$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: FBlgLzt8pLbgHlk3lUsySOZYcM9LKobSqEXPfoBRaqc= Subject key identifier: 8D:C7:12:C9:C5:77:85:C4:F7:FC:8A:4F:D1:BC:9E:EF:42:B5:FC:22 Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 01CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 01AD Signing time: Wed 17 Sep 2025 04:05:51 +0000 Manifest this update: Wed 17 Sep 2025 04:05:51 +0000 Manifest next update: Wed 24 Sep 2025 04:05:51 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: KciCkjKfylyvaioGO7oNwPLdfY72M9uJQ099nv4leZw=) 2: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: F8BQEsLxz2XO34zN3GNH3AuMPZU87rOGItPVHiqWabQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390, serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: Sep 17 04:05:51 2025 GMT Not After : Sep 24 04:05:51 2025 GMT Subject: CN=68ca339f-147b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:76:a7:84:fd:7d:fa:82:fd:f4:96:72:60: 56:d3:78:56:e5:e8:5c:63:5c:69:23:f3:84:89:ba: ee:fd:10:75:da:0f:f5:26:ff:e7:fc:7a:0f:cd:b7: 3f:aa:57:6a:43:05:fd:f1:4d:a0:95:72:23:53:a2: 40:28:38:6b:6f:29:68:b7:82:02:2a:4b:70:64:06: e3:13:18:93:3c:dd:84:77:3e:68:08:83:e8:20:42: dc:b8:e8:55:11:93:d4:22:61:05:42:59:69:66:07: 9a:5e:fd:9f:2a:e1:84:ad:46:a9:79:54:a7:87:58: 7b:d6:ca:4d:99:ce:5b:48:3d:c2:3b:56:64:f9:e2: ff:e5:f2:5c:3a:dc:c7:b0:05:ed:47:ac:0d:2b:50: 31:b8:c9:e9:8f:ed:0a:62:55:f4:d8:19:02:6e:09: 20:3e:16:22:a0:b2:bc:5a:c9:5f:8d:a6:a4:98:35: 01:62:8a:51:aa:b0:8f:fd:a7:9b:da:5b:80:4d:9c: b5:53:d4:35:26:a7:c4:c1:64:3f:c7:33:98:de:81: c0:17:80:a9:3b:d6:ad:a6:3c:44:b5:aa:58:ca:0d: 2c:85:7a:c5:5a:58:55:26:cc:07:b5:ab:96:a7:58: 68:6a:cd:c8:6a:86:a8:09:fb:c7:48:30:7e:f6:57: e8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C7:12:C9:C5:77:85:C4:F7:FC:8A:4F:D1:BC:9E:EF:42:B5:FC:22 X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:cb:e8:a3:df:0b:ea:5a:3a:6e:5f:9b:ca:b4:b9:32:c8:94: 4c:63:5b:fe:0f:5d:95:54:2e:f6:f9:21:07:a3:e1:25:12:b3: 04:df:3e:22:4c:ac:bb:39:e3:da:c7:6d:9e:4c:50:a7:8b:82: bb:95:fe:2d:9b:1e:e8:bc:b9:c1:9b:d1:15:fa:37:c6:2e:68: 4a:6e:5b:de:6e:d5:3f:e0:f2:fa:0a:25:ba:44:f8:df:0c:f2: 6a:31:e5:ea:80:aa:7f:67:cf:1c:52:89:d3:62:f9:36:46:cc: 6f:c6:5b:8f:74:1c:48:2d:21:cf:14:04:eb:34:47:cd:f4:e6: 0b:62:69:39:51:eb:06:b6:4f:2f:41:87:bc:f2:4c:86:2d:40: 81:25:6f:17:ff:a5:03:8d:db:12:59:ef:3c:7b:0b:d0:5e:ad: 32:7c:d0:db:22:35:e3:90:14:0d:47:1a:93:96:8c:df:bb:3d: a5:eb:54:a7:db:69:e4:be:e7:8a:93:aa:ca:cb:98:47:2e:f8: df:3c:b2:40:1b:6c:6c:87:69:ef:0f:63:34:9c:2d:1d:09:e0: 0f:3e:b2:b0:71:3b:5d:24:ef:aa:1b:51:28:f4:dd:7c:78:09: 64:3e:16:ff:b0:60:f2:a2:a5:67:42:08:c0:16:87:8f:a6:20: 20:b3:d6:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjUwOTE3MDQwNTUxWhcNMjUwOTI0MDQwNTUxWjAYMRYwFAYD VQQDEw02OGNhMzM5Zi0xNDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvf12p4T9ffqC/fSWcmBW03hW5ehcY1xpI/OEibru/RB12g/1Jv/n/HoPzbc/ qldqQwX98U2glXIjU6JAKDhrbylot4ICKktwZAbjExiTPN2Edz5oCIPoIELcuOhV EZPUImEFQllpZgeaXv2fKuGErUapeVSnh1h71spNmc5bSD3CO1Zk+eL/5fJcOtzH sAXtR6wNK1AxuMnpj+0KYlX02BkCbgkgPhYioLK8WslfjaakmDUBYopRqrCP/aeb 2luATZy1U9Q1JqfEwWQ/xzOY3oHAF4CpO9atpjxEtapYyg0shXrFWlhVJswHtauW p1hoas3IaoaoCfvHSDB+9lfoowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3HEsnF d4XE9/yKT9G8nu9CtfwiMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhy+ij3wvqWjpuX5vKtLkyyJRMY1v+D12VVC72+SEHo+ElErME3z4i TKy7OePax22eTFCni4K7lf4tmx7ovLnBm9EV+jfGLmhKblvebtU/4PL6CiW6RPjf DPJqMeXqgKp/Z88cUonTYvk2RsxvxluPdBxILSHPFATrNEfN9OYLYmk5UesGtk8v QYe88kyGLUCBJW8X/6UDjdsSWe88ewvQXq0yfNDbIjXjkBQNRxqTlozfuz2l61Sn 22nkvueKk6rKy5hHLvjfPLJAG2xsh2nvD2M0nC0dCeAPPrKwcTtdJO+qG1Eo9N18 eAlkPhb/sGDyoqVnQgjAFoePpiAgs9bO -----END CERTIFICATE-----Generated at Fri Sep 19 02:49:51 2025 by rpki-client