$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft File: OQo4N6umkSos8p5hDaSVVd8sb6U.mft (raw, json) Hash identifier: M/bTE0BozgMRq2wW06n6HHRZOK1knjtpGNlmR8IERiI= Subject key identifier: 80:FA:C6:B5:AB:0A:20:C9:4B:22:C4:78:AD:B3:30:00:11:C9:A0:97 Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft Manifest number: 7B Signing time: Sat 23 Aug 2025 07:00:58 +0000 Manifest this update: Sat 23 Aug 2025 07:00:57 +0000 Manifest next update: Sat 30 Aug 2025 07:00:57 +0000 Files and hashes: 1: OQo4N6umkSos8p5hDaSVVd8sb6U.crl (hash: Iv1KuQVd43/MHlWs3WABnYDxYSWwlHza6dJx2+h6FMg=) 2: 4513A9F2655E11F08DD08421C4F9AE02.roa (hash: z9rOS7OxV4xU/wU64+wmR8g5Z2gp4WF60da79pTof2A=) 3: 56B4DCD039AD11F0B50C1612C4F9AE02.roa (hash: vuKzESxfL6KPMKp9BJFrs+559Jkr7A+7rgOLiDzyq7A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Aug 23 07:00:57 2025 GMT Not After : Aug 30 07:00:57 2025 GMT Subject: CN=68a9672a-1fa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ba:07:6d:e5:a4:d8:6e:e8:8f:13:27:ab:66: ee:90:db:87:ec:82:0c:2d:a7:6b:62:e6:cc:7b:87: 75:e0:1f:4d:48:c3:2a:01:82:39:11:e1:b1:27:d1: 3c:0d:2d:f4:72:df:fe:fd:78:08:08:66:3c:fd:64: ee:0a:c8:fe:9c:ff:0a:52:22:57:04:a1:8f:ef:97: fa:e4:03:a0:b6:f4:dc:49:5d:c9:7c:20:61:a3:64: 95:12:28:fc:53:ea:4f:8e:8d:d6:2f:33:82:64:ab: 8c:f5:81:54:d1:25:1a:1d:6b:1b:45:4a:90:50:41: f9:20:15:f5:a0:de:35:24:85:05:8e:68:33:38:a4: b9:61:02:b2:4e:1d:2d:9e:96:81:01:fe:b1:55:6f: b2:1e:3a:31:63:c7:78:db:22:53:76:e6:e2:37:ee: 8b:50:47:83:83:bb:f4:3e:f4:61:5d:32:30:e4:43: 0a:91:4b:ff:8d:f6:e0:d3:1d:db:07:cb:8c:f7:2d: f0:63:e6:11:97:68:6d:30:9e:bb:24:44:57:a8:b3: 39:dd:12:fa:b6:06:e9:1b:75:9b:c2:68:c1:6f:cf: 10:88:10:c0:7f:7f:e5:09:ac:31:5e:72:19:82:dd: a1:b5:55:2e:20:e7:16:12:be:9b:86:e8:d6:5a:47: 2a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:FA:C6:B5:AB:0A:20:C9:4B:22:C4:78:AD:B3:30:00:11:C9:A0:97 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:d1:8f:95:63:0b:7f:5f:83:33:27:5c:5f:c4:37:05:3a:15: b0:7e:18:18:e0:f6:1d:94:80:9d:78:40:16:ee:75:c2:f1:72: 59:9c:03:5a:c8:b0:65:1e:f2:d4:5c:8c:0e:4c:b5:e6:88:c7: f6:d6:b5:0b:78:df:45:d2:ba:dd:49:b0:d5:78:8e:d6:c5:03: 3e:5b:14:3b:1a:53:1e:e0:52:af:f1:33:44:c5:58:2d:64:4b: 44:66:6d:8e:df:28:e9:40:8a:c3:35:7d:d2:48:bc:ca:1a:7d: 0c:a7:6e:e5:11:40:69:e3:2b:4c:50:fb:93:00:48:a9:8d:1a: 6a:58:16:3a:6e:cc:f3:77:96:9b:9a:f5:80:4f:8f:e2:ef:b7: 41:6a:55:8b:da:b1:73:fb:0e:dc:00:d8:f2:21:c2:53:9f:02: 8b:c6:87:5b:f2:23:8b:52:6e:d3:8e:52:48:e9:6d:17:f6:bc: f0:e2:63:d7:fd:69:2a:59:4b:9d:32:c5:13:f3:3a:79:f9:64: 44:ce:58:3b:51:6b:57:b0:fe:89:82:b7:d2:5e:1e:1e:34:fe: 95:01:73:d8:68:d9:5f:d8:4a:d7:7a:67:df:6b:5a:c4:22:0a: 6c:d0:45:bf:67:98:ff:a7:51:8f:9b:f8:5e:5f:99:f9:3c:95: c7:87:dd:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyQjYxMTAvBgNVBAUTKDM5MEEzODM3QUJBNjkxMkEyQ0YyOUU2MTBEQTQ5NTU1 REYyQzZGQTUwHhcNMjUwODIzMDcwMDU3WhcNMjUwODMwMDcwMDU3WjAYMRYwFAYD VQQDEw02OGE5NjcyYS0xZmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsboHbeWk2G7ojxMnq2bukNuH7IIMLadrYubMe4d14B9NSMMqAYI5EeGxJ9E8 DS30ct/+/XgICGY8/WTuCsj+nP8KUiJXBKGP75f65AOgtvTcSV3JfCBho2SVEij8 U+pPjo3WLzOCZKuM9YFU0SUaHWsbRUqQUEH5IBX1oN41JIUFjmgzOKS5YQKyTh0t npaBAf6xVW+yHjoxY8d42yJTdubiN+6LUEeDg7v0PvRhXTIw5EMKkUv/jfbg0x3b B8uM9y3wY+YRl2htMJ67JERXqLM53RL6tgbpG3WbwmjBb88QiBDAf3/lCawxXnIZ gt2htVUuIOcWEr6bhujWWkcqewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFID6xrWr CiDJSyLEeK2zMAARyaCXMB8GA1UdIwQYMBaAFDkKODerppEqLPKeYQ2klVXfLG+l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJCNi9ERTdFMzIxRUNC NTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtTb3M4cDVoRGFTVlZkOHNi NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9ERTdFMzIxRUNCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtT b3M4cDVoRGFTVlZkOHNiNlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn0Y+VYwt/X4MzJ1xfxDcFOhWwfhgY4PYdlICdeEAW7nXC8XJZnANa yLBlHvLUXIwOTLXmiMf21rULeN9F0rrdSbDVeI7WxQM+WxQ7GlMe4FKv8TNExVgt ZEtEZm2O3yjpQIrDNX3SSLzKGn0Mp27lEUBp4ytMUPuTAEipjRpqWBY6bszzd5ab mvWAT4/i77dBalWL2rFz+w7cANjyIcJTnwKLxodb8iOLUm7TjlJI6W0X9rzw4mPX /WkqWUudMsUT8zp5+WREzlg7UWtXsP6JgrfSXh4eNP6VAXPYaNlf2ErXemffa1rE Igps0EW/Z5j/p1GPm/heX5n5PJXHh92i -----END CERTIFICATE-----Generated at Sat Aug 23 19:59:26 2025 by rpki-client