$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: nIb4KxIyeV8wj5hDlHx9aftQ8rjIsBlHFbmOEtza1Nc= Subject key identifier: E4:E7:B0:EA:9F:6A:71:98:D8:56:F3:B8:78:8C:AD:13:03:7F:56:0B Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 358C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 352C Signing time: Fri 22 Aug 2025 14:50:11 +0000 Manifest this update: Fri 22 Aug 2025 14:50:11 +0000 Manifest next update: Fri 29 Aug 2025 14:50:11 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: Qddmfj3Wcb0SCj2T5my1TQkI5jyTLZVdXbDkYNw9Er8=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: K9GG+06i99foR/2RXGf0/I8Kvx2roZu5heq1VZdQ+OI=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: IyDQYJrM5fIKR+ASJpDKeAtN9Kfn9iiroq8ekuZROvU=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: JsgxM7O87UBNAKRhO7z2ipB7o5ZRGqkbp9Qr0swNUZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13708 (0x358c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Aug 22 14:50:11 2025 GMT Not After : Aug 29 14:50:11 2025 GMT Subject: CN=68a883a3-a667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:87:3f:ad:94:f7:09:41:4c:ca:39:af:9f:00: 13:3e:02:df:2a:8c:2d:53:52:9e:cc:be:4f:f6:3a: 12:16:cf:d8:d7:9f:ac:23:18:df:24:a7:be:09:18: 9e:3e:a3:b4:9a:50:99:e1:8d:f3:90:c0:b1:57:88: 9b:ec:fa:91:c8:ff:47:ed:a1:22:9b:61:18:34:4b: cb:17:5d:90:4b:4f:89:05:72:ed:87:68:fc:c5:4f: 8c:14:9c:bc:8d:26:d5:15:63:63:98:c4:fc:07:08: c1:c0:3d:87:1e:5e:4f:58:5f:34:96:c4:10:5c:f3: ef:8e:88:7e:64:99:64:27:ea:08:2e:e4:73:85:4b: 51:f4:56:4a:f4:0a:9d:62:ad:62:fd:aa:60:3d:a8: c5:2c:ed:e8:8e:14:2d:01:91:ce:3a:f2:ca:3b:30: ea:5c:5f:22:9b:06:29:53:89:15:9c:63:64:8b:03: 91:b4:2c:9f:37:0b:11:08:60:e5:c1:43:a8:a1:20: c6:ca:18:45:1c:bd:15:b3:c1:26:e2:ed:3f:fb:e5: ff:9e:b8:7d:48:79:c0:33:f9:09:5f:4c:86:1c:2f: e9:f3:1a:d6:20:fc:c3:f2:1e:5c:01:f1:11:1a:52: f2:d3:ff:d4:bd:82:29:34:3d:be:6e:91:82:8f:d1: eb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E7:B0:EA:9F:6A:71:98:D8:56:F3:B8:78:8C:AD:13:03:7F:56:0B X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:bd:b9:dd:f4:49:03:19:9d:3e:83:8d:65:db:7d:03:5f:d1: cb:b0:3d:f6:fa:52:8c:da:4d:00:5f:66:af:af:9f:4e:8a:79: 31:d1:b1:c8:4c:73:0b:19:5f:ea:69:6f:28:df:fc:16:5e:1e: 6b:25:73:a9:d1:c8:b9:bd:db:4f:7e:fb:fe:24:dc:ae:4d:3e: 2c:52:34:a9:79:d4:d3:82:60:2e:27:fa:35:c9:e9:6b:3f:9e: b1:f1:d3:12:8c:d0:59:d8:21:d1:80:39:3f:70:0a:47:c0:f1: 23:70:c3:de:f0:e2:f3:63:7b:f8:e6:10:67:57:57:1a:cf:3a: 2f:cf:5d:07:f1:65:17:8f:c6:48:93:54:e4:eb:08:a9:8f:0c: 70:5b:4c:48:20:e0:db:ff:fd:e9:c6:05:1d:a1:42:e6:d4:82: 31:b7:da:8a:14:7e:ad:fc:15:54:db:02:d0:79:ab:cc:bd:6c: a5:ec:30:b9:9a:3d:19:e7:71:9b:6f:64:83:45:1f:d9:b1:32: f5:a1:4c:cf:93:a8:d0:e9:45:23:16:ff:d8:45:01:b0:5a:b3: ff:37:4b:71:06:bd:46:14:f3:d2:33:90:11:bc:23:2d:9e:e3: bf:2c:8d:5e:c5:5c:18:3f:d3:a2:3b:48:26:ac:9a:f5:bc:0b: 84:90:0e:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUwODIyMTQ1MDExWhcNMjUwODI5MTQ1MDExWjAYMRYwFAYD VQQDEw02OGE4ODNhMy1hNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYc/rZT3CUFMyjmvnwATPgLfKowtU1KezL5P9joSFs/Y15+sIxjfJKe+CRie PqO0mlCZ4Y3zkMCxV4ib7PqRyP9H7aEim2EYNEvLF12QS0+JBXLth2j8xU+MFJy8 jSbVFWNjmMT8BwjBwD2HHl5PWF80lsQQXPPvjoh+ZJlkJ+oILuRzhUtR9FZK9Aqd Yq1i/apgPajFLO3ojhQtAZHOOvLKOzDqXF8imwYpU4kVnGNkiwORtCyfNwsRCGDl wUOooSDGyhhFHL0Vs8Em4u0/++X/nrh9SHnAM/kJX0yGHC/p8xrWIPzD8h5cAfER GlLy0//UvYIpND2+bpGCj9HrAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTnsOqf anGY2FbzuHiMrRMDf1YLMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOvbnd9EkDGZ0+g41l230DX9HLsD32+lKM2k0AX2avr59Oinkx0bHI THMLGV/qaW8o3/wWXh5rJXOp0ci5vdtPfvv+JNyuTT4sUjSpedTTgmAuJ/o1yelr P56x8dMSjNBZ2CHRgDk/cApHwPEjcMPe8OLzY3v45hBnV1cazzovz10H8WUXj8ZI k1Tk6wipjwxwW0xIIODb//3pxgUdoULm1IIxt9qKFH6t/BVU2wLQeavMvWyl7DC5 mj0Z53Gbb2SDRR/ZsTL1oUzPk6jQ6UUjFv/YRQGwWrP/N0txBr1GFPPSM5ARvCMt nuO/LI1exVwYP9OiO0gmrJr1vAuEkA7x -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:00 2025 by rpki-client