$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: 7+dyLXIVmJKkQvSn2XwnB0O+PQdRxdRywvSix4D17fg= Subject key identifier: A2:6A:63:79:BD:7A:6B:A6:BB:A9:1B:E9:1B:12:65:B3:EA:D9:74:0D Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 018A Signing time: Sun 19 Oct 2025 06:06:51 +0000 Manifest this update: Sun 19 Oct 2025 06:06:50 +0000 Manifest next update: Sun 26 Oct 2025 06:06:50 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: JxTB2DWIXtB9jkVsRKEdecIRf/yoRW2mzNu1ZxI0u/k=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: 3nZkRqzVFhraaOpvrG0LDJguOxKECxTU8dAQntDOqqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Oct 19 06:06:50 2025 GMT Not After : Oct 26 06:06:50 2025 GMT Subject: CN=68f47ffa-8e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:dc:21:21:1d:c5:fe:e6:3b:71:95:b8:7a:6e: 78:54:be:5c:76:cd:b0:26:a5:bb:97:5e:61:36:7d: 2f:58:09:19:e2:41:be:7b:6c:51:bb:06:b5:d8:7f: d3:93:09:90:3b:4c:1a:ef:e4:93:37:10:34:01:40: 99:cb:18:c6:92:6b:08:69:10:e3:da:f5:7c:e9:69: 7e:b4:71:99:f4:6f:db:9c:c8:65:e2:0d:9a:22:0a: b3:6f:3e:12:15:1b:ef:fb:e3:5d:24:97:4c:a7:5b: 17:a0:a8:02:34:a9:64:1a:db:28:6f:b0:0b:aa:61: e3:a6:5d:05:00:6f:99:ec:34:71:56:19:da:49:74: 45:81:b3:90:3b:89:db:88:aa:b6:4f:cf:5b:05:af: 18:35:49:fd:2a:4e:d2:9c:99:5e:08:48:5d:bd:7e: 29:b3:fb:20:22:0a:8c:63:62:2b:7e:05:75:f2:80: 4b:6c:56:62:d2:0a:a3:e9:50:23:51:bf:92:6e:08: 56:92:5c:43:56:29:7b:f0:28:21:2d:9f:4e:d8:de: df:0c:b0:3a:bf:b7:61:eb:c7:dc:cf:93:0c:fe:a9: 2d:46:59:78:9a:5b:34:e0:bc:3e:19:84:bf:a1:1a: 38:94:51:6d:80:2e:49:2f:38:4e:e7:c3:65:f2:2a: d8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:6A:63:79:BD:7A:6B:A6:BB:A9:1B:E9:1B:12:65:B3:EA:D9:74:0D X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:4a:32:4e:be:9c:94:c4:ae:73:57:7b:ce:99:a9:dd:fd:c7: 55:dc:1c:cf:7f:38:12:ee:ed:93:85:b0:65:41:15:b6:e7:45: d8:78:1f:94:07:7a:ca:21:aa:08:1a:18:5d:b6:d5:4d:06:05: a5:37:f4:1f:72:77:e0:01:79:23:45:ea:7b:2f:6e:e1:7c:2e: e3:37:e9:cd:45:04:25:d3:ad:f2:d7:e7:70:ca:04:c0:55:45: 5e:a6:16:5a:95:4a:dc:c9:17:ca:2a:1f:6d:6a:d2:fc:98:5c: 3c:cc:cb:e1:b8:6d:55:25:f1:9b:46:f1:1c:01:bf:83:91:a2: 29:0f:30:97:ea:11:0c:c2:fc:97:32:ef:a4:36:1a:2a:ff:ea: e5:7b:c4:6f:7b:c8:99:75:b2:0a:62:0c:35:f2:e2:ed:54:da: 4e:52:dd:fb:fe:6f:27:d4:7a:f3:e7:61:6a:4c:87:13:67:d4: 2d:4b:5b:34:98:5b:72:91:13:54:22:3c:fd:53:79:84:6e:27: ca:a6:aa:ee:8f:3c:2a:41:c9:f7:8c:c8:e9:0e:20:4d:5a:fa: 13:5a:a2:83:20:53:06:50:37:0e:2c:87:6b:ae:5e:fc:85:13: ce:15:bb:9f:e0:71:43:d5:7c:13:9e:b3:79:fc:12:4a:e0:41: d2:0b:1e:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjUxMDE5MDYwNjUwWhcNMjUxMDI2MDYwNjUwWjAYMRYwFAYD VQQDEw02OGY0N2ZmYS04ZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9whIR3F/uY7cZW4em54VL5cds2wJqW7l15hNn0vWAkZ4kG+e2xRuwa12H/T kwmQO0wa7+STNxA0AUCZyxjGkmsIaRDj2vV86Wl+tHGZ9G/bnMhl4g2aIgqzbz4S FRvv++NdJJdMp1sXoKgCNKlkGtsob7ALqmHjpl0FAG+Z7DRxVhnaSXRFgbOQO4nb iKq2T89bBa8YNUn9Kk7SnJleCEhdvX4ps/sgIgqMY2IrfgV18oBLbFZi0gqj6VAj Ub+SbghWklxDVil78CghLZ9O2N7fDLA6v7dh68fcz5MM/qktRll4mls04Lw+GYS/ oRo4lFFtgC5JLzhO58Nl8irYnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJqY3m9 emumu6kb6RsSZbPq2XQNMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdSjJOvpyUxK5zV3vOmand/cdV3BzPfzgS7u2ThbBlQRW250XYeB+U B3rKIaoIGhhdttVNBgWlN/QfcnfgAXkjRep7L27hfC7jN+nNRQQl063y1+dwygTA VUVephZalUrcyRfKKh9tatL8mFw8zMvhuG1VJfGbRvEcAb+DkaIpDzCX6hEMwvyX Mu+kNhoq/+rle8Rve8iZdbIKYgw18uLtVNpOUt37/m8n1Hrz52FqTIcTZ9QtS1s0 mFtykRNUIjz9U3mEbifKpqrujzwqQcn3jMjpDiBNWvoTWqKDIFMGUDcOLIdrrl78 hRPOFbuf4HFD1XwTnrN5/BJK4EHSCx4p -----END CERTIFICATE-----Generated at Mon Oct 20 04:19:09 2025 by rpki-client