$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: jP2HnJK21Ece56niVaNNt2LX2grZeUs/r+eipJSXhmU= Subject key identifier: 5D:79:67:A9:F3:6F:3D:C2:C1:7E:BD:DA:C6:18:35:C6:90:25:2D:0C Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 37 Signing time: Sat 23 Aug 2025 07:55:19 +0000 Manifest this update: Sat 23 Aug 2025 07:55:18 +0000 Manifest next update: Sat 30 Aug 2025 07:55:18 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: ufdJd27cS7UYbbg5j6uK7Iqni1FhZUbAFjujwnrlfJY=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: UYhhmkQaI1q3+QjYEo/76mR50UYMRxm9p33lOpn/bSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Aug 23 07:55:18 2025 GMT Not After : Aug 30 07:55:18 2025 GMT Subject: CN=68a973e6-a708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:72:a5:45:54:da:90:44:52:e4:4d:3a:d9:10: 35:b4:ff:59:4c:98:01:7e:6d:02:50:b3:dd:52:52: 26:dd:ac:81:fe:16:57:3d:42:ed:3c:53:c7:1d:60: be:12:1a:1c:85:5d:70:b1:f2:cb:3e:f3:3d:c2:91: b5:b9:b1:f9:a7:89:2e:f3:a7:39:af:97:07:93:13: a4:6e:4e:36:4c:17:95:52:d3:c5:c6:70:f5:d8:f4: 8a:b7:ac:8b:4a:d2:8b:97:06:fc:be:0a:ab:34:f1: 65:be:9f:e4:da:07:45:81:54:a8:21:a8:ea:f8:a5: e4:5d:49:0a:5e:1c:07:ad:e2:6b:ed:95:e3:fd:40: 0e:aa:af:99:0e:72:01:fa:e6:89:4f:7d:30:4c:fe: cb:9a:00:49:a7:7b:5a:8f:4c:07:03:41:86:11:54: fc:62:4f:70:24:56:f1:01:1e:80:d3:ff:ac:02:98: 25:4f:07:82:f1:3e:65:ec:35:11:45:b4:80:63:50: 33:74:2b:29:25:e4:13:c3:26:a7:84:03:90:8c:1f: 00:06:bf:0c:a6:a4:66:98:ff:7f:34:60:40:69:56: b4:1b:9a:61:a7:84:ab:f1:e1:26:ae:0c:3a:e4:c6: 42:6a:44:af:10:a4:99:61:0b:38:64:5d:a6:48:98: 62:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:79:67:A9:F3:6F:3D:C2:C1:7E:BD:DA:C6:18:35:C6:90:25:2D:0C X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:cf:4e:f5:5d:9d:ee:1b:5a:96:7d:25:a9:b5:4e:e0:93:58: 2e:2e:ba:5b:c1:44:35:bb:19:51:9f:a7:8d:4b:4e:80:ac:8d: 5b:77:4b:ca:c9:c0:eb:89:e6:3d:2f:a4:c1:a3:5c:1f:bb:d1: 11:9c:69:b6:a4:87:ae:c0:8f:28:e9:d5:73:ce:e2:14:ea:e9: 89:7f:f4:95:1d:fe:ce:6e:e7:11:6a:24:b1:38:a1:ad:e9:ea: d3:3e:a0:0a:95:e3:82:d3:35:a4:fc:12:0d:4d:6b:29:73:66: 6d:07:a7:2c:12:fc:19:09:30:55:f4:63:d0:50:8d:1e:44:c3: 58:b9:f4:98:60:03:a6:72:7f:57:cf:1b:4a:f4:2a:8f:61:1a: 85:ca:c7:89:63:22:f4:5f:e4:c2:99:a3:fc:4a:10:f6:6e:69: 8c:a3:9b:b5:26:ff:75:9d:a5:48:3a:a2:63:2a:cb:b9:a6:8a: e9:4b:f8:9a:f2:d5:b7:ae:45:35:44:2b:07:c0:27:50:68:e0: 01:9c:3d:8e:84:84:59:a3:d6:af:fa:62:ac:a6:c1:4b:b6:3b: 53:c8:87:c0:7e:72:43:98:99:0d:2a:92:dd:52:8b:7a:90:96: aa:e7:6e:47:d0:5f:8c:f5:dd:cb:0a:78:ef:4f:10:86:4b:bf: 8c:32:4d:a1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUMwMzExMC8GA1UEBRMoQTI0RDk2MzgzMzU5Q0I0OTY2QTE1QjlBOTA2OTEzRUI1 NDU2NjU3QjAeFw0yNTA4MjMwNzU1MThaFw0yNTA4MzAwNzU1MThaMBgxFjAUBgNV BAMTDTY4YTk3M2U2LWE3MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1cqVFVNqQRFLkTTrZEDW0/1lMmAF+bQJQs91SUibdrIH+Flc9Qu08U8cdYL4S GhyFXXCx8ss+8z3CkbW5sfmniS7zpzmvlweTE6RuTjZMF5VS08XGcPXY9Iq3rItK 0ouXBvy+Cqs08WW+n+TaB0WBVKghqOr4peRdSQpeHAet4mvtleP9QA6qr5kOcgH6 5olPfTBM/suaAEmne1qPTAcDQYYRVPxiT3AkVvEBHoDT/6wCmCVPB4LxPmXsNRFF tIBjUDN0Kykl5BPDJqeEA5CMHwAGvwympGaY/380YEBpVrQbmmGnhKvx4SauDDrk xkJqRK8QpJlhCzhkXaZImGIzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXXlnqfNv PcLBfr3axhg1xpAlLQwwHwYDVR0jBBgwFoAUok2WODNZy0lmoVuakGkT61RWZXsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QzAzLzM3RDE4QTE2MzlB MzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pY cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2syV09ETlp5MGxtb1Z1YWtHa1Q2MVJXWlhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QzAzLzM3RDE4QTE2MzlBMzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBs bW9WdWFrR2tUNjFSV1pYcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADHPTvVdne4bWpZ9Jam1TuCTWC4uulvBRDW7GVGfp41LToCsjVt3S8rJ wOuJ5j0vpMGjXB+70RGcabakh67Ajyjp1XPO4hTq6Yl/9JUd/s5u5xFqJLE4oa3p 6tM+oAqV44LTNaT8Eg1NaylzZm0HpywS/BkJMFX0Y9BQjR5Ew1i59JhgA6Zyf1fP G0r0Ko9hGoXKx4ljIvRf5MKZo/xKEPZuaYyjm7Um/3WdpUg6omMqy7mmiulL+Jry 1beuRTVEKwfAJ1Bo4AGcPY6EhFmj1q/6YqymwUu2O1PIh8B+ckOYmQ0qkt1Si3qQ lqrnbkfQX4z13csKeO9PEIZLv4wyTaE= -----END CERTIFICATE-----Generated at Sat Aug 23 21:02:26 2025 by rpki-client