$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: Khqp75LrMFoZtRmkNcMPJAZRa63EiMRU1rI5oCcM/Tc= Subject key identifier: DB:3D:D8:CB:77:BE:13:25:73:65:5C:DA:1D:23:51:86:E5:B5:C6:98 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0AB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0AAF Signing time: Thu 18 Sep 2025 19:44:34 +0000 Manifest this update: Thu 18 Sep 2025 19:44:34 +0000 Manifest next update: Thu 25 Sep 2025 19:44:34 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: fKAOyEaJecOTPVptfwy25Qy3TIUCGV/ALbQasJgcFJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:44:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2744 (0xab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Sep 18 19:44:34 2025 GMT Not After : Sep 25 19:44:34 2025 GMT Subject: CN=68cc6122-d5d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:07:fb:0c:72:62:7e:73:78:40:50:a6:51:f7: 13:b5:b8:05:4a:0c:a2:71:e6:11:25:37:83:84:64: 69:77:90:c1:c8:f9:b2:19:0c:0b:99:7f:67:18:46: 4a:4d:0b:67:cb:6a:44:bb:b9:51:67:fa:e5:7d:3d: b3:28:69:90:b9:6e:1f:8d:f0:ef:31:42:27:a3:1f: 6c:d6:17:b1:12:01:37:cd:0f:e6:7a:88:d5:bb:61: 9d:1a:90:b8:3b:2d:1d:34:ce:c2:96:6c:1c:ec:3b: 2b:d3:92:80:dc:f7:fe:54:d9:25:70:72:b6:74:48: 91:c4:1e:e1:ed:30:f7:81:f1:fc:32:e1:e9:90:72: fd:42:4c:b3:53:6e:8a:ff:38:d5:95:48:ce:29:84: 2d:2c:27:3e:ff:2d:4f:38:0e:4a:db:79:c4:f9:34: b8:3c:5b:0f:4a:3a:e4:46:48:b3:6a:96:41:5c:71: 4a:d4:6a:2e:e7:16:ba:b6:a3:c6:3f:71:39:37:75: 25:67:fa:9a:29:7e:e3:a7:68:3c:32:46:8d:61:09: 94:e8:c2:44:31:12:27:5a:e4:3a:9e:4e:41:73:77: 2f:45:0e:70:b4:54:36:5a:0e:a5:4e:c0:33:d9:ef: 87:a9:ae:c4:53:1c:27:80:93:44:c9:ab:1b:8f:b1: 0d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3D:D8:CB:77:BE:13:25:73:65:5C:DA:1D:23:51:86:E5:B5:C6:98 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:3d:42:aa:3e:ea:26:67:ed:e1:91:ce:2c:b2:93:d1:29:45: 97:4e:68:e9:2e:6b:e9:27:84:c0:6d:53:a1:02:e7:ae:5f:a8: 49:09:33:ba:14:bd:36:35:ef:4d:67:50:ba:5a:da:8c:be:53: 47:b0:fd:9d:44:f7:83:8b:b3:f7:f3:07:59:9d:1b:f9:70:da: b5:52:b6:e8:4a:6e:18:dd:1d:e6:db:88:d7:da:a3:c0:56:1a: fa:3b:c7:76:ca:fa:7f:a9:e5:b5:2f:fc:bc:af:5c:23:96:16: d9:5b:1b:d1:cb:7b:ee:da:08:bd:ab:a3:8e:a0:a5:9e:a8:6a: 95:13:19:d3:c1:c9:07:1a:63:5b:4b:34:1f:cf:b9:b1:3f:0e: fd:c1:8f:99:b8:26:6c:3c:45:75:bc:ed:07:07:fa:91:0e:33: 65:44:67:96:5c:b1:5e:ce:9e:3b:91:bf:9a:11:98:6b:fb:f9: 3e:95:0c:f3:59:76:d6:85:6b:cd:f2:29:93:ba:f6:a7:03:89: fe:c8:e2:c2:5f:51:17:22:ce:77:7b:99:d7:3c:66:b4:fd:41: e1:a4:3f:71:48:10:36:74:9f:0d:1b:ab:a4:7c:ab:59:87:4c: 87:63:95:55:c9:4a:aa:6f:e9:5a:45:dd:79:9d:ad:09:4e:3c: 98:1c:17:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUwOTE4MTk0NDM0WhcNMjUwOTI1MTk0NDM0WjAYMRYwFAYD VQQDEw02OGNjNjEyMi1kNWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Qf7DHJifnN4QFCmUfcTtbgFSgyiceYRJTeDhGRpd5DByPmyGQwLmX9nGEZK TQtny2pEu7lRZ/rlfT2zKGmQuW4fjfDvMUInox9s1hexEgE3zQ/meojVu2GdGpC4 Oy0dNM7Clmwc7Dsr05KA3Pf+VNklcHK2dEiRxB7h7TD3gfH8MuHpkHL9QkyzU26K /zjVlUjOKYQtLCc+/y1POA5K23nE+TS4PFsPSjrkRkizapZBXHFK1Gou5xa6tqPG P3E5N3UlZ/qaKX7jp2g8MkaNYQmU6MJEMRInWuQ6nk5Bc3cvRQ5wtFQ2Wg6lTsAz 2e+Hqa7EUxwngJNEyasbj7EN/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNs92Mt3 vhMlc2Vc2h0jUYbltcaYMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFPUKqPuomZ+3hkc4sspPRKUWXTmjpLmvpJ4TAbVOhAueuX6hJCTO6 FL02Ne9NZ1C6WtqMvlNHsP2dRPeDi7P38wdZnRv5cNq1UrboSm4Y3R3m24jX2qPA Vhr6O8d2yvp/qeW1L/y8r1wjlhbZWxvRy3vu2gi9q6OOoKWeqGqVExnTwckHGmNb SzQfz7mxPw79wY+ZuCZsPEV1vO0HB/qRDjNlRGeWXLFezp47kb+aEZhr+/k+lQzz WXbWhWvN8imTuvanA4n+yOLCX1EXIs53e5nXPGa0/UHhpD9xSBA2dJ8NG6ukfKtZ h0yHY5VVyUqqb+laRd15na0JTjyYHBe6 -----END CERTIFICATE-----Generated at Fri Sep 19 18:31:24 2025 by rpki-client