$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: LhOcJZFnQNYLc3i03FbapPHno8h0rL4jX4YAt7rfA3I= Subject key identifier: FB:00:BC:CA:55:F9:6B:EC:99:C1:E4:8F:23:3B:12:C3:F6:75:A3:DD Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 03E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 03E1 Signing time: Sat 23 Aug 2025 00:47:47 +0000 Manifest this update: Sat 23 Aug 2025 00:47:47 +0000 Manifest next update: Sat 30 Aug 2025 00:47:47 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: tzY/mJyET3u8HIYRpDhigXb9K7c6kQUHSPu2th3m0BE=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: CfbtaxsbT8QkNpB+dr8l4I71elKTP/TaO4DWd5BrJjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 997 (0x3e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Aug 23 00:47:47 2025 GMT Not After : Aug 30 00:47:47 2025 GMT Subject: CN=68a90fb3-5a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:bf:de:e4:4d:54:fe:3f:41:03:3b:e2:82: 32:8e:a4:b6:08:ed:11:60:29:40:f0:85:81:24:86: 51:d5:d2:a8:6a:cf:2c:5a:a2:d0:59:a5:93:da:19: 24:8b:b8:f1:6e:1d:9f:da:8e:47:15:b0:03:32:46: b1:01:d7:63:4b:71:15:03:64:70:90:2e:0b:4a:84: 47:de:63:c7:10:44:a7:a9:a1:c3:11:0f:a0:6a:33: 3d:ae:3b:c7:3c:b6:7a:aa:85:3e:31:e0:ad:7d:33: 78:2a:0a:95:7f:60:60:22:90:03:37:74:6d:d7:83: ff:c5:a4:77:ad:96:1f:bc:1d:4a:01:f3:48:9f:61: a6:8c:48:35:a0:8b:38:7b:d2:6f:a1:56:b7:41:76: a9:91:fd:e4:8d:16:bf:8e:d3:1d:4a:54:d9:4b:f5: 3e:f5:20:e3:89:46:70:33:a3:c4:56:1b:83:41:85: 61:ee:35:48:19:29:85:0e:0e:75:9f:2c:d2:b3:81: 25:fd:9c:1e:e3:ee:90:02:a7:9b:c2:90:db:f6:a4: 4f:24:89:03:0e:31:99:19:1e:b1:c8:30:e2:8e:78: cf:00:58:18:6d:e7:68:4c:03:47:43:49:76:58:6b: 11:55:f6:9f:64:fe:17:ab:88:18:44:9a:6c:ae:d1: cf:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:00:BC:CA:55:F9:6B:EC:99:C1:E4:8F:23:3B:12:C3:F6:75:A3:DD X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b7:76:cf:ac:58:b6:6e:d6:25:24:32:44:d9:da:d2:6c:4d: 86:ff:5c:3c:a7:f6:74:71:ec:43:da:73:8a:0a:56:b1:e0:35: c9:ba:66:77:b3:16:5e:97:57:ec:cd:23:76:76:85:d4:21:36: 9e:b7:13:7f:1c:74:ea:93:33:ad:4a:02:43:f1:11:4c:08:58: 15:fe:9b:ed:48:55:5c:e5:33:85:c6:01:ea:dd:49:ef:ac:e4: d3:48:ae:13:cd:31:20:3d:13:77:e3:22:00:2f:cf:73:50:c8: d1:fc:9e:93:14:52:b9:c8:18:22:5f:04:ef:39:8b:3e:18:b3: ad:6f:b4:c7:c9:f1:26:a7:f5:bf:50:f2:4b:16:93:9e:94:74: e2:af:40:cb:3f:43:0d:15:e4:d0:85:b5:32:61:22:24:7f:34: f5:ea:c4:c8:e6:41:89:a5:5f:3e:8e:3a:a3:5f:8f:a9:96:46: 65:4e:c2:92:99:97:13:1f:35:cd:b4:af:28:ee:29:ab:a7:27: 94:5f:2a:2c:17:ab:b8:67:0c:57:38:50:f0:d6:46:bb:61:dd: 3e:fd:88:18:ed:96:d9:32:ad:58:fb:da:31:76:a0:7f:a0:8d: 04:e6:0f:e4:48:8b:b3:b1:71:3d:76:1b:53:94:86:84:b9:4a: 85:63:bd:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUwODIzMDA0NzQ3WhcNMjUwODMwMDA0NzQ3WjAYMRYwFAYD VQQDEw02OGE5MGZiMy01YTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaO/3uRNVP4/QQM74oIyjqS2CO0RYClA8IWBJIZR1dKoas8sWqLQWaWT2hkk i7jxbh2f2o5HFbADMkaxAddjS3EVA2RwkC4LSoRH3mPHEESnqaHDEQ+gajM9rjvH PLZ6qoU+MeCtfTN4KgqVf2BgIpADN3Rt14P/xaR3rZYfvB1KAfNIn2GmjEg1oIs4 e9JvoVa3QXapkf3kjRa/jtMdSlTZS/U+9SDjiUZwM6PEVhuDQYVh7jVIGSmFDg51 nyzSs4El/Zwe4+6QAqebwpDb9qRPJIkDDjGZGR6xyDDijnjPAFgYbedoTANHQ0l2 WGsRVfafZP4Xq4gYRJpsrtHPfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsAvMpV +WvsmcHkjyM7EsP2daPdMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAat3bPrFi2btYlJDJE2drSbE2G/1w8p/Z0cexD2nOKClax4DXJumZ3 sxZel1fszSN2doXUITaetxN/HHTqkzOtSgJD8RFMCFgV/pvtSFVc5TOFxgHq3Unv rOTTSK4TzTEgPRN34yIAL89zUMjR/J6TFFK5yBgiXwTvOYs+GLOtb7THyfEmp/W/ UPJLFpOelHTir0DLP0MNFeTQhbUyYSIkfzT16sTI5kGJpV8+jjqjX4+plkZlTsKS mZcTHzXNtK8o7imrpyeUXyosF6u4ZwxXOFDw1ka7Yd0+/YgY7ZbZMq1Y+9oxdqB/ oI0E5g/kSIuzsXE9dhtTlIaEuUqFY702 -----END CERTIFICATE-----Generated at Sun Aug 24 06:23:49 2025 by rpki-client