$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: 5uDt4wI14mGaPGXFS6GYQTf7i4lw654vcjn/OH0gguQ= Subject key identifier: 49:EF:78:D2:A9:88:F7:31:2F:64:C2:CA:C1:0D:B2:D4:C6:44:0F:D5 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 167E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 166C Signing time: Sat 18 Oct 2025 17:07:11 +0000 Manifest this update: Sat 18 Oct 2025 17:07:11 +0000 Manifest next update: Sat 25 Oct 2025 17:07:11 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: sUN6PXLRDvCHz/P31enmF3cEemPsagfSN6dAPWp2uS8=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: sJz6G/xstqw6p4gPUJK4gZEDHHsTgFb0oSV9wpMQ7es=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: bW1tXZTK5POt+zZDGbG4YDsox5kPeg50QnLxOuLANNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5758 (0x167e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Oct 18 17:07:11 2025 GMT Not After : Oct 25 17:07:11 2025 GMT Subject: CN=68f3c93f-7c54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:95:59:3f:27:9a:58:e3:a6:f4:64:f0:8b:72: 1c:9d:d1:c7:4a:2b:88:49:8e:02:9d:20:28:61:d0: e1:44:13:ff:90:04:ed:40:f9:fc:6e:da:d6:54:03: 5f:e7:b4:b6:07:e9:ec:8b:d7:4f:9f:50:e6:0d:c1: ef:78:98:93:f9:e4:59:29:6d:3a:21:65:45:59:3f: cb:e4:50:9d:6d:60:eb:ce:ae:17:99:3e:5b:b4:3b: 51:25:2c:de:6b:c3:94:6c:78:21:d8:3e:ea:88:0d: c1:11:10:51:70:d8:ef:0c:bd:ef:b2:c1:cf:11:c0: 27:32:58:df:8f:77:2e:54:aa:49:55:10:29:2d:9e: d5:81:2c:91:08:38:b0:d5:70:d6:25:39:2a:8b:1a: 11:35:f0:79:88:d6:31:a4:d8:99:d0:b1:5a:21:6f: 1b:e1:03:66:76:a2:02:b7:1e:18:02:39:05:1e:e0: 60:e4:cc:d9:3e:4d:f3:5f:6f:bd:c5:fd:93:ff:82: af:4b:ad:82:e7:59:0d:82:39:e0:fb:d6:f0:42:d1: 48:a0:d9:a9:8a:f8:c9:37:39:41:c7:e5:80:d9:21: ea:eb:8c:19:d8:59:78:8a:e5:9f:3b:cb:8e:d3:09: 40:87:78:67:ba:f6:5c:31:26:b2:93:89:b4:5b:f1: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:EF:78:D2:A9:88:F7:31:2F:64:C2:CA:C1:0D:B2:D4:C6:44:0F:D5 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:d0:21:e9:9d:dc:0d:0e:8f:28:16:c8:1e:8b:75:44:b1:46: f3:7f:04:c0:66:35:6b:5b:10:39:ba:a7:94:3b:1d:5b:43:54: 59:6e:0e:a1:c2:dc:80:2a:04:a0:0d:9b:1b:96:51:89:f9:5a: 90:14:3c:a2:25:da:d0:60:c2:be:41:7d:6b:4d:5f:d1:29:f5: b7:e8:75:83:96:ac:95:c9:51:35:1f:2b:e7:28:05:26:68:a7: 4a:b2:10:71:36:39:0a:f2:7d:ce:82:fc:7e:e0:07:12:63:5b: 59:02:88:69:b5:be:83:c4:61:ca:40:45:d8:05:13:e9:dd:19: 40:aa:d9:f1:5e:7b:04:3b:80:b0:0e:93:77:e8:f6:30:de:94: e5:0a:f2:a4:39:36:45:b2:73:72:b6:2a:4e:82:54:95:ec:66: 7a:df:52:95:e5:fb:80:86:c7:d9:d3:1e:2b:ed:05:e3:6f:19: 7e:33:40:82:01:e2:e4:3d:1a:18:33:a4:93:ae:48:d5:63:73: 00:fb:20:4d:f8:0c:ef:4b:28:47:3c:a4:fe:58:92:93:cd:91: 35:c1:6f:b1:c4:35:60:90:0c:d6:d2:d4:51:77:f0:86:27:13: b1:e8:1e:48:5f:62:08:41:48:af:62:d9:e7:e3:c7:94:81:e7: 89:0e:3b:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjUxMDE4MTcwNzExWhcNMjUxMDI1MTcwNzExWjAYMRYwFAYD VQQDEw02OGYzYzkzZi03YzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JVZPyeaWOOm9GTwi3IcndHHSiuISY4CnSAoYdDhRBP/kATtQPn8btrWVANf 57S2B+nsi9dPn1DmDcHveJiT+eRZKW06IWVFWT/L5FCdbWDrzq4XmT5btDtRJSze a8OUbHgh2D7qiA3BERBRcNjvDL3vssHPEcAnMljfj3cuVKpJVRApLZ7VgSyRCDiw 1XDWJTkqixoRNfB5iNYxpNiZ0LFaIW8b4QNmdqICtx4YAjkFHuBg5MzZPk3zX2+9 xf2T/4KvS62C51kNgjng+9bwQtFIoNmpivjJNzlBx+WA2SHq64wZ2Fl4iuWfO8uO 0wlAh3hnuvZcMSayk4m0W/HwQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnveNKp iPcxL2TCysENstTGRA/VMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW0CHpndwNDo8oFsgei3VEsUbzfwTAZjVrWxA5uqeUOx1bQ1RZbg6h wtyAKgSgDZsbllGJ+VqQFDyiJdrQYMK+QX1rTV/RKfW36HWDlqyVyVE1HyvnKAUm aKdKshBxNjkK8n3Ogvx+4AcSY1tZAohptb6DxGHKQEXYBRPp3RlAqtnxXnsEO4Cw DpN36PYw3pTlCvKkOTZFsnNytipOglSV7GZ631KV5fuAhsfZ0x4r7QXjbxl+M0CC AeLkPRoYM6STrkjVY3MA+yBN+AzvSyhHPKT+WJKTzZE1wW+xxDVgkAzW0tRRd/CG JxOx6B5IX2IIQUivYtnn48eUgeeJDjvH -----END CERTIFICATE-----Generated at Mon Oct 20 05:47:14 2025 by rpki-client