$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: o/20bKInRMZAjes5xFqL06LOhnEi75E4FBasdpU8p90= Subject key identifier: F3:C7:A5:95:BE:55:B6:A9:38:DD:9A:84:1C:8A:B8:45:C3:16:DD:78 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0AA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0A9F Signing time: Tue 04 Nov 2025 19:38:08 +0000 Manifest this update: Tue 04 Nov 2025 19:38:08 +0000 Manifest next update: Tue 11 Nov 2025 19:38:08 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: 0XNY4oCqmfAv6HidqKi3Ja+V4m/3vMacLH5wh44RiJo=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: O/F4TEeQrnUUSKYZMDqIO0+JzSXznAo+/sHQLTeUsVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2725 (0xaa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Nov 4 19:38:08 2025 GMT Not After : Nov 11 19:38:08 2025 GMT Subject: CN=690a5620-80d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ca:13:9a:fe:18:23:ac:ee:52:59:ef:d8:bf: 0c:b8:bf:18:7e:5d:db:10:90:6c:b2:e8:1e:09:d9: 2b:61:81:58:8b:7a:09:4b:55:19:0a:25:fc:24:25: 57:8a:a2:e0:4f:cd:47:61:a6:96:fb:3c:90:b5:e7: cf:26:e3:a9:55:2f:7c:80:73:bf:80:8c:07:40:0b: ae:b8:ab:6b:c1:08:c9:a2:13:7d:12:40:9b:45:ae: 99:d6:41:34:64:50:1a:55:f0:19:98:4c:88:01:8c: a0:21:57:26:ad:27:35:19:1d:62:f0:5b:3a:02:ca: be:ee:9d:3d:62:9d:ee:c4:43:62:f7:2c:48:ce:52: e3:4b:23:d9:69:b2:12:d0:c0:a8:e6:68:ef:b3:2c: 05:e6:b1:c0:33:f3:b2:40:9e:14:c7:a5:29:d1:d4: a8:86:ce:d3:dc:0b:56:4e:fb:9d:c3:c3:2c:3b:e9: 48:63:dd:47:9b:69:20:af:cf:6f:94:d5:e8:79:e7: 7c:86:15:f8:df:2c:62:eb:3a:05:84:5b:dc:b0:3c: d7:b7:ee:bf:e5:02:77:3e:88:ef:ac:8c:53:8e:ff: c2:96:53:9c:50:69:1e:ac:9a:4b:36:05:d4:52:ef: b6:17:44:ef:d1:9f:09:de:86:14:ad:c1:01:d6:b1: 84:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C7:A5:95:BE:55:B6:A9:38:DD:9A:84:1C:8A:B8:45:C3:16:DD:78 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:69:af:40:05:ca:ba:2b:05:13:bc:21:09:d8:64:ac:ef:49: 51:a9:0d:e7:94:68:64:15:d5:f4:c6:88:ab:f4:40:0c:7b:dd: 64:bf:83:d6:0f:de:69:e3:cf:0a:05:8a:4a:d8:3a:9f:63:b5: 7a:41:7b:6f:f0:ee:f0:5d:9b:7e:c5:97:39:6d:f1:24:af:17: 4d:f2:e8:c0:ee:db:a1:61:2c:94:d2:30:9b:1a:80:2c:a9:56: 51:c2:3a:54:06:37:f2:10:95:9f:53:42:79:c6:d5:37:89:ac: 0b:51:49:2a:68:86:0f:91:c2:9f:ee:f8:77:72:e4:55:f2:d6: 92:65:41:30:8a:02:eb:d4:0b:d0:ba:a1:c4:8e:8d:f8:fd:bf: 52:8e:b3:70:04:6a:c2:9a:c5:da:99:63:f7:b9:43:f7:82:9f: 3e:09:07:61:5a:a3:c7:c0:35:6c:07:94:9e:c6:9b:a9:09:c6: a5:3e:c6:02:e0:e8:cc:d9:d8:b5:f0:62:1a:ec:92:63:ab:38: e1:f5:60:54:82:7d:33:fd:6e:25:02:a3:71:49:8e:68:c3:7c: 09:b7:02:59:b0:e2:5d:35:10:86:55:d1:c4:08:1f:f7:4c:c0: 35:79:32:03:b3:4f:a3:31:c4:a2:cc:c9:5b:6c:8c:f1:8e:d8: 83:7b:ec:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjUxMTA0MTkzODA4WhcNMjUxMTExMTkzODA4WjAYMRYwFAYD VQQDEw02OTBhNTYyMC04MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8oTmv4YI6zuUlnv2L8MuL8Yfl3bEJBssugeCdkrYYFYi3oJS1UZCiX8JCVX iqLgT81HYaaW+zyQtefPJuOpVS98gHO/gIwHQAuuuKtrwQjJohN9EkCbRa6Z1kE0 ZFAaVfAZmEyIAYygIVcmrSc1GR1i8Fs6Asq+7p09Yp3uxENi9yxIzlLjSyPZabIS 0MCo5mjvsywF5rHAM/OyQJ4Ux6Up0dSohs7T3AtWTvudw8MsO+lIY91Hm2kgr89v lNXoeed8hhX43yxi6zoFhFvcsDzXt+6/5QJ3PojvrIxTjv/CllOcUGkerJpLNgXU Uu+2F0Tv0Z8J3oYUrcEB1rGErwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPHpZW+ VbapON2ahByKuEXDFt14MB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAaa9ABcq6KwUTvCEJ2GSs70lRqQ3nlGhkFdX0xoir9EAMe91kv4PW D95p488KBYpK2DqfY7V6QXtv8O7wXZt+xZc5bfEkrxdN8ujA7tuhYSyU0jCbGoAs qVZRwjpUBjfyEJWfU0J5xtU3iawLUUkqaIYPkcKf7vh3cuRV8taSZUEwigLr1AvQ uqHEjo34/b9SjrNwBGrCmsXamWP3uUP3gp8+CQdhWqPHwDVsB5SexpupCcalPsYC 4OjM2di18GIa7JJjqzjh9WBUgn0z/W4lAqNxSY5ow3wJtwJZsOJdNRCGVdHECB/3 TMA1eTIDs0+jMcSizMlbbIzxjtiDe+xS -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:01 2025 by rpki-client