$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: bseEqs1TBUb98lUNuhLsxqWEu4HbMRHboZf7GclFfVU= Subject key identifier: 10:C6:4B:49:8A:C2:8C:B2:CC:12:AE:1B:3C:50:F3:12:39:EC:E2:8E Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 136F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 2475 Signing time: Sun 02 Nov 2025 16:59:05 +0000 Manifest this update: Sun 02 Nov 2025 16:59:04 +0000 Manifest next update: Sun 09 Nov 2025 16:59:04 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: HYpkTgDkirwQ01Yyr8g9YDlOATdqJMMyHDNc4InNdsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4975 (0x136f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: Nov 2 16:59:04 2025 GMT Not After : Nov 9 16:59:04 2025 GMT Subject: CN=69078dd9-2844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e9:fa:e4:ff:2e:8b:a1:68:5a:dc:38:c6:ba: bf:17:97:52:67:ed:ac:d0:cf:5e:ab:f3:74:84:37: 78:5f:01:8f:e4:91:10:89:45:af:fd:e9:3b:d4:92: f3:52:9f:41:25:c8:af:18:38:2b:9e:4e:59:a7:0a: e5:4d:12:81:ae:43:f2:00:55:89:43:9a:62:56:db: a4:70:a3:32:b5:fc:60:4f:8e:07:96:a6:48:35:fc: eb:11:34:a9:67:d8:a9:21:5f:cb:20:8a:66:83:d8: 41:48:c9:75:2d:a2:d8:e1:00:d7:b0:5a:cc:c3:84: df:f9:5e:95:c7:7e:6e:49:9a:00:24:72:cb:bc:f5: 31:59:7e:99:e2:fb:36:3e:11:02:17:2a:79:24:9c: 3d:67:63:60:20:b9:fd:4d:b2:9a:05:b3:55:16:eb: f4:d7:05:ea:93:e4:de:5d:63:59:cf:7c:64:26:cf: ac:11:5b:db:a9:63:da:c8:c1:c7:7d:d8:47:79:63: 7e:d4:0e:33:b9:69:d6:4e:b6:b5:d6:3e:ec:eb:87: 70:f8:b6:e1:13:19:b8:d6:59:f8:c3:83:d1:01:13: 33:3e:5c:d9:b0:76:c1:db:55:23:0a:ce:d2:e9:b5: 3b:c3:e6:c0:9f:75:87:f8:52:89:77:5f:d2:c6:b2: 2d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:C6:4B:49:8A:C2:8C:B2:CC:12:AE:1B:3C:50:F3:12:39:EC:E2:8E X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:fc:36:1c:a2:6c:14:57:c1:88:be:7e:17:6b:1b:49:5a:20: 39:e1:b3:bd:cd:7a:4c:73:cb:8d:76:e9:a9:ab:0b:ec:20:01: 34:64:90:35:38:8d:6f:ad:ff:6b:dc:90:05:5c:7d:ac:8d:fe: f7:ce:cf:2b:e9:54:e6:df:dd:59:3e:37:7b:33:8c:43:0b:3d: 21:2a:84:3e:a2:16:64:44:ac:03:f8:e3:43:8e:b4:4f:47:c1: 8f:fa:96:ae:49:dd:79:99:32:c8:84:c8:e0:0a:d2:d8:23:61: 7d:52:44:66:c5:c7:33:23:ee:6d:23:73:68:a2:e2:f7:c5:02: 50:f0:c5:4d:05:38:0e:18:ee:b4:82:93:c7:e9:62:fb:15:72: d2:0d:0c:18:3e:4f:4c:97:9c:19:06:47:98:f1:eb:e1:8a:c2: cf:35:3a:ed:8a:8c:3f:9f:24:c0:be:cd:57:63:24:8d:29:d4: b7:1c:13:5d:a1:b8:a9:aa:aa:f1:01:e9:b6:ba:19:3f:fe:a9: 23:11:e0:81:d7:de:16:96:20:ac:03:f9:06:c5:20:33:d0:87: 3e:75:3d:07:eb:aa:0d:6a:41:63:3f:7c:d9:09:92:59:e2:61: 54:0c:37:69:60:7c:59:f0:f6:bb:51:9b:c6:b5:0c:f6:5f:fc: 4d:53:50:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjUxMTAyMTY1OTA0WhcNMjUxMTA5MTY1OTA0WjAYMRYwFAYD VQQDEw02OTA3OGRkOS0yODQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4en65P8ui6FoWtw4xrq/F5dSZ+2s0M9eq/N0hDd4XwGP5JEQiUWv/ek71JLz Up9BJcivGDgrnk5ZpwrlTRKBrkPyAFWJQ5piVtukcKMytfxgT44HlqZINfzrETSp Z9ipIV/LIIpmg9hBSMl1LaLY4QDXsFrMw4Tf+V6Vx35uSZoAJHLLvPUxWX6Z4vs2 PhECFyp5JJw9Z2NgILn9TbKaBbNVFuv01wXqk+TeXWNZz3xkJs+sEVvbqWPayMHH fdhHeWN+1A4zuWnWTra11j7s64dw+LbhExm41ln4w4PRARMzPlzZsHbB21UjCs7S 6bU7w+bAn3WH+FKJd1/SxrItiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDGS0mK woyyzBKuGzxQ8xI57OKOMB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE/DYcomwUV8GIvn4XaxtJWiA54bO9zXpMc8uNdumpqwvsIAE0ZJA1 OI1vrf9r3JAFXH2sjf73zs8r6VTm391ZPjd7M4xDCz0hKoQ+ohZkRKwD+ONDjrRP R8GP+pauSd15mTLIhMjgCtLYI2F9UkRmxcczI+5tI3NoouL3xQJQ8MVNBTgOGO60 gpPH6WL7FXLSDQwYPk9Ml5wZBkeY8evhisLPNTrtiow/nyTAvs1XYySNKdS3HBNd obipqqrxAem2uhk//qkjEeCB194WliCsA/kGxSAz0Ic+dT0H66oNakFjP3zZCZJZ 4mFUDDdpYHxZ8Pa7UZvGtQz2X/xNU1D7 -----END CERTIFICATE-----Generated at Tue Nov 4 01:05:59 2025 by rpki-client