$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: f58rxPQyw67J96tYIf3fqkiD+WR2fMeCkX7S7PEFJHg= Subject key identifier: 19:08:C1:4B:23:C3:53:F1:3D:3F:0F:C1:D1:02:2C:0C:4F:3A:7E:BD Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 0167 Signing time: Wed 05 Nov 2025 04:06:42 +0000 Manifest this update: Wed 05 Nov 2025 04:06:41 +0000 Manifest next update: Wed 12 Nov 2025 04:06:41 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: BsQwmrjC5+ZkTJjoAw54KO3IVbVqumF39WlnxVjyqqE=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: rOwD6kKfHs7j3niSOFa7ZxwcRgpXDjpa8bFCR+QwO/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: Nov 5 04:06:41 2025 GMT Not After : Nov 12 04:06:41 2025 GMT Subject: CN=690acd52-3f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:88:86:fe:73:62:d9:d7:d2:79:a3:5c:9c: e5:6f:02:af:d0:cb:52:a5:3b:24:ba:19:c3:5f:0c: 8b:b3:a4:24:56:14:ca:64:d0:53:d8:ee:a8:d2:32: e6:16:ff:56:4c:47:a7:04:72:c1:03:38:be:f0:fd: 0e:09:a1:e4:87:17:8d:0d:1d:e6:39:97:1d:22:98: 59:e2:be:2d:cf:f1:0f:35:85:6b:9d:b7:6b:31:80: a1:30:57:c6:23:6b:0d:a4:e2:4f:dc:5b:b9:c5:8e: e0:73:31:06:32:11:e7:b2:4a:3f:f2:bf:52:98:36: 41:18:5a:d0:d5:a5:77:56:75:c5:78:9c:1b:80:35: 67:99:f4:d0:37:a0:59:e8:66:14:83:fd:a0:64:2b: 8e:e7:8f:8e:72:2d:69:00:9f:f0:71:65:e5:06:97: 37:2f:d1:6e:82:a7:bd:e3:4f:c6:23:e1:ec:65:ae: 55:a4:70:42:0c:b1:57:5d:b4:a1:55:e5:8b:02:c8: f4:30:fe:a1:94:85:f4:50:2b:96:ed:fb:0c:bb:7e: 2f:ba:5d:79:d6:67:09:1b:9a:2f:5c:d4:10:2a:e3: 92:2d:b9:16:0a:4c:33:18:c3:1f:8e:f2:55:7c:8c: 57:98:26:43:8b:f4:e1:f7:fa:e6:b5:1b:f2:c1:99: e7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:08:C1:4B:23:C3:53:F1:3D:3F:0F:C1:D1:02:2C:0C:4F:3A:7E:BD X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:00:ff:02:bd:cf:a5:ea:ab:d9:01:00:bf:1c:77:62:a3:c3: 99:0b:bc:e7:9c:fe:8e:5c:ef:23:bf:28:00:ac:13:89:40:b4: a3:50:04:e6:71:d7:96:bd:cb:4e:bb:1d:91:71:57:4e:4b:87: db:99:cc:2c:32:d5:b6:fd:62:b0:39:40:36:5a:f3:91:ee:b0: 45:67:08:5e:52:48:27:68:f4:e4:c5:9b:6d:b6:d4:5d:59:ed: 86:a4:5a:25:c2:24:d5:09:22:15:b0:5f:86:1e:58:71:ac:59: e8:26:3f:21:9f:73:f2:2f:60:c3:10:35:45:2a:25:35:89:3b: 0a:33:06:d9:69:c4:2b:d6:c4:25:cd:50:95:49:20:b8:22:7e: 4a:e3:19:b1:5b:e0:72:75:e7:dd:cb:c9:12:2c:fe:54:b7:d6: 94:52:5a:c0:ba:83:93:c8:8e:bf:64:71:27:a8:4f:d3:84:18: ef:de:a9:c5:df:c5:90:8a:b9:e4:ae:ce:ad:6b:b2:2f:7f:f0: 74:44:a3:e7:3a:39:b9:fa:59:fd:05:8b:1b:02:cc:87:74:8b: 6b:84:95:de:9c:89:07:b3:a5:96:ed:c8:45:94:4a:e1:ac:c7: 7a:a4:5d:43:14:5a:14:4d:71:af:3f:2a:fe:c9:a1:67:5c:af: 99:f6:d8:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUxMTA1MDQwNjQxWhcNMjUxMTEyMDQwNjQxWjAYMRYwFAYD VQQDEw02OTBhY2Q1Mi0zZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyguIhv5zYtnX0nmjXJzlbwKv0MtSpTskuhnDXwyLs6QkVhTKZNBT2O6o0jLm Fv9WTEenBHLBAzi+8P0OCaHkhxeNDR3mOZcdIphZ4r4tz/EPNYVrnbdrMYChMFfG I2sNpOJP3Fu5xY7gczEGMhHnsko/8r9SmDZBGFrQ1aV3VnXFeJwbgDVnmfTQN6BZ 6GYUg/2gZCuO54+Oci1pAJ/wcWXlBpc3L9Fugqe940/GI+HsZa5VpHBCDLFXXbSh VeWLAsj0MP6hlIX0UCuW7fsMu34vul151mcJG5ovXNQQKuOSLbkWCkwzGMMfjvJV fIxXmCZDi/Th9/rmtRvywZnnBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkIwUsj w1PxPT8PwdECLAxPOn69MB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGAP8Cvc+l6qvZAQC/HHdio8OZC7znnP6OXO8jvygArBOJQLSjUATm cdeWvctOux2RcVdOS4fbmcwsMtW2/WKwOUA2WvOR7rBFZwheUkgnaPTkxZttttRd We2GpFolwiTVCSIVsF+GHlhxrFnoJj8hn3PyL2DDEDVFKiU1iTsKMwbZacQr1sQl zVCVSSC4In5K4xmxW+Bydefdy8kSLP5Ut9aUUlrAuoOTyI6/ZHEnqE/ThBjv3qnF 38WQirnkrs6ta7Ivf/B0RKPnOjm5+ln9BYsbAsyHdItrhJXenIkHs6WW7chFlErh rMd6pF1DFFoUTXGvPyr+yaFnXK+Z9ti7 -----END CERTIFICATE-----Generated at Wed Nov 5 17:07:51 2025 by rpki-client