$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: qGwXcnzLiSsWAO70pWG7HOkSbCW4omVrrrsAw5MwGYQ= Subject key identifier: 6B:24:AF:9E:BA:67:5D:F3:6D:3F:C9:8E:2D:05:10:2F:C4:AD:FA:A4 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 0141 Signing time: Sat 23 Aug 2025 04:29:05 +0000 Manifest this update: Sat 23 Aug 2025 04:29:04 +0000 Manifest next update: Sat 30 Aug 2025 04:29:04 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: 6Vzi3oC3Fuo6T8dDvxgY5g4PHBiAnT0MmMDNFIX0umU=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Aug 23 04:29:04 2025 GMT Not After : Aug 30 04:29:04 2025 GMT Subject: CN=68a94391-4580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e0:d5:4e:a9:8d:db:c1:5a:c4:a7:b0:33:69: 27:2c:b8:30:29:a3:34:de:00:ea:3c:ed:db:63:2b: d8:b7:2b:d2:8c:f8:0e:5e:c3:75:08:79:c5:1c:c9: 30:9f:23:2f:de:ee:89:f3:07:51:1a:67:c5:79:d3: f4:19:40:1c:61:3e:b9:6e:d8:01:69:4b:bb:c3:2f: 9f:b5:a4:89:e0:9a:89:92:45:c9:72:2e:9e:71:9b: a8:8f:df:51:d3:e9:61:6d:59:c4:b8:7f:7d:3c:77: 69:f3:68:b9:f6:46:5a:7e:0d:f3:7c:b5:15:f5:b0: 36:51:3e:0d:09:e2:26:1b:8b:f2:da:53:49:e0:ac: 40:cf:3a:55:0f:06:fc:04:4d:bc:94:20:f6:7b:56: 74:d1:fd:e7:ed:b5:3c:59:89:21:e4:90:e0:a6:0a: 7f:5f:3c:a1:0e:bc:03:2c:7d:eb:36:4a:4b:ca:e2: c9:db:07:db:6e:e9:13:a5:5f:14:86:35:b9:c0:3a: 8f:06:70:91:a0:a8:1d:35:bd:8d:4b:f8:ee:94:38: e0:a1:46:e6:a0:d6:71:d0:3f:9c:14:a7:ce:42:03: 66:9d:29:81:41:fc:b9:f9:c8:f0:6c:61:e7:14:44: 40:b4:e1:eb:23:55:95:56:49:e2:95:fa:a4:95:cf: 36:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:24:AF:9E:BA:67:5D:F3:6D:3F:C9:8E:2D:05:10:2F:C4:AD:FA:A4 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:53:cb:c0:80:c9:6a:45:2b:ef:be:40:66:18:b0:47:e9:33: f2:36:ff:d6:1b:7c:38:6f:4d:7c:33:73:cf:ae:12:63:ce:c2: a7:f4:8a:96:cd:c2:93:23:40:00:ad:94:d2:94:08:ad:97:bc: dc:85:02:57:11:8a:0e:8d:8a:52:6d:e6:f0:02:ad:1b:79:c0: bf:38:e6:06:ca:b9:1d:60:b0:da:bc:c5:e5:31:f9:23:6a:6b: 7d:17:1d:ec:09:20:00:e8:1c:09:10:62:4f:cb:6a:f7:ca:50: b3:04:63:b2:de:3e:a4:87:ce:32:ca:84:1d:5c:1e:a1:f0:f4: f5:d3:ad:8d:61:9b:c0:95:e0:bd:fe:38:db:ec:0c:d8:3c:d8: 11:65:55:8f:db:5a:01:9f:08:02:24:8b:f4:aa:05:9a:25:d7: 3a:75:1a:ff:21:67:12:96:8f:1d:93:6c:c6:c0:fc:b5:76:59: f9:80:00:fb:5a:3c:43:67:1f:d8:e0:bb:06:58:b1:8f:00:c5: 23:12:42:57:b7:13:de:86:fb:e9:42:de:4b:30:21:31:89:3e: a4:6f:e2:81:4d:d8:18:1e:a3:15:e0:d7:72:c0:33:68:52:58: d3:08:10:7b:ac:bb:a9:19:d0:c3:27:0e:f6:0b:21:42:39:15: 1d:5d:e3:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUwODIzMDQyOTA0WhcNMjUwODMwMDQyOTA0WjAYMRYwFAYD VQQDEw02OGE5NDM5MS00NTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+DVTqmN28FaxKewM2knLLgwKaM03gDqPO3bYyvYtyvSjPgOXsN1CHnFHMkw nyMv3u6J8wdRGmfFedP0GUAcYT65btgBaUu7wy+ftaSJ4JqJkkXJci6ecZuoj99R 0+lhbVnEuH99PHdp82i59kZafg3zfLUV9bA2UT4NCeImG4vy2lNJ4KxAzzpVDwb8 BE28lCD2e1Z00f3n7bU8WYkh5JDgpgp/XzyhDrwDLH3rNkpLyuLJ2wfbbukTpV8U hjW5wDqPBnCRoKgdNb2NS/julDjgoUbmoNZx0D+cFKfOQgNmnSmBQfy5+cjwbGHn FERAtOHrI1WVVknilfqklc82LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGskr566 Z13zbT/Jji0FEC/ErfqkMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/U8vAgMlqRSvvvkBmGLBH6TPyNv/WG3w4b018M3PPrhJjzsKn9IqW zcKTI0AArZTSlAitl7zchQJXEYoOjYpSbebwAq0becC/OOYGyrkdYLDavMXlMfkj amt9Fx3sCSAA6BwJEGJPy2r3ylCzBGOy3j6kh84yyoQdXB6h8PT1062NYZvAleC9 /jjb7AzYPNgRZVWP21oBnwgCJIv0qgWaJdc6dRr/IWcSlo8dk2zGwPy1dln5gAD7 WjxDZx/Y4LsGWLGPAMUjEkJXtxPehvvpQt5LMCExiT6kb+KBTdgYHqMV4NdywDNo UljTCBB7rLupGdDDJw72CyFCORUdXeMA -----END CERTIFICATE-----Generated at Sun Aug 24 00:49:06 2025 by rpki-client