$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: hEXwOVdO7FgSN+s6E/7IcQr2hGLVXGD0xV4RSga/fQo= Subject key identifier: 28:CC:74:A3:01:A3:7B:F8:41:B7:E3:0C:B6:18:83:76:82:E8:10:96 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 167F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 166D Signing time: Mon 20 Oct 2025 17:03:43 +0000 Manifest this update: Mon 20 Oct 2025 17:03:42 +0000 Manifest next update: Mon 27 Oct 2025 17:03:42 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: 2Wea7qDw9H9MGsMvkky99QRKL1L5R2glQKZOZpDtQiM=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: sJz6G/xstqw6p4gPUJK4gZEDHHsTgFb0oSV9wpMQ7es=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: bW1tXZTK5POt+zZDGbG4YDsox5kPeg50QnLxOuLANNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5759 (0x167f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Oct 20 17:03:42 2025 GMT Not After : Oct 27 17:03:42 2025 GMT Subject: CN=68f66b6e-ad73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ad:1a:31:96:fc:e2:88:bf:80:46:44:e4:06: 22:ab:b7:be:1f:72:67:70:93:c8:a1:ff:79:3c:61: d7:7f:25:f0:b3:cd:2b:08:a0:11:a3:da:84:b8:52: a2:ae:c6:fb:41:76:e1:2a:05:6d:55:83:82:5f:03: eb:24:8e:1c:26:98:8a:44:25:34:00:32:c9:cf:67: 87:a3:1a:ca:53:8e:3a:e6:03:98:cc:12:2d:ae:c1: b0:a1:35:15:19:22:98:04:fd:7e:d2:74:cc:aa:0e: 2a:f7:69:d9:b4:dc:b7:ec:57:bf:2a:8f:08:de:79: 50:72:10:b2:b4:44:14:0c:05:61:6f:fa:92:41:e4: bd:76:55:04:5f:8f:0d:92:73:d4:b9:8e:e6:8e:ce: fb:91:35:c3:80:11:c8:2f:02:39:b8:38:e5:bd:ef: 58:12:df:08:54:6a:19:73:fb:e9:46:08:f7:5a:18: 18:ac:4b:27:66:47:f9:3b:0b:54:da:82:f2:f8:8f: 9f:25:3f:87:a3:28:9a:44:ed:98:1a:b4:d9:28:d0: dc:d1:41:23:86:9d:07:58:21:71:66:9b:42:88:ba: 00:ad:37:c6:68:0b:b7:0e:ad:de:c4:44:7b:50:a6: 50:7b:81:58:53:b2:12:cc:eb:17:74:53:0b:3a:71: 29:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:CC:74:A3:01:A3:7B:F8:41:B7:E3:0C:B6:18:83:76:82:E8:10:96 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c0:3d:ee:a4:1c:d8:69:5f:4b:41:5e:c9:f9:78:0e:3c:02: f3:d5:0d:d3:5f:e6:1c:75:18:da:9e:95:5f:4d:07:ab:de:c0: 9a:e1:73:17:02:88:cb:5e:2e:42:a5:a5:f9:63:33:52:92:f3: 5c:a4:7f:3d:d9:ab:dd:5a:e8:e7:48:7f:95:c8:82:17:ec:b6: b2:89:5c:20:62:47:c7:a4:46:ab:70:88:d3:40:b8:77:e0:09: ec:87:18:bf:32:66:d4:37:0f:c3:5c:b2:39:ab:fa:03:f8:da: c3:25:84:bf:f2:ae:d2:97:4f:ee:6c:e2:b7:22:66:df:19:0e: 4e:76:2c:e3:6c:66:2a:c9:a6:c3:39:62:8c:32:6e:80:2f:c3: e4:b4:d7:9e:9b:ed:1c:4d:94:0b:e9:2b:cc:97:0f:31:d8:18: da:dd:6d:53:22:70:c1:8f:24:d3:7c:15:16:a3:29:a5:74:e6: 19:60:32:7a:a7:30:4a:11:6f:63:41:7b:bd:1a:be:5f:59:71: 7d:d3:41:c4:dc:a0:ff:50:bf:56:ec:28:86:e3:28:23:85:a4: 56:50:20:fc:7a:69:11:e5:e3:8d:48:5b:8c:eb:b9:05:c8:c2: 49:9b:e6:4f:6a:30:b5:a8:f7:e9:b2:ac:62:58:83:31:43:10: bf:73:78:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjUxMDIwMTcwMzQyWhcNMjUxMDI3MTcwMzQyWjAYMRYwFAYD VQQDEw02OGY2NmI2ZS1hZDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqK0aMZb84oi/gEZE5AYiq7e+H3JncJPIof95PGHXfyXws80rCKARo9qEuFKi rsb7QXbhKgVtVYOCXwPrJI4cJpiKRCU0ADLJz2eHoxrKU4465gOYzBItrsGwoTUV GSKYBP1+0nTMqg4q92nZtNy37Fe/Ko8I3nlQchCytEQUDAVhb/qSQeS9dlUEX48N knPUuY7mjs77kTXDgBHILwI5uDjlve9YEt8IVGoZc/vpRgj3WhgYrEsnZkf5OwtU 2oLy+I+fJT+HoyiaRO2YGrTZKNDc0UEjhp0HWCFxZptCiLoArTfGaAu3Dq3exER7 UKZQe4FYU7ISzOsXdFMLOnEpuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjMdKMB o3v4QbfjDLYYg3aC6BCWMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDwD3upBzYaV9LQV7J+XgOPALz1Q3TX+YcdRjanpVfTQer3sCa4XMX AojLXi5CpaX5YzNSkvNcpH892avdWujnSH+VyIIX7LayiVwgYkfHpEarcIjTQLh3 4Anshxi/MmbUNw/DXLI5q/oD+NrDJYS/8q7Sl0/ubOK3ImbfGQ5OdizjbGYqyabD OWKMMm6AL8PktNeem+0cTZQL6SvMlw8x2Bja3W1TInDBjyTTfBUWoymldOYZYDJ6 pzBKEW9jQXu9Gr5fWXF900HE3KD/UL9W7CiG4ygjhaRWUCD8emkR5eONSFuM67kF yMJJm+ZPajC1qPfpsqxiWIMxQxC/c3gb -----END CERTIFICATE-----Generated at Wed Oct 22 12:12:43 2025 by rpki-client