$ rpki-client -vvf rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft File: o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft (raw, json) Hash identifier: djQGzX7NGv1LnX7vsvteflfrH1lSjrVlLxk3s2NLWvU= Subject key identifier: B4:09:23:94:E7:66:94:EB:B1:8B:72:A5:6B:8A:42:B1:E7:95:BC:DA Authority key identifier: A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF Certificate issuer: /CN=A91C913E/serialNumber=A3471C31533B88D1BF8A40A32A7DDE3BA0BB1CBF Certificate serial: 0360 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft Manifest number: 0359 Signing time: Sat 23 Aug 2025 01:13:50 +0000 Manifest this update: Sat 23 Aug 2025 01:13:50 +0000 Manifest next update: Sat 30 Aug 2025 01:13:50 +0000 Files and hashes: 1: o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl (hash: RYqwZgI4rKa3G7STcC8IdiyhFMYsT3ntWGo8YwYnYe4=) 2: 24578ECED56A11EFB764F716C4F9AE02.roa (hash: DhDV/fmV49KF53LCzY2iPFhFE+P1oeX1k0nYiQfDFpM=) 3: 1445557CC6C011EC9D09EF1DC4F9AE02.roa (hash: xTkFFGEwoSM0XslM057b0r3pWef291E2LlOQWfzYUXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 864 (0x360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C913E, serialNumber=A3471C31533B88D1BF8A40A32A7DDE3BA0BB1CBF Validity Not Before: Aug 23 01:13:50 2025 GMT Not After : Aug 30 01:13:50 2025 GMT Subject: CN=68a915ce-d188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c9:6f:94:04:d8:8b:2c:ac:d6:aa:92:17:b5: 25:68:6c:7e:86:f0:a6:1a:49:e8:39:f9:1a:ae:9a: 06:7f:a6:90:2a:ff:c6:3d:63:5d:6b:a5:b8:cd:95: 01:f9:a9:fd:b8:b8:6c:b9:a1:55:88:a5:c1:34:c4: 6e:0d:5d:98:3a:87:c5:05:de:c0:4c:71:b0:0b:8f: 40:36:2b:a0:61:1c:b4:68:69:28:c0:82:a1:6b:cc: 08:3a:9b:45:58:5b:ff:22:96:64:4f:31:01:cb:4c: 1f:12:39:3b:eb:23:dd:a6:b6:80:c3:2c:ba:34:f2: 07:d4:f8:29:8f:0d:25:97:c5:7c:92:cf:6b:4a:fe: b4:5b:39:b3:75:f8:9c:63:05:85:9f:9c:70:c9:0e: 05:e9:3b:69:f2:79:b2:bd:50:c3:e9:42:da:b7:4a: f1:71:8f:3c:52:15:bc:d9:33:b8:1f:76:71:dc:f9: 8c:aa:15:ee:ce:42:9c:d3:d7:73:c7:a7:17:0b:73: ac:a6:39:57:55:6e:2b:6a:3d:94:19:99:43:bf:83: f3:76:29:af:3d:e2:83:8c:b1:19:da:ff:c8:1f:be: 7d:b4:d6:ed:98:c8:f4:5d:f3:f8:2b:a6:ff:1d:4a: fc:a4:55:50:20:b6:47:c8:34:36:a9:6c:b5:5f:31: 0a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:09:23:94:E7:66:94:EB:B1:8B:72:A5:6B:8A:42:B1:E7:95:BC:DA X509v3 Authority Key Identifier: keyid:A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:db:10:ca:27:c6:06:b2:79:d3:d8:96:fd:03:55:be:54:89: 33:00:87:1f:9b:db:0f:39:1c:cc:3e:b7:1a:b7:0b:4f:5d:72: 3f:80:22:ee:d1:76:ee:96:92:96:02:eb:f2:81:3f:c3:99:9a: ed:b8:56:d3:6d:56:3a:d7:4e:4a:a8:f0:0f:3a:9b:a4:03:19: d7:ed:a9:14:6e:0a:2e:3b:da:44:7f:67:79:28:ef:4a:06:5a: a4:19:e5:4a:12:8a:75:f5:06:cc:21:b8:6d:a6:12:ca:d1:d9: ba:dc:ab:e7:9e:3d:a7:48:7f:57:1f:6c:64:3a:47:85:d3:c5: c9:e1:e4:e3:df:b7:09:7d:f3:2c:17:3c:fb:fc:f4:c8:52:1b: e2:7b:fb:8b:de:49:34:03:b8:57:89:3c:c5:8b:1a:08:51:c5: e9:d4:11:a4:87:b6:88:7c:18:0c:a3:98:d8:fb:39:ec:ac:f3: 0e:5b:6f:a1:7e:55:b3:5b:38:1b:17:f2:b1:ce:36:7f:c6:66: 4c:da:a3:41:83:91:f2:19:42:12:b3:e1:7f:82:51:cf:ff:a2: a5:71:34:b6:16:76:1b:17:e5:ea:04:3f:b3:6e:5e:13:0d:2a: d5:a4:36:2f:87:43:23:76:83:3b:76:5d:4c:bc:51:92:b8:85: 6a:1f:6c:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkxM0UxMTAvBgNVBAUTKEEzNDcxQzMxNTMzQjg4RDFCRjhBNDBBMzJBN0RERTNC QTBCQjFDQkYwHhcNMjUwODIzMDExMzUwWhcNMjUwODMwMDExMzUwWjAYMRYwFAYD VQQDEw02OGE5MTVjZS1kMTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtclvlATYiyys1qqSF7UlaGx+hvCmGknoOfkarpoGf6aQKv/GPWNda6W4zZUB +an9uLhsuaFViKXBNMRuDV2YOofFBd7ATHGwC49ANiugYRy0aGkowIKha8wIOptF WFv/IpZkTzEBy0wfEjk76yPdpraAwyy6NPIH1Pgpjw0ll8V8ks9rSv60Wzmzdfic YwWFn5xwyQ4F6Ttp8nmyvVDD6ULat0rxcY88UhW82TO4H3Zx3PmMqhXuzkKc09dz x6cXC3OspjlXVW4raj2UGZlDv4PzdimvPeKDjLEZ2v/IH759tNbtmMj0XfP4K6b/ HUr8pFVQILZHyDQ2qWy1XzEKHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQJI5Tn ZpTrsYtypWuKQrHnlbzaMB8GA1UdIwQYMBaAFKNHHDFTO4jRv4pAoyp93juguxy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTEzRS9ERDA4OThGMEM2 QkQxMUVDODk2Mzc0MURDNEY5QUUwMi9vMGNjTVZNN2lOR19pa0NqS24zZU82QzdI TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wY2NNVk03aU5HX2lrQ2pLbjNlTzZDN0hMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTEzRS9ERDA4OThGMEM2QkQxMUVDODk2Mzc0MURDNEY5QUUwMi9vMGNjTVZNN2lO R19pa0NqS24zZU82QzdITDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB22xDKJ8YGsnnT2Jb9A1W+VIkzAIcfm9sPORzMPrcatwtPXXI/gCLu 0XbulpKWAuvygT/DmZrtuFbTbVY6105KqPAPOpukAxnX7akUbgouO9pEf2d5KO9K BlqkGeVKEop19QbMIbhtphLK0dm63Kvnnj2nSH9XH2xkOkeF08XJ4eTj37cJffMs Fzz7/PTIUhvie/uL3kk0A7hXiTzFixoIUcXp1BGkh7aIfBgMo5jY+znsrPMOW2+h flWzWzgbF/KxzjZ/xmZM2qNBg5HyGUISs+F/glHP/6KlcTS2FnYbF+XqBD+zbl4T DSrVpDYvh0MjdoM7dl1MvFGSuIVqH2z1 -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:34 2025 by rpki-client