$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft File: oktqYgRLcAZfBQY4hGDkry8X8_8.mft (raw, json) Hash identifier: Jj6IDpiFrNPIjf5CNQgjoH6UOvoWrphcwANiZ8lysT0= Subject key identifier: 3D:F6:DD:B2:0E:59:4B:A1:56:10:D6:1A:ED:A4:2F:75:61:39:21:3C Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 35B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft Manifest number: 353B Signing time: Sat 18 Oct 2025 14:27:40 +0000 Manifest this update: Sat 18 Oct 2025 14:27:39 +0000 Manifest next update: Sat 25 Oct 2025 14:27:39 +0000 Files and hashes: 1: oktqYgRLcAZfBQY4hGDkry8X8_8.crl (hash: z9TSQf5jPxacr2VOGTCF7mwsYmuVlXgbOiuuN/AuJUM=) 2: 8E365CA0944E11F0A6427E3BC4F9AE02.roa (hash: BVmvuALPllC1jzIx9+A+tVDNjUTBbdR2FSfLiny9wOU=) 3: 8A7456C47CBE11EFB9BF7074C4F9AE02.roa (hash: LJfUuUVRgUX70ra1tO0sOwws9DELyOzPbOL09Rc8QEE=) 4: D169AD50985511F09A18185EC4F9AE02.roa (hash: gqjEr96Yck7DcthvfK2CSUidOZKPUY9JGM9VjopIO6s=) 5: CC23ED70990811F08BF0CB55C4F9AE02.roa (hash: hM8AXKx49dN7/4ZLUJiGhpG6j45HmvqjnSWYe9j6v4g=) 6: 02C97520985011F083EA2077C4F9AE02.roa (hash: iDndSBoFAc9uhUgvXQuDJ/5b7tXkUPKhNkfuD+XgWIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13752 (0x35b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Oct 18 14:27:39 2025 GMT Not After : Oct 25 14:27:39 2025 GMT Subject: CN=68f3a3db-5eb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d6:99:8c:47:76:e7:17:f6:40:5f:12:ac:36: 43:3f:be:75:c0:b2:b7:c2:67:16:fb:81:70:6b:c7: 6e:2b:97:84:7e:39:7d:25:07:8d:34:e8:27:86:a2: 14:38:49:e9:41:b5:d3:43:f2:65:87:a0:b4:fb:4d: a3:a6:f5:35:50:06:39:43:74:a1:21:29:08:1a:90: 2b:fa:d0:8c:b4:10:52:17:03:79:92:d1:33:b3:85: 53:77:ef:3e:fe:32:7a:76:d4:81:98:a6:3f:f5:df: 0a:3f:07:26:8e:18:c6:10:86:e2:f2:5f:ae:10:11: 94:0c:cb:2a:84:cb:0a:ad:bf:49:02:28:05:78:09: 91:23:1e:4c:b6:9e:9d:fa:d1:d1:21:26:3a:fe:86: d3:ce:94:d6:80:bb:36:66:2e:13:27:85:8f:b3:e2: d6:ba:02:d3:02:ca:66:61:b0:e6:ec:f1:a5:2f:fe: 9a:65:6a:3f:13:87:bf:67:6b:5d:95:9e:0c:cb:6c: 5d:16:b0:f9:a5:fc:16:10:dd:58:2b:5c:46:5b:54: 92:af:20:3b:71:f5:05:20:3c:09:e2:3d:81:d2:17: 4f:7f:b1:b5:6d:70:f2:1e:fb:6a:f9:3d:74:10:34: 2d:70:6f:3f:68:66:cf:50:1c:48:19:aa:6f:dd:04: 26:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F6:DD:B2:0E:59:4B:A1:56:10:D6:1A:ED:A4:2F:75:61:39:21:3C X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:fd:26:17:cb:c7:ac:fe:86:92:94:22:2b:74:30:2c:8c:66: 6c:07:dd:f0:9e:bc:51:7d:9a:8a:95:a3:2e:c7:64:db:77:9e: 54:a9:c8:d4:29:77:98:eb:62:ee:64:36:05:79:2a:db:f7:c3: b4:1a:f0:03:54:11:ce:d3:a5:23:fd:7d:c8:17:19:33:90:37: e1:10:a0:88:3b:c4:2b:de:0a:8d:8a:ac:6f:27:a3:fb:55:e6: 21:c0:bd:ac:80:56:4b:76:33:46:51:5d:d2:0f:09:3f:73:52: af:70:22:0a:82:35:b7:f9:f6:90:26:72:0a:9b:b8:aa:ee:98: a0:70:4f:e0:67:cf:fc:a3:f5:2b:09:0d:51:04:5d:ef:7b:f5: e0:4b:0b:d9:fc:a8:97:96:d5:70:9b:6c:ae:f0:28:a4:7b:9f: 09:87:0f:6a:d6:6e:e0:0d:30:ce:b4:46:00:36:87:d3:c3:c4: 6c:dc:7a:68:65:c6:6b:7a:65:e5:03:f7:5b:f8:04:8b:5a:6d: 0a:e3:ec:60:fe:04:b0:95:2f:7d:54:df:3e:7b:69:b7:7a:26: 7c:84:e8:60:4c:c9:f0:7f:6f:c8:c9:b5:bd:47:03:70:1e:44: 7e:ce:81:db:dd:f9:f5:7a:2f:78:53:6b:db:42:e4:06:d8:5c: fd:59:4b:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUxMDE4MTQyNzM5WhcNMjUxMDI1MTQyNzM5WjAYMRYwFAYD VQQDEw02OGYzYTNkYi01ZWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutaZjEd25xf2QF8SrDZDP751wLK3wmcW+4Fwa8duK5eEfjl9JQeNNOgnhqIU OEnpQbXTQ/Jlh6C0+02jpvU1UAY5Q3ShISkIGpAr+tCMtBBSFwN5ktEzs4VTd+8+ /jJ6dtSBmKY/9d8KPwcmjhjGEIbi8l+uEBGUDMsqhMsKrb9JAigFeAmRIx5Mtp6d +tHRISY6/obTzpTWgLs2Zi4TJ4WPs+LWugLTAspmYbDm7PGlL/6aZWo/E4e/Z2td lZ4My2xdFrD5pfwWEN1YK1xGW1SSryA7cfUFIDwJ4j2B0hdPf7G1bXDyHvtq+T10 EDQtcG8/aGbPUBxIGapv3QQmSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD323bIO WUuhVhDWGu2kL3VhOSE8MB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjU1MC84QjlCRDIwMjFEODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNB WmZCUVk0aEdEa3J5OFg4XzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy/SYXy8es/oaSlCIrdDAsjGZsB93wnrxRfZqKlaMux2Tbd55UqcjU KXeY62LuZDYFeSrb98O0GvADVBHO06Uj/X3IFxkzkDfhEKCIO8Qr3gqNiqxvJ6P7 VeYhwL2sgFZLdjNGUV3SDwk/c1KvcCIKgjW3+faQJnIKm7iq7pigcE/gZ8/8o/Ur CQ1RBF3ve/XgSwvZ/KiXltVwm2yu8Cike58Jhw9q1m7gDTDOtEYANofTw8Rs3Hpo ZcZremXlA/db+ASLWm0K4+xg/gSwlS99VN8+e2m3eiZ8hOhgTMnwf2/IybW9RwNw HkR+zoHb3fn1ei94U2vbQuQG2Fz9WUv0 -----END CERTIFICATE-----Generated at Sun Oct 19 23:22:05 2025 by rpki-client