$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft File: o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft (raw, json) Hash identifier: 6SoktXpECGvU4U7xBgL7Oy2n+PzO9PEzB1vbCcyWoMM= Subject key identifier: 9F:E9:CB:34:0A:43:39:ED:91:F2:9A:A2:ED:BA:0F:38:FA:A8:CE:88 Authority key identifier: A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 Certificate issuer: /CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Certificate serial: 0359 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft Manifest number: 0355 Signing time: Sat 23 Aug 2025 01:14:29 +0000 Manifest this update: Sat 23 Aug 2025 01:14:28 +0000 Manifest next update: Sat 30 Aug 2025 01:14:28 +0000 Files and hashes: 1: o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl (hash: zXhUJuc3vLepR+QYaUsjc6SKQJN2+x5VPgX1/SBBG94=) 2: E2F2A470C76411EC85896F5EC4F9AE02.roa (hash: hSEOk4wSvcqkKWJUmunbhE8NC6T2P49jnE2eWh8/b4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4B, serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Validity Not Before: Aug 23 01:14:28 2025 GMT Not After : Aug 30 01:14:28 2025 GMT Subject: CN=68a915f5-64f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9c:94:f0:d2:29:f9:42:bf:9d:b7:c0:e9:26: 5e:3d:37:df:b2:6e:96:06:b2:c3:88:cf:56:8c:d3: 98:b3:d8:a6:de:2a:19:fb:0c:68:06:d7:b3:26:61: bc:55:e9:29:00:0a:e0:be:b7:8a:5d:78:92:46:42: 8f:6e:4c:22:52:57:67:a2:58:46:d1:5f:d3:74:05: 9b:97:e5:1a:6b:10:7b:d8:0c:ed:13:09:d0:43:9b: 90:04:41:4b:1b:8a:64:1f:85:bf:4a:c8:02:2a:4f: 1e:d8:7d:ea:01:28:48:81:f3:f1:6b:d8:52:71:2c: f0:a1:0d:fc:49:0c:ef:cd:36:90:ae:7d:a6:c8:cf: b3:e2:25:a8:30:e2:78:de:ef:78:66:f6:ef:27:39: 4f:62:43:ba:f1:a8:31:ce:fc:9f:36:0f:da:c2:ac: 20:fb:91:34:e5:db:34:ec:80:28:ff:f5:b2:a0:6a: c0:38:15:4a:56:33:f1:1f:3e:6a:cf:46:06:d2:52: ab:ac:c3:f4:1e:02:39:4f:f5:0b:57:cc:b9:f9:8b: 9b:db:da:bd:9f:1a:a6:73:b2:ad:72:20:78:a8:34: 27:db:94:3c:92:27:2d:9a:01:39:3c:8a:96:1e:81: a5:96:f0:d7:d5:63:97:a0:84:72:b7:b9:c3:7a:51: c2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E9:CB:34:0A:43:39:ED:91:F2:9A:A2:ED:BA:0F:38:FA:A8:CE:88 X509v3 Authority Key Identifier: keyid:A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:b5:f3:45:9f:26:1a:09:64:09:b5:38:85:bd:53:12:5c:b0: de:06:17:18:f3:a9:23:a4:19:29:45:4f:74:8f:50:33:48:dc: a7:cf:8c:18:f3:d2:ec:88:3f:d8:b0:be:66:21:52:fa:d1:f6: 58:e2:cd:4a:77:d8:c4:64:d6:ee:a3:d6:e4:5a:07:30:39:91: cc:6b:24:d8:c5:2f:a7:94:d8:f7:b2:ec:ef:4f:8a:8b:dd:f7: 9b:94:46:89:9c:6a:e0:45:ff:7a:f7:59:d3:8b:89:f5:74:f4: 97:a2:7a:3f:fa:ef:b0:0f:13:6c:e1:44:49:f9:b6:34:f5:5c: c0:a1:fe:46:3a:52:fc:f1:56:86:01:ec:cb:5c:a0:c6:22:45: d5:f7:bf:62:2f:f7:1e:49:61:b3:8c:62:5b:ec:58:a2:bd:15: 82:4d:11:ba:1b:db:e2:2f:d3:7c:bf:9f:e4:55:6c:1f:0d:fa: 30:a3:63:8d:c5:a1:4e:e3:f2:19:24:e4:17:97:02:76:79:61: 12:28:97:f8:d7:79:1f:a1:91:f5:42:f1:97:7c:8d:af:c4:00: 18:6a:e3:75:96:86:7c:be:b7:13:24:52:0d:e3:9a:5c:ec:2a: 87:9f:11:63:b3:e6:23:1f:8d:94:e4:c1:d9:5b:85:67:d9:c6: 16:d7:89:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEIxMTAvBgNVBAUTKEEzNTU2MURBNDVBOTU1RjAyRDEyMkEwRDg4RThDNzYy MzlFREY5MjAwHhcNMjUwODIzMDExNDI4WhcNMjUwODMwMDExNDI4WjAYMRYwFAYD VQQDEw02OGE5MTVmNS02NGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZyU8NIp+UK/nbfA6SZePTffsm6WBrLDiM9WjNOYs9im3ioZ+wxoBtezJmG8 VekpAArgvreKXXiSRkKPbkwiUldnolhG0V/TdAWbl+UaaxB72AztEwnQQ5uQBEFL G4pkH4W/SsgCKk8e2H3qAShIgfPxa9hScSzwoQ38SQzvzTaQrn2myM+z4iWoMOJ4 3u94ZvbvJzlPYkO68agxzvyfNg/awqwg+5E05ds07IAo//WyoGrAOBVKVjPxHz5q z0YG0lKrrMP0HgI5T/ULV8y5+Yub29q9nxqmc7KtciB4qDQn25Q8kictmgE5PIqW HoGllvDX1WOXoIRyt7nDelHCDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/pyzQK QzntkfKaou26Dzj6qM6IMB8GA1UdIwQYMBaAFKNVYdpFqVXwLRIqDYjox2I57fkg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qi84RTE2MjQzMEM3 NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZmQXRFaW9OaU9qSFlqbnQt U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xVmgya1dwVmZBdEVpb05pT2pIWWpudC1TQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qi84RTE2MjQzMEM3NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZm QXRFaW9OaU9qSFlqbnQtU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2tfNFnyYaCWQJtTiFvVMSXLDeBhcY86kjpBkpRU90j1AzSNynz4wY 89LsiD/YsL5mIVL60fZY4s1Kd9jEZNbuo9bkWgcwOZHMayTYxS+nlNj3suzvT4qL 3feblEaJnGrgRf9691nTi4n1dPSXono/+u+wDxNs4URJ+bY09VzAof5GOlL88VaG AezLXKDGIkXV979iL/ceSWGzjGJb7FiivRWCTRG6G9viL9N8v5/kVWwfDfowo2ON xaFO4/IZJOQXlwJ2eWESKJf413kfoZH1QvGXfI2vxAAYauN1loZ8vrcTJFIN45pc 7CqHnxFjs+YjH42U5MHZW4Vn2cYW14nA -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:32 2025 by rpki-client