$ rpki-client -vvf rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft File: oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft (raw, json) Hash identifier: yHRiH8AuLNX9UE5wV5eyYmjRBwmPxmTc3kPeNAsbHwg= Subject key identifier: 49:11:BB:04:D7:FC:01:C2:94:D1:A0:58:7B:F3:E1:D8:D9:66:50:97 Authority key identifier: A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 Certificate issuer: /CN=A9194040/serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft Manifest number: 03D4 Signing time: Sun 19 Oct 2025 02:36:14 +0000 Manifest this update: Sun 19 Oct 2025 02:36:13 +0000 Manifest next update: Sun 26 Oct 2025 02:36:13 +0000 Files and hashes: 1: oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl (hash: 5FJwZQoSclevFWKKKaAFloUH+yqTVcsSTzDlu/WTmfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194040, serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Validity Not Before: Oct 19 02:36:13 2025 GMT Not After : Oct 26 02:36:13 2025 GMT Subject: CN=68f44e9d-22ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0c:28:35:8f:5a:79:33:47:7c:1b:bf:50:e2: 05:9a:de:87:38:e1:36:a9:96:46:d9:ef:ef:e2:02: e5:79:84:23:65:61:0c:62:50:bc:a5:11:2e:71:8e: 67:60:4b:80:73:1b:dc:52:a2:73:aa:0f:3b:cf:a5: b9:a6:31:d8:e4:53:c2:46:cc:e3:98:38:6d:7f:bd: 84:db:da:3e:f0:86:b4:bd:37:0e:d9:c5:ab:dc:1a: 73:55:2b:27:a6:e8:30:e9:9d:57:d8:e2:13:1a:60: a9:20:09:12:00:98:53:1f:eb:27:aa:0e:4a:85:2e: f6:01:65:2c:17:68:63:6b:01:8c:0d:51:e3:1f:c4: 5f:82:5d:df:11:06:15:45:5b:30:10:ba:fc:bf:7e: 39:94:de:0c:91:52:5b:85:7c:77:06:c8:33:0f:fa: 9b:db:9d:f3:ee:bb:c0:6a:f3:64:62:a5:3f:72:b0: f6:78:19:1e:a1:52:e5:36:74:77:2e:d0:36:1f:1c: 42:b7:ee:44:a2:31:23:c0:7c:df:ec:c8:5e:5d:78: c9:27:2c:5e:42:8c:40:1e:41:a6:f8:34:89:78:49: 75:e2:8d:79:a8:23:71:c8:4d:e7:41:39:95:d6:85: 3d:87:4d:28:4b:4b:04:07:7c:e3:50:e8:06:c1:ac: 4a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:11:BB:04:D7:FC:01:C2:94:D1:A0:58:7B:F3:E1:D8:D9:66:50:97 X509v3 Authority Key Identifier: keyid:A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:04:b0:64:73:54:a0:3b:37:8a:78:8a:12:36:fd:5d:dd:89: 5d:a8:86:95:85:ef:46:1e:75:12:0b:78:2f:db:a0:9f:57:15: 09:47:45:61:5b:78:9e:4c:42:69:cd:ba:c5:98:46:c2:50:ab: b2:f9:2b:36:4b:ad:b1:52:f8:9f:80:c6:20:c3:2f:8f:16:31: 77:6a:ff:48:13:ae:91:df:3a:2b:de:07:db:80:33:c3:2f:fa: f8:45:3a:61:49:23:25:a1:dc:b8:d5:09:a5:2a:de:14:39:43: bc:46:13:40:c7:18:4f:2f:5d:81:05:45:84:3d:dd:b3:1a:96: 2c:81:9f:50:c3:07:78:1a:62:7f:1f:80:43:a0:d7:4d:ad:88: 2a:9f:be:30:db:c2:78:15:de:1e:6c:43:94:b3:25:d2:74:f7: 06:f7:91:c4:82:b6:61:a2:bd:b1:3e:7e:d3:98:f3:0f:09:dc: b4:9c:b9:66:51:ac:5a:d6:c8:65:6c:1c:2d:08:2b:6c:8a:d4: f3:06:23:68:8d:9a:84:02:4e:ae:5f:5e:e3:65:aa:d4:4c:7e: 60:8a:ae:40:ea:81:6a:77:16:46:23:bc:1b:77:f8:2c:f5:35: f6:31:44:f2:19:86:04:89:2e:92:a8:ad:be:83:85:af:43:62: 1f:ca:4d:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQwNDAxMTAvBgNVBAUTKEEwN0NEM0QxMDIxQTU4QzI0MEExMjEzNzQwMEI5N0Ix OEI3OTk4RDAwHhcNMjUxMDE5MDIzNjEzWhcNMjUxMDI2MDIzNjEzWjAYMRYwFAYD VQQDEw02OGY0NGU5ZC0yMmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gwoNY9aeTNHfBu/UOIFmt6HOOE2qZZG2e/v4gLleYQjZWEMYlC8pREucY5n YEuAcxvcUqJzqg87z6W5pjHY5FPCRszjmDhtf72E29o+8Ia0vTcO2cWr3BpzVSsn pugw6Z1X2OITGmCpIAkSAJhTH+snqg5KhS72AWUsF2hjawGMDVHjH8Rfgl3fEQYV RVswELr8v345lN4MkVJbhXx3BsgzD/qb253z7rvAavNkYqU/crD2eBkeoVLlNnR3 LtA2HxxCt+5EojEjwHzf7MheXXjJJyxeQoxAHkGm+DSJeEl14o15qCNxyE3nQTmV 1oU9h00oS0sEB3zjUOgGwaxKfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkRuwTX /AHClNGgWHvz4djZZlCXMB8GA1UdIwQYMBaAFKB809ECGljCQKEhN0ALl7GLeZjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDA0MC85QjA0QTBGMkEz NDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdNSkFvU0UzUUF1WHNZdDVt TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29IelQwUUlhV01KQW9TRTNRQXVYc1l0NW1OQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDA0MC85QjA0QTBGMkEzNDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdN SkFvU0UzUUF1WHNZdDVtTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaBLBkc1SgOzeKeIoSNv1d3YldqIaVhe9GHnUSC3gv26CfVxUJR0Vh W3ieTEJpzbrFmEbCUKuy+Ss2S62xUvifgMYgwy+PFjF3av9IE66R3zor3gfbgDPD L/r4RTphSSMlody41QmlKt4UOUO8RhNAxxhPL12BBUWEPd2zGpYsgZ9Qwwd4GmJ/ H4BDoNdNrYgqn74w28J4Fd4ebEOUsyXSdPcG95HEgrZhor2xPn7TmPMPCdy0nLlm Uaxa1shlbBwtCCtsitTzBiNojZqEAk6uX17jZarUTH5giq5A6oFqdxZGI7wbd/gs 9TX2MUTyGYYEiS6SqK2+g4WvQ2Ifyk01 -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:04 2025 by rpki-client