$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: a1o95PEN1ey1ZX4Y2upCAmO5QhTF1N/XAEsuZCqDPqo= Subject key identifier: E9:02:E7:AB:88:8E:11:27:5B:FB:7D:B5:CC:31:E5:C1:D9:83:A7:43 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: A6 Signing time: Sun 19 Oct 2025 05:15:43 +0000 Manifest this update: Sun 19 Oct 2025 05:15:42 +0000 Manifest next update: Sun 26 Oct 2025 05:15:42 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: g17Vt5B4t1wKeSktCgsZabIaTDu7fDj7lQY98rVJDkA=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Oct 19 05:15:42 2025 GMT Not After : Oct 26 05:15:42 2025 GMT Subject: CN=68f473ff-0dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:72:49:54:f6:94:1b:5d:69:bf:25:23:77:90: 8f:36:bc:2d:90:30:dd:10:7e:38:87:22:e7:92:b5: 60:b0:cd:e4:0c:d2:7d:56:c4:be:82:a0:fe:14:a5: 4c:f2:25:20:fd:9a:5f:1c:77:94:4f:bb:30:5f:aa: 07:c3:d7:20:28:bc:47:eb:23:3b:1c:20:d8:35:ac: 64:ca:fc:16:fa:61:60:dc:22:e3:19:95:8e:44:f2: cb:32:e1:fa:70:81:2c:00:ab:c7:b7:3e:d8:2a:7a: c9:4d:74:d9:3e:19:65:40:82:0a:9d:5d:56:77:9b: 6b:13:51:a9:8c:82:67:60:4c:0c:2e:93:d7:df:11: 52:d0:bd:99:bb:76:b2:25:df:84:a4:03:33:ca:90: 7e:60:e3:6e:a1:71:63:19:75:10:f4:dd:14:ea:37: 0e:81:7f:77:2b:9e:77:e9:33:0e:3a:1b:1a:ec:d6: 64:57:96:2f:03:a8:c6:a7:ef:c1:db:20:fd:80:5f: 36:7c:48:72:16:40:0f:3b:65:cb:ba:24:d3:47:bd: 92:f0:f9:88:d2:39:94:13:f9:5c:0c:b5:a5:71:6f: 71:c0:23:1a:ae:c8:61:90:de:f9:3e:83:be:11:57: 42:14:3f:f5:9b:39:52:d5:3b:53:bd:19:d7:70:5a: 2e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:02:E7:AB:88:8E:11:27:5B:FB:7D:B5:CC:31:E5:C1:D9:83:A7:43 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:8d:6e:d2:35:b0:d1:22:4a:9c:2a:ad:ea:c9:3f:c8:a7:b5: 8b:df:43:4d:1c:60:74:b9:7e:b4:61:94:68:52:2d:7b:f8:92: 8d:29:74:f1:42:b1:85:5e:92:21:b0:f5:66:70:bb:f6:89:26: b6:a2:73:98:3e:f3:1e:db:49:4b:64:9a:94:28:63:3d:f6:8b: 3a:d8:e8:27:bd:c6:10:22:f6:0a:d2:52:a4:60:09:8e:e2:44: 0a:6b:98:70:47:62:88:b7:b0:4e:2a:d0:42:a5:61:0a:0d:6b: e8:f7:6d:67:65:0c:a6:cb:4f:4c:06:f6:91:38:bd:ac:5f:2f: 15:2e:ea:17:07:bc:33:e5:14:2f:97:40:b5:16:5f:30:47:5e: 9e:51:ad:f6:f5:56:22:a0:6f:83:dd:78:34:e1:93:0c:d9:b1: 9a:1a:16:e0:5f:93:7e:50:88:ee:a6:39:84:d0:9c:46:26:eb: 64:0f:e2:5d:9e:af:72:f3:7c:3e:d0:32:3a:12:be:76:7c:bf: 17:41:1b:be:17:73:4f:86:bb:ae:93:18:b1:09:10:a6:c9:e5: f5:98:91:00:b3:80:bb:29:26:da:c2:88:05:04:13:0c:9b:86: d6:b6:c6:cb:71:bb:d9:0d:b4:01:ff:be:f0:a1:85:72:dd:a8: 9a:91:e9:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUxMDE5MDUxNTQyWhcNMjUxMDI2MDUxNTQyWjAYMRYwFAYD VQQDEw02OGY0NzNmZi0wZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XJJVPaUG11pvyUjd5CPNrwtkDDdEH44hyLnkrVgsM3kDNJ9VsS+gqD+FKVM 8iUg/ZpfHHeUT7swX6oHw9cgKLxH6yM7HCDYNaxkyvwW+mFg3CLjGZWORPLLMuH6 cIEsAKvHtz7YKnrJTXTZPhllQIIKnV1Wd5trE1GpjIJnYEwMLpPX3xFS0L2Zu3ay Jd+EpAMzypB+YONuoXFjGXUQ9N0U6jcOgX93K5536TMOOhsa7NZkV5YvA6jGp+/B 2yD9gF82fEhyFkAPO2XLuiTTR72S8PmI0jmUE/lcDLWlcW9xwCMarshhkN75PoO+ EVdCFD/1mzlS1TtTvRnXcFoumwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkC56uI jhEnW/t9tcwx5cHZg6dDMB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCejW7SNbDRIkqcKq3qyT/Ip7WL30NNHGB0uX60YZRoUi17+JKNKXTx QrGFXpIhsPVmcLv2iSa2onOYPvMe20lLZJqUKGM99os62OgnvcYQIvYK0lKkYAmO 4kQKa5hwR2KIt7BOKtBCpWEKDWvo921nZQymy09MBvaROL2sXy8VLuoXB7wz5RQv l0C1Fl8wR16eUa329VYioG+D3Xg04ZMM2bGaGhbgX5N+UIjupjmE0JxGJutkD+Jd nq9y83w+0DI6Er52fL8XQRu+F3NPhruukxixCRCmyeX1mJEAs4C7KSbawogFBBMM m4bWtsbLcbvZDbQB/77woYVy3aiakek0 -----END CERTIFICATE-----Generated at Mon Oct 20 18:22:36 2025 by rpki-client