$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft File: ORjYC8twLsrPhMt6yogPh4oU_kg.mft (raw, json) Hash identifier: tyP+TQ2Ljz/wzieZVBvaDkbZpKb1KKE/eywpoE2dK5E= Subject key identifier: B9:E5:9B:58:24:F7:D2:9D:F5:4B:B6:A9:61:FE:E0:CE:BC:D4:78:24 Authority key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 Certificate issuer: /CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft Manifest number: 0186 Signing time: Sun 19 Oct 2025 06:44:48 +0000 Manifest this update: Sun 19 Oct 2025 06:44:47 +0000 Manifest next update: Sun 26 Oct 2025 06:44:47 +0000 Files and hashes: 1: ORjYC8twLsrPhMt6yogPh4oU_kg.crl (hash: Nw4oSyn8h3tBFsapdCFBpBDbcC9ray5bzDxoHG8Q5YY=) 2: 0D16F5F4933211EEA5AC155DC4F9AE02.roa (hash: 1LEVeAmiTE8mfugUrgZ7PXJTh3jzct433M4/pCSC1j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B24, serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48 Validity Not Before: Oct 19 06:44:47 2025 GMT Not After : Oct 26 06:44:47 2025 GMT Subject: CN=68f488df-ae5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:11:d2:a0:5d:ad:07:91:d4:ae:a4:0d:86:41: 73:6e:ba:41:fb:10:32:e0:bb:b2:cb:73:84:e6:a7: 20:47:f1:4a:51:8a:23:73:c8:32:9b:a7:41:02:bb: 39:0a:b8:1f:2c:73:1a:19:ab:fb:78:90:60:10:c1: 92:c6:94:02:cb:18:17:92:71:50:e8:0d:ac:db:c6: fc:ab:dc:98:47:01:21:49:e6:fb:27:07:2e:c9:55: 32:a9:02:18:34:0f:6c:fb:29:41:15:f5:a6:ee:0f: 75:06:67:f7:0b:41:7c:65:91:3e:ef:21:e5:2d:be: 1e:b5:70:39:7c:37:54:4f:6d:44:de:12:ca:75:f4: 06:68:f9:c5:de:d0:bf:2d:bd:2c:52:5b:20:a5:48: 3c:91:7e:bf:d0:4a:70:2d:e6:a7:c8:92:a7:89:cd: 91:e1:08:cb:14:53:d6:fa:80:fe:5b:76:d6:74:f7: 48:52:9e:70:7c:f7:ca:f0:f4:ca:19:c7:12:a8:aa: 95:6b:15:18:85:9f:4f:20:b6:f8:74:70:9f:2f:c6: ee:c4:73:34:ea:d1:75:0a:00:79:3b:35:fd:39:bf: 17:3f:a3:b5:7e:2b:f4:5e:b1:1a:3e:00:ce:77:59: c2:c9:1c:5b:7c:da:3e:41:52:c7:cc:dd:64:e4:a5: 28:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E5:9B:58:24:F7:D2:9D:F5:4B:B6:A9:61:FE:E0:CE:BC:D4:78:24 X509v3 Authority Key Identifier: keyid:39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:fb:47:36:19:b3:e3:25:70:8d:bd:a0:46:d3:ff:f7:2a:32: 14:dd:95:fc:12:49:e8:b6:9c:bb:33:09:ca:03:30:db:1d:66: 26:b9:be:40:07:fd:03:4f:6a:17:77:ae:ce:c5:d4:44:c5:3d: dd:bf:2a:05:00:4d:06:76:66:2e:19:51:cd:f1:0b:28:b7:38: 75:ed:70:82:34:8c:4b:bf:e3:fc:8b:89:90:3e:fe:b6:c5:6f: 90:d2:48:81:2b:1a:1a:26:0b:65:ed:8f:12:1c:46:f7:f0:d9: b7:3d:a2:b7:f8:6f:85:38:c9:03:64:d0:be:d3:3e:74:81:76: f3:bf:25:54:26:43:5f:41:56:5f:55:ea:1b:e5:64:b5:5b:4a: 59:96:b9:e8:29:e6:85:56:c1:42:28:ac:f1:f8:db:4a:d9:7f: a8:28:57:a6:40:1f:f5:2a:a3:57:fc:f7:ab:05:7b:bb:27:64: d2:14:10:46:84:98:4f:78:ad:3f:d3:5f:89:6b:99:2e:57:b4: 74:f3:49:32:04:a6:43:e1:02:4f:1d:cf:9b:d5:4b:bc:1b:d6: 26:26:e4:98:59:e1:5a:b4:3d:5c:ac:31:87:e1:43:30:e4:b3: a8:c9:3c:f0:5a:b5:f9:95:e0:98:e3:68:fc:26:21:3e:2c:d2: 8a:41:5b:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjQxMTAvBgNVBAUTKDM5MThEODBCQ0I3MDJFQ0FDRjg0Q0I3QUNBODgwRjg3 OEExNEZFNDgwHhcNMjUxMDE5MDY0NDQ3WhcNMjUxMDI2MDY0NDQ3WjAYMRYwFAYD VQQDEw02OGY0ODhkZi1hZTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BHSoF2tB5HUrqQNhkFzbrpB+xAy4Luyy3OE5qcgR/FKUYojc8gym6dBArs5 CrgfLHMaGav7eJBgEMGSxpQCyxgXknFQ6A2s28b8q9yYRwEhSeb7JwcuyVUyqQIY NA9s+ylBFfWm7g91Bmf3C0F8ZZE+7yHlLb4etXA5fDdUT21E3hLKdfQGaPnF3tC/ Lb0sUlsgpUg8kX6/0EpwLeanyJKnic2R4QjLFFPW+oD+W3bWdPdIUp5wfPfK8PTK GccSqKqVaxUYhZ9PILb4dHCfL8buxHM06tF1CgB5OzX9Ob8XP6O1fiv0XrEaPgDO d1nCyRxbfNo+QVLHzN1k5KUoJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnlm1gk 99Kd9Uu2qWH+4M681HgkMB8GA1UdIwQYMBaAFDkY2AvLcC7Kz4TLesqID4eKFP5I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyNC9CNDczQzRCRTkz MzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xzclBoTXQ2eW9nUGg0b1Vf a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SallDOHR3THNyUGhNdDZ5b2dQaDRvVV9rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkIyNC9CNDczQzRCRTkzMzAxMUVFODIzMDgwNTlDNEY5QUUwMi9PUmpZQzh0d0xz clBoTXQ2eW9nUGg0b1Vfa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA+0c2GbPjJXCNvaBG0//3KjIU3ZX8Eknotpy7MwnKAzDbHWYmub5A B/0DT2oXd67OxdRExT3dvyoFAE0GdmYuGVHN8Qsotzh17XCCNIxLv+P8i4mQPv62 xW+Q0kiBKxoaJgtl7Y8SHEb38Nm3PaK3+G+FOMkDZNC+0z50gXbzvyVUJkNfQVZf Veob5WS1W0pZlrnoKeaFVsFCKKzx+NtK2X+oKFemQB/1KqNX/PerBXu7J2TSFBBG hJhPeK0/01+Ja5kuV7R080kyBKZD4QJPHc+b1Uu8G9YmJuSYWeFatD1crDGH4UMw 5LOoyTzwWrX5leCY42j8JiE+LNKKQVsn -----END CERTIFICATE-----Generated at Mon Oct 20 01:42:46 2025 by rpki-client