$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: krj6/ItQgsDUZ0ISdxTvCmD0mZFQLxXWGG6sjaZNDs0= Subject key identifier: F9:5D:E9:5F:23:34:F8:3B:EB:10:57:94:B3:B1:4A:64:15:6C:27:BD Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 01AA Signing time: Sat 23 Aug 2025 03:20:33 +0000 Manifest this update: Sat 23 Aug 2025 03:20:32 +0000 Manifest next update: Sat 30 Aug 2025 03:20:32 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: DzkZ6CvmKTx/oRiPYwS1Tl+McoCZ7NrUXPc9cGDVrOQ=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Aug 23 03:20:32 2025 GMT Not After : Aug 30 03:20:32 2025 GMT Subject: CN=68a93381-0508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d8:2f:c1:1c:16:1f:7f:29:1e:fb:c1:1e:82: 7e:7a:a0:4d:6e:6d:41:11:e6:e3:72:26:c1:d7:26: 65:84:ce:ea:73:a0:79:ef:92:56:d0:89:ff:20:cb: e4:ee:7c:84:bb:08:a5:d6:f1:15:1c:1a:4f:11:e3: 46:2d:ed:9d:2f:87:a6:79:38:7d:23:8f:32:17:a7: a9:bb:44:a9:c3:6c:1a:ac:37:05:2f:52:71:36:68: 7c:43:f8:b4:9b:96:c1:74:32:13:ee:8f:90:b9:68: 49:d7:b9:06:39:96:02:83:ac:6a:e3:61:ce:e1:db: 74:06:f5:3d:d1:2f:2e:de:eb:e8:4a:70:52:f3:bc: 42:f6:25:2b:d0:8e:80:3e:be:b6:19:63:55:7c:46: 31:d0:df:e8:29:07:c2:11:b7:39:eb:d5:25:93:e2: 3b:f9:a9:52:f3:49:d9:cf:ce:4d:43:7b:2d:f8:d7: df:16:3f:9b:11:30:2e:5b:3a:a5:1a:b7:e7:0b:d8: 53:e3:96:e5:6d:88:c2:f0:5d:b1:10:d1:86:a2:8d: d9:9d:af:10:cc:16:f9:36:60:79:a5:63:c2:82:f7: f8:6f:78:ac:d6:b7:93:64:3b:71:b2:bb:9b:85:d3: de:e0:b5:9b:04:90:94:73:2c:98:41:c5:01:2a:b5: af:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:5D:E9:5F:23:34:F8:3B:EB:10:57:94:B3:B1:4A:64:15:6C:27:BD X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:61:bf:9e:27:06:06:0d:e0:25:d0:18:af:9c:fb:ab:8c:fd: 81:fd:85:aa:8e:59:e9:61:cd:f6:18:b5:36:c9:08:6f:67:2c: 1a:a9:30:9f:bc:ba:81:fc:39:8a:2a:7d:0a:96:5f:cd:0b:f8: d7:a3:c6:0f:8f:bc:a9:89:82:11:69:a9:8e:62:65:ee:38:0a: c3:6d:36:ac:0e:74:77:fc:c7:ee:52:51:bf:88:31:e0:85:c5: 0e:56:c2:0e:10:02:65:80:01:2d:0e:f8:95:c7:81:b6:be:4d: df:54:f5:60:fa:d9:a5:e9:df:2b:0f:44:74:b1:b3:3f:9d:05: 7a:71:1c:f9:b4:7b:8c:5f:a5:e0:78:9b:d5:66:40:cc:7d:67: dc:9c:7d:ba:45:32:9e:6f:64:b6:fe:b7:95:e3:bb:ec:d5:5c: 87:31:86:59:a6:d7:95:ff:8a:20:f6:45:3c:8d:15:26:a6:25: f2:99:67:a5:c7:3b:ba:a9:bf:aa:f1:76:9b:74:94:a9:ea:dc: c7:82:30:a9:d8:24:db:1b:95:69:0f:2f:1d:fb:2c:cb:1a:85: f6:03:88:15:48:b4:81:0d:2d:41:79:75:d6:49:44:a1:b8:4e: ee:28:c1:bd:3d:0a:ba:ed:ff:a3:08:74:ed:da:16:31:56:9a: 28:9f:f5:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUwODIzMDMyMDMyWhcNMjUwODMwMDMyMDMyWjAYMRYwFAYD VQQDEw02OGE5MzM4MS0wNTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdgvwRwWH38pHvvBHoJ+eqBNbm1BEebjcibB1yZlhM7qc6B575JW0In/IMvk 7nyEuwil1vEVHBpPEeNGLe2dL4emeTh9I48yF6epu0Spw2warDcFL1JxNmh8Q/i0 m5bBdDIT7o+QuWhJ17kGOZYCg6xq42HO4dt0BvU90S8u3uvoSnBS87xC9iUr0I6A Pr62GWNVfEYx0N/oKQfCEbc569Ulk+I7+alS80nZz85NQ3st+NffFj+bETAuWzql GrfnC9hT45blbYjC8F2xENGGoo3Zna8QzBb5NmB5pWPCgvf4b3is1reTZDtxsrub hdPe4LWbBJCUcyyYQcUBKrWvOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPld6V8j NPg76xBXlLOxSmQVbCe9MB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlYb+eJwYGDeAl0BivnPurjP2B/YWqjlnpYc32GLU2yQhvZywaqTCf vLqB/DmKKn0Kll/NC/jXo8YPj7ypiYIRaamOYmXuOArDbTasDnR3/MfuUlG/iDHg hcUOVsIOEAJlgAEtDviVx4G2vk3fVPVg+tml6d8rD0R0sbM/nQV6cRz5tHuMX6Xg eJvVZkDMfWfcnH26RTKeb2S2/reV47vs1VyHMYZZpteV/4og9kU8jRUmpiXymWel xzu6qb+q8XabdJSp6tzHgjCp2CTbG5VpDy8d+yzLGoX2A4gVSLSBDS1BeXXWSUSh uE7uKMG9PQq67f+jCHTt2hYxVpoon/Un -----END CERTIFICATE-----Generated at Sun Aug 24 00:09:44 2025 by rpki-client