$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: dV45Sv57oti70KAwSFlOyHdYBRvAaxKvT7/geZh8/aE= Subject key identifier: A0:12:07:60:01:32:1A:30:2F:FC:EA:0B:6D:92:93:6B:1F:56:59:A5 Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 1272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 125A Signing time: Fri 22 Aug 2025 17:14:48 +0000 Manifest this update: Fri 22 Aug 2025 17:14:47 +0000 Manifest next update: Fri 29 Aug 2025 17:14:47 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: gsA6TrxHk4aglWWtV5MIqRws6kJO1u4lLEOHmB3qnMs=) 2: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: u2n7hXJfpPkswx+8ZUw3IUUcjyPvy2JG1QnFE+FNubg=) 3: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: EhJYlBjQzArjJUepcPMKlhW0SwABK8otVcs5MS+goNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4722 (0x1272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Aug 22 17:14:47 2025 GMT Not After : Aug 29 17:14:47 2025 GMT Subject: CN=68a8a587-5cc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:62:ee:81:a8:39:12:5e:62:7f:da:3b:eb:81: af:97:b8:28:68:3c:e1:f4:58:cb:19:02:8f:22:92: 93:19:ac:9b:91:07:db:6f:d0:10:56:e7:23:0e:5a: 00:92:36:d2:1a:c9:76:9d:3a:47:9e:a0:33:34:a9: ba:95:58:e0:6d:5c:51:ca:b5:3e:1e:5c:8f:25:b3: 5e:2b:0f:1e:6e:6a:13:f6:e8:0a:0f:29:a6:01:d1: c4:56:51:4c:85:1d:1e:aa:6f:81:6b:e4:72:b1:eb: eb:cc:40:14:fb:07:64:20:77:e5:b1:3b:46:c2:96: 30:0d:e3:67:a5:ea:48:d5:79:98:00:9d:2f:29:dd: ca:c0:07:59:b7:13:06:b9:84:ef:ce:61:39:d9:42: 5d:ec:fb:66:f1:2a:7a:68:b9:0e:c9:9a:ad:90:d5: 91:5c:2b:fe:10:76:04:4c:18:3e:ca:a3:7d:66:af: 04:01:e3:be:ef:b2:7a:de:6e:52:21:56:c7:4f:d4: 9e:38:ca:a3:c3:71:6a:bb:4f:57:de:5c:03:db:d7: b7:b6:04:47:1a:60:0b:8a:85:ab:0a:a5:d5:23:53: a2:e5:bf:2c:2b:f0:c7:0b:8c:15:45:70:a0:16:b4: bf:0a:7a:fa:1e:11:3b:b3:1b:3d:ba:2c:62:de:9c: b6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:12:07:60:01:32:1A:30:2F:FC:EA:0B:6D:92:93:6B:1F:56:59:A5 X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:92:ec:4d:6c:45:d9:77:e7:e0:77:e8:0e:d5:8a:bb:b2:42: 71:5b:0e:f4:36:27:f1:00:54:5b:99:db:bb:aa:62:14:cd:76: 0c:5b:82:a9:7f:d7:16:05:82:84:28:a7:33:f5:79:ad:e5:44: 2d:cb:ca:8a:22:a8:48:3e:12:ff:a5:d7:dd:91:ca:56:c1:c2: 2a:10:76:19:7d:c9:8e:76:71:68:21:5b:c0:a1:59:16:38:ac: 44:8c:38:4f:30:93:4c:3b:b2:42:08:eb:ad:8d:e8:da:87:d7: a3:58:15:ed:cc:f8:ee:17:3d:e4:ab:78:46:fc:de:4a:24:cc: 6b:07:d9:6d:03:2c:99:88:73:44:0d:d6:9c:c8:cc:4d:7f:5d: 76:8f:4a:57:04:19:b1:26:20:80:4d:46:7f:58:bf:76:30:3d: 8c:ef:5c:7d:d1:77:a2:6b:88:52:01:e3:fa:e6:3a:ad:d9:51: 26:a9:14:d9:c7:b5:12:72:e7:c9:3c:4f:54:07:61:86:59:02: 72:f4:08:a2:40:2f:b4:ec:91:f1:f4:88:63:b6:82:93:cc:5b: a7:3f:3f:fd:32:f3:84:5d:a6:5b:40:26:f8:5a:f9:45:33:ea: 03:b4:ac:5a:0c:b7:cb:36:46:8d:ac:3c:36:c9:65:d0:b7:08: bc:47:f9:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjUwODIyMTcxNDQ3WhcNMjUwODI5MTcxNDQ3WjAYMRYwFAYD VQQDEw02OGE4YTU4Ny01Y2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mLugag5El5if9o764Gvl7goaDzh9FjLGQKPIpKTGaybkQfbb9AQVucjDloA kjbSGsl2nTpHnqAzNKm6lVjgbVxRyrU+HlyPJbNeKw8ebmoT9ugKDymmAdHEVlFM hR0eqm+Ba+RysevrzEAU+wdkIHflsTtGwpYwDeNnpepI1XmYAJ0vKd3KwAdZtxMG uYTvzmE52UJd7Ptm8Sp6aLkOyZqtkNWRXCv+EHYETBg+yqN9Zq8EAeO+77J63m5S IVbHT9SeOMqjw3Fqu09X3lwD29e3tgRHGmALioWrCqXVI1Oi5b8sK/DHC4wVRXCg FrS/Cnr6HhE7sxs9uixi3py2hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKASB2AB MhowL/zqC22Sk2sfVlmlMB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBkuxNbEXZd+fgd+gO1Yq7skJxWw70NifxAFRbmdu7qmIUzXYMW4Kp f9cWBYKEKKcz9Xmt5UQty8qKIqhIPhL/pdfdkcpWwcIqEHYZfcmOdnFoIVvAoVkW OKxEjDhPMJNMO7JCCOutjejah9ejWBXtzPjuFz3kq3hG/N5KJMxrB9ltAyyZiHNE DdacyMxNf112j0pXBBmxJiCATUZ/WL92MD2M71x90Xeia4hSAeP65jqt2VEmqRTZ x7UScufJPE9UB2GGWQJy9AiiQC+07JHx9IhjtoKTzFunPz/9MvOEXaZbQCb4WvlF M+oDtKxaDLfLNkaNrDw2yWXQtwi8R/nC -----END CERTIFICATE-----Generated at Sat Aug 23 18:56:10 2025 by rpki-client