$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: JmuluV7nu9dyJrUW7rhevGZI0uYfFRl1g1W1snvcYec= Subject key identifier: 08:71:42:42:47:18:EF:8B:F5:53:F4:2B:63:AD:9D:81:FC:0C:D5:5F Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0A98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0A93 Signing time: Sat 18 Oct 2025 20:31:05 +0000 Manifest this update: Sat 18 Oct 2025 20:31:04 +0000 Manifest next update: Sat 25 Oct 2025 20:31:04 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: rRFiHIEhcOSwOWiWcFRYVHMlXCuDvB6K8HoD50Pe1lI=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: aNxxH/k6H9pUK4+Yh6tMJ5W3Dxa/fkGC+OopIVqyBEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2712 (0xa98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Oct 18 20:31:04 2025 GMT Not After : Oct 25 20:31:04 2025 GMT Subject: CN=68f3f908-d699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6e:1b:2a:7a:99:f7:7c:2d:62:5d:20:aa:42: 03:d9:bb:c0:ec:9c:66:0c:c2:a0:15:28:81:4e:f8: ca:14:a9:44:2b:b8:34:26:d7:54:70:e7:8c:70:4d: 8e:47:bf:1d:b8:c6:8e:07:e6:7d:8b:8c:94:00:8f: 61:9d:02:f3:1e:0a:17:18:55:69:f3:2a:d9:e0:26: 0a:bf:bb:38:1f:42:a8:0d:7f:47:d3:dd:a1:76:32: 94:1c:0d:43:1e:9b:1f:0c:9a:d7:b8:f9:85:8b:68: 73:cb:bd:be:f6:ad:44:94:b3:3b:43:a3:18:82:4e: fa:9c:44:0d:a0:2f:59:62:11:3c:f3:06:fa:c5:6d: 9e:14:19:21:66:ff:a3:76:be:29:c8:34:8f:6d:cc: eb:b1:57:26:c9:79:6a:10:70:8b:e3:a7:0a:d4:e2: 78:04:a8:e6:bd:a5:52:7b:80:70:a8:71:d2:6b:6e: 61:ef:63:a2:36:8a:6e:68:78:73:51:a5:34:1c:f9: e1:af:50:82:04:86:3a:70:2c:64:d1:06:1a:55:b5: 60:0a:bb:7c:d6:8d:56:85:6d:5b:00:5a:f2:39:71: ec:fa:fd:81:17:98:d6:f4:66:d6:15:51:08:48:b0: 08:37:69:15:8b:ac:dc:0f:b1:09:68:af:19:0b:32: b1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:71:42:42:47:18:EF:8B:F5:53:F4:2B:63:AD:9D:81:FC:0C:D5:5F X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:9d:6b:7f:53:7b:d2:80:29:74:e4:ac:74:44:6a:80:00:8f: 1a:fd:c8:18:d5:0c:c4:51:d7:31:b3:59:a1:a2:20:eb:42:25: 95:95:78:23:cc:7d:6c:e6:42:29:c4:a2:8c:84:59:7f:cc:0d: f5:d0:f4:24:fd:d9:42:bb:51:16:ed:ba:27:dd:de:d0:10:54: b9:a9:86:cf:bc:97:ae:e9:aa:16:01:0a:d5:3d:0d:d5:9e:51: 97:a3:2b:84:89:9f:a6:83:23:7a:33:f3:76:c1:c4:e8:b6:77: 63:5c:5d:bb:16:63:f0:29:ad:bc:5d:59:c0:6b:2f:2c:84:56: 0d:21:01:c5:ea:9f:77:07:fb:7f:e3:fe:89:63:51:d3:87:3f: 8f:a9:3a:5e:d1:66:90:62:31:f9:1c:55:b7:9e:48:14:f2:a9: b6:7f:c3:4c:07:7b:7e:ee:e8:db:9c:95:fa:96:bc:a7:45:5a: ea:79:4c:49:df:ed:0c:f2:71:fd:ef:a7:3f:87:ad:b6:b0:a5: 42:f1:5b:73:3a:4c:8a:c8:ef:75:be:fa:2e:ef:a5:8c:21:f6: f5:21:5f:a5:8c:44:b8:36:de:b2:20:0a:87:0d:7d:09:db:f5: 55:bd:77:4f:48:68:42:40:99:30:f1:ac:ca:c8:13:1a:9a:9d: 1c:b4:23:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjUxMDE4MjAzMTA0WhcNMjUxMDI1MjAzMTA0WjAYMRYwFAYD VQQDEw02OGYzZjkwOC1kNjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvG4bKnqZ93wtYl0gqkID2bvA7JxmDMKgFSiBTvjKFKlEK7g0JtdUcOeMcE2O R78duMaOB+Z9i4yUAI9hnQLzHgoXGFVp8yrZ4CYKv7s4H0KoDX9H092hdjKUHA1D HpsfDJrXuPmFi2hzy72+9q1ElLM7Q6MYgk76nEQNoC9ZYhE88wb6xW2eFBkhZv+j dr4pyDSPbczrsVcmyXlqEHCL46cK1OJ4BKjmvaVSe4BwqHHSa25h72OiNopuaHhz UaU0HPnhr1CCBIY6cCxk0QYaVbVgCrt81o1WhW1bAFryOXHs+v2BF5jW9GbWFVEI SLAIN2kVi6zcD7EJaK8ZCzKxlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhxQkJH GO+L9VP0K2OtnYH8DNVfMB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABnWt/U3vSgCl05Kx0RGqAAI8a/cgY1QzEUdcxs1mhoiDrQiWVlXgj zH1s5kIpxKKMhFl/zA310PQk/dlCu1EW7bon3d7QEFS5qYbPvJeu6aoWAQrVPQ3V nlGXoyuEiZ+mgyN6M/N2wcTotndjXF27FmPwKa28XVnAay8shFYNIQHF6p93B/t/ 4/6JY1HThz+PqTpe0WaQYjH5HFW3nkgU8qm2f8NMB3t+7ujbnJX6lrynRVrqeUxJ 3+0M8nH976c/h622sKVC8VtzOkyKyO91vvou76WMIfb1IV+ljES4Nt6yIAqHDX0J 2/VVvXdPSGhCQJkw8azKyBMamp0ctCNg -----END CERTIFICATE-----Generated at Mon Oct 20 01:43:53 2025 by rpki-client