$ rpki-client -vvf rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft File: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft (raw, json) Hash identifier: 93hO6l0o6spNRRLKPLc5P9eoF9/aDPUErpWRdnlVzjs= Subject key identifier: 88:C5:55:73:00:EB:7B:F4:39:E6:8B:19:7E:04:E9:09:9F:8F:51:3A Authority key identifier: 3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 Certificate issuer: /CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft Manifest number: 066A Signing time: Fri 22 Aug 2025 22:39:36 +0000 Manifest this update: Fri 22 Aug 2025 22:39:35 +0000 Manifest next update: Fri 29 Aug 2025 22:39:35 +0000 Files and hashes: 1: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl (hash: xlZOzTCa/MjqmE3AePX2GX8u69z0pxYnnItZQgY6xHE=) 2: A7A77B96911111EBA69D2641C4F9AE02.roa (hash: VESDtzqVBQrTGjrRN3bP0bonHePhKHgrwV/FIae5l4Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91498A4, serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Validity Not Before: Aug 22 22:39:35 2025 GMT Not After : Aug 29 22:39:35 2025 GMT Subject: CN=68a8f1a8-691b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ac:83:5c:ed:02:1a:5e:df:dc:bb:4d:21:aa: e6:ed:22:35:fd:43:80:8b:89:b3:d5:93:c9:f2:12: 8c:91:52:b0:94:2d:70:f8:03:71:7a:51:08:24:20: 57:9a:3d:88:5a:15:fe:b5:37:70:7d:f5:ce:af:cc: 53:4c:82:fe:cf:f1:55:99:ae:7e:ed:d5:e4:61:f0: 9c:7d:4e:7b:40:7c:2c:91:83:94:8f:47:50:c7:2e: 2e:b3:44:3b:94:aa:c0:2a:6d:79:8d:4d:48:ba:de: ba:42:03:f7:77:12:36:a4:e7:50:28:14:6a:2b:b3: 6f:d0:f8:49:05:7d:8a:13:95:48:77:e6:74:21:6d: 6f:7c:18:7b:fc:43:c6:c8:01:d6:67:81:15:a4:41: 7d:6e:2a:17:35:0c:f8:02:e6:b2:ae:0d:ce:a9:eb: db:08:00:ec:e8:c3:c7:3a:aa:2d:e9:d9:df:c6:45: cc:20:20:7f:d7:cf:2d:d7:9f:04:9c:79:7a:d8:32: 4a:80:18:19:0d:c9:23:3b:e2:fc:64:ce:e1:d6:92: ac:2c:15:c0:68:4a:ea:c4:f4:9c:8a:e1:95:12:0c: 2e:dc:90:11:43:bb:84:5e:f4:42:44:81:b5:df:0f: 82:08:37:c1:5b:d6:22:7c:45:6e:92:b5:5b:05:59: 8e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C5:55:73:00:EB:7B:F4:39:E6:8B:19:7E:04:E9:09:9F:8F:51:3A X509v3 Authority Key Identifier: keyid:3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:d3:9a:7a:60:a2:1e:cc:04:f8:4c:25:61:2f:4d:3f:00:80: 5d:42:2b:a2:b7:7f:dc:1e:7a:a2:82:77:35:0f:f7:95:ea:27: a8:95:d4:b7:f9:17:b4:02:10:34:15:8f:0b:7c:5b:31:62:b8: bf:c8:cc:69:84:b9:30:80:17:65:e7:2d:ed:f2:c2:2c:36:a1: 09:76:db:46:cc:e9:8f:84:ed:01:06:4f:07:00:7a:32:50:3e: c1:6e:29:70:47:55:07:45:c0:05:5e:43:18:1b:b1:a4:9d:67: d5:2f:c8:e6:62:42:26:c7:3e:19:0c:47:26:e3:00:c8:6f:6c: 05:11:47:84:cb:d8:4b:86:f4:12:88:45:7c:15:fa:20:51:7f: 91:34:4f:14:94:d4:3f:fd:d5:6d:94:c3:a7:fe:73:07:fc:eb: b5:52:42:55:8f:98:fc:89:1d:8a:43:ba:02:07:c7:01:ef:53: bc:91:a6:4d:19:e8:3e:f9:72:7b:f6:1a:cc:55:1b:b4:c9:78: c5:7a:fe:54:e8:f2:84:8c:17:e5:79:df:cc:9b:b2:ad:89:86: 33:78:52:5b:78:6f:db:f3:68:15:b1:7f:91:f0:e6:58:a8:e1: bc:ba:75:5b:33:d7:bf:a4:b1:3c:3a:6e:22:f7:28:9c:98:22: 77:af:05:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4QTQxMTAvBgNVBAUTKDNBMzNBNURBREMzNzM3MjY0MTdEREQ1NkU0Njc5MEZG ODRCQkNFRDEwHhcNMjUwODIyMjIzOTM1WhcNMjUwODI5MjIzOTM1WjAYMRYwFAYD VQQDEw02OGE4ZjFhOC02OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6yDXO0CGl7f3LtNIarm7SI1/UOAi4mz1ZPJ8hKMkVKwlC1w+ANxelEIJCBX mj2IWhX+tTdwffXOr8xTTIL+z/FVma5+7dXkYfCcfU57QHwskYOUj0dQxy4us0Q7 lKrAKm15jU1Iut66QgP3dxI2pOdQKBRqK7Nv0PhJBX2KE5VId+Z0IW1vfBh7/EPG yAHWZ4EVpEF9bioXNQz4Auayrg3OqevbCADs6MPHOqot6dnfxkXMICB/188t158E nHl62DJKgBgZDckjO+L8ZM7h1pKsLBXAaErqxPSciuGVEgwu3JARQ7uEXvRCRIG1 3w+CCDfBW9YifEVukrVbBVmO0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjFVXMA 63v0OeaLGX4E6Qmfj1E6MB8GA1UdIwQYMBaAFDozpdrcNzcmQX3dVuRnkP+Eu87R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OThBNC9FQ0YzMEE5RTkw NTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055WkJmZDFXNUdlUV80Uzd6 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09qT2wydHczTnlaQmZkMVc1R2VRXzRTN3p0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OThBNC9FQ0YzMEE5RTkwNTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055 WkJmZDFXNUdlUV80Uzd6dEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg05p6YKIezAT4TCVhL00/AIBdQiuit3/cHnqignc1D/eV6ieoldS3 +Re0AhA0FY8LfFsxYri/yMxphLkwgBdl5y3t8sIsNqEJdttGzOmPhO0BBk8HAHoy UD7BbilwR1UHRcAFXkMYG7GknWfVL8jmYkImxz4ZDEcm4wDIb2wFEUeEy9hLhvQS iEV8FfogUX+RNE8UlNQ//dVtlMOn/nMH/Ou1UkJVj5j8iR2KQ7oCB8cB71O8kaZN Geg++XJ79hrMVRu0yXjFev5U6PKEjBfled/Mm7KtiYYzeFJbeG/b82gVsX+R8OZY qOG8unVbM9e/pLE8Om4i9yicmCJ3rwWS -----END CERTIFICATE-----Generated at Sat Aug 23 19:05:36 2025 by rpki-client