$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: /oPjY/e8X06hdIz4GZ8xRDw2wx3Jj1Im7g49OWa6A0U= Subject key identifier: 0A:E7:A0:60:21:E5:28:65:80:FE:9E:25:68:0B:32:F9:F2:19:58:AA Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 0818 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0810 Signing time: Thu 18 Sep 2025 21:09:39 +0000 Manifest this update: Thu 18 Sep 2025 21:09:39 +0000 Manifest next update: Thu 25 Sep 2025 21:09:39 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: Rc6OmPiFMLlu5c5cMdeCp0C7xkFEyevJ+8dX1eOyCQM=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:09:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2072 (0x818) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Sep 18 21:09:39 2025 GMT Not After : Sep 25 21:09:39 2025 GMT Subject: CN=68cc7513-8e6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:bc:bd:ad:99:f6:08:e2:84:17:b0:a1:7a:c8: 17:eb:eb:71:22:2c:36:2d:53:fc:c8:25:2a:07:6b: 98:e2:fb:0d:e4:90:68:c6:55:7b:a5:84:56:14:52: 6a:c5:0b:3e:f1:24:2e:a7:a0:0d:5b:b0:a7:4c:e2: 8f:9f:03:b7:1a:6f:d9:32:7c:53:0a:99:0f:c9:b2: aa:15:26:19:34:52:38:56:64:c4:1e:17:c7:50:ed: 5c:f1:9b:bb:6a:a4:a9:61:32:4d:ca:ac:4a:a5:bf: 32:c7:e7:57:a7:22:88:4a:1d:5a:c8:78:88:3b:42: bf:0e:f8:dc:8f:8f:71:6e:e5:a6:00:25:09:45:e8: 54:2a:93:4b:a4:53:e7:e6:95:39:7d:60:4f:59:43: 6f:0d:10:93:df:13:7f:92:41:35:ed:54:eb:e9:ef: aa:bf:b7:5c:a1:e6:dc:c4:99:b1:11:62:b4:5c:fb: 61:89:35:1a:08:d4:60:63:d9:d8:fa:84:45:f2:69: 85:94:df:ba:a0:73:82:8a:88:28:95:d3:a1:2e:5d: 42:4e:5d:6e:88:71:7d:50:6d:3b:f7:d1:76:82:39: a4:5a:98:46:0e:df:7f:29:ac:81:01:ff:eb:ae:10: 10:20:57:c7:79:60:b2:8b:ed:ff:db:f0:00:43:94: 6b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E7:A0:60:21:E5:28:65:80:FE:9E:25:68:0B:32:F9:F2:19:58:AA X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:8d:35:1c:ca:08:2a:b3:f0:92:f5:10:d2:a5:9c:5e:db:ee: f5:ba:c3:0a:1e:cc:0a:a9:17:b2:81:98:e3:81:37:90:28:67: fb:0b:a8:9a:b8:a7:51:f1:39:27:27:91:c1:79:7d:ea:66:bb: 34:91:07:18:65:af:e7:b1:ba:29:34:fe:79:bd:c8:38:c5:4b: e4:5d:88:c3:0d:b1:97:af:d6:f2:51:25:f4:fa:15:23:8b:51: d9:a2:32:f7:03:30:77:00:53:62:13:b0:ca:49:e6:ad:21:14: 8b:02:36:06:66:63:85:07:26:73:e3:11:b6:5e:c1:74:d0:5a: 36:85:63:b0:c8:db:94:fc:a0:bb:95:ef:73:0a:20:e6:b2:59: f1:66:9f:a6:cb:12:e9:a0:75:52:82:66:ba:7d:a4:0c:36:e7: 93:69:cb:35:ee:3f:42:08:6e:04:75:e1:ef:ef:4d:f6:09:93: fb:b1:5b:37:0a:a5:f0:81:ef:65:01:3b:8d:fe:4b:c7:ad:ec: ba:06:51:b8:3b:57:8e:dc:7c:2e:2d:9a:cb:07:09:22:79:3e: c1:ce:df:50:02:81:8e:be:86:10:b2:a5:3f:1b:05:40:1a:6f: 2c:7a:bc:8d:f4:4d:55:0c:0e:00:10:97:85:51:a2:ce:0c:7b: e8:79:5a:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUwOTE4MjEwOTM5WhcNMjUwOTI1MjEwOTM5WjAYMRYwFAYD VQQDEw02OGNjNzUxMy04ZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7y9rZn2COKEF7ChesgX6+txIiw2LVP8yCUqB2uY4vsN5JBoxlV7pYRWFFJq xQs+8SQup6ANW7CnTOKPnwO3Gm/ZMnxTCpkPybKqFSYZNFI4VmTEHhfHUO1c8Zu7 aqSpYTJNyqxKpb8yx+dXpyKISh1ayHiIO0K/Dvjcj49xbuWmACUJRehUKpNLpFPn 5pU5fWBPWUNvDRCT3xN/kkE17VTr6e+qv7dcoebcxJmxEWK0XPthiTUaCNRgY9nY +oRF8mmFlN+6oHOCiogoldOhLl1CTl1uiHF9UG0799F2gjmkWphGDt9/KayBAf/r rhAQIFfHeWCyi+3/2/AAQ5RriwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArnoGAh 5ShlgP6eJWgLMvnyGViqMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBojTUcyggqs/CS9RDSpZxe2+71usMKHswKqReygZjjgTeQKGf7C6ia uKdR8TknJ5HBeX3qZrs0kQcYZa/nsbopNP55vcg4xUvkXYjDDbGXr9byUSX0+hUj i1HZojL3AzB3AFNiE7DKSeatIRSLAjYGZmOFByZz4xG2XsF00Fo2hWOwyNuU/KC7 le9zCiDmslnxZp+myxLpoHVSgma6faQMNueTacs17j9CCG4EdeHv7032CZP7sVs3 CqXwge9lATuN/kvHrey6BlG4O1eO3HwuLZrLBwkieT7Bzt9QAoGOvoYQsqU/GwVA Gm8seryN9E1VDA4AEJeFUaLODHvoeVpy -----END CERTIFICATE-----Generated at Fri Sep 19 00:59:05 2025 by rpki-client