$ rpki-client -vvf rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft File: o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft (raw, json) Hash identifier: ZSpxjqpqtXf+nttGwxLEvw1HTrR2vRmY6HeYJtQwNSw= Subject key identifier: 5C:F3:AC:F9:66:66:96:DC:F5:80:07:92:D0:53:D7:FF:66:CE:46:64 Authority key identifier: A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 Certificate issuer: /CN=A91A36A7/serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Certificate serial: 060E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft Manifest number: 0607 Signing time: Fri 22 Aug 2025 23:02:22 +0000 Manifest this update: Fri 22 Aug 2025 23:02:21 +0000 Manifest next update: Fri 29 Aug 2025 23:02:21 +0000 Files and hashes: 1: o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl (hash: LBpkH7c9ebHzO4hQ2p55d5QOgOVwHMTEMCCSOdUS0+Q=) 2: F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa (hash: AxnCXioU+pzcVhOQczSiGNqFZn1BtxYji3/Mt/svcQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1550 (0x60e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A36A7, serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Validity Not Before: Aug 22 23:02:21 2025 GMT Not After : Aug 29 23:02:21 2025 GMT Subject: CN=68a8f6fd-64be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:34:38:d0:d1:e0:f6:c9:82:60:6b:2d:51:ca: a8:da:ff:e5:98:12:f4:de:3f:78:b7:28:e4:06:f2: 78:cf:aa:6e:1f:36:95:44:ca:05:d6:b1:c7:4e:78: df:99:97:4c:a9:4c:42:65:14:1b:6e:73:f1:11:f6: 00:d8:c4:c9:c9:0f:03:ed:93:b6:e8:f7:d8:4f:c0: 17:e6:21:90:e7:9e:50:b4:0f:5a:e5:a1:56:44:f2: 0e:55:04:ea:b3:c6:38:f5:d6:0d:7e:09:55:9a:62: 3f:f7:55:da:77:03:2d:7f:52:40:24:6b:5e:b3:00: 4f:4f:ec:87:73:7e:42:45:3a:7f:85:3a:4c:61:50: 92:bd:5c:28:74:0c:70:17:12:9a:64:ee:0b:64:81: 42:8f:4b:5b:cf:38:78:93:3b:81:d6:df:8e:f8:7f: dd:40:52:a7:71:bf:3d:33:6c:3d:c0:33:1e:33:f7: f5:6e:0c:f0:d1:51:c5:85:88:93:5c:8e:20:01:f2: 1e:4e:0f:ee:c5:55:81:8e:c7:1e:e4:ba:e0:68:fd: 78:90:6a:b4:25:db:50:bd:9b:a0:cc:a6:c1:68:31: 64:99:97:22:72:a7:33:0c:0e:96:b1:02:f2:87:51: c7:fe:89:9a:7f:98:60:a8:c5:bc:af:81:c6:76:28: 06:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F3:AC:F9:66:66:96:DC:F5:80:07:92:D0:53:D7:FF:66:CE:46:64 X509v3 Authority Key Identifier: keyid:A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:25:05:cf:05:f8:50:3e:4c:a8:c4:d7:86:5f:65:64:ac:2c: d1:ef:17:14:14:31:3b:68:ef:f4:bd:67:5c:49:61:78:d6:06: 73:fd:6d:35:d3:5c:91:1c:fe:24:92:f2:72:a5:0a:c6:1f:e1: 62:e8:05:57:ab:52:ff:4c:14:f9:32:df:07:0f:47:52:aa:20: af:62:dd:60:04:a1:3a:d6:4f:d6:bc:97:33:9c:8e:82:f9:1a: 72:01:66:90:50:01:fe:26:f5:d7:83:fa:2a:f2:03:2d:7f:f7: 53:d3:a7:29:ef:2c:41:cb:37:aa:84:6f:b4:11:0b:88:b5:52: 34:df:e1:24:d1:68:2a:4f:18:c0:86:65:88:fe:1b:d7:af:63: 21:cd:a7:d7:20:5a:cd:b0:03:41:80:82:bc:eb:9c:22:6a:0e: 60:2c:86:5f:c0:a9:05:b1:ee:1b:a7:b9:8f:3b:36:b4:23:e0: 46:d5:ea:f3:3d:48:e8:24:53:7b:82:01:26:62:08:51:dd:45: be:8a:f4:5b:0b:3d:5b:fc:2a:30:fc:ea:8f:b0:40:5a:7c:fb: a4:bd:5f:8c:5d:4a:5f:09:2c:59:7a:93:7a:86:8b:91:cc:bc: 88:c7:76:df:4b:ba:05:43:e5:de:b8:47:dc:30:3e:6d:4c:f5: bd:58:01:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM2QTcxMTAvBgNVBAUTKEEzNjUyRDlFNTRFOTY0NjhCMjMwNDc5MzczMTdGQTRF Q0Q3QjM2NDgwHhcNMjUwODIyMjMwMjIxWhcNMjUwODI5MjMwMjIxWjAYMRYwFAYD VQQDEw02OGE4ZjZmZC02NGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDQ40NHg9smCYGstUcqo2v/lmBL03j94tyjkBvJ4z6puHzaVRMoF1rHHTnjf mZdMqUxCZRQbbnPxEfYA2MTJyQ8D7ZO26PfYT8AX5iGQ555QtA9a5aFWRPIOVQTq s8Y49dYNfglVmmI/91XadwMtf1JAJGteswBPT+yHc35CRTp/hTpMYVCSvVwodAxw FxKaZO4LZIFCj0tbzzh4kzuB1t+O+H/dQFKncb89M2w9wDMeM/f1bgzw0VHFhYiT XI4gAfIeTg/uxVWBjsce5LrgaP14kGq0JdtQvZugzKbBaDFkmZcicqczDA6WsQLy h1HH/omaf5hgqMW8r4HGdigGvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzzrPlm Zpbc9YAHktBT1/9mzkZkMB8GA1UdIwQYMBaAFKNlLZ5U6WRosjBHk3MX+k7NezZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzZBNy84QUE2NUFGQ0I5 NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpHaXlNRWVUY3hmNlRzMTdO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yVXRubFRwWkdpeU1FZVRjeGY2VHMxN05rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzZBNy84QUE2NUFGQ0I5NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpH aXlNRWVUY3hmNlRzMTdOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEJQXPBfhQPkyoxNeGX2VkrCzR7xcUFDE7aO/0vWdcSWF41gZz/W01 01yRHP4kkvJypQrGH+Fi6AVXq1L/TBT5Mt8HD0dSqiCvYt1gBKE61k/WvJcznI6C +RpyAWaQUAH+JvXXg/oq8gMtf/dT06cp7yxByzeqhG+0EQuItVI03+Ek0WgqTxjA hmWI/hvXr2MhzafXIFrNsANBgIK865wiag5gLIZfwKkFse4bp7mPOza0I+BG1erz PUjoJFN7ggEmYghR3UW+ivRbCz1b/Cow/OqPsEBafPukvV+MXUpfCSxZepN6houR zLyIx3bfS7oFQ+XeuEfcMD5tTPW9WAHd -----END CERTIFICATE-----Generated at Sat Aug 23 22:19:07 2025 by rpki-client