$ rpki-client -vvf rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.mft File: o_EASaOTr53KRFlmZBZrh0Avgio.mft (raw, json) Hash identifier: yWbFrVPxcLs+QJLgVT/HJmqznTGTh7BQtCg1v6N3HRc= Subject key identifier: 3A:89:CB:5A:A9:7A:E9:33:B9:06:DB:AB:05:60:07:91:07:82:BC:E5 Authority key identifier: A3:F1:00:49:A3:93:AF:9D:CA:44:59:66:64:16:6B:87:40:2F:82:2A Certificate issuer: /CN=A91877A6/serialNumber=A3F10049A393AF9DCA44596664166B87402F822A Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o_EASaOTr53KRFlmZBZrh0Avgio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.mft Manifest number: 1B Signing time: Sat 23 Aug 2025 08:10:01 +0000 Manifest this update: Sat 23 Aug 2025 08:10:00 +0000 Manifest next update: Sat 30 Aug 2025 08:10:00 +0000 Files and hashes: 1: o_EASaOTr53KRFlmZBZrh0Avgio.crl (hash: 2RY4Iq9uGreMAtPES38hhWj9K+Z+4BsnVUiyAL1PCJo=) 2: 4DC60A785C7F11F089D20138C4F9AE02.roa (hash: 6Vnq1spFXaLfT9Zg1ghh5PPz6XLDWciXVK572d6VJmI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.crl rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o_EASaOTr53KRFlmZBZrh0Avgio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91877A6, serialNumber=A3F10049A393AF9DCA44596664166B87402F822A Validity Not Before: Aug 23 08:10:00 2025 GMT Not After : Aug 30 08:10:00 2025 GMT Subject: CN=68a97758-6976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6f:54:20:81:d1:9c:d9:ef:09:fc:f2:93:87: 7e:c9:a7:a2:fa:d5:9c:98:64:de:b0:23:c7:48:5a: 2c:b0:2b:ee:29:29:e3:bb:9a:eb:60:f6:9a:eb:c6: 9a:45:84:f0:fd:e0:f0:f0:6a:27:0b:eb:08:12:51: f6:da:68:46:2b:cd:c5:90:11:fe:8e:16:64:15:c0: b8:43:2f:2f:81:71:9a:2e:06:c8:32:6f:39:b9:39: 66:02:73:38:23:cd:1e:62:94:98:90:a4:78:9b:76: f4:64:ca:46:73:a1:87:57:8d:68:dd:88:61:ea:0d: 9f:b1:70:33:2a:0f:1a:be:77:82:d3:71:b0:a6:7a: ef:c6:72:6d:f6:4b:9c:4d:0a:82:b1:ee:f6:aa:48: 1a:16:d4:73:93:93:8b:b1:33:c2:f9:31:c6:d5:bb: b8:cd:19:21:e0:04:4b:6c:17:b4:c7:26:24:b8:4f: 28:e2:37:e2:90:d5:cc:dd:14:35:d0:52:f2:80:d9: 31:19:df:1c:fb:f4:68:92:88:c9:de:8b:6d:f6:a3: a2:aa:a4:6c:ec:07:36:d9:11:9d:8d:6e:e9:0c:01: 33:53:3f:26:fe:3b:f3:64:42:88:70:57:9a:b7:86: fe:49:bf:55:07:86:9f:83:13:97:92:bb:1c:8a:8f: be:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:89:CB:5A:A9:7A:E9:33:B9:06:DB:AB:05:60:07:91:07:82:BC:E5 X509v3 Authority Key Identifier: keyid:A3:F1:00:49:A3:93:AF:9D:CA:44:59:66:64:16:6B:87:40:2F:82:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o_EASaOTr53KRFlmZBZrh0Avgio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91877A6/BDEE7B885C7E11F0A5C36036C4F9AE02/o_EASaOTr53KRFlmZBZrh0Avgio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:19:3d:d9:32:b3:39:1d:85:c8:e6:b7:b3:ad:dc:06:5f:5b: ac:12:57:9d:59:62:93:3d:7f:3a:29:38:50:ac:4a:08:a6:83: 27:01:ee:54:4d:59:39:98:8a:69:c3:27:a6:36:2f:3f:35:56: 54:10:66:d5:75:95:5c:9b:7c:e5:61:b2:34:5d:e5:d8:98:93: 43:a5:10:bc:37:a8:34:1b:3a:63:59:e8:65:b4:39:32:7e:bd: 1b:6a:eb:24:44:d3:19:64:43:f8:ca:38:00:3e:2b:de:10:59: 64:02:f6:29:f0:e9:dc:55:78:41:56:41:6b:1e:7a:3d:0a:2b: fd:7a:21:fb:62:4b:8e:55:db:3d:af:82:79:43:96:44:f1:78: 0a:ac:74:7c:62:bb:95:e0:44:ca:7a:b1:e2:1b:3e:36:25:c0: cc:84:4a:39:00:b8:6e:b5:5e:1c:2a:fd:bc:b8:15:c7:83:21: 1b:7a:4d:44:77:9f:03:dc:0a:ef:3a:ba:af:dc:fc:44:46:57: 6c:50:d4:e4:d3:42:93:28:5f:0e:a6:67:ab:36:92:b2:70:f7: 24:3e:61:d5:ad:53:91:91:75:48:8d:32:85:05:61:45:a9:ba: d7:92:9c:0e:7f:cb:1d:fe:0a:fe:1a:f7:e3:f8:2a:13:92:3f: e3:d2:2e:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzdBNjExMC8GA1UEBRMoQTNGMTAwNDlBMzkzQUY5RENBNDQ1OTY2NjQxNjZCODc0 MDJGODIyQTAeFw0yNTA4MjMwODEwMDBaFw0yNTA4MzAwODEwMDBaMBgxFjAUBgNV BAMTDTY4YTk3NzU4LTY5NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbb1QggdGc2e8J/PKTh37Jp6L61ZyYZN6wI8dIWiywK+4pKeO7mutg9prrxppF hPD94PDwaicL6wgSUfbaaEYrzcWQEf6OFmQVwLhDLy+BcZouBsgybzm5OWYCczgj zR5ilJiQpHibdvRkykZzoYdXjWjdiGHqDZ+xcDMqDxq+d4LTcbCmeu/Gcm32S5xN CoKx7vaqSBoW1HOTk4uxM8L5McbVu7jNGSHgBEtsF7THJiS4TyjiN+KQ1czdFDXQ UvKA2TEZ3xz79GiSiMnei232o6KqpGzsBzbZEZ2NbukMATNTPyb+O/NkQohwV5q3 hv5Jv1UHhp+DE5eSuxyKj77pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOonLWql6 6TO5BturBWAHkQeCvOUwHwYDVR0jBBgwFoAUo/EASaOTr53KRFlmZBZrh0Avgiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3N0E2L0JERUU3Qjg4NUM3 RTExRjBBNUMzNjAzNkM0RjlBRTAyL29fRUFTYU9UcjUzS1JGbG1aQlpyaDBBdmdp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb19FQVNhT1RyNTNLUkZsbVpCWnJoMEF2Z2lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 N0E2L0JERUU3Qjg4NUM3RTExRjBBNUMzNjAzNkM0RjlBRTAyL29fRUFTYU9UcjUz S1JGbG1aQlpyaDBBdmdpby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHUZPdkyszkdhcjmt7Ot3AZfW6wSV51ZYpM9fzopOFCsSgimgycB7lRN WTmYimnDJ6Y2Lz81VlQQZtV1lVybfOVhsjRd5diYk0OlELw3qDQbOmNZ6GW0OTJ+ vRtq6yRE0xlkQ/jKOAA+K94QWWQC9inw6dxVeEFWQWseej0KK/16IftiS45V2z2v gnlDlkTxeAqsdHxiu5XgRMp6seIbPjYlwMyESjkAuG61Xhwq/by4FceDIRt6TUR3 nwPcCu86uq/c/ERGV2xQ1OTTQpMoXw6mZ6s2krJw9yQ+YdWtU5GRdUiNMoUFYUWp uteSnA5/yx3+Cv4a9+P4KhOSP+PSLps= -----END CERTIFICATE-----Generated at Sat Aug 23 12:37:41 2025 by rpki-client