$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: aRMlxBes/lY04deqNU/ny6TCsalBx08s52gD4VbttN4= Subject key identifier: C6:AD:A0:11:57:D9:0A:52:6E:79:56:48:B3:73:9C:13:9E:93:7F:67 Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 014F Signing time: Mon 03 Nov 2025 04:11:28 +0000 Manifest this update: Mon 03 Nov 2025 04:11:28 +0000 Manifest next update: Mon 10 Nov 2025 04:11:28 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: WUNIrmtDzS2vGZfbWh5buviOw5aaynd6UbcxtbGHd+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D, serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: Nov 3 04:11:28 2025 GMT Not After : Nov 10 04:11:28 2025 GMT Subject: CN=69082b70-4549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ab:6f:8e:84:ed:ca:65:0f:fa:87:5d:e8:bb: 1f:4c:4d:b6:c1:5e:2a:a3:df:82:d8:47:d8:0d:ab: 28:25:67:c1:89:aa:98:a7:f0:fa:31:aa:40:e9:03: bb:50:29:8f:5c:64:42:c1:4e:33:ec:b8:b2:ef:90: 28:1e:5f:6f:ee:da:8a:61:db:35:36:f2:2b:2d:0f: 20:ac:69:f1:01:0f:99:44:aa:57:df:a3:15:f8:6a: ad:2d:d4:9e:52:92:f7:ac:e0:bf:aa:3f:ae:52:ba: 4a:a0:c7:11:66:01:82:aa:97:0f:1b:52:a2:68:25: bc:90:e6:c1:da:f3:6d:44:00:d9:63:d2:b1:a0:f4: 92:4d:8e:c1:d9:9f:a2:06:94:cb:e5:e0:36:8d:54: 58:d9:87:b3:30:92:3e:29:4a:76:66:c8:67:b2:0d: 27:af:4d:be:54:87:af:e1:6a:7f:81:a4:b2:28:e0: 23:4e:4e:db:8c:13:26:e0:60:dd:25:9e:77:3e:47: 8f:ca:f0:70:57:3d:78:5a:94:48:d3:b0:88:77:34: 9b:f4:fa:26:c3:6f:8f:58:7e:e6:82:d5:8f:59:66: c5:2f:5a:de:fe:58:60:02:e0:e0:0a:e2:d6:90:fe: 17:6d:92:91:23:9d:b9:52:e8:5e:ce:6a:82:83:c8: 7a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:AD:A0:11:57:D9:0A:52:6E:79:56:48:B3:73:9C:13:9E:93:7F:67 X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:5d:60:75:2d:9f:74:b7:85:89:09:7a:78:db:92:2e:fb:13: a6:83:4b:ae:d9:f0:e5:45:a6:84:59:27:86:36:26:b8:31:7a: d3:84:fd:4e:b9:15:14:a4:e2:1b:21:3e:67:a8:03:95:7a:c4: 9a:90:db:c0:1c:c3:c3:15:a6:19:b3:28:8b:31:15:4b:5c:6a: dc:0b:61:42:24:1a:85:9e:e2:58:b0:d8:87:45:ee:ee:cf:2a: ba:b5:6c:ee:0d:65:3d:97:dc:a4:32:a4:65:0a:2a:8d:da:48: b4:a0:ac:f4:37:f8:81:24:51:9b:01:84:fc:fc:53:c0:7a:e6: ee:85:5b:b4:50:a5:d5:87:da:68:78:52:eb:6f:51:f4:44:4c: eb:9c:d9:e8:62:ef:c7:1e:fd:1b:fa:51:0b:74:1c:45:6d:90: 24:ac:e8:0d:f9:5c:07:b6:2e:1e:c2:4e:a7:25:06:a7:80:e8: 7a:90:97:9a:b5:3c:25:f7:94:a5:61:e9:c4:9b:0d:2f:d6:77: 75:c9:6d:d0:03:1a:63:e9:b0:bf:11:68:5e:b3:a8:ce:63:77: 0f:71:8e:da:84:76:97:52:89:ce:c1:7a:3b:66:43:38:48:df: 12:0f:53:96:4e:bf:02:72:f5:30:87:ae:f3:ca:a1:35:90:f0: 57:d9:ca:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjUxMTAzMDQxMTI4WhcNMjUxMTEwMDQxMTI4WjAYMRYwFAYD VQQDEw02OTA4MmI3MC00NTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6tvjoTtymUP+odd6LsfTE22wV4qo9+C2EfYDasoJWfBiaqYp/D6MapA6QO7 UCmPXGRCwU4z7Liy75AoHl9v7tqKYds1NvIrLQ8grGnxAQ+ZRKpX36MV+GqtLdSe UpL3rOC/qj+uUrpKoMcRZgGCqpcPG1KiaCW8kObB2vNtRADZY9KxoPSSTY7B2Z+i BpTL5eA2jVRY2YezMJI+KUp2Zshnsg0nr02+VIev4Wp/gaSyKOAjTk7bjBMm4GDd JZ53PkePyvBwVz14WpRI07CIdzSb9Pomw2+PWH7mgtWPWWbFL1re/lhgAuDgCuLW kP4XbZKRI525UuhezmqCg8h6UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMatoBFX 2QpSbnlWSLNznBOek39nMB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcXWB1LZ90t4WJCXp425Iu+xOmg0uu2fDlRaaEWSeGNia4MXrThP1O uRUUpOIbIT5nqAOVesSakNvAHMPDFaYZsyiLMRVLXGrcC2FCJBqFnuJYsNiHRe7u zyq6tWzuDWU9l9ykMqRlCiqN2ki0oKz0N/iBJFGbAYT8/FPAeubuhVu0UKXVh9po eFLrb1H0REzrnNnoYu/HHv0b+lELdBxFbZAkrOgN+VwHti4ewk6nJQangOh6kJea tTwl95SlYenEmw0v1nd1yW3QAxpj6bC/EWhes6jOY3cPcY7ahHaXUonOwXo7ZkM4 SN8SD1OWTr8CcvUwh67zyqE1kPBX2cq9 -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:38 2025 by rpki-client