$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: ElRjTLqP4/chMjiOVFsZvq+8uI6TxoCmRtzkfWXDMSs= Subject key identifier: F6:17:DD:89:21:20:72:F7:E4:A5:29:B3:4B:96:21:60:26:9C:FC:60 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 165D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 164D Signing time: Fri 22 Aug 2025 16:49:15 +0000 Manifest this update: Fri 22 Aug 2025 16:49:15 +0000 Manifest next update: Fri 29 Aug 2025 16:49:15 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: qHEghLux0I0zU0BK61RXAVsXtQpIT4QODXuj4559T8I=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: w3oachy62b9vS7wqwD6D3HohJubENRLKhLvYOw/CqsQ=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: P/jVLVKJm35tcLY3WNaJuQCIeip3WppGMETv/Tz90FE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5725 (0x165d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Aug 22 16:49:15 2025 GMT Not After : Aug 29 16:49:15 2025 GMT Subject: CN=68a89f8b-e3ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9a:1a:19:d7:fd:a5:f1:a3:75:10:02:bf:7c: 32:59:bc:3d:23:93:cd:32:cb:8a:3e:76:94:7b:42: 9a:2f:0b:98:e1:ca:0a:e1:28:01:17:83:f7:f0:46: fb:14:30:78:92:1b:55:04:af:49:80:f0:56:0b:b2: 47:4a:cb:47:ed:ac:9f:34:3c:50:e1:a7:53:51:0b: dc:50:80:a2:9a:38:bb:ce:84:25:3c:9d:df:24:15: 84:6b:9a:38:25:51:d9:af:f7:85:4a:59:00:58:70: 1f:12:e1:bd:1b:a3:cc:a3:27:5f:2f:78:44:5e:12: 14:2e:08:28:fc:31:58:67:6d:dc:44:0b:37:e0:72: 53:52:26:df:2a:e4:87:3a:3a:d7:da:c8:a3:e7:6e: 78:6b:f5:5d:d2:0c:35:8b:f8:b7:2d:b9:ef:d2:63: 55:98:0d:b7:c3:4e:72:1b:70:7e:df:68:4d:ba:e1: 31:04:82:b4:89:6e:44:03:55:82:eb:c7:c1:8c:e8: 2e:13:b8:7b:8e:b6:84:f8:e8:e3:aa:ca:41:b4:87: 00:90:cf:33:7f:3c:da:3d:6e:69:8b:b3:35:fe:e0: e9:42:33:97:41:8a:8e:c6:14:e6:4d:d7:42:66:b0: 8d:a8:b2:9e:77:7f:50:45:41:61:1b:11:2b:48:97: 86:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:17:DD:89:21:20:72:F7:E4:A5:29:B3:4B:96:21:60:26:9C:FC:60 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:ef:ef:7c:1b:83:36:49:4e:d7:b0:7f:7e:ce:3e:62:21:ee: 9f:cf:f4:89:1f:a4:66:7f:38:cc:fb:0b:2a:4f:57:b0:4b:5d: d1:0c:d0:1a:96:89:9d:1a:e1:c4:10:0c:d8:8f:9d:70:68:15: c0:d4:55:83:25:af:f0:8b:2a:0b:15:96:f7:8e:6c:96:e4:b5: c7:b9:aa:f7:58:01:f0:7f:d6:58:2d:3a:2b:d8:4a:e4:0b:93: 41:20:a6:76:c8:8b:49:2b:6d:61:51:e7:72:82:c3:d3:6e:68: b3:65:71:4f:cb:77:68:74:95:be:e1:a2:dc:c7:84:7c:1a:00: d1:94:b6:7e:3f:12:cc:b6:9b:dc:c8:c4:f1:4e:88:53:58:79: d9:89:2e:e0:ff:59:57:b7:1b:7d:ff:6d:d6:b1:01:fc:b9:81: 9f:53:05:d1:94:18:6b:8c:e3:3e:45:91:66:2b:3d:aa:f1:e1: 65:27:92:82:6a:d3:66:1a:b4:c9:de:91:e0:df:93:b0:bf:18: fa:35:8b:88:ee:19:bf:05:d1:a0:f0:b9:2d:30:8b:a6:4d:6d: 66:4c:90:41:4f:82:72:98:86:b7:34:f4:d5:9b:5a:c3:f9:91: bb:66:19:71:3b:d5:25:39:e5:cf:10:cd:4e:f2:8b:73:ff:2f: a3:2b:44:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjUwODIyMTY0OTE1WhcNMjUwODI5MTY0OTE1WjAYMRYwFAYD VQQDEw02OGE4OWY4Yi1lM2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZoaGdf9pfGjdRACv3wyWbw9I5PNMsuKPnaUe0KaLwuY4coK4SgBF4P38Eb7 FDB4khtVBK9JgPBWC7JHSstH7ayfNDxQ4adTUQvcUICimji7zoQlPJ3fJBWEa5o4 JVHZr/eFSlkAWHAfEuG9G6PMoydfL3hEXhIULggo/DFYZ23cRAs34HJTUibfKuSH OjrX2sij5254a/Vd0gw1i/i3Lbnv0mNVmA23w05yG3B+32hNuuExBIK0iW5EA1WC 68fBjOguE7h7jraE+OjjqspBtIcAkM8zfzzaPW5pi7M1/uDpQjOXQYqOxhTmTddC ZrCNqLKed39QRUFhGxErSJeG/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYX3Ykh IHL35KUps0uWIWAmnPxgMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF7+98G4M2SU7XsH9+zj5iIe6fz/SJH6RmfzjM+wsqT1ewS13RDNAa lomdGuHEEAzYj51waBXA1FWDJa/wiyoLFZb3jmyW5LXHuar3WAHwf9ZYLTor2Erk C5NBIKZ2yItJK21hUedygsPTbmizZXFPy3dodJW+4aLcx4R8GgDRlLZ+PxLMtpvc yMTxTohTWHnZiS7g/1lXtxt9/23WsQH8uYGfUwXRlBhrjOM+RZFmKz2q8eFlJ5KC atNmGrTJ3pHg35Owvxj6NYuI7hm/BdGg8LktMIumTW1mTJBBT4JymIa3NPTVm1rD +ZG7ZhlxO9UlOeXPEM1O8otz/y+jK0Qh -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:57 2025 by rpki-client