$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft File: OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft (raw, json) Hash identifier: Qa0xNcrwDqSK5zgMFP+/xOFA4iNrjLOtNErzs6zUNB4= Subject key identifier: 69:99:0B:4A:92:6A:35:11:7B:13:81:4F:12:89:F2:FB:C1:ED:43:0C Authority key identifier: 3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 Certificate issuer: /CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft Manifest number: 014B Signing time: Sat 23 Aug 2025 04:23:52 +0000 Manifest this update: Sat 23 Aug 2025 04:23:51 +0000 Manifest next update: Sat 30 Aug 2025 04:23:51 +0000 Files and hashes: 1: OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl (hash: Tkc783p9n75gFu/xIVNi4skbFS9W7XilAKjEyXwFqiM=) 2: 67CB8C7287E711EEAC6C0B48C4F9AE02.roa (hash: F1mmz33PgwMDoRRZC6GtV9seLtgQSAErXHweDotrVWA=) 3: C1BECCFC68ED11EF85713047C4F9AE02.roa (hash: Sezt6J9wGq2uA81TOBF7C4CUuNihzkNfNyFAuKq+xQc=) 4: 675EE9DC87E711EEAC6C0B48C4F9AE02.roa (hash: drw42sYp0Yh/VWP9xaFHuMDcqO3Tii4R1NV32pLiPSM=) 5: 08310D28339011EFA4FD915FC4F9AE02.roa (hash: SpJu5nU/KENpOPLXjRvExSZV1G2bbDwfeZ2+Dj1X+E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:23:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Validity Not Before: Aug 23 04:23:51 2025 GMT Not After : Aug 30 04:23:51 2025 GMT Subject: CN=68a94257-c6e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:06:58:97:d3:aa:2b:f6:34:87:22:5b:5f:d3: e6:0f:2f:f5:43:59:0a:cf:a4:ec:8e:7b:ba:f6:57: 89:a2:8b:89:87:48:cb:73:b9:37:dc:93:8d:62:99: c7:23:f9:ab:ee:80:9c:5e:12:e7:19:34:20:c9:40: 30:18:b3:b2:37:9f:a3:95:ef:6f:0c:b5:c6:c6:f2: 2e:69:7b:a0:d5:d1:e3:66:37:61:a1:a7:d8:df:7e: a9:a2:23:cd:bd:6d:1f:e6:f0:2e:e5:26:9b:da:fd: 4e:c5:e4:81:cd:31:cb:a1:8e:01:91:bf:80:6e:d8: 22:7b:bd:ab:13:2d:88:7a:93:68:35:56:96:45:58: 91:e7:bf:1c:fb:62:ef:18:a2:f6:66:23:e8:58:59: 7e:ef:49:f7:47:3b:74:a5:a1:9c:f1:8e:02:31:d8: bf:a4:da:b6:3a:78:55:45:16:84:ad:a4:d9:02:53: cf:53:d9:1b:36:a5:3a:a0:e0:99:28:f7:b3:6a:91: cf:61:ae:d7:6e:3a:1d:06:e2:73:c4:e6:1c:80:a4: 96:36:aa:b2:83:ae:d6:af:aa:be:09:87:01:37:18: f5:3e:6c:55:8d:45:49:a2:d8:a7:07:c7:69:99:61: fe:d7:a8:7a:bf:f3:7a:62:7a:d7:9c:f9:ea:89:f4: c0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:99:0B:4A:92:6A:35:11:7B:13:81:4F:12:89:F2:FB:C1:ED:43:0C X509v3 Authority Key Identifier: keyid:3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:7d:b6:ca:66:91:58:8b:61:ac:73:bd:24:f3:ba:95:c2:c7: dd:43:3d:e7:16:8e:d9:08:bd:06:a0:85:de:d7:1d:15:84:78: 94:09:2e:6b:29:af:da:5d:0e:ef:02:b0:91:56:7a:5f:72:12: 94:a0:4b:58:ae:6e:8f:dc:f2:48:3e:09:51:9e:6b:f6:d8:12: 4f:8a:0e:3c:d7:cd:16:1c:03:60:c1:74:9f:25:58:e8:3b:36: 71:e5:c7:9c:0d:74:f4:fb:97:0e:3b:e3:d5:d6:dc:0b:bf:5e: f6:ff:9c:a9:f6:5e:e9:84:a2:50:cc:92:3a:d0:ee:dd:33:40: 85:d5:10:a4:88:01:d8:96:24:1b:14:d7:5c:51:20:89:bb:0d: 8e:a4:b9:d0:77:c0:be:c8:b1:d1:97:28:af:66:89:6c:c5:b7: 93:5c:14:2d:29:dc:ac:2a:40:3b:f5:de:26:95:1c:2f:65:37: 2a:f3:ce:7d:e5:6b:eb:f3:fe:fd:ea:ab:fa:e4:7b:73:dd:25: 13:ea:7b:41:0a:9f:7c:14:b3:5d:6c:f1:4e:09:8b:1a:52:01: 82:a5:b9:de:bb:09:6a:fe:38:99:af:0f:d1:a5:09:79:b4:44: 34:31:12:d9:21:1d:17:62:25:fe:11:20:27:a5:6c:96:f8:9f: 0f:f8:93:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDNBMTU0M0JERjM3NzJBOThEMjk0RUI5MDAyMzgwM0RE RERGMTFFNjIwHhcNMjUwODIzMDQyMzUxWhcNMjUwODMwMDQyMzUxWjAYMRYwFAYD VQQDEw02OGE5NDI1Ny1jNmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgZYl9OqK/Y0hyJbX9PmDy/1Q1kKz6Tsjnu69leJoouJh0jLc7k33JONYpnH I/mr7oCcXhLnGTQgyUAwGLOyN5+jle9vDLXGxvIuaXug1dHjZjdhoafY336poiPN vW0f5vAu5Sab2v1OxeSBzTHLoY4Bkb+Abtgie72rEy2IepNoNVaWRViR578c+2Lv GKL2ZiPoWFl+70n3Rzt0paGc8Y4CMdi/pNq2OnhVRRaEraTZAlPPU9kbNqU6oOCZ KPezapHPYa7XbjodBuJzxOYcgKSWNqqyg67Wr6q+CYcBNxj1PmxVjUVJotinB8dp mWH+16h6v/N6YnrXnPnqifTA3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmZC0qS ajURexOBTxKJ8vvB7UMMMB8GA1UdIwQYMBaAFDoVQ73zdyqY0pTrkAI4A93d8R5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9FQ0ZGMkFGODg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0twalNsT3VRQWpnRDNkM3hI bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09oVkR2Zk4zS3BqU2xPdVFBamdEM2QzeEhtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9FQ0ZGMkFGODg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0tw alNsT3VRQWpnRDNkM3hIbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3fbbKZpFYi2Gsc70k87qVwsfdQz3nFo7ZCL0GoIXe1x0VhHiUCS5r Ka/aXQ7vArCRVnpfchKUoEtYrm6P3PJIPglRnmv22BJPig48180WHANgwXSfJVjo OzZx5cecDXT0+5cOO+PV1twLv172/5yp9l7phKJQzJI60O7dM0CF1RCkiAHYliQb FNdcUSCJuw2OpLnQd8C+yLHRlyivZolsxbeTXBQtKdysKkA79d4mlRwvZTcq8859 5Wvr8/796qv65Htz3SUT6ntBCp98FLNdbPFOCYsaUgGCpbneuwlq/jiZrw/RpQl5 tEQ0MRLZIR0XYiX+ESAnpWyW+J8P+JNX -----END CERTIFICATE-----Generated at Sat Aug 23 12:13:19 2025 by rpki-client