$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: +uEGoNvVF1PxxYgKL/pylQ5AlPvLmqUa/d/+l8uqGXs= Subject key identifier: 27:5B:6D:FF:BA:D9:53:13:E4:52:CD:AE:31:C0:12:52:F0:9B:54:78 Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 083A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 0833 Signing time: Fri 22 Aug 2025 20:55:50 +0000 Manifest this update: Fri 22 Aug 2025 20:55:50 +0000 Manifest next update: Fri 29 Aug 2025 20:55:50 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: O3TiIh/mqF9YB/ckF+pRHxB7flQswpeIumAuWu1umno=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: OwVRnVKX5TIRRxRa7tYPZCkquxRI/+jnc5rYmXmYkKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2106 (0x83a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: Aug 22 20:55:50 2025 GMT Not After : Aug 29 20:55:50 2025 GMT Subject: CN=68a8d956-a693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2c:2c:90:94:c0:b4:4e:d2:ca:d8:fc:b7:8b: 99:b6:d7:9a:0e:76:c7:45:9c:d1:f7:af:cc:33:de: 40:28:80:26:71:aa:72:5a:f3:43:6c:69:68:ce:5d: a2:fa:ae:0e:27:d3:cd:26:5d:6f:b8:1e:d8:cb:7b: dd:b6:a8:f8:ad:b6:56:0e:f7:79:07:10:87:93:0f: 11:f5:b4:3d:1b:68:15:f5:44:4a:cc:83:9d:b2:ec: f9:6a:a8:78:41:22:04:f7:c9:56:4f:4b:b2:88:eb: 96:95:83:be:8d:d9:5a:b3:02:bf:11:f9:86:ef:d0: 16:40:e9:88:8d:2a:ea:1d:fc:0c:6b:51:98:a3:43: 59:f3:c1:c0:85:21:cb:26:5d:26:37:18:77:1e:39: 21:0f:96:3f:46:07:d8:56:00:16:6f:2f:e9:64:5d: 31:cd:dd:fd:03:e6:67:6c:cc:fa:c3:49:a9:25:1f: 61:6e:27:ee:2b:48:98:28:a6:6c:48:48:17:9d:1e: 1f:6b:d5:d2:8b:a1:f0:34:bf:3f:2e:55:f4:21:1e: 39:92:78:0e:35:51:97:a9:34:14:69:ba:ca:fa:4a: 51:0f:46:e8:35:d4:71:e8:28:55:8f:08:5f:1b:fc: b8:15:b1:65:e0:cc:d7:6f:93:ba:3f:2f:00:36:03: 43:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5B:6D:FF:BA:D9:53:13:E4:52:CD:AE:31:C0:12:52:F0:9B:54:78 X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:66:70:79:c6:f5:ce:ba:cc:88:cc:0d:6d:65:5b:23:08:60: 91:1f:23:d4:96:ab:a8:4d:72:d2:0d:57:95:55:75:4a:f4:36: d4:64:d6:dd:8e:fe:85:ee:fc:2a:c6:18:22:d0:b7:ff:ec:84: 18:9e:6b:d8:4f:57:5c:ab:01:3c:c6:47:1a:2c:d2:a4:01:30: 5c:86:27:55:6a:ed:51:2f:c0:4d:de:00:aa:14:3c:a5:1a:d7: 8c:53:6a:31:39:56:05:7a:f2:66:30:5f:9a:b2:dc:74:a6:d4: 9a:25:64:08:3f:10:e4:8d:10:ec:db:cb:89:b2:a1:19:d4:c5: f5:5f:dd:b9:90:1b:ec:69:cf:1a:36:ce:0e:52:a0:78:58:0d: 48:50:85:58:cd:91:28:f9:a1:60:93:9d:d5:67:5e:2b:c0:89: 6b:de:6c:d7:a3:08:7e:77:d7:da:8f:11:9f:47:4e:23:6a:a5: 6e:80:6e:40:ac:89:a9:42:28:15:39:14:43:f2:f2:69:6f:d6: d2:5c:89:a6:1b:12:53:50:27:54:6e:46:b1:80:85:c2:06:9f: 55:b3:95:8d:e7:33:07:a0:4b:e1:ab:85:7b:f5:8e:3f:eb:f7: bd:16:1c:a9:4a:0a:cf:f6:19:46:d3:37:8e:9c:1f:8e:6e:e7: 47:d3:6b:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjUwODIyMjA1NTUwWhcNMjUwODI5MjA1NTUwWjAYMRYwFAYD VQQDEw02OGE4ZDk1Ni1hNjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCwskJTAtE7Sytj8t4uZtteaDnbHRZzR96/MM95AKIAmcapyWvNDbGlozl2i +q4OJ9PNJl1vuB7Yy3vdtqj4rbZWDvd5BxCHkw8R9bQ9G2gV9URKzIOdsuz5aqh4 QSIE98lWT0uyiOuWlYO+jdlaswK/EfmG79AWQOmIjSrqHfwMa1GYo0NZ88HAhSHL Jl0mNxh3HjkhD5Y/RgfYVgAWby/pZF0xzd39A+ZnbMz6w0mpJR9hbifuK0iYKKZs SEgXnR4fa9XSi6HwNL8/LlX0IR45kngONVGXqTQUabrK+kpRD0boNdRx6ChVjwhf G/y4FbFl4MzXb5O6Py8ANgNDDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdbbf+6 2VMT5FLNrjHAElLwm1R4MB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFZnB5xvXOusyIzA1tZVsjCGCRHyPUlquoTXLSDVeVVXVK9DbUZNbd jv6F7vwqxhgi0Lf/7IQYnmvYT1dcqwE8xkcaLNKkATBchidVau1RL8BN3gCqFDyl GteMU2oxOVYFevJmMF+astx0ptSaJWQIPxDkjRDs28uJsqEZ1MX1X925kBvsac8a Ns4OUqB4WA1IUIVYzZEo+aFgk53VZ14rwIlr3mzXowh+d9fajxGfR04jaqVugG5A rImpQigVORRD8vJpb9bSXImmGxJTUCdUbkaxgIXCBp9Vs5WN5zMHoEvhq4V79Y4/ 6/e9FhypSgrP9hlG0zeOnB+ObudH02vA -----END CERTIFICATE-----Generated at Sat Aug 23 20:25:31 2025 by rpki-client