$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: /DvqCJSwHmbXTMDcls8v2KMN8IUQUQBuwHeGHc8EOYg= Subject key identifier: 66:42:16:0F:98:7F:6B:DD:60:92:05:B0:D5:9E:01:FD:95:B7:7C:99 Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 0148 Signing time: Sun 19 Oct 2025 07:00:46 +0000 Manifest this update: Sun 19 Oct 2025 07:00:45 +0000 Manifest next update: Sun 26 Oct 2025 07:00:45 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: wkXPo7/GgjXdM6QR8F3w1qv/aHwNXn/ZYzt9Ad972e4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D, serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: Oct 19 07:00:45 2025 GMT Not After : Oct 26 07:00:45 2025 GMT Subject: CN=68f48c9d-49ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:df:8d:5e:cc:e7:c8:b8:5f:16:51:d1:34:61: 44:23:ee:2f:84:47:fc:bd:01:2c:2f:2d:03:36:36: ab:43:22:0e:68:9b:c5:5a:ea:b7:bb:8e:c4:ca:2a: bc:09:0a:42:71:a1:8a:b9:21:c5:77:3d:6a:d5:4e: 39:30:fd:bd:3e:bd:90:c6:01:16:ec:b5:d3:fe:d0: d4:7e:a0:df:b9:ce:89:c2:ed:ee:04:38:16:6c:b0: 6f:f6:f3:3f:a8:6c:31:35:fd:d9:d7:ed:04:47:f6: a3:33:90:89:89:01:e7:75:24:8f:2b:c2:18:62:3e: 42:cc:02:7c:14:dd:d8:40:5a:ff:90:3b:e8:47:61: be:1b:85:0f:da:4d:26:e0:48:da:e7:f3:7f:fb:c1: d3:f4:da:e9:79:14:2d:99:78:c1:c8:da:4e:2e:c2: 8d:e1:3a:5d:1e:cf:b1:ae:91:82:bb:ab:21:c6:c7: 10:9f:45:b9:cb:d3:5c:6e:54:3a:8f:e2:ec:30:5d: 75:57:68:5c:8f:f1:2e:29:ad:47:a1:31:3f:33:36: 9c:16:de:1c:83:a2:83:11:81:1f:67:12:ef:77:7b: 15:c2:34:ab:49:2b:ff:97:db:9d:e8:43:75:6c:fc: ca:20:99:81:79:d7:ff:f7:e1:b8:ee:d2:82:44:8f: 9d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:42:16:0F:98:7F:6B:DD:60:92:05:B0:D5:9E:01:FD:95:B7:7C:99 X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:3d:0c:96:54:18:92:36:f7:89:e7:a9:64:6d:b7:03:6b:79: bc:b0:ca:a3:d3:b9:6e:5c:de:d3:1b:c2:9d:c1:9f:93:7b:30: 71:b6:80:0f:cf:c1:77:04:3c:e0:19:be:93:c4:e8:f4:6e:0c: 1f:8f:fa:31:db:7c:3a:e5:90:46:6c:03:a0:ea:36:53:5b:ef: e5:95:b6:15:80:bb:c5:04:a2:a4:57:86:17:de:cc:ab:d0:87: f0:d8:2c:c7:6e:1e:b6:36:8e:90:c9:e8:e1:a9:42:0f:2d:95: 23:eb:99:1a:57:3d:11:86:19:02:3b:e4:4f:d0:56:ab:43:9f: bd:c8:0d:57:36:7a:b1:97:27:21:f6:e2:c3:a2:02:fb:6c:8e: a2:11:ec:2d:9a:2c:62:c9:f4:76:6f:86:16:e2:ae:32:17:c2: f8:a8:bf:e1:5d:74:00:1e:16:cd:53:7c:c7:ab:d8:2a:a6:e8: 61:a9:c3:9e:a7:66:5b:2c:61:3e:64:f6:0e:8d:bc:e8:22:c1: 7f:7b:6a:c6:21:3c:a5:23:78:3e:bc:00:b9:31:42:a2:28:07: c8:da:4f:a2:41:91:ed:5e:b4:61:bd:9c:5f:1f:b3:9b:e7:29: 12:89:92:fb:7b:36:c5:52:57:7e:a8:b5:f1:95:df:8a:e3:2b: 1a:d4:45:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjUxMDE5MDcwMDQ1WhcNMjUxMDI2MDcwMDQ1WjAYMRYwFAYD VQQDEw02OGY0OGM5ZC00OWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9N+NXsznyLhfFlHRNGFEI+4vhEf8vQEsLy0DNjarQyIOaJvFWuq3u47Eyiq8 CQpCcaGKuSHFdz1q1U45MP29Pr2QxgEW7LXT/tDUfqDfuc6Jwu3uBDgWbLBv9vM/ qGwxNf3Z1+0ER/ajM5CJiQHndSSPK8IYYj5CzAJ8FN3YQFr/kDvoR2G+G4UP2k0m 4Eja5/N/+8HT9NrpeRQtmXjByNpOLsKN4TpdHs+xrpGCu6shxscQn0W5y9NcblQ6 j+LsMF11V2hcj/EuKa1HoTE/MzacFt4cg6KDEYEfZxLvd3sVwjSrSSv/l9ud6EN1 bPzKIJmBedf/9+G47tKCRI+dbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZCFg+Y f2vdYJIFsNWeAf2Vt3yZMB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaPQyWVBiSNveJ56lkbbcDa3m8sMqj07luXN7TG8KdwZ+TezBxtoAP z8F3BDzgGb6TxOj0bgwfj/ox23w65ZBGbAOg6jZTW+/llbYVgLvFBKKkV4YX3syr 0Ifw2CzHbh62No6QyejhqUIPLZUj65kaVz0RhhkCO+RP0FarQ5+9yA1XNnqxlych 9uLDogL7bI6iEewtmixiyfR2b4YW4q4yF8L4qL/hXXQAHhbNU3zHq9gqpuhhqcOe p2ZbLGE+ZPYOjbzoIsF/e2rGITylI3g+vAC5MUKiKAfI2k+iQZHtXrRhvZxfH7Ob 5ykSiZL7ezbFUld+qLXxld+K4ysa1EXD -----END CERTIFICATE-----Generated at Mon Oct 20 13:07:16 2025 by rpki-client