$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft File: OTVm9EF4bZWNinkRjo71b8hy5cU.mft (raw, json) Hash identifier: t45s25JitKGcCoRfMni+4jDfQI4ycc4VeabPwQA0anc= Subject key identifier: 40:AD:BB:EA:F0:4A:75:38:FA:B3:BA:08:BB:20:34:38:26:7A:EC:69 Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 06AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft Manifest number: 069C Signing time: Fri 22 Aug 2025 22:23:44 +0000 Manifest this update: Fri 22 Aug 2025 22:23:44 +0000 Manifest next update: Fri 29 Aug 2025 22:23:44 +0000 Files and hashes: 1: OTVm9EF4bZWNinkRjo71b8hy5cU.crl (hash: 49t4ZUkI5cXM6LNe3isrnGYkmsE8njnvJi2ohNN2S9o=) 2: CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa (hash: Tn4IiKC/ehOcHKqem3Io6ZVpsXPRVKGONn1yIt6QObo=) 3: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (hash: rBuNfeeoduUd1I0NoD4IRcILjNn1S7GUQ8XAggSqgBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1706 (0x6aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: Aug 22 22:23:44 2025 GMT Not After : Aug 29 22:23:44 2025 GMT Subject: CN=68a8edf0-e418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b2:0e:3c:e5:b4:4a:82:a3:4d:43:bd:a1:c3: 1c:2c:51:26:7f:52:42:54:3d:3c:a9:2d:b4:e4:d3: d4:00:3e:9f:46:47:5e:4e:4d:db:62:b7:1d:fe:04: e7:e0:52:5a:ad:8a:74:c5:36:f7:b0:29:08:ff:f0: 65:49:89:1c:24:bb:e4:d5:ad:bd:d7:38:bb:9f:80: 3f:89:91:2d:a7:e4:0f:ea:29:27:74:6c:09:0b:26: 32:f5:19:09:3a:a6:58:78:37:fc:72:5e:f2:47:75: 23:12:88:33:b8:24:c9:d6:39:3b:aa:19:bd:4c:82: 00:19:8f:38:08:50:6b:bf:f1:8b:90:81:14:99:3b: 21:57:4d:b2:97:61:fd:34:f6:4d:aa:0b:4d:7a:f7: 1e:02:38:2c:89:b0:50:c3:c8:6b:38:f1:cc:fa:db: 78:05:0a:82:0b:15:11:b9:7e:00:8e:56:78:2a:37: 84:dd:28:71:96:47:a3:f5:d9:a3:5c:86:92:1d:c7: f4:10:5c:f6:5e:e2:6c:df:18:38:7b:ca:b8:fd:d3: 0a:9b:23:c8:d9:71:cd:d0:01:a6:77:54:66:99:dc: 2a:c0:f0:7b:60:21:35:68:30:3a:71:e0:fb:99:2b: a9:ed:5c:1b:64:6c:9a:73:43:6f:ac:6a:43:ac:4f: d6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:AD:BB:EA:F0:4A:75:38:FA:B3:BA:08:BB:20:34:38:26:7A:EC:69 X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:16:b8:8f:5c:c1:32:08:1b:39:ab:63:66:ce:c7:c9:b1:c0: 67:ee:b1:06:26:8b:e9:86:57:8f:fe:8a:27:b2:05:2b:2a:6b: e1:30:10:e0:ff:4b:d1:e4:50:81:41:0c:e6:2d:f1:fe:c3:41: af:01:ba:70:35:1a:fd:bd:ae:0f:b2:89:2a:35:74:9b:df:69: 75:48:2a:b2:81:9b:30:f9:36:79:67:df:90:4a:74:99:89:fc: 93:79:94:d4:a5:5b:3a:29:c2:eb:a8:77:00:c2:3c:ac:db:fd: 47:37:b9:c1:36:a0:05:91:05:a3:6b:8b:f1:eb:4b:40:13:90: 66:0d:04:ae:49:77:c3:6a:33:5c:37:d5:0e:9f:a2:3f:47:42: ba:70:fb:50:27:4d:b2:e6:c7:e7:cd:39:ff:7b:87:03:3f:73: f8:53:15:21:f5:c2:3e:8a:a4:96:85:75:b7:61:ae:f0:44:b4: 57:f6:0f:86:4d:f2:c4:df:db:0f:e8:75:62:11:9f:f6:99:be: 74:5a:f6:fc:92:e9:ad:79:b8:7f:37:fb:eb:01:6d:ea:63:bb: d0:cb:bc:b0:f3:23:64:37:75:46:be:24:1e:cf:c0:3f:69:45: 22:d0:b6:e5:81:05:4d:2a:5c:b9:a5:72:72:c5:b3:84:93:c9: 43:5b:74:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjUwODIyMjIyMzQ0WhcNMjUwODI5MjIyMzQ0WjAYMRYwFAYD VQQDEw02OGE4ZWRmMC1lNDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LIOPOW0SoKjTUO9ocMcLFEmf1JCVD08qS205NPUAD6fRkdeTk3bYrcd/gTn 4FJarYp0xTb3sCkI//BlSYkcJLvk1a291zi7n4A/iZEtp+QP6ikndGwJCyYy9RkJ OqZYeDf8cl7yR3UjEogzuCTJ1jk7qhm9TIIAGY84CFBrv/GLkIEUmTshV02yl2H9 NPZNqgtNevceAjgsibBQw8hrOPHM+tt4BQqCCxURuX4AjlZ4KjeE3Shxlkej9dmj XIaSHcf0EFz2XuJs3xg4e8q4/dMKmyPI2XHN0AGmd1RmmdwqwPB7YCE1aDA6ceD7 mSup7VwbZGyac0NvrGpDrE/WLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECtu+rw SnU4+rO6CLsgNDgmeuxpMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzNFRC80RDhGQTIwRTdENDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJa V05pbmtSam83MWI4aHk1Y1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQFriPXMEyCBs5q2NmzsfJscBn7rEGJovphleP/oonsgUrKmvhMBDg /0vR5FCBQQzmLfH+w0GvAbpwNRr9va4PsokqNXSb32l1SCqygZsw+TZ5Z9+QSnSZ ifyTeZTUpVs6KcLrqHcAwjys2/1HN7nBNqAFkQWja4vx60tAE5BmDQSuSXfDajNc N9UOn6I/R0K6cPtQJ02y5sfnzTn/e4cDP3P4UxUh9cI+iqSWhXW3Ya7wRLRX9g+G TfLE39sP6HViEZ/2mb50Wvb8kumtebh/N/vrAW3qY7vQy7yw8yNkN3VGviQez8A/ aUUi0LblgQVNKly5pXJyxbOEk8lDW3TR -----END CERTIFICATE-----Generated at Sat Aug 23 14:32:40 2025 by rpki-client