$ rpki-client -vvf rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft File: OIgNuTaszJvXTT2434iHsyjleI0.mft (raw, json) Hash identifier: 4qRvToz7P5ksZ5I3aSEPgHEVJOr9DVt6zeyebukG2RQ= Subject key identifier: 79:FB:F7:8F:21:1D:0B:A5:C9:8A:AC:90:A6:1B:3F:F6:4F:2E:A4:BA Authority key identifier: 38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D Certificate issuer: /CN=A912E411/serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Certificate serial: 08BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft Manifest number: 14B5 Signing time: Fri 22 Aug 2025 18:52:19 +0000 Manifest this update: Fri 22 Aug 2025 18:52:18 +0000 Manifest next update: Fri 29 Aug 2025 18:52:18 +0000 Files and hashes: 1: OIgNuTaszJvXTT2434iHsyjleI0.crl (hash: AINsRPesS2sqZ1BQSclJmGEHJ+cK5outiAlSJTJf4g0=) 2: F6EC251224E711F087B2F571C4F9AE02.roa (hash: ixwNvaFcfk2na9cvy/T/P4B71LV0FaS6LsHWYtDlPXs=) 3: C766E398C0EE11EA94A1F146C4F9AE02.roa (hash: 4Kv7xQwln4PVRYcYiLH9p6kQ8sftutG3ICgl5f6YZnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2239 (0x8bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E411, serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Validity Not Before: Aug 22 18:52:18 2025 GMT Not After : Aug 29 18:52:18 2025 GMT Subject: CN=68a8bc62-3be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a2:b1:a3:a9:24:80:73:b3:9e:9c:37:65:c8: f6:2c:bf:fb:e7:e3:30:83:c0:55:f0:91:06:4b:f6: 5b:af:42:37:10:40:67:f2:38:2a:e7:f7:32:05:75: 34:34:6d:bb:89:7f:03:5f:b6:1e:36:0b:6f:6f:9f: a5:35:71:fe:0b:19:0e:6c:30:de:57:f4:b8:71:ee: e0:ca:3d:df:6f:fb:07:84:4f:c6:08:f6:15:70:49: 2d:1d:a1:c6:a7:48:72:96:3e:5b:9c:45:67:78:c8: e3:e5:e5:2c:34:9a:f0:60:d0:98:1a:75:b5:73:5c: b1:fe:f9:07:3c:e6:b9:11:96:bd:e0:c1:2d:d6:6c: 78:60:e3:d4:eb:7d:28:a1:0b:a8:d4:08:12:42:a3: ee:0a:45:58:62:5c:28:dd:2f:96:47:ac:67:62:bd: 28:9b:b8:cc:5d:70:e8:b3:30:1f:b3:f0:57:a3:0d: ec:68:cb:d9:ba:a7:67:81:5a:be:4f:50:e5:e9:5b: 3e:53:b7:6f:41:71:5c:a6:ad:90:e3:bc:12:a7:08: b8:50:43:30:a5:b7:1c:3b:0d:a5:f2:a0:a2:11:da: 01:f2:c7:55:09:79:cd:53:ba:65:ce:30:87:29:b6: 1b:0a:96:a3:b9:ea:57:26:67:9e:7c:93:d5:aa:58: 39:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FB:F7:8F:21:1D:0B:A5:C9:8A:AC:90:A6:1B:3F:F6:4F:2E:A4:BA X509v3 Authority Key Identifier: keyid:38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:8b:e0:d9:7f:0c:69:c6:93:04:e3:9e:1d:fb:ab:e8:dc:fa: d1:f4:bb:20:03:15:47:6d:da:e3:ea:a2:ca:2d:ff:58:91:6c: ce:6d:a0:34:6b:1c:10:48:fe:dc:4c:76:a7:ed:c4:fe:ee:b9: c9:d0:70:40:0e:17:71:25:f2:c9:d1:53:93:cc:01:d1:2e:1b: 46:d8:a6:54:2e:94:5e:b0:15:6b:92:f7:41:60:1c:d8:db:5a: cb:02:f9:d1:ad:92:84:69:a5:a9:6f:6c:9a:05:fd:61:9c:bc: ed:1a:f8:c0:25:98:36:81:65:ec:35:34:bc:bf:c8:35:05:bf: 19:94:bd:db:cb:dc:4e:7e:25:ef:50:e0:57:e0:08:1a:6e:b5: 72:ef:45:4e:49:d6:ea:ae:fd:d2:15:6b:b1:92:6c:09:5c:cf: d5:33:05:ad:20:fc:fd:16:35:64:e5:88:a2:81:fd:63:99:29: f4:12:a4:83:63:33:88:29:4d:a5:27:75:6b:cb:a4:ad:92:a9: 3b:32:25:9e:2a:d2:fa:51:6d:2b:1a:19:5f:98:96:f3:8f:ff: dc:f3:c9:53:00:ae:ba:ab:30:2f:77:2c:1e:83:56:5b:53:08: 8b:2c:31:e8:cf:e9:c2:02:41:5e:fd:c3:41:50:c1:66:93:5d: f3:fe:91:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU0MTExMTAvBgNVBAUTKDM4ODgwREI5MzZBQ0NDOUJENzREM0RCOERGODg4N0Iz MjhFNTc4OEQwHhcNMjUwODIyMTg1MjE4WhcNMjUwODI5MTg1MjE4WjAYMRYwFAYD VQQDEw02OGE4YmM2Mi0zYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7qKxo6kkgHOznpw3Zcj2LL/75+Mwg8BV8JEGS/Zbr0I3EEBn8jgq5/cyBXU0 NG27iX8DX7YeNgtvb5+lNXH+CxkObDDeV/S4ce7gyj3fb/sHhE/GCPYVcEktHaHG p0hylj5bnEVneMjj5eUsNJrwYNCYGnW1c1yx/vkHPOa5EZa94MEt1mx4YOPU630o oQuo1AgSQqPuCkVYYlwo3S+WR6xnYr0om7jMXXDoszAfs/BXow3saMvZuqdngVq+ T1Dl6Vs+U7dvQXFcpq2Q47wSpwi4UEMwpbccOw2l8qCiEdoB8sdVCXnNU7plzjCH KbYbCpajuepXJmeefJPVqlg5BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHn7948h HQulyYqskKYbP/ZPLqS6MB8GA1UdIwQYMBaAFDiIDbk2rMyb1009uN+Ih7Mo5XiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTQxMS9GMEIwMEVCNDE5 MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pKdlhUVDI0MzRpSHN5amxl STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZ051VGFzekp2WFRUMjQzNGlIc3lqbGVJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTQxMS9GMEIwMEVCNDE5MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pK dlhUVDI0MzRpSHN5amxlSTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzi+DZfwxpxpME454d+6vo3PrR9LsgAxVHbdrj6qLKLf9YkWzObaA0 axwQSP7cTHan7cT+7rnJ0HBADhdxJfLJ0VOTzAHRLhtG2KZULpResBVrkvdBYBzY 21rLAvnRrZKEaaWpb2yaBf1hnLztGvjAJZg2gWXsNTS8v8g1Bb8ZlL3by9xOfiXv UOBX4AgabrVy70VOSdbqrv3SFWuxkmwJXM/VMwWtIPz9FjVk5Yiigf1jmSn0EqSD YzOIKU2lJ3Vry6Stkqk7MiWeKtL6UW0rGhlfmJbzj//c88lTAK66qzAvdyweg1Zb UwiLLDHoz+nCAkFe/cNBUMFmk13z/pER -----END CERTIFICATE-----Generated at Sat Aug 23 21:38:30 2025 by rpki-client