$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: cvge4G//e/kKsCgkte9crA5REgbiJhiVOCiuDLVpYjM= Subject key identifier: 95:C9:BA:56:0E:3A:80:52:31:F9:97:DE:51:8F:CF:7E:1A:95:67:95 Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: 0192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: 018F Signing time: Sun 19 Oct 2025 06:03:25 +0000 Manifest this update: Sun 19 Oct 2025 06:03:24 +0000 Manifest next update: Sun 26 Oct 2025 06:03:24 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: mVHUsR9YKSv01GYLIxihum9wfyo7LBPMJe8lz4M7VPs=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: 5JFgGi1zcqLdr4l1Ei+0uqRhphNnP2rP0bMb+qfmJXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1, serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: Oct 19 06:03:24 2025 GMT Not After : Oct 26 06:03:24 2025 GMT Subject: CN=68f47f2c-616e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:68:ae:6d:12:03:fb:cf:b0:bf:54:fe:ff:35: ca:69:ad:9e:c8:1b:14:e1:62:42:10:8b:c3:9f:b7: 42:c3:76:7e:d4:cf:e8:b6:74:4c:e7:fc:54:fe:fd: 91:48:d2:a6:30:a8:f1:62:20:d4:90:7f:9c:c3:e4: 74:0c:eb:f7:d2:64:12:ee:a8:03:4f:eb:5d:e0:da: 66:34:c7:ca:e0:8b:5e:8b:d5:52:aa:71:85:35:10: 3a:0e:fa:8b:5f:1b:08:5a:eb:c8:e8:56:1a:f2:20: 75:98:79:a7:4f:bc:db:64:83:ec:5c:b7:9d:e6:02: 36:8e:fc:c6:02:47:38:9b:f7:45:f1:fd:f7:19:66: 47:1a:20:63:fd:94:3b:8c:c8:4d:96:93:b3:ee:15: 17:68:ac:61:dd:18:ae:9c:b6:a6:c0:87:7f:61:f2: 13:48:c6:ef:19:df:22:f9:c4:bb:af:85:b0:a9:cf: 00:03:ca:27:27:1b:cc:e1:e5:95:17:d8:b8:fa:52: 1f:f8:02:1c:d5:ba:5f:c9:16:9e:f5:16:e3:94:fe: 86:56:da:2f:b4:7e:5d:e7:01:76:4d:fe:89:d9:c6: dc:12:17:cd:4f:1b:4a:18:02:e5:77:86:b9:21:62: fb:d8:84:9c:c8:4c:73:48:57:f1:68:2f:6f:d4:74: e7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C9:BA:56:0E:3A:80:52:31:F9:97:DE:51:8F:CF:7E:1A:95:67:95 X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:d2:07:a4:a6:ba:9c:44:d6:38:50:fa:fd:87:ab:cd:df:1c: a3:66:82:d8:d5:a7:f1:08:28:72:a2:3b:39:db:2c:36:05:8e: 91:9c:5f:d1:1b:63:c2:c3:ef:4e:0e:eb:14:0b:72:40:30:dc: 39:4c:69:4a:a7:6a:c5:32:e8:24:99:63:a3:d4:52:ca:cf:75: c8:45:2a:f4:1d:8a:e5:7b:7e:a3:2a:14:52:e1:36:f2:2d:41: 2a:11:73:f6:58:7a:26:70:fc:19:3c:2b:99:77:b1:35:fe:ec: 77:0a:eb:c0:40:e8:87:de:e6:71:fa:9a:21:da:d4:7e:80:03: 40:a1:af:f0:89:95:3e:31:2a:0a:2e:75:e9:fd:2e:ae:87:e5: c3:0a:bd:95:96:7d:4e:73:40:bf:3a:18:af:ae:9a:19:6f:b9: e6:58:1e:8c:50:3f:ee:dc:79:17:d5:08:75:23:94:22:40:aa: 16:e4:4f:c2:9e:65:e9:d7:94:a0:bb:7c:b8:78:cc:27:e4:f2: 77:c1:7f:79:5a:e6:01:70:10:d9:69:80:6e:4c:c9:aa:4a:c4: f7:19:7d:fd:83:04:fa:bf:0a:2a:57:61:05:63:cb:9b:73:36: 3f:19:84:12:76:95:1b:db:58:86:ff:4f:f6:a3:d4:a6:e6:5f: 95:9f:fc:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjUxMDE5MDYwMzI0WhcNMjUxMDI2MDYwMzI0WjAYMRYwFAYD VQQDEw02OGY0N2YyYy02MTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWiubRID+8+wv1T+/zXKaa2eyBsU4WJCEIvDn7dCw3Z+1M/otnRM5/xU/v2R SNKmMKjxYiDUkH+cw+R0DOv30mQS7qgDT+td4NpmNMfK4Itei9VSqnGFNRA6DvqL XxsIWuvI6FYa8iB1mHmnT7zbZIPsXLed5gI2jvzGAkc4m/dF8f33GWZHGiBj/ZQ7 jMhNlpOz7hUXaKxh3RiunLamwId/YfITSMbvGd8i+cS7r4Wwqc8AA8onJxvM4eWV F9i4+lIf+AIc1bpfyRae9RbjlP6GVtovtH5d5wF2Tf6J2cbcEhfNTxtKGALld4a5 IWL72IScyExzSFfxaC9v1HTn2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXJulYO OoBSMfmX3lGPz34alWeVMB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC40gekprqcRNY4UPr9h6vN3xyjZoLY1afxCChyojs52yw2BY6RnF/R G2PCw+9ODusUC3JAMNw5TGlKp2rFMugkmWOj1FLKz3XIRSr0HYrle36jKhRS4Tby LUEqEXP2WHomcPwZPCuZd7E1/ux3CuvAQOiH3uZx+poh2tR+gANAoa/wiZU+MSoK LnXp/S6uh+XDCr2Vln1Oc0C/OhivrpoZb7nmWB6MUD/u3HkX1Qh1I5QiQKoW5E/C nmXp15Sgu3y4eMwn5PJ3wX95WuYBcBDZaYBuTMmqSsT3GX39gwT6vwoqV2EFY8ub czY/GYQSdpUb21iG/0/2o9Sm5l+Vn/x/ -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:20 2025 by rpki-client