63:b2:22:9b:7b:72:80:2f:b8:84:50:0b:de:55:61: 63:c9:4c:c0:d4:99:09:8a:3c:77:c0:40:66:f1:48:c3:24:f2: 73:f2:24:f0:eb:68:74:46:00:25:36:04:2b:7c:7b:27:d2:4f: 71:16:58:99:9d:20:98:15:c1:1e:1f:ca:6b:9e:22:47:88:fb: 0e:f2:66:f6:e2:b3:55:47:69:b9:7a:d9:62:e3:85:52:b3:1d: 93:0f:4b:53:86:c3:af:10:54:6a:5e:77:f7:5f:25:be:b4:a2: 84:89:be:15:56:c7:bc:a0:68:bb:11:18:98:e2:97:e6:55:d2: 31:6a:16:52:8d:22:ee:a9:77:3b:37:b6:e2:a0:96:fa:59:29: cf:5e:3f:bc:0f:49:e2:f5:f7:b4:0a:6b:eb:ac:a1:c4:2f:fd: 2c:6e:35:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVFQzQxMTAvBgNVBAUTKDM4RTFENkUwQUQwMjVCQjAyRTY1NDgxODNFRjJBODIw MDA1MEEzNjUwHhcNMjUxMDE4MTQzNDI1WhcNMjUxMDI1MTQzNDI1WjAYMRYwFAYD VQQDEw02OGYzYTU3Mi0yYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr95pZZJvrz3HqLm3A0uuQk7AJvJJQc2TGuR0Cru8F96mFnByn/3zRFPaq3uV 0zHknygQ271rTDuJRBgfGaUBJQhmub2I5rcppMMfkwG7p3YcgRuEICx7jAWMLP2j 8pd3Th+uh/1FfXTJt48HRhsb3nCWlsA+kIH4BIXmqWSQD2eBtQUvHgkUcU+LdMUg GIv1ECJorx1SalnAiQmd0IlXln4J3GssDhAG+rUachOAW4bMKGAD/HKaCRePlo5w W1O1GZCJ4X7++n6KkT4TzZVsszi07VqBCbiOTFuvXAgDAjzbcOAhv/n0ag9iOl9E wYqUgm06cuTa+ZztviksEFwfaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLI3pHQu 4nmxlKGncTP5ztt+ys46MB8GA1UdIwQYMBaAFDjh1uCtAluwLmVIGD7yqCAAUKNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUVDNC84QTlBODM2ODFE ODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3QXVaVWdZUHZLb0lBQlFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09PSFc0SzBDVzdBdVpVZ1lQdktvSUFCUW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUVDNC84QTlBODM2ODFEODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3 QXVaVWdZUHZLb0lBQlFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9HSqqbJO1Dq/lJimuEE3N5FKanRtQaKAFg6Gso/wVpNiNQ52Jk3Q8 wPpO5bWegddE4YtqKFdrhr7M75W+hK3EqJ0jB4hET57SIVu8Ss48hKAgBf0zqrZo meyzcyhjsiKbe3KAL7iEUAveVWFjyUzA1JkJijx3wEBm8UjDJPJz8iTw62h0RgAl NgQrfHsn0k9xFliZnSCYFcEeH8prniJHiPsO8mb24rNVR2m5etli44VSsx2TD0tT hsOvEFRqXnf3XyW+tKKEib4VVse8oGi7ERiY4pfmVdIxahZSjSLuqXc7N7bioJb6 WSnPXj+8D0ni9fe0CmvrrKHEL/0sbjUh -----END CERTIFICATE-----Generated at Mon Oct 20 01:39:14 2025 by rpki-client