$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: cHc001UaTBf2rpdeSxZzl24sJ2PseGzpYnj8Ab7LGHU= Subject key identifier: 42:A4:4E:6E:79:9F:07:63:80:9F:1D:88:01:80:7E:50:CE:C6:D3:B1 Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 016D Signing time: Sat 23 Aug 2025 03:57:36 +0000 Manifest this update: Sat 23 Aug 2025 03:57:36 +0000 Manifest next update: Sat 30 Aug 2025 03:57:36 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: q+mZjtgreyy0AFdDjw7s29o4maLfyPPOmsaK6D/x8Wc=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: 3nZkRqzVFhraaOpvrG0LDJguOxKECxTU8dAQntDOqqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Aug 23 03:57:36 2025 GMT Not After : Aug 30 03:57:36 2025 GMT Subject: CN=68a93c30-554e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2c:83:52:94:13:1f:94:2e:ee:0e:93:7a:58: 8e:a6:2a:0f:3b:ae:76:fd:70:14:15:17:0c:0e:8a: b3:9d:d9:88:78:7f:8d:9b:94:a3:eb:f8:11:5a:55: 5e:e9:8e:58:1b:f6:d0:35:d8:37:90:cf:2f:d3:4d: 92:34:ce:08:9e:33:2e:81:0b:1d:71:87:00:fe:5d: f5:75:df:fc:1a:3e:26:1d:35:aa:7c:bb:49:01:f5: 4a:2c:a6:20:68:28:df:73:69:5b:ae:13:b7:90:53: b0:29:b3:f1:21:84:33:62:22:46:11:31:b1:b6:0a: 45:24:62:45:fd:2e:ed:09:6b:90:cd:f0:b9:d1:6d: 93:a5:82:6c:94:66:1c:85:43:9d:96:0b:f0:14:f7: 0e:2f:1e:24:44:0e:fe:6a:ac:8f:c4:ec:34:2b:83: 0e:9e:ad:20:88:8c:e9:b5:cd:e5:cd:05:2f:00:c7: 78:57:31:54:00:34:b0:f9:94:07:cd:38:fb:d4:68: b7:0c:f9:e6:7d:57:27:7e:05:07:e9:be:26:08:9a: 92:47:f1:5b:41:85:11:70:d3:c4:32:b9:24:97:c5: 72:7e:56:16:49:b3:1b:68:fe:57:1b:58:a5:42:01: 63:c0:cd:b5:a9:0b:35:bf:da:f6:39:ed:86:ee:83: 0e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A4:4E:6E:79:9F:07:63:80:9F:1D:88:01:80:7E:50:CE:C6:D3:B1 X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:6c:15:07:6d:9f:27:31:f4:5c:e2:3f:ae:5f:bc:a7:26:2a: 2c:86:13:4c:5d:e4:db:4a:7b:49:8a:55:a1:07:22:41:0b:67: f4:5c:5c:0c:35:87:4a:e9:5b:81:36:b9:2c:cb:d0:2b:95:98: 3b:62:66:96:12:75:1b:51:a0:03:c8:81:69:9a:f2:5b:5c:6d: c0:da:ee:0b:6d:a6:cd:24:d5:ed:65:e4:cf:bb:c7:02:28:ee: 6b:e6:7f:30:3f:e8:cc:a5:50:3f:30:6b:6d:88:63:7b:72:0c: a4:5b:e7:de:91:03:f9:70:c5:92:5f:cb:93:f8:da:64:45:d7: 44:90:d0:55:57:38:7b:e7:41:1d:63:4c:4d:e5:af:16:80:52: c4:b2:d2:79:9b:79:d3:a6:5c:f7:b6:5c:cd:ba:74:b2:38:da: fa:2f:82:e3:c4:fb:90:dd:f3:81:61:32:d3:11:a0:6c:ff:b2: fd:67:76:da:bc:1c:4a:2f:62:ac:18:60:3b:73:a1:90:14:fe: 9d:4b:db:a8:9a:0f:a2:f6:8a:06:c8:21:a5:7f:2d:39:35:d7: f7:6e:d4:ba:40:19:a6:bc:39:7a:3d:ca:7d:f2:cb:bd:8b:8f: c8:32:46:07:6f:c7:1e:71:ac:8a:e4:2d:81:39:86:11:b6:d2: c2:be:04:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjUwODIzMDM1NzM2WhcNMjUwODMwMDM1NzM2WjAYMRYwFAYD VQQDEw02OGE5M2MzMC01NTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSyDUpQTH5Qu7g6TeliOpioPO652/XAUFRcMDoqzndmIeH+Nm5Sj6/gRWlVe 6Y5YG/bQNdg3kM8v002SNM4InjMugQsdcYcA/l31dd/8Gj4mHTWqfLtJAfVKLKYg aCjfc2lbrhO3kFOwKbPxIYQzYiJGETGxtgpFJGJF/S7tCWuQzfC50W2TpYJslGYc hUOdlgvwFPcOLx4kRA7+aqyPxOw0K4MOnq0giIzptc3lzQUvAMd4VzFUADSw+ZQH zTj71Gi3DPnmfVcnfgUH6b4mCJqSR/FbQYURcNPEMrkkl8VyflYWSbMbaP5XG1il QgFjwM21qQs1v9r2Oe2G7oMOKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKkTm55 nwdjgJ8diAGAflDOxtOxMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChbBUHbZ8nMfRc4j+uX7ynJioshhNMXeTbSntJilWhByJBC2f0XFwM NYdK6VuBNrksy9ArlZg7YmaWEnUbUaADyIFpmvJbXG3A2u4LbabNJNXtZeTPu8cC KO5r5n8wP+jMpVA/MGttiGN7cgykW+fekQP5cMWSX8uT+NpkRddEkNBVVzh750Ed Y0xN5a8WgFLEstJ5m3nTplz3tlzNunSyONr6L4LjxPuQ3fOBYTLTEaBs/7L9Z3ba vBxKL2KsGGA7c6GQFP6dS9uomg+i9ooGyCGlfy05Ndf3btS6QBmmvDl6Pcp98su9 i4/IMkYHb8cecayK5C2BOYYRttLCvgTv -----END CERTIFICATE-----Generated at Sat Aug 23 18:26:03 2025 by rpki-client