$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft File: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft (raw, json) Hash identifier: FYMxlvESQFt/fokWWk0JWQZnFI3W+fVc+8VHQmw9XuM= Subject key identifier: 51:41:36:F8:82:81:B3:B7:D1:01:3B:69:9D:13:22:0E:04:B6:D2:57 Authority key identifier: 3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 Certificate issuer: /CN=A911750B/serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft Manifest number: 27 Signing time: Sat 23 Aug 2025 08:01:16 +0000 Manifest this update: Sat 23 Aug 2025 08:01:16 +0000 Manifest next update: Sat 30 Aug 2025 08:01:16 +0000 Files and hashes: 1: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl (hash: y6aK10kCjm9b8YD+vbG+n5j4n1yfit09WnbRMeV4HL4=) 2: D922E45E468D11F0B5D0835EC4F9AE02.roa (hash: RqRFm0koAI1zOC0qjZBwbHn7EgeV9Uebi2RR1Lc++cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Validity Not Before: Aug 23 08:01:16 2025 GMT Not After : Aug 30 08:01:16 2025 GMT Subject: CN=68a9754c-e34e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:12:cb:fe:0f:5d:22:9b:fe:0c:8a:db:57:1b: 8d:46:b1:aa:44:f9:03:86:ba:b9:42:a6:f0:77:bb: ce:2b:11:ab:24:4b:bc:6b:06:3f:36:59:2a:fc:27: 7d:f2:4b:a1:ec:c0:4c:ff:3b:23:c6:a1:31:2d:84: d0:f9:64:9a:59:e0:ef:f8:de:77:64:62:5f:39:1b: 97:ae:d5:85:c8:84:e6:42:ec:b2:60:09:d3:b7:c0: 4b:3d:0d:d3:88:a8:ab:67:ed:49:2d:3f:7b:6e:15: 0c:cf:52:ca:6a:e6:65:26:63:3e:5c:ef:fc:9e:bd: 70:c1:c2:37:ad:c1:79:68:cf:6f:25:cd:09:9e:fb: f3:fa:0a:e0:93:cf:23:45:bf:51:56:2d:ed:ae:29: b0:e2:99:61:4c:24:e0:6a:0b:eb:c8:6e:51:94:02: e2:32:13:63:10:5b:65:1d:2c:d2:15:89:d3:fe:c4: 9f:fb:17:c3:79:46:ba:59:17:2a:eb:f3:f9:d0:03: 1f:79:be:df:20:c3:5b:f3:28:cd:fa:f4:83:92:a7: 98:2f:92:e8:23:a0:ed:82:ff:d5:8f:3f:67:fc:f2: 04:a3:75:17:d7:15:a6:9c:36:6a:86:04:5e:d3:71: cc:10:b6:7f:50:b0:d3:5b:85:f9:b9:2b:48:2a:71: ec:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:41:36:F8:82:81:B3:B7:D1:01:3B:69:9D:13:22:0E:04:B6:D2:57 X509v3 Authority Key Identifier: keyid:3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ec:e4:7d:09:17:08:60:98:fb:af:60:29:ee:32:5d:3e:6f: d4:00:be:42:06:13:1a:3f:62:fd:f0:01:46:05:81:33:c4:ce: 55:56:b7:a8:e6:a6:3c:10:b3:98:68:6a:72:52:2c:2f:ad:71: 73:d6:d2:d2:c5:bf:ce:93:2b:e7:a8:60:58:71:19:a2:d8:f7: cb:79:c0:7f:a0:88:57:02:8d:45:2e:a1:ee:ae:fa:9a:f2:ee: 73:3a:95:18:29:3b:3f:d5:a6:d2:af:5d:39:50:cf:0f:20:f3: 30:55:5c:44:a4:01:32:57:0c:fa:19:e4:d8:c8:c9:2a:8e:43: 41:4d:ff:84:ee:84:a8:43:8a:25:11:e6:bd:82:0e:80:fa:74: bf:3d:0d:9b:42:df:2f:90:96:5d:62:ad:a6:9c:11:fd:9a:59: 34:d5:ce:9b:9d:b0:e4:50:fc:90:5c:3c:8c:0d:53:38:31:fa: 93:f8:0a:a8:83:e6:21:15:54:ae:8f:33:bc:0f:89:89:d2:4d: d3:25:20:8e:be:fd:51:62:a3:44:b0:5d:76:6a:2b:70:aa:71: 5b:3b:74:8c:b6:06:a1:b6:b0:ed:81:7f:e8:6a:71:d4:39:57: b6:d9:74:c0:c9:70:e2:ce:8e:f9:49:0a:e9:45:96:cd:ce:8f: 69:30:95:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzUwQjExMC8GA1UEBRMoM0I4MzU4NTM1QkM2Mjg1NjRBRjU2RjMxRDg3NTg2NDhF MUQwNDMwNDAeFw0yNTA4MjMwODAxMTZaFw0yNTA4MzAwODAxMTZaMBgxFjAUBgNV BAMTDTY4YTk3NTRjLWUzNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4Esv+D10im/4MittXG41GsapE+QOGurlCpvB3u84rEaskS7xrBj82WSr8J33y S6HswEz/OyPGoTEthND5ZJpZ4O/43ndkYl85G5eu1YXIhOZC7LJgCdO3wEs9DdOI qKtn7UktP3tuFQzPUspq5mUmYz5c7/yevXDBwjetwXloz28lzQme+/P6CuCTzyNF v1FWLe2uKbDimWFMJOBqC+vIblGUAuIyE2MQW2UdLNIVidP+xJ/7F8N5RrpZFyrr 8/nQAx95vt8gw1vzKM369IOSp5gvkugjoO2C/9WPP2f88gSjdRfXFaacNmqGBF7T ccwQtn9QsNNbhfm5K0gqceyjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUUE2+IKB s7fRATtpnRMiDgS20lcwHwYDVR0jBBgwFoAUO4NYU1vGKFZK9W8x2HWGSOHQQwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NTBCLzY0RDA3NzQ4NDY4 QzExRjA4NEI2QTUzOUM0RjlBRTAyL080TllVMXZHS0ZaSzlXOHgySFdHU09IUVF3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTzROWVUxdkdLRlpLOVc4eDJIV0dTT0hRUXdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 NTBCLzY0RDA3NzQ4NDY4QzExRjA4NEI2QTUzOUM0RjlBRTAyL080TllVMXZHS0Za SzlXOHgySFdHU09IUVF3US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHvs5H0JFwhgmPuvYCnuMl0+b9QAvkIGExo/Yv3wAUYFgTPEzlVWt6jm pjwQs5hoanJSLC+tcXPW0tLFv86TK+eoYFhxGaLY98t5wH+giFcCjUUuoe6u+pry 7nM6lRgpOz/VptKvXTlQzw8g8zBVXESkATJXDPoZ5NjIySqOQ0FN/4TuhKhDiiUR 5r2CDoD6dL89DZtC3y+Qll1iraacEf2aWTTVzpudsORQ/JBcPIwNUzgx+pP4CqiD 5iEVVK6PM7wPiYnSTdMlII6+/VFio0SwXXZqK3CqcVs7dIy2BqG2sO2Bf+hqcdQ5 V7bZdMDJcOLOjvlJCulFls3Oj2kwlXw= -----END CERTIFICATE-----Generated at Sat Aug 23 22:35:45 2025 by rpki-client