$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: HHrndXIUCgQllA3nA6kuQq1vl3N1l8YFgA1qaY1i6LI= Subject key identifier: C0:CA:B5:34:7A:42:79:F0:3F:18:BB:3E:7D:F2:D4:F3:52:54:53:BC Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 85 Signing time: Sat 23 Aug 2025 03:13:01 +0000 Manifest this update: Sat 23 Aug 2025 03:13:00 +0000 Manifest next update: Sat 30 Aug 2025 03:13:00 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: uUUfjRgZ0shufs50WsHn+SsxWUw7AE7UV0c4owcf1XA=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Aug 23 03:13:00 2025 GMT Not After : Aug 30 03:13:00 2025 GMT Subject: CN=68a931bc-9b40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:43:d0:30:fb:37:5c:8c:b6:4c:9a:28:e9:3b: 6a:6f:ce:ee:57:bf:6c:e4:61:40:e4:44:00:e9:fa: ee:28:d9:60:1b:99:2c:2c:12:5c:97:65:20:59:20: 1b:f2:34:59:18:41:fc:09:75:fb:b1:ae:f4:c2:8b: 96:2d:8a:8a:cb:e8:88:e4:9b:38:9e:5d:de:6a:a2: 53:b3:85:d2:99:60:74:c2:d0:e6:d6:e5:c5:55:8e: cb:36:5e:dd:e3:cf:fb:03:ea:a6:33:c5:a4:85:b9: 72:64:38:53:2f:c3:46:13:73:e2:0b:09:f4:b5:a9: cf:f0:bf:a4:32:a2:be:8a:11:b6:94:a3:3a:f4:7b: 27:73:5c:9b:ba:e6:51:db:f1:1c:7f:84:c6:a6:f5: 23:e5:9a:80:2b:fa:59:eb:88:2e:18:60:53:71:e8: 0c:20:75:b7:59:ca:d4:c5:6b:10:79:72:b1:1d:72: 1a:ac:dc:71:b7:6a:12:96:fc:9e:b0:de:26:2f:41: 58:af:ae:56:f3:48:a2:74:30:51:66:7d:4e:94:33: a8:66:8d:5e:03:0c:de:b5:a5:3e:56:47:53:bb:33: c5:3a:28:46:f2:b4:06:f5:ea:bb:6c:ad:b7:3f:05: 37:e2:31:00:eb:60:d5:7c:d7:b7:aa:7d:a5:b4:0e: 9f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CA:B5:34:7A:42:79:F0:3F:18:BB:3E:7D:F2:D4:F3:52:54:53:BC X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:93:77:64:91:48:ac:bd:54:79:ed:71:03:7f:c1:c8:8e:58: 47:15:08:fa:7d:ca:79:87:3b:7a:c6:0e:46:61:29:70:a3:98: 60:83:a7:b0:5c:3c:f1:25:91:e3:86:95:77:ba:f0:98:b7:49: 82:45:9a:a4:c7:9e:61:0b:8e:8b:23:12:8d:ac:9c:61:86:80: 75:e8:55:66:3e:44:65:52:6c:3d:4c:dc:a3:f4:96:53:8f:8f: ee:17:6b:15:c1:8f:e1:da:77:cf:4c:87:5c:d5:62:9d:79:f0: 9f:0d:92:83:a1:27:6d:fd:ee:91:c5:93:a0:b9:dc:35:be:d8: 48:77:b5:cd:60:23:8e:33:d2:96:8f:77:f7:d8:f8:18:29:8c: ea:5a:84:df:5d:af:c6:06:64:49:8e:aa:08:2f:bf:6e:66:ea: f9:41:b2:8a:95:c5:19:c8:1a:00:32:d3:a6:e9:62:7e:a2:de: 4c:b6:11:c4:e9:97:bc:75:b2:9f:a0:c0:ac:6e:79:3e:3a:2e: 19:a9:59:f8:35:54:93:76:be:81:f2:a9:98:0f:43:59:c7:2f: 64:a9:b4:9d:bf:56:5b:30:12:9f:b9:79:44:2c:c1:47:47:40: 65:01:35:de:09:bc:cd:fe:0c:73:70:8e:29:a8:ef:e7:5c:17: a4:ee:ff:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUwODIzMDMxMzAwWhcNMjUwODMwMDMxMzAwWjAYMRYwFAYD VQQDEw02OGE5MzFiYy05YjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6UPQMPs3XIy2TJoo6Ttqb87uV79s5GFA5EQA6fruKNlgG5ksLBJcl2UgWSAb 8jRZGEH8CXX7sa70wouWLYqKy+iI5Js4nl3eaqJTs4XSmWB0wtDm1uXFVY7LNl7d 48/7A+qmM8WkhblyZDhTL8NGE3PiCwn0tanP8L+kMqK+ihG2lKM69Hsnc1ybuuZR 2/Ecf4TGpvUj5ZqAK/pZ64guGGBTcegMIHW3WcrUxWsQeXKxHXIarNxxt2oSlvye sN4mL0FYr65W80iidDBRZn1OlDOoZo1eAwzetaU+VkdTuzPFOihG8rQG9eq7bK23 PwU34jEA62DVfNe3qn2ltA6f+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDKtTR6 QnnwPxi7Pn3y1PNSVFO8MB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhk3dkkUisvVR57XEDf8HIjlhHFQj6fcp5hzt6xg5GYSlwo5hgg6ew XDzxJZHjhpV3uvCYt0mCRZqkx55hC46LIxKNrJxhhoB16FVmPkRlUmw9TNyj9JZT j4/uF2sVwY/h2nfPTIdc1WKdefCfDZKDoSdt/e6RxZOgudw1vthId7XNYCOOM9KW j3f32PgYKYzqWoTfXa/GBmRJjqoIL79uZur5QbKKlcUZyBoAMtOm6WJ+ot5MthHE 6Ze8dbKfoMCsbnk+Oi4ZqVn4NVSTdr6B8qmYD0NZxy9kqbSdv1ZbMBKfuXlELMFH R0BlATXeCbzN/gxzcI4pqO/nXBek7v+a -----END CERTIFICATE-----Generated at Sat Aug 23 18:52:47 2025 by rpki-client