$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft File: oUUkHZgwrySnFWc1ElXsjn7VPv4.mft (raw, json) Hash identifier: iPFo/JAASL8ghJ9IEMWVnriQvt1ERU1tIBxfBFHH+wY= Subject key identifier: AB:33:95:4C:A7:FF:8B:E7:EF:C1:FA:A5:8E:2D:7B:82:25:94:55:F3 Authority key identifier: A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE Certificate issuer: /CN=A91AC5BC/serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft Manifest number: 25 Signing time: Sat 23 Aug 2025 08:09:33 +0000 Manifest this update: Sat 23 Aug 2025 08:09:33 +0000 Manifest next update: Sat 30 Aug 2025 08:09:33 +0000 Files and hashes: 1: oUUkHZgwrySnFWc1ElXsjn7VPv4.crl (hash: IV3h2sJZovJn7E/J9NL3TPmMrA/IVshLIfPCCB7bgH8=) 2: C24679DC741211F0808A8240C4F9AE02.roa (hash: 0sz+kpmtwGElJIZS+dbC02B4JWfvDxu2J1QwiI80uIU=) 3: CA13AA3259F411F088DE4585C4F9AE02.roa (hash: sqfwCpzDKMYilQCPQK2oKMa05i/stBaHoGZSKtfH8BY=) 4: 90CF95CE66DD11F09FD37312C4F9AE02.roa (hash: BBZhX9HK3NBq65o9RCyGDdGBDo4hsR5Etdc6G3lRbjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC5BC, serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Validity Not Before: Aug 23 08:09:33 2025 GMT Not After : Aug 30 08:09:33 2025 GMT Subject: CN=68a9773d-bdef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:20:63:f9:a0:e1:45:9e:72:75:c8:ff:1e:ad: 77:7f:da:68:6d:6b:c1:79:cb:cc:bc:f8:d1:4e:57: 38:aa:60:4a:49:bd:61:21:97:3b:f2:87:23:de:c3: 41:29:b6:72:0f:08:66:68:8c:33:33:30:aa:db:1f: b9:75:05:3e:8e:e8:5a:00:48:23:95:c5:b0:7b:22: 20:01:57:e8:c7:a9:05:03:58:53:03:38:67:4e:a7: 92:5b:15:a1:e5:2e:8a:1a:42:80:fa:94:39:39:d1: ec:9c:22:69:f6:82:0b:66:82:ad:02:84:3f:2f:d5: 85:ee:20:b5:11:47:66:1d:50:7e:5d:10:24:a4:67: 8f:7d:71:b5:b7:bc:de:98:4b:67:5f:3b:d9:11:e8: a1:31:95:21:77:b4:11:03:21:19:56:bf:f3:55:46: c9:4e:38:f7:25:ca:93:7b:1f:a2:a4:f3:f9:6e:e2: 4b:48:31:d8:f3:c6:d2:b6:76:0e:a3:02:87:f6:8e: 96:0c:5f:6d:8b:09:2a:f0:f5:32:15:9c:5a:c3:10: 97:75:60:a3:c6:4d:4c:dd:64:2d:cc:a0:5c:6e:5c: ea:f0:29:be:9f:76:83:1b:4c:4e:0e:37:cf:22:ad: 07:a1:72:34:76:40:93:3e:eb:b0:fc:75:0e:77:99: 54:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:33:95:4C:A7:FF:8B:E7:EF:C1:FA:A5:8E:2D:7B:82:25:94:55:F3 X509v3 Authority Key Identifier: keyid:A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:47:3c:18:a8:a4:92:15:a6:f6:d6:06:ec:31:46:14:85:6e: 7f:8e:d4:61:6e:5d:06:1a:3f:64:3a:5f:a1:04:94:70:05:90: e3:31:ff:9d:6c:93:a9:84:67:92:75:84:e5:a4:a6:57:fd:05: d3:ca:fa:ab:40:84:b8:74:c2:c8:2c:61:bd:61:21:b8:fc:33: f1:30:3c:b2:da:46:f9:30:5b:55:ca:27:a4:38:43:e7:d4:a8: 74:a0:33:c9:6d:58:cb:cd:f8:e0:ce:ca:03:6d:0b:cf:3b:1b: 93:bb:f3:31:6b:ff:7d:4c:9e:40:c0:31:d3:ae:40:3a:bc:b7: af:b4:5d:e8:f4:a5:4f:ad:96:6f:dc:24:88:a4:30:81:15:a7: 1d:42:9a:43:e9:0a:e9:74:ed:7d:2a:3d:22:c1:3f:27:10:63: 11:69:92:cb:72:02:a3:f7:10:9d:fe:8f:a9:2b:88:55:be:81: 3e:ec:0c:a7:94:1c:f2:7d:20:cd:26:c1:9f:54:f9:5a:7a:ee: e8:0a:65:e1:da:4e:d9:d1:8e:f3:f6:73:df:ed:02:c9:39:7e: 1c:1b:49:b3:fc:64:ae:dc:f4:df:43:5b:d8:0e:64:bc:e3:a4: b0:8f:6c:9d:2f:95:db:3d:6a:07:6e:ba:2d:87:8e:49:48:e4: f4:77:5b:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzVCQzExMC8GA1UEBRMoQTE0NTI0MUQ5ODMwQUYyNEE3MTU2NzM1MTI1NUVDOEU3 RUQ1M0VGRTAeFw0yNTA4MjMwODA5MzNaFw0yNTA4MzAwODA5MzNaMBgxFjAUBgNV BAMTDTY4YTk3NzNkLWJkZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbIGP5oOFFnnJ1yP8erXd/2mhta8F5y8y8+NFOVziqYEpJvWEhlzvyhyPew0Ep tnIPCGZojDMzMKrbH7l1BT6O6FoASCOVxbB7IiABV+jHqQUDWFMDOGdOp5JbFaHl LooaQoD6lDk50eycImn2ggtmgq0ChD8v1YXuILURR2YdUH5dECSkZ499cbW3vN6Y S2dfO9kR6KExlSF3tBEDIRlWv/NVRslOOPclypN7H6Kk8/lu4ktIMdjzxtK2dg6j Aof2jpYMX22LCSrw9TIVnFrDEJd1YKPGTUzdZC3MoFxuXOrwKb6fdoMbTE4ON88i rQehcjR2QJM+67D8dQ53mVRtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqzOVTKf/ i+fvwfqlji17giWUVfMwHwYDVR0jBBgwFoAUoUUkHZgwrySnFWc1ElXsjn7VPv4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDNUJDLzcxRTVEOEJFNTlG MjExRjBCNEZBRTk1RkM0RjlBRTAyL29VVWtIWmd3cnlTbkZXYzFFbFhzam43VlB2 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1VVa0haZ3dyeVNuRldjMUVsWHNqbjdWUHY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFD NUJDLzcxRTVEOEJFNTlGMjExRjBCNEZBRTk1RkM0RjlBRTAyL29VVWtIWmd3cnlT bkZXYzFFbFhzam43VlB2NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMJHPBiopJIVpvbWBuwxRhSFbn+O1GFuXQYaP2Q6X6EElHAFkOMx/51s k6mEZ5J1hOWkplf9BdPK+qtAhLh0wsgsYb1hIbj8M/EwPLLaRvkwW1XKJ6Q4Q+fU qHSgM8ltWMvN+ODOygNtC887G5O78zFr/31MnkDAMdOuQDq8t6+0Xej0pU+tlm/c JIikMIEVpx1CmkPpCul07X0qPSLBPycQYxFpkstyAqP3EJ3+j6kriFW+gT7sDKeU HPJ9IM0mwZ9U+Vp67ugKZeHaTtnRjvP2c9/tAsk5fhwbSbP8ZK7c9N9DW9gOZLzj pLCPbJ0vlds9agduui2HjklI5PR3Wwo= -----END CERTIFICATE-----Generated at Sat Aug 23 20:22:40 2025 by rpki-client