$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft File: OLX3py9k7NJYhfi0dYUC4j2oOLs.mft (raw, json) Hash identifier: t9OaE+0ENWrIqUHrE3PDoMlaAGC/2CA7eFMUxyldX4o= Subject key identifier: B8:8F:7E:6B:5E:96:8F:84:F9:07:AF:F3:9F:8A:E4:35:3F:FC:A1:BA Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Certificate serial: 0A73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft Manifest number: 0A5E Signing time: Sun 02 Nov 2025 19:39:45 +0000 Manifest this update: Sun 02 Nov 2025 19:39:45 +0000 Manifest next update: Sun 09 Nov 2025 19:39:45 +0000 Files and hashes: 1: OLX3py9k7NJYhfi0dYUC4j2oOLs.crl (hash: KO9EATuLFeB5RDSZDv7EnItcTcAE0wGx58zsb/fCCOY=) 2: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (hash: +OxVgsTFeHXtInD93OSVx4VoDwnGKpFnWPCaCB5ImQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2675 (0xa73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C039, serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Validity Not Before: Nov 2 19:39:45 2025 GMT Not After : Nov 9 19:39:45 2025 GMT Subject: CN=6907b381-4cbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:50:dd:f2:d3:70:c0:22:85:19:13:6b:2d:a5: cb:a8:5f:4e:af:c4:7e:53:27:1b:f6:ae:68:e8:5d: 7b:55:44:00:7b:cd:18:0e:0d:49:b8:d5:2f:e5:e2: 04:cd:5d:ef:39:b8:ad:f5:0a:09:7e:47:fa:dd:36: 8d:47:ad:3d:c4:23:3a:28:8c:81:05:82:2d:e2:43: c9:6a:b7:95:9a:ed:cc:12:9e:4b:ab:1d:07:66:d0: 9f:f6:ee:3f:52:c4:ee:58:91:b9:2c:18:8d:44:a5: d5:4a:50:ed:87:54:9b:56:d3:02:4e:67:9f:a2:c1: ca:1d:c5:00:45:89:b6:c3:ff:04:85:21:f0:4a:54: 25:ec:77:2f:16:f3:81:58:77:60:38:a1:79:da:e6: 3a:a5:8c:68:5a:22:15:c8:26:d2:c9:e5:6b:b9:ea: e9:5c:4f:37:c2:29:52:cc:ab:43:41:ae:c7:34:c3: a7:f3:61:ce:b7:b7:c2:3a:69:39:e3:d6:03:ca:44: 30:3f:a6:93:c9:c0:5a:dc:38:44:be:a5:49:08:05: 08:cd:6a:50:e9:75:d3:92:57:d1:98:4b:82:91:5b: 48:05:d5:38:96:69:87:92:30:06:f0:52:59:16:e6: 07:fc:97:7c:89:7c:e2:be:4a:f5:66:9f:98:ba:ec: 37:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:8F:7E:6B:5E:96:8F:84:F9:07:AF:F3:9F:8A:E4:35:3F:FC:A1:BA X509v3 Authority Key Identifier: keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:81:37:ea:a8:8d:fe:d4:f7:15:fd:d7:fa:73:7e:29:f9:25: 43:a4:d9:43:2a:fa:1d:c6:97:da:a6:2c:9e:83:53:05:d4:09: 8f:f4:f5:c2:b1:5e:fe:70:bb:cc:ad:f3:95:32:e7:b7:17:5c: 01:90:6b:87:be:63:8f:13:50:fc:58:d0:55:7c:2c:b0:5c:38: fe:ff:07:61:bf:ef:ef:dc:17:b2:47:02:34:30:2c:ea:c0:89: aa:c6:15:bf:f9:be:e1:da:db:3f:6b:36:25:b6:83:54:eb:8f: 6a:1e:de:65:f0:89:34:39:f0:81:b0:42:86:be:55:5d:79:fb: 01:14:8d:32:5f:e3:41:9a:8d:f3:27:5e:7b:54:e2:85:f4:b2: cf:76:d0:5a:e8:59:2d:d8:eb:30:65:f8:d0:8d:48:fd:85:bf: 23:50:14:db:c6:98:61:b5:22:37:7b:87:e0:47:84:6c:62:23: 2a:80:b9:1d:25:f7:c7:16:74:94:2d:c9:e2:b6:90:85:f2:d5: eb:8d:59:e2:b2:63:7e:5f:e1:46:6b:ee:5d:28:89:f2:3d:5b: e4:64:60:da:be:b2:eb:e4:72:0c:e5:9a:42:4b:7e:88:cb:48: 7b:dc:8f:1b:01:89:9e:6e:6f:cc:06:c5:50:83:e3:7f:28:7d: 41:03:12:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwMzkxMTAvBgNVBAUTKDM4QjVGN0E3MkY2NEVDRDI1ODg1RjhCNDc1ODUwMkUy M0RBODM4QkIwHhcNMjUxMTAyMTkzOTQ1WhcNMjUxMTA5MTkzOTQ1WjAYMRYwFAYD VQQDEw02OTA3YjM4MS00Y2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFDd8tNwwCKFGRNrLaXLqF9Or8R+Uycb9q5o6F17VUQAe80YDg1JuNUv5eIE zV3vObit9QoJfkf63TaNR609xCM6KIyBBYIt4kPJareVmu3MEp5Lqx0HZtCf9u4/ UsTuWJG5LBiNRKXVSlDth1SbVtMCTmefosHKHcUARYm2w/8EhSHwSlQl7HcvFvOB WHdgOKF52uY6pYxoWiIVyCbSyeVruerpXE83wilSzKtDQa7HNMOn82HOt7fCOmk5 49YDykQwP6aTycBa3DhEvqVJCAUIzWpQ6XXTklfRmEuCkVtIBdU4lmmHkjAG8FJZ FuYH/Jd8iXzivkr1Zp+Yuuw3gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiPfmte lo+E+Qev85+K5DU//KG6MB8GA1UdIwQYMBaAFDi196cvZOzSWIX4tHWFAuI9qDi7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzAzOS9DMjVEMDJGRTc4 OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdOSlloZmkwZFlVQzRqMm9P THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09MWDNweTlrN05KWWhmaTBkWVVDNGoyb09Mcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzAzOS9DMjVEMDJGRTc4OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdO SlloZmkwZFlVQzRqMm9PTHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPgTfqqI3+1PcV/df6c34p+SVDpNlDKvodxpfapiyeg1MF1AmP9PXC sV7+cLvMrfOVMue3F1wBkGuHvmOPE1D8WNBVfCywXDj+/wdhv+/v3BeyRwI0MCzq wImqxhW/+b7h2ts/azYltoNU649qHt5l8Ik0OfCBsEKGvlVdefsBFI0yX+NBmo3z J157VOKF9LLPdtBa6Fkt2OswZfjQjUj9hb8jUBTbxphhtSI3e4fgR4RsYiMqgLkd JffHFnSULcnitpCF8tXrjVnismN+X+FGa+5dKInyPVvkZGDavrLr5HIM5ZpCS36I y0h73I8bAYmebm/MBsVQg+N/KH1BAxLm -----END CERTIFICATE-----Generated at Tue Nov 4 08:10:48 2025 by rpki-client