$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: NjXg7pzjpFLyaclka6hy+az7C+khaNALK+D7eAziH68= Subject key identifier: B6:EA:2A:93:13:31:8D:B8:13:5E:1D:11:D4:4C:04:AE:93:80:9B:58 Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 0ACD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 0AC3 Signing time: Fri 22 Aug 2025 19:37:37 +0000 Manifest this update: Fri 22 Aug 2025 19:37:36 +0000 Manifest next update: Fri 29 Aug 2025 19:37:36 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: rOfpyvhx0fYH6gEFw2wOHFEjwjrY84oTQEopMsnVSOI=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: iGeCqjea5TKx5w3j1RMFWZOzP6n/8IBkqpNhUcYz96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2765 (0xacd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0, serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: Aug 22 19:37:36 2025 GMT Not After : Aug 29 19:37:36 2025 GMT Subject: CN=68a8c701-697b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:db:d6:68:6b:3b:ac:f7:87:89:03:0d:c5:64: 64:f8:b1:bb:34:60:47:01:e0:33:ee:aa:6e:0a:13: bc:8a:eb:37:30:4d:83:4d:c7:a8:85:81:90:54:33: 22:24:8d:67:a9:11:6d:49:15:a7:84:64:b9:a2:86: da:bd:c7:05:e8:3f:ec:c7:74:e3:0a:62:2f:f4:8a: 2d:dc:77:6f:d5:88:b3:64:94:27:17:47:e7:18:dc: 6e:77:a1:c0:5b:84:1f:b2:54:87:d7:8a:4d:d0:33: 0c:6d:89:08:84:3d:9e:ce:94:36:00:b7:b2:0c:db: 5d:d3:c9:69:6a:40:ba:10:65:2a:98:5c:13:dd:2c: 3b:e7:45:19:00:5e:2c:2e:1d:78:66:71:96:b6:e9: af:17:94:86:89:ad:72:86:44:9f:fe:5c:9a:30:3f: a3:cb:6d:cd:94:b6:b1:80:34:74:b3:85:a3:31:39: ee:ec:66:a3:dc:fa:04:07:ae:b0:44:66:00:b5:d8: 96:51:0c:a4:29:8b:57:32:ce:d9:a4:44:dd:d6:9e: 6f:13:cd:62:57:4c:1e:09:76:60:40:8c:c8:06:34: 7b:19:8e:e1:21:ef:5d:7e:7a:bf:8f:54:d9:88:d0: 46:5b:b7:a7:57:ec:69:b6:84:de:78:6b:64:67:8a: 6e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:EA:2A:93:13:31:8D:B8:13:5E:1D:11:D4:4C:04:AE:93:80:9B:58 X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:f0:1a:81:f6:3b:cc:76:ed:f2:a4:cb:52:04:e4:6d:de:1e: 13:e3:3f:93:4b:b7:10:9f:aa:1b:63:dd:d2:8f:be:b6:30:b6: 0f:5f:01:3c:89:c5:58:79:f3:30:0f:20:62:ac:5b:10:86:13: 08:bd:a6:b1:6a:1c:11:62:e2:12:c1:74:75:70:ec:a9:02:01: 5b:f7:84:dc:fd:61:b6:f9:96:6d:30:f8:b4:f1:87:d6:3c:88: ea:d9:a2:6a:6b:60:1b:18:51:30:e3:73:21:fc:0d:5d:e2:01: 00:a5:f0:44:d3:b8:d9:b7:44:fe:1e:f2:79:60:35:d9:05:59: 27:53:96:fa:da:3d:65:61:28:06:c9:b4:71:43:ef:95:cb:e4: c0:13:12:9a:c2:7a:b3:65:d9:97:06:97:43:2d:47:81:27:8f: c2:0d:35:e2:34:58:d0:4a:02:de:12:ad:dd:ef:6b:fe:06:f9: 24:83:51:98:68:d5:d7:c7:01:79:a2:0d:b5:22:6a:88:d4:f3: 3d:ac:fe:6b:13:fd:4b:9b:65:51:91:ae:99:a0:18:09:2e:58: a7:74:0d:51:93:4d:a4:8f:52:20:c9:6b:02:51:01:93:0d:a9: 9c:33:e9:fa:5d:ad:45:6f:f5:10:13:14:ac:1d:42:89:5e:b2: 5a:1a:3d:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjUwODIyMTkzNzM2WhcNMjUwODI5MTkzNzM2WjAYMRYwFAYD VQQDEw02OGE4YzcwMS02OTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttvWaGs7rPeHiQMNxWRk+LG7NGBHAeAz7qpuChO8ius3ME2DTceohYGQVDMi JI1nqRFtSRWnhGS5oobavccF6D/sx3TjCmIv9Iot3Hdv1YizZJQnF0fnGNxud6HA W4QfslSH14pN0DMMbYkIhD2ezpQ2ALeyDNtd08lpakC6EGUqmFwT3Sw750UZAF4s Lh14ZnGWtumvF5SGia1yhkSf/lyaMD+jy23NlLaxgDR0s4WjMTnu7Gaj3PoEB66w RGYAtdiWUQykKYtXMs7ZpETd1p5vE81iV0weCXZgQIzIBjR7GY7hIe9dfnq/j1TZ iNBGW7enV+xptoTeeGtkZ4punwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbqKpMT MY24E14dEdRMBK6TgJtYMB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ8BqB9jvMdu3ypMtSBORt3h4T4z+TS7cQn6obY93Sj762MLYPXwE8 icVYefMwDyBirFsQhhMIvaaxahwRYuISwXR1cOypAgFb94Tc/WG2+ZZtMPi08YfW PIjq2aJqa2AbGFEw43Mh/A1d4gEApfBE07jZt0T+HvJ5YDXZBVknU5b62j1lYSgG ybRxQ++Vy+TAExKawnqzZdmXBpdDLUeBJ4/CDTXiNFjQSgLeEq3d72v+Bvkkg1GY aNXXxwF5og21ImqI1PM9rP5rE/1Lm2VRka6ZoBgJLlindA1Rk02kj1IgyWsCUQGT DamcM+n6Xa1Fb/UQExSsHUKJXrJaGj1J -----END CERTIFICATE-----Generated at Sun Aug 24 00:19:25 2025 by rpki-client