$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: gX0PcffZt+Gk3e1UobVb4Lh4S7LhrGpit21tCMiwPcA= Subject key identifier: 08:6F:D0:09:BD:31:08:A5:C8:D6:66:2F:56:05:A0:FA:89:58:AA:4C Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 0884 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 086B Signing time: Sat 18 Oct 2025 21:48:35 +0000 Manifest this update: Sat 18 Oct 2025 21:48:34 +0000 Manifest next update: Sat 25 Oct 2025 21:48:34 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: sKO3fFXdq8qeSnDfARUw65D7NtNNbjnPlQWI27Fmwz4=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: Wvwkw2qq7X3gm9ipfWCc3BGdmbxdjnrv9dxFhs0Hnp4=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: DAWoyEN2Fc3h4hex7mVD7U45759qmKwV9gi2n6Era6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2180 (0x884) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Oct 18 21:48:34 2025 GMT Not After : Oct 25 21:48:34 2025 GMT Subject: CN=68f40b33-a602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b7:16:96:88:30:8e:02:23:96:c8:b8:c2:9d: 78:5f:ce:55:af:fa:3c:d2:ff:fb:46:83:33:6b:0e: 3d:c0:b7:ac:70:13:24:35:83:28:b6:93:a1:6e:0e: 4e:70:e7:ee:c6:af:81:b1:21:2c:ac:64:0b:9d:83: 3d:2d:ec:c8:22:66:56:e4:25:a0:6f:0f:6f:2f:91: 71:60:6c:fc:b0:b0:89:06:cf:eb:83:c3:05:e8:b8: 40:b8:bc:57:32:0e:84:fd:6c:aa:77:aa:63:2e:23: 57:69:d1:1e:14:99:e5:46:41:9f:f1:f5:28:88:56: fd:90:31:d9:72:0b:36:9a:48:ac:67:d5:0f:99:b2: c7:a6:62:d0:d7:c2:bc:eb:38:f4:62:15:07:82:ee: 97:91:e4:2f:dc:04:43:8d:c5:28:74:66:32:84:4c: e0:28:7c:e7:08:62:61:1f:df:fd:75:b1:fd:e4:67: eb:a8:b3:6e:6e:53:32:c2:81:da:17:28:be:41:0d: 1d:5e:01:a2:05:6e:d4:91:b9:38:31:4b:c3:7c:ea: af:84:d1:a8:1f:6a:e3:77:c5:75:c6:32:69:cf:8e: ef:07:cd:74:d4:f7:f5:72:82:fd:7b:02:9c:35:d0: c4:23:fa:58:27:37:b7:3f:76:48:de:b4:4a:35:50: a2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6F:D0:09:BD:31:08:A5:C8:D6:66:2F:56:05:A0:FA:89:58:AA:4C X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:09:3c:3f:d3:b4:a9:7c:f0:25:47:a9:7d:55:31:5c:48:cf: 0c:a4:2b:62:4b:21:8f:c1:f1:70:5f:86:80:94:03:f5:55:9a: f4:eb:8c:c7:87:c8:b2:58:8f:54:d1:ab:64:08:12:02:4e:dc: 5a:15:a4:b0:af:d1:55:f5:77:81:a4:cc:14:c0:b7:7c:6c:5d: c4:11:f9:e3:73:b0:28:49:50:90:f4:52:2d:00:2f:2c:26:29: c3:a8:25:d4:48:9d:dd:a8:d6:e4:d1:0d:e6:ad:a6:81:e1:4b: 0e:6f:d0:5e:59:5d:c0:c9:cd:0d:65:d6:e0:e4:cc:62:8f:24: 1b:82:be:6d:81:fe:d3:f3:f7:da:2e:8c:e6:e2:6d:59:ff:33: 03:e5:13:98:f1:11:6d:33:f6:49:2b:12:eb:17:d8:9a:25:ca: 1a:4d:64:dd:39:dd:98:be:d4:2b:db:dc:62:28:3a:65:fa:14: 47:c9:1b:19:f9:97:ea:b2:bd:91:57:00:eb:ce:96:81:3e:4f: 5d:b2:5b:11:8d:ce:be:7c:af:ab:2a:6b:f4:12:f7:05:70:12: 41:f8:d3:98:1a:16:95:1f:64:40:58:d7:1d:4a:8f:19:71:e8: 59:11:5a:53:35:38:17:93:e5:8d:33:61:40:c8:52:cb:46:3e: d2:3a:68:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjUxMDE4MjE0ODM0WhcNMjUxMDI1MjE0ODM0WjAYMRYwFAYD VQQDEw02OGY0MGIzMy1hNjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8bcWlogwjgIjlsi4wp14X85Vr/o80v/7RoMzaw49wLescBMkNYMotpOhbg5O cOfuxq+BsSEsrGQLnYM9LezIImZW5CWgbw9vL5FxYGz8sLCJBs/rg8MF6LhAuLxX Mg6E/Wyqd6pjLiNXadEeFJnlRkGf8fUoiFb9kDHZcgs2mkisZ9UPmbLHpmLQ18K8 6zj0YhUHgu6XkeQv3ARDjcUodGYyhEzgKHznCGJhH9/9dbH95GfrqLNublMywoHa Fyi+QQ0dXgGiBW7Ukbk4MUvDfOqvhNGoH2rjd8V1xjJpz47vB8101Pf1coL9ewKc NdDEI/pYJze3P3ZI3rRKNVCi1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhv0Am9 MQilyNZmL1YFoPqJWKpMMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4CTw/07SpfPAlR6l9VTFcSM8MpCtiSyGPwfFwX4aAlAP1VZr064zH h8iyWI9U0atkCBICTtxaFaSwr9FV9XeBpMwUwLd8bF3EEfnjc7AoSVCQ9FItAC8s JinDqCXUSJ3dqNbk0Q3mraaB4UsOb9BeWV3Ayc0NZdbg5MxijyQbgr5tgf7T8/fa Lozm4m1Z/zMD5ROY8RFtM/ZJKxLrF9iaJcoaTWTdOd2YvtQr29xiKDpl+hRHyRsZ +Zfqsr2RVwDrzpaBPk9dslsRjc6+fK+rKmv0EvcFcBJB+NOYGhaVH2RAWNcdSo8Z cehZEVpTNTgXk+WNM2FAyFLLRj7SOmif -----END CERTIFICATE-----Generated at Mon Oct 20 10:15:46 2025 by rpki-client