$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: AbCHqk316DkOI6icqcfpiENk21s5kodxpDc4n79XUdc= Subject key identifier: F5:53:CC:60:03:5C:4E:F3:D0:C4:11:92:59:F8:65:87:CE:3D:18:77 Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0ED5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0D8F Signing time: Fri 22 Aug 2025 19:08:40 +0000 Manifest this update: Fri 22 Aug 2025 19:08:39 +0000 Manifest next update: Fri 29 Aug 2025 19:08:39 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: uuL0lei/YPc16+PSRR0jFXcZEK66ktk2GP434+E2G9I=) 2: 1CC3EA9EF83911EF9736296CC4F9AE02.roa (hash: fj7O85RnH+30KNkPHrJFaiis6zU90wRo7DRE5/hNEUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3797 (0xed5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Aug 22 19:08:39 2025 GMT Not After : Aug 29 19:08:39 2025 GMT Subject: CN=68a8c038-6f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8d:6b:95:45:e4:80:0e:50:be:fe:64:7e:32: f7:f0:3b:69:e1:80:41:1e:33:72:6e:c7:73:8a:15: d4:8f:1c:00:0c:d4:9b:66:45:c7:a2:a2:fb:d6:12: 3f:6f:b4:72:37:45:7d:f2:55:3c:6e:ed:a0:41:83: c3:88:ac:4a:5a:f6:6a:0c:26:19:42:e6:7d:3a:2f: e6:58:64:25:ee:ef:77:e0:6d:7a:2c:7d:f7:e6:7a: 1c:cc:05:99:58:03:05:2f:bf:71:2d:6b:d9:84:eb: b1:7b:28:82:9c:74:16:b0:de:67:23:db:ad:13:c8: 3c:4b:96:44:f3:2a:36:1e:d1:4e:39:94:b0:05:67: f0:aa:44:8e:d6:c2:18:e6:59:06:f3:12:35:f7:c6: 7b:3b:ce:57:2a:11:8f:4f:89:7b:f0:92:2d:50:40: 43:4b:99:43:98:e4:da:fc:f5:37:f7:52:3b:37:0f: 1a:c5:64:c8:75:cd:13:29:ac:ba:c9:2b:82:7a:42: 04:62:c4:f9:46:01:ed:a6:63:f1:3a:26:0c:fa:16: 92:a9:eb:8d:cd:ac:81:6b:9b:31:83:cb:34:db:67: a7:43:27:9f:6d:27:9c:71:da:e1:32:fb:ce:d0:84: 53:ff:ac:6d:a5:1b:cd:03:42:65:cc:a2:84:6f:5f: ce:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:53:CC:60:03:5C:4E:F3:D0:C4:11:92:59:F8:65:87:CE:3D:18:77 X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:fd:ad:15:f5:34:f1:63:74:5e:50:4b:72:64:df:f8:13:b3: 2c:60:a8:99:52:a3:7b:b2:3b:85:f8:14:89:eb:05:f0:95:b3: 35:02:41:f5:29:c3:8f:3b:20:12:39:d2:57:7a:6b:48:76:63: 30:b5:17:54:f9:f3:99:fb:b0:01:ae:7a:31:70:c7:40:0b:ce: db:5f:23:a2:09:cb:39:e3:4e:ed:c4:41:19:87:ee:09:9d:ab: f2:8c:4b:af:28:b4:88:98:4d:9e:3b:ab:ca:18:aa:fe:6b:b8: 33:65:54:4c:cf:44:d2:51:c1:f7:9f:25:58:9f:27:c3:bd:55: f8:92:60:f9:01:14:b8:06:f7:99:09:9d:c9:fe:e2:44:72:75: de:ef:31:84:d1:d9:2f:51:40:d3:81:31:4b:b0:f2:89:35:79: 7b:e0:c1:e9:35:1c:db:eb:b8:a6:33:15:a4:d0:ca:28:7c:47: 65:e1:2f:0e:2b:cd:51:0a:3d:be:6c:74:c2:5b:2d:e6:1b:c3: fc:86:52:54:df:3d:89:48:15:57:2d:25:2c:1e:40:49:2e:e0: 5d:7f:02:a9:f8:b9:87:27:06:10:af:6f:c9:9f:b8:d9:1e:5f: d8:eb:99:19:e6:ac:27:0b:1d:c4:41:8e:94:e3:8e:e8:7f:8e: 6b:09:b4:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjUwODIyMTkwODM5WhcNMjUwODI5MTkwODM5WjAYMRYwFAYD VQQDEw02OGE4YzAzOC02Zjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI1rlUXkgA5Qvv5kfjL38Dtp4YBBHjNybsdzihXUjxwADNSbZkXHoqL71hI/ b7RyN0V98lU8bu2gQYPDiKxKWvZqDCYZQuZ9Oi/mWGQl7u934G16LH335noczAWZ WAMFL79xLWvZhOuxeyiCnHQWsN5nI9utE8g8S5ZE8yo2HtFOOZSwBWfwqkSO1sIY 5lkG8xI198Z7O85XKhGPT4l78JItUEBDS5lDmOTa/PU391I7Nw8axWTIdc0TKay6 ySuCekIEYsT5RgHtpmPxOiYM+haSqeuNzayBa5sxg8s022enQyefbSeccdrhMvvO 0IRT/6xtpRvNA0JlzKKEb1/OjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVTzGAD XE7z0MQRkln4ZYfOPRh3MB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv/a0V9TTxY3ReUEtyZN/4E7MsYKiZUqN7sjuF+BSJ6wXwlbM1AkH1 KcOPOyASOdJXemtIdmMwtRdU+fOZ+7ABrnoxcMdAC87bXyOiCcs5407txEEZh+4J navyjEuvKLSImE2eO6vKGKr+a7gzZVRMz0TSUcH3nyVYnyfDvVX4kmD5ARS4BveZ CZ3J/uJEcnXe7zGE0dkvUUDTgTFLsPKJNXl74MHpNRzb67imMxWk0MoofEdl4S8O K81RCj2+bHTCWy3mG8P8hlJU3z2JSBVXLSUsHkBJLuBdfwKp+LmHJwYQr2/Jn7jZ Hl/Y65kZ5qwnCx3EQY6U447of45rCbQx -----END CERTIFICATE-----Generated at Sat Aug 23 12:41:55 2025 by rpki-client