$ rpki-client -vvf rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft File: bOklSpy_oHBCJDc13OT79-VGEWY.mft (raw, json) Hash identifier: J9yWkpf+wx+MLoDk0Irsxt0O6sO5oaFa+29HiYVqzBw= Subject key identifier: 5D:A5:E4:5E:6F:5D:14:BF:84:7B:90:E4:52:94:C7:6F:44:95:BF:35 Authority key identifier: 6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 Certificate issuer: /CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Certificate serial: 0C93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft Manifest number: 0C8D Signing time: Tue 04 Nov 2025 18:26:33 +0000 Manifest this update: Tue 04 Nov 2025 18:26:33 +0000 Manifest next update: Tue 11 Nov 2025 18:26:33 +0000 Files and hashes: 1: bOklSpy_oHBCJDc13OT79-VGEWY.crl (hash: RrPOx6H1S8G5aAE5b2foldDQgjCUwrcJAh8smcYwx5o=) 2: 9DDA09EC05DC11EA9B6B0560C4F9AE02.roa (hash: tBcP96oatlX28aHZ2XCL2w+PP5ZPCSpD4OOUZWfI8Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3219 (0xc93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454F3, serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Validity Not Before: Nov 4 18:26:33 2025 GMT Not After : Nov 11 18:26:33 2025 GMT Subject: CN=690a4559-66e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ef:aa:9b:fb:d1:18:21:51:4a:76:79:5c:4e: f4:0d:ac:96:26:f0:17:25:d7:7b:0f:b4:d6:1c:90: 43:31:d9:14:21:bb:b8:f7:7f:b0:a9:cf:17:f2:67: ce:f7:18:19:1f:7a:db:64:51:ab:96:e3:b2:42:49: 25:63:d2:0e:d5:c5:63:53:97:8c:35:03:15:91:05: 54:71:42:49:3d:0f:b2:95:4a:7c:4b:17:b5:d8:e1: 7c:dd:87:dc:52:78:fe:02:f7:22:30:ff:b5:c7:04: ef:ab:ca:2a:18:01:f1:5d:3e:50:73:59:22:8c:bc: 42:7b:75:30:fa:3f:5b:a0:cd:6b:90:b0:4d:7f:2f: c1:bf:c7:32:4e:38:c8:09:dd:d9:54:88:36:09:93: 79:62:e0:b6:ed:e8:0e:c6:52:ee:d5:2f:aa:52:43: 1d:00:76:cd:dd:1a:df:6b:3f:a2:28:af:af:df:71: b3:f8:3e:b5:18:6b:bb:f0:cb:4b:a1:79:01:5f:84: d9:35:8d:99:74:f7:2c:c6:87:ec:70:82:d3:04:20: e5:4a:15:3f:7e:8f:9d:f2:54:1c:af:29:d1:96:41: 6f:19:d6:86:2b:54:cb:a9:9c:fc:e8:b0:e9:7a:75: 18:7c:ad:11:57:31:3d:9a:85:5c:cb:db:49:ef:85: dc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A5:E4:5E:6F:5D:14:BF:84:7B:90:E4:52:94:C7:6F:44:95:BF:35 X509v3 Authority Key Identifier: keyid:6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:22:d9:b8:42:3c:8f:a1:6a:33:fc:be:ee:83:06:b7:aa:5e: 23:d1:01:a6:f8:73:30:88:8c:5c:9c:50:3c:b9:94:63:7a:02: ea:2f:47:92:40:cb:e6:6b:77:01:12:73:e0:1b:3e:0b:b5:5f: 90:17:99:ea:a8:69:0c:94:06:e2:c3:9a:7e:4d:a8:db:09:a8: d5:e3:31:47:b7:8f:20:b1:a0:54:a6:40:0b:ca:da:af:4d:00: df:f5:c3:5a:cb:e5:ad:d4:3b:5a:67:46:d5:d1:ea:8c:0d:81: 5b:2e:e0:b2:0c:2d:a7:2a:35:bc:42:d4:a7:36:46:dd:c3:f1: 80:2c:9f:2d:33:d9:52:18:f0:40:22:42:3a:57:d7:66:eb:c2: fe:9c:cd:3a:82:de:e9:9a:99:b7:09:c5:2b:ee:ed:22:c7:8a: 21:c1:77:02:2b:f1:1d:d6:cd:73:63:78:0b:bb:86:ef:9d:6e: c4:8e:eb:45:40:30:f6:b2:fd:21:79:ee:2c:d3:27:63:54:25: 2f:bf:7c:5a:01:f2:a0:c4:2d:ac:1d:37:99:56:ce:1a:d7:87: d5:49:86:28:1e:b8:71:aa:54:1f:54:e9:73:cf:04:0e:22:10: 2f:0d:1e:12:04:ea:91:2f:8b:78:48:e0:d0:74:96:9d:92:08: aa:80:f2:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RjMxMTAvBgNVBAUTKDZDRTkyNTRBOUNCRkEwNzA0MjI0MzczNURDRTRGQkY3 RTU0NjExNjYwHhcNMjUxMTA0MTgyNjMzWhcNMjUxMTExMTgyNjMzWjAYMRYwFAYD VQQDEw02OTBhNDU1OS02NmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApu+qm/vRGCFRSnZ5XE70DayWJvAXJdd7D7TWHJBDMdkUIbu493+wqc8X8mfO 9xgZH3rbZFGrluOyQkklY9IO1cVjU5eMNQMVkQVUcUJJPQ+ylUp8Sxe12OF83Yfc Unj+AvciMP+1xwTvq8oqGAHxXT5Qc1kijLxCe3Uw+j9boM1rkLBNfy/Bv8cyTjjI Cd3ZVIg2CZN5YuC27egOxlLu1S+qUkMdAHbN3Rrfaz+iKK+v33Gz+D61GGu78MtL oXkBX4TZNY2ZdPcsxofscILTBCDlShU/fo+d8lQcrynRlkFvGdaGK1TLqZz86LDp enUYfK0RVzE9moVcy9tJ74Xc4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2l5F5v XRS/hHuQ5FKUx29Elb81MB8GA1UdIwQYMBaAFGzpJUqcv6BwQiQ3Ndzk+/flRhFm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRGMy8xRUY3ODY2ODA1 REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29IQkNKRGMxM09UNzktVkdF V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPa2xTcHlfb0hCQ0pEYzEzT1Q3OS1WR0VXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRGMy8xRUY3ODY2ODA1REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29I QkNKRGMxM09UNzktVkdFV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoItm4QjyPoWoz/L7ugwa3ql4j0QGm+HMwiIxcnFA8uZRjegLqL0eS QMvma3cBEnPgGz4LtV+QF5nqqGkMlAbiw5p+TajbCajV4zFHt48gsaBUpkALytqv TQDf9cNay+Wt1DtaZ0bV0eqMDYFbLuCyDC2nKjW8QtSnNkbdw/GALJ8tM9lSGPBA IkI6V9dm68L+nM06gt7pmpm3CcUr7u0ix4ohwXcCK/Ed1s1zY3gLu4bvnW7EjutF QDD2sv0hee4s0ydjVCUvv3xaAfKgxC2sHTeZVs4a14fVSYYoHrhxqlQfVOlzzwQO IhAvDR4SBOqRL4t4SODQdJadkgiqgPJT -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:05 2025 by rpki-client