$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: YI1B4Qi8+yIeR/2QuFyL4gNIv+HByj/jxqwAOJrowL8= Subject key identifier: 7A:E2:7A:FE:C5:46:FD:03:ED:43:81:ED:91:2D:12:4F:74:80:18:C7 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 1391 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 1385 Signing time: Fri 22 Aug 2025 17:06:29 +0000 Manifest this update: Fri 22 Aug 2025 17:06:28 +0000 Manifest next update: Fri 29 Aug 2025 17:06:28 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: Vf3+uSBB0LnXm0v8Zp/cHptfZ6HTMs3upTLIg7LC3NI=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5009 (0x1391) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Aug 22 17:06:28 2025 GMT Not After : Aug 29 17:06:28 2025 GMT Subject: CN=68a8a395-ee53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:92:1e:73:cd:0e:71:d3:55:c8:75:1e:35:72: 32:e6:70:bc:c7:46:f3:82:7a:af:4d:de:2c:56:14: 7b:22:5a:fb:39:84:8d:70:50:9b:46:bb:7f:e0:a9: 9d:46:c6:cc:33:e9:0f:6e:c3:14:0a:37:79:92:bc: 92:ee:b7:f2:97:79:ac:65:6b:fc:50:3b:25:86:e2: 1f:95:de:14:2b:ed:f7:23:87:a9:d6:25:b9:b8:35: 8e:e4:11:69:6f:a5:41:56:0c:16:c4:fc:cc:b0:14: 9d:b4:01:5b:04:9a:06:02:b1:3b:bc:70:50:84:32: 9e:a6:8d:b8:90:b3:d2:7b:55:c6:58:df:ff:5e:4c: 6e:05:41:0c:2d:1c:09:46:09:a3:c8:66:86:73:90: 9a:7e:46:c3:fa:82:19:35:09:14:ce:7d:8d:ce:ae: db:6b:0c:a9:f7:21:78:6e:46:fe:02:49:51:7e:28: 72:c5:57:9c:1a:28:75:c8:c9:e9:14:4a:b8:4d:46: 53:23:95:75:5f:8d:36:e2:26:79:87:0d:ba:ff:c4: 5a:06:b3:08:a8:35:5b:e4:6a:fc:dd:66:fb:ba:a0: 6c:54:d0:ee:e4:8f:94:b1:c2:7c:59:4a:ad:73:9d: 49:dc:81:07:aa:5b:1e:91:6b:e7:3f:f8:77:b2:e9: 42:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E2:7A:FE:C5:46:FD:03:ED:43:81:ED:91:2D:12:4F:74:80:18:C7 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:5c:97:3b:94:86:ec:bb:33:f9:f1:ec:85:84:07:a0:31:61: 30:ff:17:78:ed:38:0a:30:af:c2:ff:36:c1:d3:27:af:d0:70: 82:91:68:f1:80:06:ab:ae:90:dd:83:06:ed:a0:94:5f:59:5b: fc:85:0a:84:aa:44:32:f9:78:71:c0:77:3a:e5:e1:28:ee:70: c8:d2:86:40:2e:67:bf:7c:81:c0:5a:a6:62:e7:00:9f:7c:57: 69:ad:ec:10:57:0e:c0:fc:81:3e:db:7f:34:77:09:6a:14:c0: 4c:13:0c:85:3a:9b:52:b4:be:19:ff:9a:e3:c2:c7:4a:06:48: 26:99:c1:a5:25:eb:7e:3d:b4:45:6b:91:93:6c:d3:90:ba:91: ef:90:16:2d:8a:01:58:4d:09:4e:67:3b:52:58:f5:7b:db:b3: 00:93:47:b1:cb:49:b3:eb:ed:37:56:82:0f:db:b1:ca:ba:80: 4b:c7:27:ae:f9:42:06:ea:fe:91:48:a8:f4:68:e6:1e:22:78: 98:a2:d4:53:e3:b9:3a:18:cf:17:c4:95:02:55:02:2a:00:1b: bb:7e:4c:dd:4a:28:93:35:f6:93:1c:05:4a:15:b2:4c:44:27: 23:25:86:59:c6:20:90:c0:eb:3d:a8:e2:1c:7d:88:80:43:15: a8:76:90:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUwODIyMTcwNjI4WhcNMjUwODI5MTcwNjI4WjAYMRYwFAYD VQQDEw02OGE4YTM5NS1lZTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypIec80OcdNVyHUeNXIy5nC8x0bzgnqvTd4sVhR7Ilr7OYSNcFCbRrt/4Kmd RsbMM+kPbsMUCjd5kryS7rfyl3msZWv8UDslhuIfld4UK+33I4ep1iW5uDWO5BFp b6VBVgwWxPzMsBSdtAFbBJoGArE7vHBQhDKepo24kLPSe1XGWN//XkxuBUEMLRwJ RgmjyGaGc5CafkbD+oIZNQkUzn2Nzq7bawyp9yF4bkb+AklRfihyxVecGih1yMnp FEq4TUZTI5V1X4024iZ5hw26/8RaBrMIqDVb5Gr83Wb7uqBsVNDu5I+UscJ8WUqt c51J3IEHqlsekWvnP/h3sulC+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHriev7F Rv0D7UOB7ZEtEk90gBjHMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEXJc7lIbsuzP58eyFhAegMWEw/xd47TgKMK/C/zbB0yev0HCCkWjx gAarrpDdgwbtoJRfWVv8hQqEqkQy+XhxwHc65eEo7nDI0oZALme/fIHAWqZi5wCf fFdprewQVw7A/IE+2380dwlqFMBMEwyFOptStL4Z/5rjwsdKBkgmmcGlJet+PbRF a5GTbNOQupHvkBYtigFYTQlOZztSWPV727MAk0exy0mz6+03VoIP27HKuoBLxyeu +UIG6v6RSKj0aOYeIniYotRT47k6GM8XxJUCVQIqABu7fkzdSiiTNfaTHAVKFbJM RCcjJYZZxiCQwOs9qOIcfYiAQxWodpAd -----END CERTIFICATE-----Generated at Sat Aug 23 10:44:24 2025 by rpki-client