$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: DGiqMY0JfIfqq7BhvRg+GpSm7DFvj7FDdQeMo45gISU= Subject key identifier: 37:6F:7E:3A:D9:5B:0D:6B:B0:BC:4A:EF:A9:9F:66:B2:D0:A3:51:AA Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 01C8 Signing time: Thu 23 Oct 2025 04:31:07 +0000 Manifest this update: Thu 23 Oct 2025 04:31:07 +0000 Manifest next update: Thu 30 Oct 2025 04:31:07 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: ziWPS9uUtdEmoqEhg34JF9GfOeWgifMqvjO/AnkyIcY=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 04:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Oct 23 04:31:07 2025 GMT Not After : Oct 30 04:31:07 2025 GMT Subject: CN=68f9af8b-48e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:28:c2:d2:de:f0:33:a5:f9:26:04:23:b4:37: 8a:3a:05:f1:a6:94:77:0d:a9:7e:04:88:0e:fa:8d: 19:78:49:e9:71:30:2c:1c:06:0e:2d:3e:d1:dc:86: 98:ca:78:62:24:3c:5e:27:78:63:a3:d0:e4:3f:32: 92:4b:9e:23:9e:31:b6:57:32:40:d2:6d:58:26:13: 28:26:94:34:b1:3b:c6:c1:38:66:c4:ef:d9:44:ac: 2f:e9:19:cb:5b:b0:17:52:17:cf:49:2a:25:1e:97: f8:d8:2e:7a:fa:0f:a1:d9:07:53:17:70:10:d0:cc: 5a:4e:fc:60:ac:6f:75:62:b1:8f:41:92:23:1c:89: 14:f1:cb:24:66:f1:e4:62:0e:3d:13:24:5b:a7:43: dd:20:82:d5:a1:b8:70:14:51:57:ab:cf:c8:60:1f: a1:51:f8:1e:30:13:c3:cc:92:c1:05:58:f7:0e:a4: ee:ad:ca:4f:88:b5:60:2e:ee:18:33:49:93:56:4b: 52:e3:1f:e0:c6:99:79:7c:bb:84:9e:fb:62:dd:d8: 10:c0:74:3c:f8:a8:75:8f:25:62:35:d9:01:fb:d7: 4c:dd:be:bd:7d:22:fe:32:d1:e5:8d:3d:5b:b8:92: e0:e2:93:e1:5c:cb:3e:32:3b:85:3d:10:d1:39:4d: 92:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6F:7E:3A:D9:5B:0D:6B:B0:BC:4A:EF:A9:9F:66:B2:D0:A3:51:AA X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:86:d7:de:28:47:f5:a0:f1:4d:e2:76:78:da:63:27:9d:8f: b3:71:e7:7d:61:8b:67:cb:06:9b:8a:12:96:94:0c:6b:d3:8f: 7a:2a:f1:9c:fb:d9:0c:48:2e:d6:1d:7c:55:4e:2d:60:bc:3e: 94:9c:53:5a:26:d3:e1:58:95:73:5d:ee:6d:68:fe:46:fd:6a: 8e:40:dd:d3:66:35:42:d5:9f:3d:6c:82:05:81:8a:ab:34:7a: c2:54:06:50:65:ef:18:0a:5e:79:ad:dc:51:bb:34:99:fb:57: 20:ab:8e:aa:ce:c7:33:ff:2d:1b:61:83:68:24:f1:af:96:80: ed:d7:ba:e9:08:39:33:bb:bf:0a:b4:7c:f9:2b:4e:7e:32:a2: d7:f0:99:66:20:32:d6:f4:3a:ed:ac:86:82:98:90:09:1f:d8: 90:5e:a2:c3:11:f9:62:b7:9b:28:b2:23:db:0d:e2:41:58:a2: 5e:17:42:de:8c:95:27:54:05:5d:c4:df:ab:d2:7e:92:4b:cc: e9:48:93:3a:18:0a:55:a6:0d:fb:ef:a9:af:6f:c0:06:7b:92: 4b:50:84:d2:30:e0:b4:b5:7d:91:6f:8c:60:18:ee:d3:3c:ae: e6:e4:e0:cd:e8:0e:69:8f:cf:c6:93:68:b8:9b:6b:8d:16:f8: 5a:46:f2:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUxMDIzMDQzMTA3WhcNMjUxMDMwMDQzMTA3WjAYMRYwFAYD VQQDEw02OGY5YWY4Yi00OGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7SjC0t7wM6X5JgQjtDeKOgXxppR3Dal+BIgO+o0ZeEnpcTAsHAYOLT7R3IaY ynhiJDxeJ3hjo9DkPzKSS54jnjG2VzJA0m1YJhMoJpQ0sTvGwThmxO/ZRKwv6RnL W7AXUhfPSSolHpf42C56+g+h2QdTF3AQ0MxaTvxgrG91YrGPQZIjHIkU8cskZvHk Yg49EyRbp0PdIILVobhwFFFXq8/IYB+hUfgeMBPDzJLBBVj3DqTurcpPiLVgLu4Y M0mTVktS4x/gxpl5fLuEnvti3dgQwHQ8+Kh1jyViNdkB+9dM3b69fSL+MtHljT1b uJLg4pPhXMs+MjuFPRDROU2SwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdvfjrZ Ww1rsLxK76mfZrLQo1GqMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZhtfeKEf1oPFN4nZ42mMnnY+zced9YYtnywabihKWlAxr0496KvGc +9kMSC7WHXxVTi1gvD6UnFNaJtPhWJVzXe5taP5G/WqOQN3TZjVC1Z89bIIFgYqr NHrCVAZQZe8YCl55rdxRuzSZ+1cgq46qzscz/y0bYYNoJPGvloDt17rpCDkzu78K tHz5K05+MqLX8JlmIDLW9DrtrIaCmJAJH9iQXqLDEflit5sosiPbDeJBWKJeF0Le jJUnVAVdxN+r0n6SS8zpSJM6GApVpg3776mvb8AGe5JLUITSMOC0tX2Rb4xgGO7T PK7m5ODN6A5pj8/Gk2i4m2uNFvhaRvIA -----END CERTIFICATE-----Generated at Fri Oct 24 06:15:05 2025 by rpki-client