$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft File: OTVm9EF4bZWNinkRjo71b8hy5cU.mft (raw, json) Hash identifier: e1UXvt7KkLbGgukpGNwWl8OWKvAXuOytY9dbcXedy4Q= Subject key identifier: ED:8A:4F:BC:35:01:83:1C:30:CF:E2:CC:D1:1C:0E:AB:7E:1C:F9:BB Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 06C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft Manifest number: 06B9 Signing time: Sat 18 Oct 2025 23:37:00 +0000 Manifest this update: Sat 18 Oct 2025 23:37:00 +0000 Manifest next update: Sat 25 Oct 2025 23:37:00 +0000 Files and hashes: 1: OTVm9EF4bZWNinkRjo71b8hy5cU.crl (hash: mS9VSnXpgP9PdhbElTCYPoA47yoa28b+l4DUs4TXOds=) 2: CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa (hash: Tn4IiKC/ehOcHKqem3Io6ZVpsXPRVKGONn1yIt6QObo=) 3: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (hash: rBuNfeeoduUd1I0NoD4IRcILjNn1S7GUQ8XAggSqgBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1735 (0x6c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: Oct 18 23:37:00 2025 GMT Not After : Oct 25 23:37:00 2025 GMT Subject: CN=68f4249c-de5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b6:7f:dd:de:bc:3b:81:af:d9:df:f1:6a:e7: 67:0b:b7:df:e5:1c:aa:58:ff:6b:6e:02:0a:48:c6: 03:d0:1f:4b:86:bc:fa:fa:2a:f4:c9:87:7a:50:35: 8f:29:fe:b9:b0:4f:87:99:a7:94:2f:39:51:c2:32: 7f:98:61:99:5d:68:a5:b9:67:78:9a:ac:e3:55:5c: 82:da:1a:1a:f3:53:7d:11:45:ca:64:a7:94:88:f0: ca:dd:3d:46:e6:19:eb:b0:d3:e9:05:fe:fc:88:4c: d7:cf:87:93:d7:c4:c9:fe:a1:66:56:b3:49:8c:8f: 32:9e:13:10:61:da:07:e3:2f:87:3d:32:77:5a:a8: 37:2e:75:ce:e6:ab:12:0c:ea:7a:af:9b:01:a0:b8: 85:db:70:96:b4:41:9e:90:94:0d:b3:86:a0:fe:1d: 95:19:a5:09:ee:9c:bb:de:d2:a9:cd:f7:18:e9:8c: 3a:11:85:b5:93:00:44:a7:b1:62:4d:c7:85:b0:1b: b4:c6:75:a4:b1:53:b5:e7:28:09:5c:c3:89:ea:9c: af:1e:60:9d:75:c6:f5:77:3a:a7:22:74:88:0f:d9: 9f:dc:29:f1:69:71:85:25:14:ce:92:98:57:f6:60: 02:ae:a6:d1:f8:e5:08:0e:f3:b3:cf:2a:cd:74:15: 29:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:8A:4F:BC:35:01:83:1C:30:CF:E2:CC:D1:1C:0E:AB:7E:1C:F9:BB X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:4a:86:01:ea:d1:d3:69:28:56:67:73:d1:77:d9:83:eb:8c: 70:dc:ac:d0:44:44:94:54:7a:9e:1f:c8:f2:70:bc:08:37:c9: d7:1d:4a:c3:df:ad:a5:97:62:17:28:40:e1:70:db:1a:bd:ed: 63:61:1f:80:be:5c:5f:45:0a:18:8f:58:db:d0:ef:f1:78:5f: 5b:cf:7d:7d:23:0a:48:82:f3:c4:6c:5c:39:76:d2:c4:48:f8: 7c:55:97:b7:34:56:12:5c:ff:41:1f:95:fb:72:0d:a4:95:11: ff:fb:a8:cc:ae:cb:92:24:16:57:09:27:47:90:32:9c:4d:db: c5:20:ad:4b:e5:40:a1:d6:b1:c4:af:65:81:f3:e9:52:b8:b9: 44:e3:83:70:92:9c:93:4b:87:17:a9:a2:9d:05:68:8a:36:1c: 40:e2:1e:1c:81:b0:93:f4:17:11:89:86:0a:0d:8a:84:7f:e1: 25:fa:70:cd:fa:e0:02:76:70:82:13:9e:7a:fc:fb:6a:b5:56: c5:3f:88:93:67:67:1d:66:c0:9a:6c:46:47:51:cf:a6:f7:38: d5:99:93:e4:5e:33:67:a0:61:f4:e1:ca:ff:1d:1b:00:a9:63: 0d:41:78:81:a9:e2:9f:76:b9:bd:62:36:23:93:5b:41:45:cd: 89:be:4c:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjUxMDE4MjMzNzAwWhcNMjUxMDI1MjMzNzAwWjAYMRYwFAYD VQQDEw02OGY0MjQ5Yy1kZTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbZ/3d68O4Gv2d/xaudnC7ff5RyqWP9rbgIKSMYD0B9Lhrz6+ir0yYd6UDWP Kf65sE+HmaeULzlRwjJ/mGGZXWiluWd4mqzjVVyC2hoa81N9EUXKZKeUiPDK3T1G 5hnrsNPpBf78iEzXz4eT18TJ/qFmVrNJjI8ynhMQYdoH4y+HPTJ3Wqg3LnXO5qsS DOp6r5sBoLiF23CWtEGekJQNs4ag/h2VGaUJ7py73tKpzfcY6Yw6EYW1kwBEp7Fi TceFsBu0xnWksVO15ygJXMOJ6pyvHmCddcb1dzqnInSID9mf3CnxaXGFJRTOkphX 9mACrqbR+OUIDvOzzyrNdBUpgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2KT7w1 AYMcMM/izNEcDqt+HPm7MB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzNFRC80RDhGQTIwRTdENDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJa V05pbmtSam83MWI4aHk1Y1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgSoYB6tHTaShWZ3PRd9mD64xw3KzQRESUVHqeH8jycLwIN8nXHUrD 362ll2IXKEDhcNsave1jYR+AvlxfRQoYj1jb0O/xeF9bz319IwpIgvPEbFw5dtLE SPh8VZe3NFYSXP9BH5X7cg2klRH/+6jMrsuSJBZXCSdHkDKcTdvFIK1L5UCh1rHE r2WB8+lSuLlE44NwkpyTS4cXqaKdBWiKNhxA4h4cgbCT9BcRiYYKDYqEf+El+nDN +uACdnCCE556/PtqtVbFP4iTZ2cdZsCabEZHUc+m9zjVmZPkXjNnoGH04cr/HRsA qWMNQXiBqeKfdrm9YjYjk1tBRc2Jvkzz -----END CERTIFICATE-----Generated at Mon Oct 20 07:58:48 2025 by rpki-client