$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft File: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft (raw, json) Hash identifier: 17HKntareo8jO5/didRWX7sGvFlPjtrL1zEx/1xCUQk= Subject key identifier: 81:0B:24:17:CC:FE:83:5D:53:30:C7:F8:B4:B4:93:55:75:E9:67:DE Authority key identifier: D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 Certificate issuer: /CN=A91AAE16/serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Certificate serial: 0FD9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft Manifest number: 0FD0 Signing time: Fri 22 Aug 2025 17:37:24 +0000 Manifest this update: Fri 22 Aug 2025 17:37:24 +0000 Manifest next update: Fri 29 Aug 2025 17:37:24 +0000 Files and hashes: 1: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl (hash: xWmvgbGp/174pU9MSuPqmpJKAnMp5S5Wqcvj3qWqBq8=) 2: 682B76C05BB211E9BF474F16C4F9AE02.roa (hash: vKLtsTjRDQmvaoDy2+JZ+X/edFfE0cROOj6FdGkYWZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4057 (0xfd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Validity Not Before: Aug 22 17:37:24 2025 GMT Not After : Aug 29 17:37:24 2025 GMT Subject: CN=68a8aad4-a513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e3:96:49:69:36:56:6f:36:df:f8:a4:9d:f9: 04:f5:97:2b:86:7f:b4:bd:05:8b:c8:a3:6d:7a:3d: 1f:42:a8:41:ae:17:26:18:08:91:fb:81:ce:2e:d2: ca:c8:4d:d2:e4:a2:9c:6e:5b:59:d6:56:0e:2e:db: be:d1:bc:55:ee:a1:37:7e:85:52:c2:c5:5b:15:cf: 45:72:04:8a:56:ad:bd:cd:c8:95:73:1e:c7:fb:df: 7c:e7:7b:5e:e5:a1:6f:6a:07:e5:73:53:3a:6a:2a: 24:53:0b:2b:88:d0:bb:3f:c2:05:18:97:2d:38:67: 6d:35:c4:0c:cd:eb:1a:a7:30:9d:e5:db:99:d1:0a: c2:47:b8:c0:f5:d6:c9:7d:42:9b:8c:b4:a4:23:8c: 70:ce:b6:91:6f:52:83:a6:61:6a:82:7f:2c:63:a9: ce:05:a8:11:5a:ab:29:a0:60:06:91:2a:14:d5:59: 22:bc:f5:c8:f9:c6:b3:2a:a5:a2:f1:95:ed:c1:10: b3:81:ad:36:ca:63:1b:b4:66:4b:e1:41:87:18:39: 5e:95:bc:ba:80:fb:39:6d:51:74:1b:54:3d:09:6b: 52:02:ec:a8:b5:13:e0:76:84:53:86:40:8d:1a:62: 55:ff:c9:25:9d:ab:19:8a:7f:c9:13:c0:b3:fa:c0: ee:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:0B:24:17:CC:FE:83:5D:53:30:C7:F8:B4:B4:93:55:75:E9:67:DE X509v3 Authority Key Identifier: keyid:D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:08:5b:01:d4:b0:d1:9f:a0:58:e1:e1:11:29:72:86:6c:88: 2f:a4:54:7e:40:da:30:d2:49:1b:93:20:fb:eb:ec:7d:02:32: d2:66:99:2d:94:d4:22:dd:d3:f5:39:a1:c5:25:db:c5:9e:78: 5c:7f:a0:bf:45:dd:7e:4a:a9:82:7d:eb:ae:8d:15:ba:fc:62: f8:be:3f:c5:a2:eb:21:6b:63:19:02:25:bf:21:4d:60:6d:97: e8:79:46:3c:e2:77:6c:5b:62:e1:2e:e7:e6:e2:ca:86:a0:1c: 17:73:ec:2f:48:f0:e4:2c:df:82:2a:fa:c1:47:b3:fa:ef:fe: d1:a8:0c:49:e6:db:ba:7f:fa:4a:74:c5:90:2e:59:3c:a9:17: c5:59:3b:a1:ba:ae:d0:89:a4:95:0d:cf:c7:84:03:a5:8f:fe: 7f:bd:55:42:3f:27:81:f7:b2:2a:ed:2f:3b:eb:55:25:4a:d1: 14:19:de:10:73:ef:f8:c4:ca:fb:60:42:e9:28:03:27:84:48: 27:f9:5c:28:f7:80:9c:90:1f:7d:6b:68:63:65:2c:dc:e4:55: b3:e2:1b:00:fb:82:e4:54:c3:44:e2:65:70:ad:ed:23:34:89: fa:52:d9:7b:9c:b6:26:58:d6:88:cf:66:8f:50:2e:0a:72:4b: a2:5d:db:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKEQ2ODBCRjNBNzk2QTM1NUIxMjVBNjAyQzc0NjZCOUE1 NkQzNDQyNTQwHhcNMjUwODIyMTczNzI0WhcNMjUwODI5MTczNzI0WjAYMRYwFAYD VQQDEw02OGE4YWFkNC1hNTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOOWSWk2Vm823/iknfkE9Zcrhn+0vQWLyKNtej0fQqhBrhcmGAiR+4HOLtLK yE3S5KKcbltZ1lYOLtu+0bxV7qE3foVSwsVbFc9FcgSKVq29zciVcx7H+99853te 5aFvagflc1M6aiokUwsriNC7P8IFGJctOGdtNcQMzesapzCd5duZ0QrCR7jA9dbJ fUKbjLSkI4xwzraRb1KDpmFqgn8sY6nOBagRWqspoGAGkSoU1VkivPXI+cazKqWi 8ZXtwRCzga02ymMbtGZL4UGHGDlelby6gPs5bVF0G1Q9CWtSAuyotRPgdoRThkCN GmJV/8klnasZin/JE8Cz+sDu4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIELJBfM /oNdUzDH+LS0k1V16WfeMB8GA1UdIwQYMBaAFNaAvzp5ajVbElpgLHRmuaVtNEJU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8wRUFDRjgyQzVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5Wc1NXbUFzZEdhNXBXMDBR bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFvQ19PbmxxTlZzU1dtQXNkR2E1cFcwMFFsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8wRUFDRjgyQzVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5W c1NXbUFzZEdhNXBXMDBRbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1CFsB1LDRn6BY4eERKXKGbIgvpFR+QNow0kkbkyD76+x9AjLSZpkt lNQi3dP1OaHFJdvFnnhcf6C/Rd1+SqmCfeuujRW6/GL4vj/Fousha2MZAiW/IU1g bZfoeUY84ndsW2LhLufm4sqGoBwXc+wvSPDkLN+CKvrBR7P67/7RqAxJ5tu6f/pK dMWQLlk8qRfFWTuhuq7QiaSVDc/HhAOlj/5/vVVCPyeB97Iq7S8761UlStEUGd4Q c+/4xMr7YELpKAMnhEgn+Vwo94CckB99a2hjZSzc5FWz4hsA+4LkVMNE4mVwre0j NIn6Utl7nLYmWNaIz2aPUC4KckuiXdv8 -----END CERTIFICATE-----Generated at Sat Aug 23 17:23:04 2025 by rpki-client