$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: 93xVRaw/aUpZuD/ywbeZnOBGVioOsIwbmVcbStx6KYY= Subject key identifier: DC:5A:14:D2:F2:65:89:E5:04:0A:E9:B2:8B:88:73:52:4F:F1:6A:CF Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 1368 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 2467 Signing time: Mon 20 Oct 2025 17:24:11 +0000 Manifest this update: Mon 20 Oct 2025 17:24:11 +0000 Manifest next update: Mon 27 Oct 2025 17:24:11 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: In55OhJyK3i7HsS0Th6C4zP+pefzMtu7rx2xj+UmVqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4968 (0x1368) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: Oct 20 17:24:11 2025 GMT Not After : Oct 27 17:24:11 2025 GMT Subject: CN=68f6703b-f3e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:31:22:02:6d:ac:7f:b2:13:69:7c:53:74:9e: c5:c4:ca:0d:69:ec:e1:63:65:c9:24:68:17:06:fb: 4b:d5:e4:7f:32:e0:bd:1b:75:63:56:37:03:a7:02: cd:bf:6e:5f:e2:d0:3d:00:14:2f:32:8e:37:9c:86: ed:cf:0e:63:93:78:a1:73:b2:8d:9c:70:38:f0:7c: f6:1c:11:c0:0f:68:14:fb:88:41:a0:67:ac:a0:b6: 51:af:ed:c1:7d:25:92:c6:9c:12:65:0f:ab:6d:19: 33:76:7d:59:ab:98:f1:08:04:0d:60:35:d3:5a:38: 2a:9d:e9:c5:ea:0c:95:11:85:c0:8f:63:8d:50:df: e2:7c:fc:f5:9b:9e:ec:1d:19:55:37:d2:e1:21:ad: af:ff:e5:bb:d0:09:e4:6a:a5:7c:2b:1a:de:08:2c: 7b:8c:25:ca:6f:05:bd:0e:ad:2c:1b:df:8b:34:e7: 72:a2:d9:76:c2:5f:9f:2b:08:a0:90:94:48:7c:f8: 33:44:1b:d2:17:59:b6:af:37:eb:ce:6a:84:ab:6e: a1:0e:da:76:aa:3d:a7:7a:42:2e:25:e8:83:7e:d7: 7a:4e:c8:a1:8e:4a:22:60:af:05:95:2c:1e:29:e8: 62:3f:c9:fb:80:a7:97:c9:c4:c0:e4:6d:77:b3:eb: fc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:5A:14:D2:F2:65:89:E5:04:0A:E9:B2:8B:88:73:52:4F:F1:6A:CF X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:06:47:4d:92:91:b5:fe:5f:8b:2e:aa:45:90:eb:49:39:c6: 13:72:6e:52:7a:3a:c3:e2:bd:4c:0f:e8:0e:f1:5a:8d:ee:22: 9d:b3:43:32:09:cf:c1:fc:8b:d5:c3:fd:7a:8f:55:ea:da:ca: 82:b8:2f:2d:0d:13:b7:16:c4:01:ba:55:26:3c:9a:e6:29:06: 02:6c:20:77:ee:9b:22:e2:fd:d6:44:82:0b:ad:fd:cf:0d:69: 46:d1:15:54:54:71:6b:e4:cf:40:72:99:02:a0:8b:2e:fc:29: 60:56:c8:d8:0f:0f:7d:58:7a:a6:53:e3:0a:0d:f1:94:7e:ff: ea:78:92:1b:56:ee:c8:ad:3e:f5:5f:97:1a:01:a7:e6:14:4d: e4:a1:4d:9c:6f:7f:f2:7d:ba:a0:04:71:b6:16:e8:93:39:b5: 8e:72:a6:3b:fb:c0:d4:8b:30:f7:c1:ba:b8:7b:1a:19:c0:a5: be:26:87:bb:61:ae:d8:75:bd:ec:f5:79:75:2b:1e:88:37:e3: 37:85:87:bf:f4:cf:9a:ee:51:74:06:41:f0:a6:06:e6:01:4d: ae:29:b3:f0:15:e2:91:98:72:ee:21:82:d2:b8:ae:59:4b:55: 80:c0:13:cc:4a:8a:17:1b:04:54:c1:0e:87:80:32:3a:7b:42: be:52:10:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjUxMDIwMTcyNDExWhcNMjUxMDI3MTcyNDExWjAYMRYwFAYD VQQDEw02OGY2NzAzYi1mM2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnTEiAm2sf7ITaXxTdJ7FxMoNaezhY2XJJGgXBvtL1eR/MuC9G3VjVjcDpwLN v25f4tA9ABQvMo43nIbtzw5jk3ihc7KNnHA48Hz2HBHAD2gU+4hBoGesoLZRr+3B fSWSxpwSZQ+rbRkzdn1Zq5jxCAQNYDXTWjgqnenF6gyVEYXAj2ONUN/ifPz1m57s HRlVN9LhIa2v/+W70AnkaqV8KxreCCx7jCXKbwW9Dq0sG9+LNOdyotl2wl+fKwig kJRIfPgzRBvSF1m2rzfrzmqEq26hDtp2qj2nekIuJeiDftd6TsihjkoiYK8FlSwe KehiP8n7gKeXycTA5G13s+v8NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxaFNLy ZYnlBArpsouIc1JP8WrPMB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBBkdNkpG1/l+LLqpFkOtJOcYTcm5SejrD4r1MD+gO8VqN7iKds0My Cc/B/IvVw/16j1Xq2sqCuC8tDRO3FsQBulUmPJrmKQYCbCB37psi4v3WRIILrf3P DWlG0RVUVHFr5M9AcpkCoIsu/ClgVsjYDw99WHqmU+MKDfGUfv/qeJIbVu7IrT71 X5caAafmFE3koU2cb3/yfbqgBHG2FuiTObWOcqY7+8DUizD3wbq4exoZwKW+Joe7 Ya7Ydb3s9Xl1Kx6IN+M3hYe/9M+a7lF0BkHwpgbmAU2uKbPwFeKRmHLuIYLSuK5Z S1WAwBPMSooXGwRUwQ6HgDI6e0K+UhBo -----END CERTIFICATE-----Generated at Mon Oct 20 21:40:40 2025 by rpki-client