$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: WJQlk8Y0wePm+AXhExZFF8hi3vsOOD3mhBuDLFf+PD0= Subject key identifier: 61:11:EA:19:9E:88:40:31:F8:A4:DF:CF:45:F3:A0:81:A7:D6:CA:8C Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 0113 Signing time: Sat 23 Aug 2025 05:05:31 +0000 Manifest this update: Sat 23 Aug 2025 05:05:31 +0000 Manifest next update: Sat 30 Aug 2025 05:05:31 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: Mtgml4VWtbER+mb8mt+ToXb2tAOyjFm/1cxuKaTbhvc=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Aug 23 05:05:31 2025 GMT Not After : Aug 30 05:05:31 2025 GMT Subject: CN=68a94c1b-f173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d5:b9:72:44:26:ef:be:e2:05:dd:d2:26:14: 02:4a:49:91:67:e0:82:b0:e6:48:0e:25:b6:5d:c4: 75:64:74:82:f8:6c:e5:14:ce:98:aa:5e:b8:7a:74: 1e:fe:e2:13:0c:f4:4c:ff:55:25:c2:ad:85:57:7b: d8:61:4f:e4:43:82:e1:35:4c:41:5a:79:fa:bc:a0: 13:b6:6e:ac:dc:b6:4b:a0:7b:ae:5c:3e:ca:0c:fd: f4:ce:70:7e:21:66:f4:28:ee:a2:d1:b1:e5:13:9b: 03:5c:6c:f0:f4:57:b0:b1:98:db:a4:d3:02:87:2b: c9:82:de:5c:d8:97:92:96:5c:9b:b8:74:1c:ac:67: e0:8f:33:09:6e:61:05:4d:f5:94:aa:c1:3b:be:65: a3:ad:75:4b:7e:bb:b9:6b:76:7a:61:a4:60:c0:76: f7:fa:1b:dd:a2:57:55:ec:ea:9d:f7:a8:e8:2b:a9: fc:aa:56:76:09:ab:ec:09:65:e1:d1:4e:4c:ea:79: 45:0b:75:a5:90:18:2b:d3:91:8b:bb:de:99:58:41: dd:09:4a:76:f3:7c:d0:8e:70:d5:f2:45:d7:4a:a0: c7:96:a6:a7:27:b5:72:e2:71:86:21:db:e9:9d:8e: 94:d0:d5:c3:d7:a0:73:15:de:e3:5f:a6:ec:48:01: 9f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:11:EA:19:9E:88:40:31:F8:A4:DF:CF:45:F3:A0:81:A7:D6:CA:8C X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:5d:2d:71:3b:73:51:82:f0:eb:c7:dd:96:6a:1a:83:e7:4d: 0b:2b:af:4c:ac:6c:4a:bc:3f:ee:26:d6:fa:24:2c:8c:3b:c2: 70:89:b2:f1:67:e6:20:f2:a4:54:a0:06:92:76:6d:de:54:73: a7:c0:a7:6f:96:92:43:27:0a:41:02:29:15:2b:5f:1f:7c:d8: 84:48:86:b7:7a:7a:1d:90:49:c1:d5:95:13:8d:84:f0:29:a1: 55:cd:70:2a:9e:5a:9c:0b:ef:32:75:4c:f0:2a:97:31:3f:85: 25:ec:bc:a8:ce:dc:bd:41:5f:db:93:ab:2a:0b:73:99:08:3d: 65:7d:e2:92:07:fb:30:43:24:5d:c9:fa:b7:b8:d9:a1:2c:aa: 26:f1:60:03:9f:cb:a7:09:fe:76:eb:f1:ef:1a:ed:e2:30:82: 79:58:3a:b2:e0:66:e6:d9:72:b9:a7:9a:b5:9e:8b:a2:f9:03: 97:3c:dd:5c:c1:c0:2b:1f:e2:64:38:55:57:aa:5c:20:61:7f: 37:4c:d4:74:09:88:57:4b:67:3f:c8:43:14:bf:42:09:cb:77: a9:cc:c7:18:bd:44:30:b1:35:2e:ac:04:82:a1:19:ef:fa:cc: 8a:df:ce:6d:8c:c9:0b:32:77:0f:f9:b9:af:d0:fe:8b:36:89: 85:4a:d4:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUwODIzMDUwNTMxWhcNMjUwODMwMDUwNTMxWjAYMRYwFAYD VQQDEw02OGE5NGMxYi1mMTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotW5ckQm777iBd3SJhQCSkmRZ+CCsOZIDiW2XcR1ZHSC+GzlFM6Yql64enQe /uITDPRM/1Ulwq2FV3vYYU/kQ4LhNUxBWnn6vKATtm6s3LZLoHuuXD7KDP30znB+ IWb0KO6i0bHlE5sDXGzw9FewsZjbpNMChyvJgt5c2JeSllybuHQcrGfgjzMJbmEF TfWUqsE7vmWjrXVLfru5a3Z6YaRgwHb3+hvdoldV7Oqd96joK6n8qlZ2CavsCWXh 0U5M6nlFC3WlkBgr05GLu96ZWEHdCUp283zQjnDV8kXXSqDHlqanJ7Vy4nGGIdvp nY6U0NXD16BzFd7jX6bsSAGfawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGER6hme iEAx+KTfz0XzoIGn1sqMMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjXS1xO3NRgvDrx92WahqD500LK69MrGxKvD/uJtb6JCyMO8JwibLx Z+Yg8qRUoAaSdm3eVHOnwKdvlpJDJwpBAikVK18ffNiESIa3enodkEnB1ZUTjYTw KaFVzXAqnlqcC+8ydUzwKpcxP4Ul7Lyozty9QV/bk6sqC3OZCD1lfeKSB/swQyRd yfq3uNmhLKom8WADn8unCf526/HvGu3iMIJ5WDqy4Gbm2XK5p5q1noui+QOXPN1c wcArH+JkOFVXqlwgYX83TNR0CYhXS2c/yEMUv0IJy3epzMcYvUQwsTUurASCoRnv +syK385tjMkLMncP+bmv0P6LNomFStQr -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:12 2025 by rpki-client