$ rpki-client -vvf rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft File: OVr1eRN2M5r53uVtah4TtHq1xGY.mft (raw, json) Hash identifier: PBOAzZgqcPNPC8V3qhVy/QcXbjlG2as8HxzK7bb6w5M= Subject key identifier: 82:1D:B3:68:9E:DE:FB:C0:F8:EA:94:E3:0E:44:C3:18:DB:85:2B:EE Authority key identifier: 39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 Certificate issuer: /CN=A91316B0/serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft Manifest number: 056B Signing time: Sat 23 Aug 2025 00:24:52 +0000 Manifest this update: Sat 23 Aug 2025 00:24:52 +0000 Manifest next update: Sat 30 Aug 2025 00:24:52 +0000 Files and hashes: 1: OVr1eRN2M5r53uVtah4TtHq1xGY.crl (hash: FuRYsBrGu4YNC0oiLLkvLQ/jqBQNJTF37r81J/uqp8w=) 2: C6EFDF5C0C3311EFB37BD03FC4F9AE02.roa (hash: +baf+FBOvTO91WyGSxfLgP4c75Re+v5ehq0gcaeZq1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:24:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91316B0, serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Validity Not Before: Aug 23 00:24:52 2025 GMT Not After : Aug 30 00:24:52 2025 GMT Subject: CN=68a90a54-e5d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f2:69:61:df:55:b5:fc:6d:47:82:8f:22:4a: 1e:57:67:30:f6:ba:f7:cb:83:53:37:0f:c7:f3:8d: 5d:1f:0c:95:d5:ac:cf:8c:7e:97:9f:25:72:1f:18: 7e:d2:d5:bb:38:d2:1c:df:9e:0d:92:60:e8:20:fc: cc:79:56:f4:4f:23:4c:35:46:5f:7b:c4:70:f8:72: b6:10:bd:70:71:7e:24:7b:11:b0:d0:d1:67:e5:c9: ea:7e:62:3e:ec:32:e6:d9:cf:71:0d:f7:a8:40:f2: 71:bb:24:40:6f:49:30:59:92:01:05:e9:11:3a:b4: 3d:d3:50:df:79:a6:ac:c0:99:43:42:0c:31:da:0e: bd:f2:1f:bd:9b:e4:81:6d:ea:2c:80:bf:57:40:9c: e4:5d:b9:11:46:98:5c:3f:45:1d:3f:94:16:a8:0b: e3:fe:a9:b3:cc:b8:48:3e:7b:54:05:a6:dd:20:33: 7b:dd:79:7e:3b:54:61:8e:e2:30:18:a4:d4:8a:c6: 27:dc:bf:6c:1e:2b:54:f8:b3:01:4a:dc:8d:5e:46: ad:76:e5:2f:34:b4:51:b2:0d:61:fa:80:39:d7:3c: 11:14:72:cb:86:24:c6:35:5f:c2:7a:dc:1f:36:6d: ed:d7:5e:66:9c:96:cf:b1:d1:46:9c:b6:60:14:d9: 7b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:1D:B3:68:9E:DE:FB:C0:F8:EA:94:E3:0E:44:C3:18:DB:85:2B:EE X509v3 Authority Key Identifier: keyid:39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:1c:6c:19:7a:72:09:cc:f5:3e:b0:61:a4:ec:9e:fd:77:5a: cd:a1:95:a4:cc:28:ee:90:ef:41:1a:4a:ec:0a:1b:30:05:eb: 95:d5:a8:e4:30:72:03:8e:7e:5d:18:bb:ba:41:b0:25:dc:8c: 68:ec:41:68:50:6d:55:e8:be:b2:dd:33:3e:e4:fc:de:46:3b: bd:0e:e4:49:78:43:af:b3:0a:b3:a7:34:73:58:76:81:33:9e: ec:cb:6e:d7:78:35:4b:48:57:b7:87:d5:ed:27:44:fe:d5:17: d4:3c:b7:2d:dd:d4:70:68:05:2b:5d:47:6e:a6:98:d9:05:e4: 7b:0a:4d:77:f4:ee:d1:ba:ca:40:06:fe:46:b2:37:82:1d:35: 41:69:ce:2e:1f:17:0c:ca:80:75:69:50:96:ce:89:59:45:5d: ce:ac:c9:71:56:8c:6e:c2:bd:aa:f5:f5:99:1c:e4:69:c4:f7: c9:f4:fa:a0:28:96:d1:36:44:ee:4d:a7:53:e4:ed:1d:c3:34: be:9a:aa:2c:86:65:7d:da:11:4c:f5:b2:04:39:7c:cf:14:10: ac:72:2e:b3:86:65:01:fb:6b:8b:58:63:3f:d8:10:83:4c:ab: cf:28:42:56:6a:12:29:69:f3:a9:2a:65:66:e0:ea:92:b7:e8: 89:f1:93:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2QjAxMTAvBgNVBAUTKDM5NUFGNTc5MTM3NjMzOUFGOURFRTU2RDZBMUUxM0I0 N0FCNUM0NjYwHhcNMjUwODIzMDAyNDUyWhcNMjUwODMwMDAyNDUyWjAYMRYwFAYD VQQDEw02OGE5MGE1NC1lNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvJpYd9VtfxtR4KPIkoeV2cw9rr3y4NTNw/H841dHwyV1azPjH6XnyVyHxh+ 0tW7ONIc354NkmDoIPzMeVb0TyNMNUZfe8Rw+HK2EL1wcX4kexGw0NFn5cnqfmI+ 7DLm2c9xDfeoQPJxuyRAb0kwWZIBBekROrQ901DfeaaswJlDQgwx2g698h+9m+SB beosgL9XQJzkXbkRRphcP0UdP5QWqAvj/qmzzLhIPntUBabdIDN73Xl+O1RhjuIw GKTUisYn3L9sHitU+LMBStyNXkatduUvNLRRsg1h+oA51zwRFHLLhiTGNV/Cetwf Nm3t115mnJbPsdFGnLZgFNl75wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIds2ie 3vvA+OqU4w5EwxjbhSvuMB8GA1UdIwQYMBaAFDla9XkTdjOa+d7lbWoeE7R6tcRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTZCMC8yMzM3RjIzMjVF M0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01cjUzdVZ0YWg0VHRIcTF4 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09WcjFlUk4yTTVyNTN1VnRhaDRUdEhxMXhHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTZCMC8yMzM3RjIzMjVFM0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01 cjUzdVZ0YWg0VHRIcTF4R1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjHGwZenIJzPU+sGGk7J79d1rNoZWkzCjukO9BGkrsChswBeuV1ajk MHIDjn5dGLu6QbAl3Ixo7EFoUG1V6L6y3TM+5PzeRju9DuRJeEOvswqzpzRzWHaB M57sy27XeDVLSFe3h9XtJ0T+1RfUPLct3dRwaAUrXUduppjZBeR7Ck139O7RuspA Bv5GsjeCHTVBac4uHxcMyoB1aVCWzolZRV3OrMlxVoxuwr2q9fWZHORpxPfJ9Pqg KJbRNkTuTadT5O0dwzS+mqoshmV92hFM9bIEOXzPFBCsci6zhmUB+2uLWGM/2BCD TKvPKEJWahIpafOpKmVm4OqSt+iJ8ZOL -----END CERTIFICATE-----Generated at Sun Aug 24 03:05:52 2025 by rpki-client