$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft File: rOKNq-U2SWN_puTjId4bY0Y7g88.mft (raw, json) Hash identifier: MnOPSRbgQULKS/Rg4Sm6AzR3BPMGDXdAXWiyjdPTeJA= Subject key identifier: 07:42:8E:88:B4:37:E8:C1:82:C3:FD:F5:39:92:49:63:03:FB:F0:23 Authority key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF Certificate issuer: /CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft Manifest number: 0138 Signing time: Sun 19 Oct 2025 07:18:56 +0000 Manifest this update: Sun 19 Oct 2025 07:18:55 +0000 Manifest next update: Sun 26 Oct 2025 07:18:55 +0000 Files and hashes: 1: rOKNq-U2SWN_puTjId4bY0Y7g88.crl (hash: pUDWF1M5XxClMNR18waInP0F6wNOnQYbRLuR3kAcwi0=) 2: E7F6D15AD17411EE87F7325DC4F9AE02.roa (hash: roB5hg8LbgyHBq3NzG2BxN4ORRxykj532WnJpDlGnj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Validity Not Before: Oct 19 07:18:55 2025 GMT Not After : Oct 26 07:18:55 2025 GMT Subject: CN=68f490df-d4b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:76:97:f1:5c:76:5f:01:99:b7:37:30:b9:87: ae:62:56:90:c3:be:cf:f7:6e:36:d4:9e:88:77:e3: 27:fe:68:14:b0:40:6e:dc:9a:14:b0:57:00:1e:8e: b6:04:1f:11:8e:f0:4f:e9:ca:d9:82:c4:5a:78:28: 77:08:ff:41:7b:fc:83:32:94:4c:a2:ff:e4:c7:5d: ca:36:67:2f:ab:7b:41:68:f5:f4:02:aa:94:3e:0e: 2a:f1:63:09:bc:dc:4f:c9:e1:48:33:e1:1d:39:9c: 30:94:34:5c:9a:90:50:59:d1:3c:a8:d0:84:23:69: e8:07:ab:9d:55:47:2c:1c:6f:c7:ee:10:68:0e:33: 3e:6d:0a:03:89:50:94:9a:93:f0:d2:a7:05:3b:cf: 33:ab:5e:43:b8:03:76:ec:90:66:0a:82:c1:a9:f5: 93:26:ff:11:5c:3c:e0:8e:81:21:4f:00:f1:14:bf: f1:b8:a7:f1:e6:ff:71:ae:7f:2f:74:2b:11:f1:28: 7d:67:8d:a5:6c:be:46:e2:c7:6c:54:1b:f6:80:22: f7:98:90:47:d1:49:06:1f:ae:31:16:7f:2f:90:73: 4c:0d:ed:b5:7f:7e:8d:6a:2d:64:68:2d:59:11:7e: ef:54:45:ec:51:1b:c3:b4:a7:32:e9:30:79:0b:8e: 1f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:42:8E:88:B4:37:E8:C1:82:C3:FD:F5:39:92:49:63:03:FB:F0:23 X509v3 Authority Key Identifier: keyid:AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:3c:2a:d5:e0:9b:60:bd:87:f6:3d:1e:13:58:5f:b7:e9:29: 33:04:60:e6:1c:55:c0:36:d3:b6:d5:d0:1e:b2:cd:7f:e0:f1: 32:db:cc:8d:33:5a:09:24:f4:06:bd:b3:21:a9:77:2b:d3:b9: e3:46:51:42:e9:ed:3b:49:60:83:e1:04:92:9e:78:01:e5:33: 18:15:37:db:d2:40:61:8a:ed:0e:d7:37:09:cf:45:0c:4b:11: 7f:f1:22:0f:0f:39:49:8b:c9:04:2f:54:78:5e:bc:fa:00:2f: db:97:45:5a:86:8d:21:bc:86:6d:50:cc:cd:3f:f6:3f:16:36: 6f:56:88:48:7a:12:1a:97:7d:96:5f:53:08:c6:70:78:04:e6: 43:54:c2:ca:28:df:4f:93:90:d3:15:72:42:63:0c:c9:0a:5d: f8:b0:49:68:76:82:35:9e:51:0e:f7:94:25:ed:3d:41:73:bc: 69:5a:34:2a:34:e4:70:14:b6:e4:a7:66:70:14:ac:c0:30:79: 49:4b:5f:a5:17:b7:30:c3:33:db:72:74:16:19:18:be:eb:01: c7:68:d3:02:bc:87:3d:19:43:0f:c4:99:77:5d:60:8f:2a:9b: 73:c0:9c:ce:47:5d:8a:96:0f:7b:41:4f:99:05:90:52:bd:21: 3b:fc:26:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKEFDRTI4REFCRTUzNjQ5NjM3RkE2RTRFMzIxREUxQjYz NDYzQjgzQ0YwHhcNMjUxMDE5MDcxODU1WhcNMjUxMDI2MDcxODU1WjAYMRYwFAYD VQQDEw02OGY0OTBkZi1kNGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXaX8Vx2XwGZtzcwuYeuYlaQw77P92421J6Id+Mn/mgUsEBu3JoUsFcAHo62 BB8RjvBP6crZgsRaeCh3CP9Be/yDMpRMov/kx13KNmcvq3tBaPX0AqqUPg4q8WMJ vNxPyeFIM+EdOZwwlDRcmpBQWdE8qNCEI2noB6udVUcsHG/H7hBoDjM+bQoDiVCU mpPw0qcFO88zq15DuAN27JBmCoLBqfWTJv8RXDzgjoEhTwDxFL/xuKfx5v9xrn8v dCsR8Sh9Z42lbL5G4sdsVBv2gCL3mJBH0UkGH64xFn8vkHNMDe21f36Nai1kaC1Z EX7vVEXsURvDtKcy6TB5C44fKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAdCjoi0 N+jBgsP99TmSSWMD+/AjMB8GA1UdIwQYMBaAFKzijavlNkljf6bk4yHeG2NGO4PP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS9BMUYyMzQzQ0Qx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNXTl9wdVRqSWQ0YlkwWTdn ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPS05xLVUyU1dOX3B1VGpJZDRiWTBZN2c4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS9BMUYyMzQzQ0QxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNX Tl9wdVRqSWQ0YlkwWTdnODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoPCrV4JtgvYf2PR4TWF+36SkzBGDmHFXANtO21dAess1/4PEy28yN M1oJJPQGvbMhqXcr07njRlFC6e07SWCD4QSSnngB5TMYFTfb0kBhiu0O1zcJz0UM SxF/8SIPDzlJi8kEL1R4Xrz6AC/bl0Vaho0hvIZtUMzNP/Y/FjZvVohIehIal32W X1MIxnB4BOZDVMLKKN9Pk5DTFXJCYwzJCl34sElodoI1nlEO95Ql7T1Bc7xpWjQq NORwFLbkp2ZwFKzAMHlJS1+lF7cwwzPbcnQWGRi+6wHHaNMCvIc9GUMPxJl3XWCP KptzwJzOR12Klg97QU+ZBZBSvSE7/CZy -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:45 2025 by rpki-client