$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: tAyaPy6op7YP0q1H1sf7bsbSyAFMNpN7LDaRxwtz0JM= Subject key identifier: 19:41:7A:48:C2:E1:DA:63:DC:32:B5:25:02:CA:65:E5:87:A8:D3:E7 Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 178A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 1775 Signing time: Sat 18 Oct 2025 17:00:00 +0000 Manifest this update: Sat 18 Oct 2025 17:00:00 +0000 Manifest next update: Sat 25 Oct 2025 17:00:00 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: dXj4rpKRkS59KNwBUpZomWFrEzcYXfdjtsOsK4iwyFs=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: XhkwHyloR+2rDxWbay2n/StJn5+0QtLglAfKwVMv/5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6026 (0x178a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Oct 18 17:00:00 2025 GMT Not After : Oct 25 17:00:00 2025 GMT Subject: CN=68f3c790-01e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:92:7f:d0:cf:16:10:38:c0:8c:d9:b3:d6:ee: 9a:31:42:ac:19:45:eb:b2:e1:07:66:77:9b:f0:0c: b5:17:ed:fa:37:8d:98:02:4f:a3:3e:5c:59:1e:50: cc:4b:7c:94:3d:c0:f7:01:b9:d8:6f:8a:c0:fa:c1: 18:1a:80:3d:56:ce:0f:95:91:a5:83:24:5e:ae:d2: 35:ff:df:ff:5e:b0:f4:b8:03:c1:6e:9d:20:3f:d0: a1:e0:87:f0:b1:6e:60:59:45:1e:45:e9:24:55:e3: ee:3f:db:40:16:b2:b5:ec:de:ac:67:25:df:ab:bc: 61:70:e3:24:c2:e5:44:5a:72:72:0c:0b:2c:c5:e9: fc:8a:04:76:a5:fa:8b:bb:e2:ba:d2:91:76:a5:89: 9a:52:d1:7a:ca:f1:a3:43:00:19:93:06:f2:f8:7f: 5e:28:b4:91:f5:47:21:b1:38:91:af:15:d3:0c:d3: 8b:cd:67:d3:03:c6:5a:7f:1d:fa:4a:d3:b3:29:d9: 3e:64:99:c2:51:26:75:a5:59:53:2f:c2:f3:8d:80: 7c:26:2e:41:39:5c:bf:90:f3:31:93:40:71:8d:af: e1:46:64:d2:2f:cf:b5:36:e4:b1:11:16:2d:0d:f7: 05:bd:a5:ac:0c:04:f4:60:30:bc:ab:dd:88:58:d5: ac:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:41:7A:48:C2:E1:DA:63:DC:32:B5:25:02:CA:65:E5:87:A8:D3:E7 X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:34:c3:cf:65:76:89:d2:f9:4b:0b:5e:6c:bb:e7:e8:2b:a4: 29:53:be:49:17:71:06:91:41:bc:e2:89:0f:6f:be:72:3e:ea: e6:06:ed:8d:3f:1a:5a:be:34:d0:1b:63:59:71:b5:b6:6d:24: 07:88:a1:45:b2:e1:07:c5:c6:2c:fb:49:8f:28:6d:b4:2f:d3: 67:d1:d6:5a:48:8c:9b:f7:ad:11:a0:da:f7:25:85:9a:b3:e8: 4b:c5:bd:03:bd:f1:e1:86:cb:a9:ad:21:8f:5d:a0:f9:53:42: 20:3e:e4:3e:d6:fa:18:44:14:15:fc:af:a0:5a:6c:82:09:d5: 3f:72:64:c1:4e:9b:99:a9:61:c4:af:cb:81:39:72:d9:cb:1d: 73:b7:52:52:a7:70:a1:72:3b:ba:27:9f:de:51:60:af:57:e3: 20:c6:92:a6:77:a7:3a:e0:89:e9:e1:cc:91:ce:c3:ed:4d:7b: ee:e3:8d:ec:e0:a3:78:92:c7:7c:d6:16:31:4a:96:5c:8c:8c: 5f:15:fc:ce:76:8d:8b:68:19:a3:9f:d5:4f:46:d7:f0:7f:20: a9:3c:c7:ca:72:97:a3:04:63:bd:ef:cc:91:e1:53:31:cd:b3: 94:38:5d:eb:24:9d:57:12:18:38:23:c2:63:31:ad:df:94:70: 55:aa:f1:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUxMDE4MTcwMDAwWhcNMjUxMDI1MTcwMDAwWjAYMRYwFAYD VQQDEw02OGYzYzc5MC0wMWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZJ/0M8WEDjAjNmz1u6aMUKsGUXrsuEHZneb8Ay1F+36N42YAk+jPlxZHlDM S3yUPcD3AbnYb4rA+sEYGoA9Vs4PlZGlgyRertI1/9//XrD0uAPBbp0gP9Ch4Ifw sW5gWUUeRekkVePuP9tAFrK17N6sZyXfq7xhcOMkwuVEWnJyDAssxen8igR2pfqL u+K60pF2pYmaUtF6yvGjQwAZkwby+H9eKLSR9UchsTiRrxXTDNOLzWfTA8Zafx36 StOzKdk+ZJnCUSZ1pVlTL8LzjYB8Ji5BOVy/kPMxk0Bxja/hRmTSL8+1NuSxERYt DfcFvaWsDAT0YDC8q92IWNWsSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlBekjC 4dpj3DK1JQLKZeWHqNPnMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkNMPPZXaJ0vlLC15su+foK6QpU75JF3EGkUG84okPb75yPurmBu2N PxpavjTQG2NZcbW2bSQHiKFFsuEHxcYs+0mPKG20L9Nn0dZaSIyb960RoNr3JYWa s+hLxb0DvfHhhsuprSGPXaD5U0IgPuQ+1voYRBQV/K+gWmyCCdU/cmTBTpuZqWHE r8uBOXLZyx1zt1JSp3Chcju6J5/eUWCvV+MgxpKmd6c64Inp4cyRzsPtTXvu443s 4KN4ksd81hYxSpZcjIxfFfzOdo2LaBmjn9VPRtfwfyCpPMfKcpejBGO978yR4VMx zbOUOF3rJJ1XEhg4I8JjMa3flHBVqvGq -----END CERTIFICATE-----Generated at Sun Oct 19 23:22:12 2025 by rpki-client