$ rpki-client -vvf rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft File: o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft (raw, json) Hash identifier: TiI0PZeETckIDGqSQAqHMa5dVld5H55zN0RLsLH4MI4= Subject key identifier: 85:9A:2D:F8:2E:4B:C4:8E:18:D4:03:6D:17:AC:A7:02:25:9B:F7:B9 Authority key identifier: A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 Certificate issuer: /CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft Manifest number: 0120 Signing time: Sun 19 Oct 2025 07:41:10 +0000 Manifest this update: Sun 19 Oct 2025 07:41:09 +0000 Manifest next update: Sun 26 Oct 2025 07:41:09 +0000 Files and hashes: 1: o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl (hash: aqxuOxWXYC1hGOy6DG0REHg3kxad2le7tsvxxySQF/M=) 2: 4A9AD51270F811F0BA070F34C4F9AE02.roa (hash: GfIBo0sJeXzYPko1KN4K0PA1n9E0Kyw46Z51n+s1ljE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C10F, serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Validity Not Before: Oct 19 07:41:09 2025 GMT Not After : Oct 26 07:41:09 2025 GMT Subject: CN=68f49615-d479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4f:57:60:50:62:1e:99:d8:de:28:73:e9:8f: 0f:b8:10:bd:e7:fe:de:58:ee:38:96:e4:d3:d5:4d: da:4e:9d:60:98:8b:f8:dd:d0:11:fe:6b:0f:93:3e: 63:ef:fc:29:f6:6b:2e:c0:61:a6:76:43:8f:72:3c: c5:ef:2c:96:ef:d9:70:85:80:c1:f6:ad:5a:8a:a0: d2:7f:a2:e0:fc:b2:48:12:d2:0c:44:c3:e0:62:d4: 32:5f:67:51:80:9f:33:69:69:38:4f:57:eb:41:8c: f0:ed:9c:ac:d6:e4:51:68:f2:cf:69:b6:02:ce:67: c6:f2:1d:30:ae:4a:e7:17:f4:a4:c4:82:73:00:13: 7a:d5:b9:1b:d5:43:f4:ff:35:30:7b:b3:3c:ca:b3: b5:13:eb:2a:f9:b9:66:a0:50:86:e8:82:18:65:d7: f7:19:34:cf:a9:89:8a:0f:5d:2b:36:e7:a2:d1:7c: c5:df:9d:9f:6e:50:a8:32:86:27:24:34:13:d8:8c: 7c:de:0b:0f:84:f1:49:09:cd:26:8a:1d:d7:2a:19: f7:f4:03:18:3f:5e:fa:37:33:d7:0b:5c:03:28:d2: 41:a8:e2:15:50:8c:a5:1e:97:84:9c:1d:1b:d9:8e: 39:1e:75:66:35:ad:5b:e6:9c:2e:08:f9:a9:a4:13: 33:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9A:2D:F8:2E:4B:C4:8E:18:D4:03:6D:17:AC:A7:02:25:9B:F7:B9 X509v3 Authority Key Identifier: keyid:A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:16:1e:72:19:fb:14:37:c7:1c:21:ca:20:94:11:93:96:3b: 66:d8:bf:f6:bd:55:53:36:af:3b:bc:f7:46:3e:02:56:aa:91: a6:af:2e:a8:6a:01:ab:84:9f:cd:c2:0e:23:50:cf:6c:e4:02: 34:3b:f4:ba:af:31:94:76:df:48:2d:7b:ee:28:fd:0a:6d:dd: d4:be:07:51:2c:6e:ac:fb:18:19:51:5b:50:28:2f:62:3e:6e: b1:e1:37:64:85:5f:5c:0d:80:72:f5:a4:78:a2:ce:27:b2:97: 3b:cb:cb:f2:72:62:9e:be:ff:95:1c:c5:fe:ca:20:75:d8:a2: 40:83:18:4d:d0:1e:50:33:97:b5:83:57:72:10:9f:15:7c:d6: 0d:0e:2b:ac:8f:d0:5c:4e:1b:2b:af:0c:05:83:e1:74:43:22: a5:9b:eb:ed:0a:66:c6:39:62:cb:9e:62:11:d4:56:5b:4e:b8: 72:51:37:05:f2:34:b1:4d:a7:b2:97:ad:66:dd:b0:38:91:31: 27:90:71:b2:0a:cb:70:6d:c0:fe:82:6d:a8:e5:9a:8d:48:9a: 89:4c:a6:04:0f:84:8a:9c:74:0c:76:7d:29:30:d5:d4:5b:f0: 7a:d8:39:8c:e7:96:b1:33:5f:53:48:1d:85:bb:bc:0c:3f:5c: 82:00:cd:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMEYxMTAvBgNVBAUTKEEzRUI1MUQyOTk5QkJCNDQ2NTlCRERBNkJFMUUxMEZB NTUxRTIyNjUwHhcNMjUxMDE5MDc0MTA5WhcNMjUxMDI2MDc0MTA5WjAYMRYwFAYD VQQDEw02OGY0OTYxNS1kNDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy09XYFBiHpnY3ihz6Y8PuBC95/7eWO44luTT1U3aTp1gmIv43dAR/msPkz5j 7/wp9msuwGGmdkOPcjzF7yyW79lwhYDB9q1aiqDSf6Lg/LJIEtIMRMPgYtQyX2dR gJ8zaWk4T1frQYzw7Zys1uRRaPLPabYCzmfG8h0wrkrnF/SkxIJzABN61bkb1UP0 /zUwe7M8yrO1E+sq+blmoFCG6IIYZdf3GTTPqYmKD10rNuei0XzF352fblCoMoYn JDQT2Ix83gsPhPFJCc0mih3XKhn39AMYP176NzPXC1wDKNJBqOIVUIylHpeEnB0b 2Y45HnVmNa1b5pwuCPmppBMz5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWaLfgu S8SOGNQDbRespwIlm/e5MB8GA1UdIwQYMBaAFKPrUdKZm7tEZZvdpr4eEPpVHiJl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEwRi85QTc1ODBDOEZE NEExMUVFODA5QjA3MzBDNEY5QUUwMi9vLXRSMHBtYnUwUmxtOTJtdmg0US1sVWVJ bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28tdFIwcG1idTBSbG05Mm12aDRRLWxVZUltVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEwRi85QTc1ODBDOEZENEExMUVFODA5QjA3MzBDNEY5QUUwMi9vLXRSMHBtYnUw UmxtOTJtdmg0US1sVWVJbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWFh5yGfsUN8ccIcoglBGTljtm2L/2vVVTNq87vPdGPgJWqpGmry6o agGrhJ/Nwg4jUM9s5AI0O/S6rzGUdt9ILXvuKP0Kbd3UvgdRLG6s+xgZUVtQKC9i Pm6x4TdkhV9cDYBy9aR4os4nspc7y8vycmKevv+VHMX+yiB12KJAgxhN0B5QM5e1 g1dyEJ8VfNYNDiusj9BcThsrrwwFg+F0QyKlm+vtCmbGOWLLnmIR1FZbTrhyUTcF 8jSxTaeyl61m3bA4kTEnkHGyCstwbcD+gm2o5ZqNSJqJTKYED4SKnHQMdn0pMNXU W/B62DmM55axM19TSB2Fu7wMP1yCAM3Z -----END CERTIFICATE-----Generated at Mon Oct 20 00:22:18 2025 by rpki-client