$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: xXxXx9cyUSKgp9kE4G97ivtpXKiVtpVJDx5CPUOph4w= Subject key identifier: 25:D6:9B:93:64:1F:A5:61:4B:81:46:56:46:5B:20:93:E1:69:3A:43 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0AC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0ABE Signing time: Sat 18 Oct 2025 20:26:19 +0000 Manifest this update: Sat 18 Oct 2025 20:26:18 +0000 Manifest next update: Sat 25 Oct 2025 20:26:18 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: 0kxHid3L5+JBuw1aWY6R4SvybUo43A6LvX/9s73wXMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2759 (0xac7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Oct 18 20:26:18 2025 GMT Not After : Oct 25 20:26:18 2025 GMT Subject: CN=68f3f7ea-23ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:09:c6:07:07:59:8f:e0:89:bc:cc:aa:ae:f2: 8d:98:b3:a2:84:c3:77:29:5d:0e:cc:c6:93:01:70: 59:d6:18:60:a7:8b:46:ca:e0:59:ce:3a:a6:bb:8e: 15:cb:13:ac:0c:7c:1a:d4:f6:85:c0:b2:67:f6:34: f6:7f:d5:cf:66:52:92:17:dc:3d:f2:e5:13:f2:fd: c2:2a:5b:b0:17:c2:74:1b:c2:1b:ad:d7:f9:03:d9: 65:ca:ca:06:d2:ad:7b:11:94:bc:6f:1a:58:50:1a: cf:1e:ea:ab:68:71:17:fc:d3:6a:ac:ef:17:27:1b: 47:6a:99:7a:99:cf:83:1b:af:72:de:09:af:05:86: 55:9a:ac:9e:bd:16:5d:ca:24:3e:ec:3d:35:ee:7c: 4d:5e:fd:80:28:36:e1:81:31:12:7b:ee:44:73:3b: 17:87:c5:6f:52:8e:c2:66:dc:f1:fd:f4:4e:85:9b: f9:42:8d:89:3b:f0:08:60:07:75:96:61:ba:24:45: 2c:1b:28:b3:ed:1b:7e:1e:52:64:de:b4:01:7e:bb: a5:6f:e7:c9:54:01:33:67:3d:35:da:dd:c1:e5:fb: 82:8f:ce:f5:0b:50:19:a0:c4:cc:84:1c:8e:22:0d: f2:4b:ef:3e:8f:16:cc:4c:75:03:f2:20:0b:82:50: d2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D6:9B:93:64:1F:A5:61:4B:81:46:56:46:5B:20:93:E1:69:3A:43 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:35:4d:10:23:a7:07:4b:2b:46:11:06:f7:36:ff:30:87:62: 68:39:6a:9f:18:d1:09:ff:d9:81:a3:cc:0c:c4:e7:89:2b:eb: e9:66:4b:29:dd:81:40:79:81:3b:21:a5:6d:f6:95:a4:80:18: 98:7a:b4:e4:c1:9b:7a:5b:96:61:cc:56:75:4c:31:ea:f6:28: 7a:94:63:e1:59:2e:e4:f2:6f:8a:81:b5:b3:bf:a6:dd:67:b2: fc:a2:d0:5d:d2:fa:9f:8d:c7:e6:2a:a1:6e:3e:ae:7b:d0:73: c9:8b:00:fc:ba:ff:54:dd:bc:c0:2f:c1:9c:27:7c:9a:3b:04: cb:99:68:5b:11:57:66:00:1d:14:61:2c:0e:3d:d0:ec:bb:cf: 6d:c7:5a:f8:b0:de:dc:35:ef:96:20:2c:c0:be:b7:7e:6d:ed: 44:65:94:a4:78:94:33:e2:65:9b:7c:50:b5:9e:69:a8:2e:4d: 7d:c7:43:4b:78:55:26:c2:9d:12:a6:a6:b1:e8:0e:d9:88:08: 90:27:8f:19:a0:77:c9:01:bb:eb:11:7d:49:7b:a1:0c:0b:9d: c6:cf:ab:de:c7:f5:43:5a:14:a3:15:50:81:31:a6:bf:66:ca: 55:78:33:c2:6d:bb:bf:2d:2d:0a:95:e6:65:6c:bd:9b:5d:33: 75:a8:51:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUxMDE4MjAyNjE4WhcNMjUxMDI1MjAyNjE4WjAYMRYwFAYD VQQDEw02OGYzZjdlYS0yM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gnGBwdZj+CJvMyqrvKNmLOihMN3KV0OzMaTAXBZ1hhgp4tGyuBZzjqmu44V yxOsDHwa1PaFwLJn9jT2f9XPZlKSF9w98uUT8v3CKluwF8J0G8Ibrdf5A9llysoG 0q17EZS8bxpYUBrPHuqraHEX/NNqrO8XJxtHapl6mc+DG69y3gmvBYZVmqyevRZd yiQ+7D017nxNXv2AKDbhgTESe+5EczsXh8VvUo7CZtzx/fROhZv5Qo2JO/AIYAd1 lmG6JEUsGyiz7Rt+HlJk3rQBfrulb+fJVAEzZz012t3B5fuCj871C1AZoMTMhByO Ig3yS+8+jxbMTHUD8iALglDSTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXWm5Nk H6VhS4FGVkZbIJPhaTpDMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWNU0QI6cHSytGEQb3Nv8wh2JoOWqfGNEJ/9mBo8wMxOeJK+vpZksp 3YFAeYE7IaVt9pWkgBiYerTkwZt6W5ZhzFZ1TDHq9ih6lGPhWS7k8m+KgbWzv6bd Z7L8otBd0vqfjcfmKqFuPq570HPJiwD8uv9U3bzAL8GcJ3yaOwTLmWhbEVdmAB0U YSwOPdDsu89tx1r4sN7cNe+WICzAvrd+be1EZZSkeJQz4mWbfFC1nmmoLk19x0NL eFUmwp0Spqax6A7ZiAiQJ48ZoHfJAbvrEX1Je6EMC53Gz6vex/VDWhSjFVCBMaa/ ZspVeDPCbbu/LS0KleZlbL2bXTN1qFEK -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:19 2025 by rpki-client