$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: Yyji1Y6IZ9R74S+FFT+njPpdA6HYCJU/HAAAn9PmbVw= Subject key identifier: 0C:40:CD:F3:1B:20:C0:35:A4:08:0A:C1:8C:86:9C:73:C0:DE:36:28 Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: 0190 Signing time: Thu 23 Oct 2025 05:07:50 +0000 Manifest this update: Thu 23 Oct 2025 05:07:50 +0000 Manifest next update: Thu 30 Oct 2025 05:07:50 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: UHPv6h8W8uZN5BO7AbWzHXKNqa7kc1i14SRs/xyh0Ok=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: 5JFgGi1zcqLdr4l1Ei+0uqRhphNnP2rP0bMb+qfmJXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 05:07:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1, serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: Oct 23 05:07:50 2025 GMT Not After : Oct 30 05:07:50 2025 GMT Subject: CN=68f9b826-7326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8f:04:35:33:ab:2b:d2:f7:38:56:ef:e1:1c: 67:d2:77:46:60:be:20:8c:f3:bb:d7:53:f5:14:fc: 4f:56:cf:7d:02:d5:1e:4a:c1:ea:8c:d3:b1:f8:62: cb:8a:a6:81:6b:c9:a3:fa:92:87:d6:24:a5:4f:ef: 26:b8:31:9e:03:a7:e7:ca:2e:0d:b3:f1:ff:85:6f: 33:07:53:1f:c0:a1:9a:33:8b:e1:95:61:41:6e:9e: 0f:28:69:52:78:99:67:a2:9f:e5:29:d4:a7:54:71: 97:36:a0:89:bd:21:ce:03:a4:1b:56:ea:dc:ea:a5: 17:de:4c:59:f6:7d:6a:5f:12:ce:fd:e3:a6:26:0b: 20:62:75:26:34:10:ed:c0:16:91:84:96:82:e3:3e: 14:62:1b:03:16:de:43:2e:b3:14:dc:4f:f5:57:94: 55:dc:bb:bd:87:36:53:d0:92:32:f2:a4:69:9a:8f: a0:86:f3:1e:e3:d5:db:15:0c:9a:ff:45:81:dc:04: 22:0b:0c:fc:e4:ab:80:59:84:ac:57:e8:8c:09:d8: 20:ab:89:a9:fd:43:7e:53:9f:72:a6:e6:a6:83:2c: a6:37:fe:c5:54:c5:95:b7:8e:92:3f:e3:be:ec:64: fd:55:53:a1:ff:53:78:fb:e7:a5:eb:de:1a:ae:1b: b0:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:40:CD:F3:1B:20:C0:35:A4:08:0A:C1:8C:86:9C:73:C0:DE:36:28 X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:bd:cf:fe:d5:18:c8:29:5f:35:8d:87:56:26:ba:3d:ef:7b: 83:df:ed:32:41:6f:35:fa:98:ec:71:b6:a0:e6:cf:7a:6a:50: 06:8b:bb:21:fb:de:43:fc:ea:25:a3:4e:38:d7:c8:cd:4f:53: c0:17:67:c9:d2:2f:45:f2:e4:20:cf:3a:59:61:24:9b:6b:da: f5:7d:1c:78:6f:a1:76:1d:0e:e2:33:86:47:72:3b:8d:9d:57: 29:ef:1e:7e:ed:b0:07:59:0d:f2:ce:68:3a:8b:1b:59:19:63: 41:f0:37:96:d6:b0:13:52:dd:02:bd:8f:62:83:cc:53:d8:bb: d8:8b:aa:2f:c7:39:65:f3:64:f7:0f:5c:f1:9b:e2:cd:96:e9: b9:7a:0b:af:96:8a:6e:08:8d:a2:57:35:54:03:42:d1:02:cb: ef:a1:29:71:18:4a:bc:88:fd:4f:27:49:cb:23:9b:83:bb:07: ac:f7:4c:b4:21:4b:df:1e:8a:c3:1c:8c:cb:67:a4:20:29:5e: 22:5b:fa:06:40:54:04:63:a7:eb:5b:2b:7f:6d:26:50:c1:ca: 1d:29:9f:48:ed:86:9a:4e:d8:2a:f3:e4:42:b1:95:bb:7d:c3: f3:bb:ba:2b:6a:b8:74:b3:17:81:ca:3d:d4:67:9f:e9:8d:19: 5c:be:79:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjUxMDIzMDUwNzUwWhcNMjUxMDMwMDUwNzUwWjAYMRYwFAYD VQQDEw02OGY5YjgyNi03MzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw48ENTOrK9L3OFbv4Rxn0ndGYL4gjPO711P1FPxPVs99AtUeSsHqjNOx+GLL iqaBa8mj+pKH1iSlT+8muDGeA6fnyi4Ns/H/hW8zB1MfwKGaM4vhlWFBbp4PKGlS eJlnop/lKdSnVHGXNqCJvSHOA6QbVurc6qUX3kxZ9n1qXxLO/eOmJgsgYnUmNBDt wBaRhJaC4z4UYhsDFt5DLrMU3E/1V5RV3Lu9hzZT0JIy8qRpmo+ghvMe49XbFQya /0WB3AQiCwz85KuAWYSsV+iMCdggq4mp/UN+U59ypuamgyymN/7FVMWVt46SP+O+ 7GT9VVOh/1N4++el694arhuwrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxAzfMb IMA1pAgKwYyGnHPA3jYoMB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxvc/+1RjIKV81jYdWJro973uD3+0yQW81+pjscbag5s96alAGi7sh +95D/Oolo04418jNT1PAF2fJ0i9F8uQgzzpZYSSba9r1fRx4b6F2HQ7iM4ZHcjuN nVcp7x5+7bAHWQ3yzmg6ixtZGWNB8DeW1rATUt0CvY9ig8xT2LvYi6ovxzll82T3 D1zxm+LNlum5eguvlopuCI2iVzVUA0LRAsvvoSlxGEq8iP1PJ0nLI5uDuwes90y0 IUvfHorDHIzLZ6QgKV4iW/oGQFQEY6frWyt/bSZQwcodKZ9I7YaaTtgq8+RCsZW7 fcPzu7orarh0sxeByj3UZ5/pjRlcvnk7 -----END CERTIFICATE-----Generated at Thu Oct 23 20:36:51 2025 by rpki-client