$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: mDghTTBxB8rVJg3WTbK4UopMRDp3UfKto+zuGvaH880= Subject key identifier: 31:34:B6:E1:CB:EC:4D:53:3A:33:07:5F:7B:3C:60:FA:25:BE:63:FE Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 3080 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 3052 Signing time: Fri 22 Aug 2025 15:29:57 +0000 Manifest this update: Fri 22 Aug 2025 15:29:57 +0000 Manifest next update: Fri 29 Aug 2025 15:29:57 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: wxBBzXAQhRG0XWvRdetK3M4BR0rUj9bgyJhzVRARY74=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: J9SJ4DIJ/7Jqarub1sf8j6PHgZAGlGGdRbRsMiv9apI=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: 9deMiuArgkPyt65CV7Ht+L/9JKrWYVcP+qJb8LKGzOI=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: 2+WTGnYcaeWw8w6rtvBrYx7uq+JHkK1rDrCVxpG+T+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12416 (0x3080) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Aug 22 15:29:57 2025 GMT Not After : Aug 29 15:29:57 2025 GMT Subject: CN=68a88cf5-492f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:66:82:34:b5:b0:a2:2b:39:6f:27:5c:9f:dc: 86:c7:30:89:ba:82:3c:35:05:79:45:0f:aa:d5:79: 1e:28:7d:48:90:1a:03:7a:57:ef:5f:29:bc:47:5e: aa:7b:27:e9:73:b9:3d:a7:76:6d:47:56:0f:4c:22: c5:d8:cb:ee:eb:02:61:34:f8:ed:cd:dd:ce:ae:80: 5e:2c:94:e7:fc:68:8f:77:6a:93:0d:08:97:81:48: fe:14:f9:5f:bf:29:50:39:a5:57:cb:6e:79:1d:cf: 5d:af:4e:af:4e:e4:cb:5e:e5:12:4a:fb:57:27:b8: 93:65:39:3f:92:a3:84:42:21:db:74:44:fb:23:d9: 7e:89:28:4c:85:2e:67:ef:dc:0a:ac:c8:55:92:21: a9:47:cc:b4:03:e9:80:e2:37:65:3e:b2:15:aa:7f: 07:0b:da:88:58:34:65:1f:02:bc:f1:52:4e:c5:11: 2d:30:9e:d5:d4:e5:28:17:e9:df:bd:0f:1e:93:cc: fa:b6:ee:5b:cf:64:9b:76:f3:ca:e1:ee:ad:74:2b: 93:6a:51:10:bb:45:40:b0:9f:b5:66:12:37:7f:47: 12:d9:f7:9b:38:82:4e:ba:37:df:7e:44:74:ae:89: 70:f4:c5:40:0e:82:b6:a8:5e:1e:24:23:6a:f1:69: 9f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:34:B6:E1:CB:EC:4D:53:3A:33:07:5F:7B:3C:60:FA:25:BE:63:FE X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:ab:c8:06:d6:42:40:5e:44:e2:6e:d1:2b:08:f0:16:7e:5f: ec:94:bc:06:4e:86:cc:27:ef:ba:59:0a:bf:e8:db:c0:ca:8b: dc:93:63:84:90:a8:52:8a:aa:e8:ee:6c:f9:d9:25:1f:15:f1: d1:3b:14:f9:2c:40:fa:54:a3:07:9b:e6:b0:cb:31:6f:18:b7: 71:1b:ca:73:8f:74:ee:18:d1:6d:17:00:b6:7d:69:45:37:7d: 2c:ac:d5:96:60:62:4c:20:61:e3:66:a7:a4:81:8c:3e:48:51: 27:9b:c4:dc:f5:fe:8e:e6:1a:c8:75:d7:55:20:73:31:91:f9: ad:54:10:75:c0:26:25:14:40:e5:a3:4f:67:04:8b:ea:46:f5: 8c:0a:77:73:b0:83:2a:66:44:14:31:23:f3:83:99:5c:9f:fd: 09:5f:67:8b:43:a1:95:d0:9c:30:dc:02:93:da:60:d2:0d:38: 14:c2:6e:41:77:ba:00:6a:d0:b6:3b:f5:16:96:20:fd:57:df: b7:a7:e4:d4:dc:76:17:79:e2:f7:eb:26:c8:41:1a:1e:fa:b1: b4:cc:e0:c2:b9:cd:03:56:8f:76:69:c2:28:7d:96:d8:29:76: 11:a9:cf:f2:9e:b1:02:cd:5b:04:9b:65:eb:05:bd:17:b5:d6: 2d:56:65:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUwODIyMTUyOTU3WhcNMjUwODI5MTUyOTU3WjAYMRYwFAYD VQQDEw02OGE4OGNmNS00OTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2aCNLWwois5bydcn9yGxzCJuoI8NQV5RQ+q1XkeKH1IkBoDelfvXym8R16q eyfpc7k9p3ZtR1YPTCLF2Mvu6wJhNPjtzd3OroBeLJTn/GiPd2qTDQiXgUj+FPlf vylQOaVXy255Hc9dr06vTuTLXuUSSvtXJ7iTZTk/kqOEQiHbdET7I9l+iShMhS5n 79wKrMhVkiGpR8y0A+mA4jdlPrIVqn8HC9qIWDRlHwK88VJOxREtMJ7V1OUoF+nf vQ8ek8z6tu5bz2SbdvPK4e6tdCuTalEQu0VAsJ+1ZhI3f0cS2febOIJOujfffkR0 rolw9MVADoK2qF4eJCNq8WmfywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDE0tuHL 7E1TOjMHX3s8YPolvmP+MB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDq8gG1kJAXkTibtErCPAWfl/slLwGTobMJ++6WQq/6NvAyovck2OE kKhSiqro7mz52SUfFfHROxT5LED6VKMHm+awyzFvGLdxG8pzj3TuGNFtFwC2fWlF N30srNWWYGJMIGHjZqekgYw+SFEnm8Tc9f6O5hrIdddVIHMxkfmtVBB1wCYlFEDl o09nBIvqRvWMCndzsIMqZkQUMSPzg5lcn/0JX2eLQ6GV0Jww3AKT2mDSDTgUwm5B d7oAatC2O/UWliD9V9+3p+TU3HYXeeL36ybIQRoe+rG0zODCuc0DVo92acIofZbY KXYRqc/ynrECzVsEm2XrBb0XtdYtVmVY -----END CERTIFICATE-----Generated at Sat Aug 23 21:34:28 2025 by rpki-client