$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: tdszTxc/v7dm9B/utsvgK+UQ29lKp4pG0uSFAvRDsQM= Subject key identifier: CA:91:06:E3:89:2B:03:59:54:BF:EF:BB:8B:A6:7B:82:81:37:8B:DE Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 015F Signing time: Sun 19 Oct 2025 06:44:39 +0000 Manifest this update: Sun 19 Oct 2025 06:44:39 +0000 Manifest next update: Sun 26 Oct 2025 06:44:39 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: xzepZRs2iUIHaWp4u4yfIxu6LLmLYU+Uex74bsd4eEs=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: rOwD6kKfHs7j3niSOFa7ZxwcRgpXDjpa8bFCR+QwO/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: Oct 19 06:44:39 2025 GMT Not After : Oct 26 06:44:39 2025 GMT Subject: CN=68f488d7-9ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c9:07:4b:6e:38:81:37:8f:ce:80:c6:3b:30: 70:14:ba:de:f1:60:1c:47:ec:d1:ef:b9:e5:ff:ff: 1d:72:ac:58:7f:84:b5:2e:ee:7a:05:e9:07:90:d7: 55:d0:c6:ff:9c:18:5c:47:bd:b8:97:50:7b:c1:62: c6:24:e2:06:2c:f2:af:76:81:a8:a6:ec:de:00:d1: 3d:a4:67:10:c2:a0:ca:3d:48:85:9c:b2:5a:0c:0c: be:db:09:2a:1a:fc:76:2c:45:c8:7e:2e:8d:48:c2: d9:20:8f:bb:e2:6f:5c:9a:8b:06:8e:de:15:21:5a: fb:cc:24:6d:91:de:07:15:48:cd:5a:03:7a:c0:85: e8:0d:82:ae:ff:0b:27:1a:2c:27:5c:19:82:42:a5: 50:c4:82:80:3e:34:da:80:dd:ef:6a:4c:e4:c2:b2: f0:37:2c:a6:4c:a7:05:21:05:73:43:00:ff:36:50: 95:43:da:f3:52:f6:5d:6c:a2:3c:19:9d:79:f6:d5: c0:c6:a5:24:20:73:06:0e:d6:71:e7:62:e6:94:df: 3f:96:66:5f:15:97:1a:f3:98:e6:88:30:ab:f7:c7: 37:a2:57:61:47:03:eb:16:a5:69:8c:da:72:a0:78: 0a:ce:4f:fb:b9:8c:d3:b9:2a:ad:05:bb:ce:39:22: 39:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:91:06:E3:89:2B:03:59:54:BF:EF:BB:8B:A6:7B:82:81:37:8B:DE X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:a2:5b:e2:cf:1f:3d:f7:cf:ce:40:e4:86:29:76:ed:51:a7: 12:76:6a:fc:77:95:61:4c:42:a6:34:7f:37:e1:14:3b:58:d2: 90:0e:51:2d:a5:2c:80:a3:a1:7b:2b:6f:87:c9:5b:b0:27:f8: 9b:98:e9:4f:eb:ff:f6:bf:9b:9b:81:5b:0a:db:12:57:ef:d4: f7:8b:ee:5e:72:e7:df:67:b8:1d:41:83:8e:56:d6:8d:fe:a2: b3:74:9e:e6:04:55:d4:76:67:42:f1:c4:45:6c:de:08:b9:89: 54:09:06:6e:4a:6c:6d:69:94:a4:ed:64:47:2a:fd:55:b0:20: d1:32:df:8b:44:b7:89:68:d2:20:82:d2:89:09:59:87:e4:b7: df:a5:5c:01:17:5f:1d:a7:5b:08:3a:74:bd:3a:08:29:81:7e: c4:de:76:66:9c:85:c6:64:ed:ae:c9:71:ad:42:2e:78:ec:f4: 18:fa:d6:5a:cf:40:4c:07:e6:78:fb:f3:5c:25:44:c6:5b:74: 3d:1a:94:90:83:8a:30:1d:1f:87:5e:60:f6:68:d3:23:27:47: 91:0c:63:9a:41:ed:69:0b:3d:a0:36:11:37:52:9d:ff:39:68: 4a:91:5b:1d:e3:96:56:55:3a:6b:08:03:34:4f:0a:73:7f:58: 7b:67:0d:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUxMDE5MDY0NDM5WhcNMjUxMDI2MDY0NDM5WjAYMRYwFAYD VQQDEw02OGY0ODhkNy05ZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MkHS244gTePzoDGOzBwFLre8WAcR+zR77nl//8dcqxYf4S1Lu56BekHkNdV 0Mb/nBhcR724l1B7wWLGJOIGLPKvdoGopuzeANE9pGcQwqDKPUiFnLJaDAy+2wkq Gvx2LEXIfi6NSMLZII+74m9cmosGjt4VIVr7zCRtkd4HFUjNWgN6wIXoDYKu/wsn GiwnXBmCQqVQxIKAPjTagN3vakzkwrLwNyymTKcFIQVzQwD/NlCVQ9rzUvZdbKI8 GZ159tXAxqUkIHMGDtZx52LmlN8/lmZfFZca85jmiDCr98c3oldhRwPrFqVpjNpy oHgKzk/7uYzTuSqtBbvOOSI5pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqRBuOJ KwNZVL/vu4ume4KBN4veMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpolvizx8998/OQOSGKXbtUacSdmr8d5VhTEKmNH834RQ7WNKQDlEt pSyAo6F7K2+HyVuwJ/ibmOlP6//2v5ubgVsK2xJX79T3i+5ecuffZ7gdQYOOVtaN /qKzdJ7mBFXUdmdC8cRFbN4IuYlUCQZuSmxtaZSk7WRHKv1VsCDRMt+LRLeJaNIg gtKJCVmH5LffpVwBF18dp1sIOnS9OggpgX7E3nZmnIXGZO2uyXGtQi547PQY+tZa z0BMB+Z4+/NcJUTGW3Q9GpSQg4owHR+HXmD2aNMjJ0eRDGOaQe1pCz2gNhE3Up3/ OWhKkVsd45ZWVTprCAM0Twpzf1h7Zw11 -----END CERTIFICATE-----Generated at Mon Oct 20 21:26:27 2025 by rpki-client