$ rpki-client -vvf rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft File: ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft (raw, json) Hash identifier: Yfyf8gW9UH+zrGyyNETXhy1t38hQv4AreA3Ti7uldiA= Subject key identifier: F9:45:78:E5:4B:C3:D1:25:20:44:69:09:A7:32:49:1A:8C:41:26:FE Authority key identifier: A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD Certificate issuer: /CN=A914A139/serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Certificate serial: 0C17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft Manifest number: 0C00 Signing time: Sun 26 Oct 2025 19:18:01 +0000 Manifest this update: Sun 26 Oct 2025 19:18:00 +0000 Manifest next update: Sun 02 Nov 2025 19:18:00 +0000 Files and hashes: 1: ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl (hash: i46ive0kJgLuJkJG4EQ6DmXFaY32GkW601Sc/WF+8Lg=) 2: 65BB2B42C0E311EEBEF3D409C4F9AE02.roa (hash: OwW86qMJFwbNjXHq+OTRD7Vzx3peXb6YxQieVHGeMos=) 3: 10CF1D82C0E311EE81F3E987C4F9AE02.roa (hash: DWCg5lL0mEzrArVCwICSW9aYx94oeCmf91vXy2qE580=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 19:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3095 (0xc17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A139, serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Validity Not Before: Oct 26 19:18:00 2025 GMT Not After : Nov 2 19:18:00 2025 GMT Subject: CN=68fe73e8-0895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:27:d8:69:42:1a:b1:13:c9:a6:ac:88:16:7d: b1:9b:31:fb:ba:cd:40:bd:9a:27:7c:39:e2:1f:8e: 67:e0:af:f7:bc:5e:a1:0d:35:0d:66:af:fa:5f:79: 02:17:af:b1:ba:40:16:1f:ae:af:48:e3:7b:40:16: 48:3e:c2:76:b9:39:9a:63:cb:f4:31:52:33:fc:8c: 51:c6:a3:99:0f:db:e8:ff:64:a8:74:94:a5:b2:bc: 7a:7d:e8:a5:9a:a6:b8:e6:29:0d:25:db:d8:63:01: a1:b1:3b:3a:90:3e:c8:6c:5b:e0:4f:cd:3b:f1:25: fc:77:91:8b:52:d5:06:45:a8:66:71:08:90:9e:88: 03:86:f7:a2:a5:f2:9c:87:a0:cf:de:33:d2:06:07: 44:fe:17:cc:fd:ca:f0:a5:26:53:5d:52:fc:97:99: 12:7a:b4:4b:12:03:12:5d:c9:5c:01:48:3f:9d:70: 2c:f4:2e:35:36:ff:71:8a:73:6f:40:3e:d8:29:5d: 0b:df:bc:c8:e0:9b:20:c5:73:85:de:29:02:45:3f: b8:6b:54:bb:17:16:6a:bb:70:52:78:f1:3a:28:0a: 45:b4:91:aa:f0:e7:4a:84:0e:a6:77:73:ec:3d:34: 95:cf:a9:9e:84:17:23:8c:d4:40:17:fb:5f:8a:f6: 34:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:45:78:E5:4B:C3:D1:25:20:44:69:09:A7:32:49:1A:8C:41:26:FE X509v3 Authority Key Identifier: keyid:A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:b2:bf:68:3a:24:99:d0:1a:73:87:b7:6e:6e:49:57:18:fe: 59:cb:e9:c0:96:c0:49:a0:6e:bf:ae:71:b4:40:a7:30:74:cc: 8b:e0:80:03:13:62:fa:d8:ca:2d:f1:d4:c9:43:28:dd:30:b2: 86:ad:fc:80:d7:45:51:97:c8:2c:fa:e3:65:bd:ef:3c:ea:b8: 2d:67:8b:d3:f4:7b:79:7c:b9:db:8b:4c:52:5f:a0:c3:46:56: 59:ce:48:c2:6e:ae:32:33:fb:c0:00:d6:24:cb:07:7d:02:3f: 18:27:c9:14:9f:03:df:c4:f5:c5:9f:27:ad:bd:8d:85:5a:73: 8b:76:dc:d9:75:51:18:cd:c5:5c:f1:70:aa:76:61:86:9f:b9: 30:68:3a:b8:59:bb:10:38:d2:8f:74:51:06:1f:df:10:7a:25: 92:80:f3:14:c0:33:30:b8:e4:7a:78:f8:b0:46:16:25:06:2f: de:dc:26:2e:0b:45:30:aa:2f:95:cd:15:fb:45:0a:c3:ab:ee: a7:26:17:79:2d:c0:67:3c:8b:3d:c0:4f:00:c3:a8:aa:59:ef: 1e:ca:74:d8:0b:25:60:51:3c:c3:80:67:b3:3a:1a:69:42:1e: 2a:e5:88:90:2d:db:7d:f9:e2:a5:66:47:a2:3b:08:b4:7d:5c: 1d:25:32:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExMzkxMTAvBgNVBAUTKEEyNUVEOEExNDI3QUU5M0IyNEQzMERDQ0RGQTgzMjUz OEI1MDA4QUQwHhcNMjUxMDI2MTkxODAwWhcNMjUxMTAyMTkxODAwWjAYMRYwFAYD VQQDEw02OGZlNzNlOC0wODk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyfYaUIasRPJpqyIFn2xmzH7us1AvZonfDniH45n4K/3vF6hDTUNZq/6X3kC F6+xukAWH66vSON7QBZIPsJ2uTmaY8v0MVIz/IxRxqOZD9vo/2SodJSlsrx6feil mqa45ikNJdvYYwGhsTs6kD7IbFvgT8078SX8d5GLUtUGRahmcQiQnogDhveipfKc h6DP3jPSBgdE/hfM/crwpSZTXVL8l5kSerRLEgMSXclcAUg/nXAs9C41Nv9xinNv QD7YKV0L37zI4JsgxXOF3ikCRT+4a1S7FxZqu3BSePE6KApFtJGq8OdKhA6md3Ps PTSVz6mehBcjjNRAF/tfivY0pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlFeOVL w9ElIERpCacySRqMQSb+MB8GA1UdIwQYMBaAFKJe2KFCeuk7JNMNzN+oMlOLUAit MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTEzOS9FQkI5RUM2MDI0 Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZUc2swdzNNMzZneVU0dFFD SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29sN1lvVUo2NlRzazB3M00zNmd5VTR0UUNLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTEzOS9FQkI5RUM2MDI0Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZU c2swdzNNMzZneVU0dFFDSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMsr9oOiSZ0Bpzh7dubklXGP5Zy+nAlsBJoG6/rnG0QKcwdMyL4IAD E2L62Mot8dTJQyjdMLKGrfyA10VRl8gs+uNlve886rgtZ4vT9Ht5fLnbi0xSX6DD RlZZzkjCbq4yM/vAANYkywd9Aj8YJ8kUnwPfxPXFnyetvY2FWnOLdtzZdVEYzcVc 8XCqdmGGn7kwaDq4WbsQONKPdFEGH98QeiWSgPMUwDMwuOR6ePiwRhYlBi/e3CYu C0Uwqi+VzRX7RQrDq+6nJhd5LcBnPIs9wE8Aw6iqWe8eynTYCyVgUTzDgGezOhpp Qh4q5YiQLdt9+eKlZkeiOwi0fVwdJTJx -----END CERTIFICATE-----Generated at Mon Oct 27 15:00:47 2025 by rpki-client