$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: HppdfkuiIplg5/CSG8rwiJNo/+gl2OFj+yPsGzpk+Pk= Subject key identifier: 57:A1:43:B3:E4:35:5E:3C:02:85:07:71:71:33:62:6A:DA:45:D9:C2 Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 0235 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 0231 Signing time: Sat 23 Aug 2025 02:07:56 +0000 Manifest this update: Sat 23 Aug 2025 02:07:55 +0000 Manifest next update: Sat 30 Aug 2025 02:07:55 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: ZF03cgprJRjYHz1MKv4W/gxWKgXlgoV/KY25S8Fjcbk=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: JUU9x04r0AO1GN2PUUX6ELgHywTKgyrE2nXs4Tcl03M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Aug 23 02:07:55 2025 GMT Not After : Aug 30 02:07:55 2025 GMT Subject: CN=68a9227b-80f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:26:53:de:ac:3d:de:45:6a:d3:70:31:55:e4: e4:5a:8c:af:72:d4:aa:f7:8a:96:f4:bd:87:45:22: d2:2c:c9:0a:e2:4d:72:eb:fe:88:2d:41:f8:3e:4d: 3f:d9:73:b8:10:6c:53:92:8a:95:09:13:c2:fb:67: be:c7:ac:36:26:fa:79:12:0b:aa:00:97:5e:6d:9f: 3b:0a:6a:d1:ed:37:55:2c:cc:5a:1e:c5:b0:58:fe: bd:f1:dc:36:cb:aa:cf:ab:73:2f:0f:87:76:e0:86: 81:b0:ba:03:32:39:0c:b4:9b:cd:90:38:19:e0:97: 51:e4:30:da:51:25:fa:a3:8b:80:55:0d:62:e2:2c: e6:54:9d:66:8b:a1:12:c8:14:e4:13:29:b1:9b:03: 9a:3e:92:3c:63:5c:48:4b:92:55:36:68:f4:44:4b: ff:7e:89:a0:d9:d4:c0:61:3d:31:f7:b3:58:d4:8c: c2:3b:fe:76:a9:7a:5d:e2:ea:e0:b1:4d:f1:85:98: ac:fc:82:66:81:e6:da:07:8f:e7:48:1e:e0:11:62: 31:b2:46:c2:06:85:ad:9e:de:85:b7:a2:e3:d9:fd: 78:e7:fc:24:15:f8:0f:5f:37:24:67:11:6a:39:20: 34:f5:a9:64:10:82:c0:1d:64:c3:82:24:d8:e4:b3: 15:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A1:43:B3:E4:35:5E:3C:02:85:07:71:71:33:62:6A:DA:45:D9:C2 X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:3a:36:ed:fc:36:00:30:f8:7d:a7:05:12:68:b8:fb:04:00: b1:ff:5a:0b:0b:59:69:c5:97:f9:5b:af:4c:c7:97:23:4b:8e: 52:34:e6:df:b5:ab:9a:99:68:8a:cf:c1:b2:9c:3c:72:83:92: eb:f7:3d:40:03:0c:a7:5e:a1:b4:8a:00:00:b9:56:d4:d5:ce: 35:53:8a:73:24:a3:f9:ea:0a:54:0c:f6:f2:eb:db:d0:f9:7a: 90:43:c3:8e:2b:42:53:ca:f9:ea:1e:6c:59:bc:d8:f5:75:2b: 68:72:ee:8b:3c:27:5a:6c:a7:ec:9c:69:17:7a:4c:a7:26:93: 25:12:f9:0a:2d:92:b4:a0:d5:22:8b:a9:b8:b1:68:5b:68:c8: 3a:41:27:af:f0:01:f0:d7:91:ca:12:11:ed:34:50:4a:2b:87: 71:26:6c:4c:cc:9f:e0:4d:5f:98:c1:b2:81:35:ac:d1:72:6b: 69:c4:1f:18:ef:f3:b6:72:5e:85:bf:36:ec:b6:61:7b:4c:c7: 2f:5d:a8:99:8b:6e:c1:69:45:3c:44:0f:88:7a:b2:cb:45:e8: f3:6a:0c:74:0e:2d:c8:69:a6:f1:cc:92:66:7b:70:42:87:14: b3:c9:90:ab:3a:bf:f4:d3:21:46:1a:07:3f:2b:e7:9f:a4:31: 94:46:74:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjUwODIzMDIwNzU1WhcNMjUwODMwMDIwNzU1WjAYMRYwFAYD VQQDEw02OGE5MjI3Yi04MGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiZT3qw93kVq03AxVeTkWoyvctSq94qW9L2HRSLSLMkK4k1y6/6ILUH4Pk0/ 2XO4EGxTkoqVCRPC+2e+x6w2Jvp5EguqAJdebZ87CmrR7TdVLMxaHsWwWP698dw2 y6rPq3MvD4d24IaBsLoDMjkMtJvNkDgZ4JdR5DDaUSX6o4uAVQ1i4izmVJ1mi6ES yBTkEymxmwOaPpI8Y1xIS5JVNmj0REv/fomg2dTAYT0x97NY1IzCO/52qXpd4urg sU3xhZis/IJmgebaB4/nSB7gEWIxskbCBoWtnt6Ft6Lj2f145/wkFfgPXzckZxFq OSA09alkEILAHWTDgiTY5LMVUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFehQ7Pk NV48AoUHcXEzYmraRdnCMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7Ojbt/DYAMPh9pwUSaLj7BACx/1oLC1lpxZf5W69Mx5cjS45SNObf tauamWiKz8GynDxyg5Lr9z1AAwynXqG0igAAuVbU1c41U4pzJKP56gpUDPby69vQ +XqQQ8OOK0JTyvnqHmxZvNj1dStocu6LPCdabKfsnGkXekynJpMlEvkKLZK0oNUi i6m4sWhbaMg6QSev8AHw15HKEhHtNFBKK4dxJmxMzJ/gTV+YwbKBNazRcmtpxB8Y 7/O2cl6FvzbstmF7TMcvXaiZi27BaUU8RA+IerLLRejzagx0Di3IaabxzJJme3BC hxSzyZCrOr/00yFGGgc/K+efpDGURnSL -----END CERTIFICATE-----Generated at Sat Aug 23 20:25:03 2025 by rpki-client