$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: viQa/guxYgdIIZfRN9BGVCDceiHsjleQL1SpKT1bZkM= Subject key identifier: A1:65:38:8E:16:ED:0A:8F:E0:60:60:5E:4D:A2:AA:7E:85:76:7C:CA Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0A7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0A76 Signing time: Fri 22 Aug 2025 19:45:06 +0000 Manifest this update: Fri 22 Aug 2025 19:45:04 +0000 Manifest next update: Fri 29 Aug 2025 19:45:04 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: SZwrTL7nECt3oH/xPcHDHtQrEBmAEx/N+zb4GlLycvE=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: aNxxH/k6H9pUK4+Yh6tMJ5W3Dxa/fkGC+OopIVqyBEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:45:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2683 (0xa7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Aug 22 19:45:04 2025 GMT Not After : Aug 29 19:45:04 2025 GMT Subject: CN=68a8c8c1-0087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ec:86:f0:e3:16:2b:7a:7d:03:7c:94:96:02: 04:be:63:62:bb:b2:46:ec:3f:bb:b4:ef:9f:1c:e6: 09:eb:f4:4a:a3:e2:57:25:70:e9:da:e1:9d:ef:18: c0:9c:af:a8:21:81:be:ee:5a:04:2d:ee:9d:7d:d2: 42:44:53:e6:04:17:54:8f:f1:e5:af:05:c1:c8:98: da:31:c8:db:0d:16:8f:46:db:81:a4:e6:6c:d2:32: 64:b8:d6:e3:28:16:5f:cd:66:79:95:bd:11:7f:1d: 89:7f:eb:17:26:4c:20:b9:f0:43:24:33:e1:84:5d: ca:89:3e:81:4c:9c:a4:21:ec:da:32:a3:d9:17:78: bf:ea:fd:50:5d:71:27:d1:e2:ac:70:a6:de:c8:98: 95:12:d7:7e:c9:02:2d:9a:f8:d3:9a:7d:1d:60:16: 63:e2:82:ff:3c:f4:99:68:7f:84:c8:ad:3b:7b:69: 7f:d6:41:d6:b2:cd:52:03:32:c8:7b:13:ec:a1:01: fe:cd:a3:34:11:aa:13:75:f5:b0:4a:85:de:eb:a0: 87:1c:e0:59:3e:48:76:17:7c:ae:6c:a1:ae:f8:a9: da:be:bb:b1:98:93:48:d7:34:22:bf:3b:55:57:14: 98:cb:0d:b5:01:31:fc:29:9c:cd:34:01:80:29:f2: e7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:65:38:8E:16:ED:0A:8F:E0:60:60:5E:4D:A2:AA:7E:85:76:7C:CA X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:24:bd:54:0e:8b:28:c5:80:af:a3:a7:e7:4b:ef:1a:91:4d: f6:31:17:74:46:7c:18:25:47:0b:58:df:00:15:76:d4:52:fb: 8c:e9:8b:88:61:79:25:1b:79:8e:fe:26:da:ec:bc:b1:db:9c: d2:64:fc:fc:00:ad:a7:15:3b:64:83:cf:ba:fc:e2:0d:c2:bf: 36:e9:34:d1:f4:b7:5c:2d:b9:63:29:2a:a9:df:b1:37:47:02: 3d:b5:44:8f:59:6d:7d:cb:f4:02:71:b2:a3:0c:5c:9e:36:d9: f2:28:27:84:ca:39:c7:1a:3f:45:c2:9e:bc:70:59:9d:16:9c: a6:85:ad:c6:fd:69:f8:a5:84:ad:d6:53:3c:b3:8c:b9:08:43: 00:79:19:55:58:04:b2:b6:c4:09:34:6f:ec:ec:a8:f1:e6:41: e9:63:89:1c:1b:a3:ce:3c:25:49:b1:05:0f:b8:66:47:e6:24: 1b:77:b3:e8:a1:b5:6f:ff:0e:42:30:08:a5:fa:d7:de:80:8c: 65:18:48:40:28:56:82:f0:79:e7:ea:5c:f4:3a:87:15:c4:12: ca:95:05:cb:69:11:83:db:d0:f5:4b:ef:c1:5a:9b:9a:da:62: 17:28:6c:09:8e:28:f5:b6:6d:b6:99:43:dc:32:b9:f7:fe:51: 8b:5a:ab:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjUwODIyMTk0NTA0WhcNMjUwODI5MTk0NTA0WjAYMRYwFAYD VQQDEw02OGE4YzhjMS0wMDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OyG8OMWK3p9A3yUlgIEvmNiu7JG7D+7tO+fHOYJ6/RKo+JXJXDp2uGd7xjA nK+oIYG+7loELe6dfdJCRFPmBBdUj/HlrwXByJjaMcjbDRaPRtuBpOZs0jJkuNbj KBZfzWZ5lb0Rfx2Jf+sXJkwgufBDJDPhhF3KiT6BTJykIezaMqPZF3i/6v1QXXEn 0eKscKbeyJiVEtd+yQItmvjTmn0dYBZj4oL/PPSZaH+EyK07e2l/1kHWss1SAzLI exPsoQH+zaM0EaoTdfWwSoXe66CHHOBZPkh2F3yubKGu+KnavruxmJNI1zQivztV VxSYyw21ATH8KZzNNAGAKfLnqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFlOI4W 7QqP4GBgXk2iqn6FdnzKMB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7JL1UDosoxYCvo6fnS+8akU32MRd0RnwYJUcLWN8AFXbUUvuM6YuI YXklG3mO/iba7Lyx25zSZPz8AK2nFTtkg8+6/OINwr826TTR9LdcLbljKSqp37E3 RwI9tUSPWW19y/QCcbKjDFyeNtnyKCeEyjnHGj9Fwp68cFmdFpymha3G/Wn4pYSt 1lM8s4y5CEMAeRlVWASytsQJNG/s7Kjx5kHpY4kcG6POPCVJsQUPuGZH5iQbd7Po obVv/w5CMAil+tfegIxlGEhAKFaC8Hnn6lz0OocVxBLKlQXLaRGD29D1S+/BWpua 2mIXKGwJjij1tm22mUPcMrn3/lGLWqv/ -----END CERTIFICATE-----Generated at Sat Aug 23 20:27:31 2025 by rpki-client