$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: cSlTrjNzb3fn3J1dZDxvQyJlMVn4Ik2OvIbZH+e1hwU= Subject key identifier: 51:19:32:C8:B3:01:0F:4F:5C:A1:FA:DE:80:C1:F5:B6:CA:0F:B2:59 Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: 78 Signing time: Fri 22 Aug 2025 14:16:17 +0000 Manifest this update: Fri 22 Aug 2025 14:16:17 +0000 Manifest next update: Fri 29 Aug 2025 14:16:17 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: JaElytDFsXAbCVGlUMeOWKz+i/zCV+zFHePE1nzQRs8=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: cA2l4Bz4w9KwEr1hYRA0GBgp3+TMBDk54SQcEyXzSVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Aug 22 14:16:17 2025 GMT Not After : Aug 29 14:16:17 2025 GMT Subject: CN=68a87bb1-7879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:57:29:dc:b0:87:e7:cb:8e:a8:9e:02:92:4f: 57:9e:11:0c:fc:0e:21:22:a9:9f:81:03:7e:9e:0b: 0c:bf:47:b8:8e:bc:5b:51:8d:1b:25:53:94:e0:73: 62:3f:33:5b:c1:44:c7:cc:f8:5e:0d:49:73:f3:9a: 3d:2f:37:ea:0c:b5:52:5c:2c:08:06:ec:c0:39:5b: ab:f8:59:5a:ca:57:85:55:97:09:bc:c4:d0:fd:0f: 57:1a:2e:05:89:76:ce:e4:7c:ca:e1:c1:a7:f7:71: 98:19:8e:6d:87:c7:be:22:a8:99:c8:cc:91:b8:ba: 04:34:f9:01:35:1a:51:3b:a1:bd:26:b7:25:2b:1a: fb:0f:49:43:a6:ff:53:fe:c7:ee:a9:3f:6b:77:c2: 39:09:c1:87:2b:88:b2:fa:dc:18:92:8f:50:ca:ab: 2c:71:ed:38:3c:5f:e3:a8:81:16:12:ec:9a:21:20: 90:38:e5:0c:d8:ab:e6:13:c3:d4:1c:96:40:18:86: 2b:a1:b3:f9:aa:a1:5a:ab:16:eb:70:02:c1:a0:8b: b4:d7:89:fa:63:4f:16:a9:a8:c6:90:3d:bc:2c:cc: 83:e4:6f:fe:e5:3e:5d:fe:00:28:38:84:88:6e:3b: a7:e7:44:46:78:11:e2:18:ab:f4:a3:fb:4b:07:41: 9c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:19:32:C8:B3:01:0F:4F:5C:A1:FA:DE:80:C1:F5:B6:CA:0F:B2:59 X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:8c:04:4d:5b:67:c3:93:6d:ba:2c:e7:8a:20:44:03:08:8e: 37:9f:57:be:d7:88:9d:cd:05:70:54:a5:21:ad:70:60:21:e3: 3f:6b:68:27:61:5a:df:4c:44:ee:17:a8:4a:19:52:43:4f:bf: d3:d2:6c:9f:bc:e5:b4:f0:d8:d7:d7:5e:8f:b6:dc:d4:1f:ca: 56:f1:36:5b:a7:b5:e4:d1:d9:8a:ac:e7:0c:5f:2e:0c:2f:52: 19:6a:45:fd:21:05:b7:8a:63:37:c8:0e:35:79:41:c3:2c:44: 8c:89:f8:44:04:55:cb:3b:db:39:51:5b:b2:b8:da:5a:1d:31: c8:37:e6:af:4d:e6:96:54:e7:cb:dc:eb:be:6e:03:c2:ca:5f: cf:d9:c1:ba:ab:d6:e5:49:a1:1e:6e:f5:2b:60:9f:90:2c:bc: 0c:41:14:cb:ec:29:58:ee:68:0c:68:93:87:1d:e5:ca:d1:77: 8f:62:3c:f0:c4:e7:f7:8b:e0:4e:82:46:22:1f:63:22:20:7a: 74:d0:62:f6:e9:69:1b:ce:bb:81:10:73:63:3c:78:fb:39:4a: 43:bc:42:49:aa:0a:6c:ee:9b:44:4e:05:a7:de:11:3b:de:31: 3a:7d:12:0a:51:c1:0e:f5:d9:3d:65:5a:2d:ac:2e:0e:ce:6e: e3:3a:69:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTYyMTExMC8GA1UEBRMoQTAyNzE5NUE0ODIwRjNENzI2NEE0RDU3RUU5QTlENEMy QTEwQzkyMzAeFw0yNTA4MjIxNDE2MTdaFw0yNTA4MjkxNDE2MTdaMBgxFjAUBgNV BAMTDTY4YTg3YmIxLTc4NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBVyncsIfny46ongKST1eeEQz8DiEiqZ+BA36eCwy/R7iOvFtRjRslU5Tgc2I/ M1vBRMfM+F4NSXPzmj0vN+oMtVJcLAgG7MA5W6v4WVrKV4VVlwm8xND9D1caLgWJ ds7kfMrhwaf3cZgZjm2Hx74iqJnIzJG4ugQ0+QE1GlE7ob0mtyUrGvsPSUOm/1P+ x+6pP2t3wjkJwYcriLL63BiSj1DKqyxx7Tg8X+OogRYS7JohIJA45QzYq+YTw9Qc lkAYhiuhs/mqoVqrFutwAsGgi7TXifpjTxapqMaQPbwszIPkb/7lPl3+ACg4hIhu O6fnREZ4EeIYq/Sj+0sHQZzdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUURkyyLMB D09cofregMH1tsoPslkwHwYDVR0jBBgwFoAUoCcZWkgg89cmSk1X7pqdTCoQySMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNjIxLzM1RURBOTJFQ0Yw RDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb0NjWldrZ2c4OWNtU2sxWDdwcWRUQ29ReVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NjIxLzM1RURBOTJFQ0YwRDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODlj bVNrMVg3cHFkVENvUXlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACKMBE1bZ8OTbbos54ogRAMIjjefV77XiJ3NBXBUpSGtcGAh4z9raCdh Wt9MRO4XqEoZUkNPv9PSbJ+85bTw2NfXXo+23NQfylbxNlunteTR2Yqs5wxfLgwv UhlqRf0hBbeKYzfIDjV5QcMsRIyJ+EQEVcs72zlRW7K42lodMcg35q9N5pZU58vc 675uA8LKX8/Zwbqr1uVJoR5u9Stgn5AsvAxBFMvsKVjuaAxok4cd5crRd49iPPDE 5/eL4E6CRiIfYyIgenTQYvbpaRvOu4EQc2M8ePs5SkO8QkmqCmzum0ROBafeETve MTp9EgpRwQ712T1lWi2sLg7ObuM6aWE= -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:20 2025 by rpki-client