$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft File: OYkRMAEE18WLMm5WZLPXmi1GRuA.mft (raw, json) Hash identifier: d6PLOCvSjnuToc5I7ozbGbqWn62kFa5TJO02GJUBRoM= Subject key identifier: 7C:2F:CE:5C:34:E0:73:D3:EF:E1:4A:83:B3:A1:31:0E:94:EF:81:9F Authority key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 Certificate issuer: /CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Certificate serial: 0A57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft Manifest number: 0ACA Signing time: Tue 04 Nov 2025 19:52:04 +0000 Manifest this update: Tue 04 Nov 2025 19:52:04 +0000 Manifest next update: Tue 11 Nov 2025 19:52:04 +0000 Files and hashes: 1: OYkRMAEE18WLMm5WZLPXmi1GRuA.crl (hash: Eqt3ChAXAdvt8zhT4vR2aFYNTaITwqxqf4pCS66j6Bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2647 (0xa57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Validity Not Before: Nov 4 19:52:04 2025 GMT Not After : Nov 11 19:52:04 2025 GMT Subject: CN=690a5964-085b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d8:42:78:94:ca:78:a7:d7:bb:cf:58:2a:85: bf:ab:a4:04:c7:b5:2a:82:00:f4:c8:39:2a:8a:0c: 1d:cc:2e:11:cf:c0:58:50:e2:05:e3:d0:d5:79:9a: 71:83:78:ed:3d:9f:a0:1a:51:21:2e:81:56:d0:56: 52:65:6a:78:bb:b7:77:1a:72:ef:19:13:e6:02:3c: cc:ec:23:57:80:ee:0a:20:1c:d3:bf:b9:0f:d6:4f: 6a:ea:7e:12:d4:8a:3b:9b:1b:d0:9a:48:eb:f4:a5: ac:0b:fa:f2:76:d7:83:0f:a7:66:92:47:84:50:da: 2a:89:93:ca:4c:cd:b6:7d:ce:8d:0c:ad:30:91:f6: bc:50:df:2e:34:97:23:eb:36:1e:64:8d:0e:cd:0e: 4c:98:fd:fc:c6:79:05:68:8a:29:eb:4d:ae:53:69: 13:b1:1a:b7:a3:43:d0:c4:5e:52:0c:3d:4b:a3:9d: 42:ef:fe:bc:8f:ec:e9:6a:80:af:70:25:dc:fe:e0: 60:fd:0a:41:20:4c:6e:fc:5b:2f:37:98:7f:3d:3a: df:97:42:c9:99:d4:30:4f:e9:f5:ba:db:f6:94:92: f2:d7:bd:1b:b4:c0:20:a2:bb:c7:08:18:f4:c4:e3: ee:f3:2b:d2:2a:19:f3:6a:79:ed:ea:b4:6f:ed:69: be:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:2F:CE:5C:34:E0:73:D3:EF:E1:4A:83:B3:A1:31:0E:94:EF:81:9F X509v3 Authority Key Identifier: keyid:39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:82:2e:39:e1:45:80:5a:26:10:08:a8:3a:50:ba:a2:5d:77: 95:64:3a:16:68:da:69:16:b9:ba:ea:1a:d3:93:47:5c:3e:6d: c9:51:a5:ac:39:4b:71:bb:1b:8f:35:41:ef:db:1f:ae:4a:6c: cd:3b:c9:58:f9:db:45:09:b0:63:08:5d:39:bf:ca:76:d6:1a: 30:47:70:9c:4e:4c:6c:7c:ab:84:6f:b8:d6:3c:df:72:61:5d: aa:91:f9:bd:6e:5f:85:b4:15:8e:1d:f7:d3:bf:78:ea:56:4c: b0:bc:07:e2:4f:40:d9:cc:ca:f9:2f:2b:7b:87:f7:63:e3:2c: 90:c7:cf:8b:64:8a:c7:54:67:b5:8c:bb:84:f2:a1:34:a5:e8: 98:58:70:07:28:d3:11:56:e2:fb:21:47:a7:5c:c7:99:0d:14: 90:ae:2d:4c:0f:ae:61:b5:98:af:87:10:07:e8:bc:dd:33:57: cc:3a:ee:d7:0e:ce:23:d4:59:51:fe:52:f2:ec:4a:66:88:3c: 14:e5:98:c6:03:3d:eb:22:42:98:34:48:e4:86:14:9d:2f:e2: bf:c7:e9:27:e3:f9:c7:49:c0:6c:97:ba:07:33:ff:1f:06:6c: f6:27:77:e2:0e:7f:c8:2b:b4:4c:b9:02:bf:6b:55:81:9b:6f: d5:fa:8c:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1NjY0QjNENzlB MkQ0NjQ2RTAwHhcNMjUxMTA0MTk1MjA0WhcNMjUxMTExMTk1MjA0WjAYMRYwFAYD VQQDEw02OTBhNTk2NC0wODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dhCeJTKeKfXu89YKoW/q6QEx7UqggD0yDkqigwdzC4Rz8BYUOIF49DVeZpx g3jtPZ+gGlEhLoFW0FZSZWp4u7d3GnLvGRPmAjzM7CNXgO4KIBzTv7kP1k9q6n4S 1Io7mxvQmkjr9KWsC/rydteDD6dmkkeEUNoqiZPKTM22fc6NDK0wkfa8UN8uNJcj 6zYeZI0OzQ5MmP38xnkFaIop602uU2kTsRq3o0PQxF5SDD1Lo51C7/68j+zpaoCv cCXc/uBg/QpBIExu/FsvN5h/PTrfl0LJmdQwT+n1utv2lJLy170btMAgorvHCBj0 xOPu8yvSKhnzannt6rRv7Wm+6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwvzlw0 4HPT7+FKg7OhMQ6U74GfMB8GA1UdIwQYMBaAFDmJETABBNfFizJuVmSz15otRkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4V0xNbTVXWkxQWG1pMUdS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Za1JNQUVFMThXTE1tNVdaTFBYbWkxR1J1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4 V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+gi454UWAWiYQCKg6ULqiXXeVZDoWaNppFrm66hrTk0dcPm3JUaWs OUtxuxuPNUHv2x+uSmzNO8lY+dtFCbBjCF05v8p21howR3CcTkxsfKuEb7jWPN9y YV2qkfm9bl+FtBWOHffTv3jqVkywvAfiT0DZzMr5Lyt7h/dj4yyQx8+LZIrHVGe1 jLuE8qE0peiYWHAHKNMRVuL7IUenXMeZDRSQri1MD65htZivhxAH6LzdM1fMOu7X Ds4j1FlR/lLy7EpmiDwU5ZjGAz3rIkKYNEjkhhSdL+K/x+kn4/nHScBsl7oHM/8f Bmz2J3fiDn/IK7RMuQK/a1WBm2/V+owg -----END CERTIFICATE-----Generated at Wed Nov 5 05:22:57 2025 by rpki-client