$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft File: oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft (raw, json) Hash identifier: +VQUZMfaEFf+A3B3p7cBj5hAIT4C/nK/5w681pyD9OE= Subject key identifier: 53:84:46:99:72:E9:62:4B:4C:7D:CC:2B:8F:3E:9D:70:0D:42:9A:F8 Authority key identifier: A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 Certificate issuer: /CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Certificate serial: 03F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft Manifest number: 03DB Signing time: Sat 23 Aug 2025 00:50:44 +0000 Manifest this update: Sat 23 Aug 2025 00:50:44 +0000 Manifest next update: Sat 30 Aug 2025 00:50:44 +0000 Files and hashes: 1: oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl (hash: 453WMfjDyxyDXKzLhBSn7Uj51Y21Mhnq6mOqJO05wFU=) 2: 5A76CDC2989511EC821F343DC4F9AE02.roa (hash: PFHGyRpc2XbCpMP3oZwcoRFS7cS4eDGCTFH+DmvXr+c=) 3: 17D3C6A89B2611EC8880303EC4F9AE02.roa (hash: dmwskcX+7K87R4MLVSKhbA64Ib5h40ZpO651aHbL2xA=) 4: 8F5EABBE919F11EDA7387A37C4F9AE02.roa (hash: 8Wa5zRD8JBVDnPrtDrMM10W+ePzBdP7fVD0dPyvthC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F2D, serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Validity Not Before: Aug 23 00:50:44 2025 GMT Not After : Aug 30 00:50:44 2025 GMT Subject: CN=68a91064-3029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cf:c5:5a:7b:88:6c:f9:c3:fd:cb:79:b4:cd: 59:7e:47:e8:6a:5e:26:4a:a9:32:31:cd:e1:61:83: 5d:96:83:fc:86:f0:c0:02:d0:2b:1f:f5:e8:4b:2a: 78:9c:1c:ac:15:a7:68:9f:e1:66:28:26:14:49:72: e0:22:f4:3b:fa:8c:e6:c8:14:7b:7a:dd:c0:2a:c3: 61:c8:05:d5:19:33:21:2a:6e:b6:82:75:7f:4f:53: aa:c6:de:de:e8:d5:96:7f:30:ac:82:e6:4c:91:ce: b2:50:39:02:b7:82:87:6c:93:48:dc:a6:1b:57:2a: a5:29:c3:7f:3c:1f:42:a9:3c:f1:df:28:e4:8b:95: 36:0a:1f:83:a3:5a:b2:a0:ab:0f:b0:92:3b:e6:59: f6:fa:97:63:2a:01:6b:28:6d:f7:08:38:36:39:a7: 8d:d8:32:97:53:34:22:e1:0d:3e:ad:eb:36:c0:4f: 2f:24:5b:9a:cb:cd:67:b0:d7:94:8c:28:47:ee:6d: de:24:bf:8c:a5:3a:cb:5d:5d:cd:f4:f8:10:d1:ee: 00:ef:b3:8f:99:6e:6e:76:2f:d4:47:aa:e5:e1:de: f4:fa:19:5d:6b:67:4c:8b:00:2f:cf:16:a1:59:bc: db:c7:2d:45:e9:87:38:8d:69:80:b0:78:cb:da:0f: 2e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:84:46:99:72:E9:62:4B:4C:7D:CC:2B:8F:3E:9D:70:0D:42:9A:F8 X509v3 Authority Key Identifier: keyid:A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:df:51:b0:70:09:99:42:cc:8a:df:16:92:31:b3:4a:bb:59: a7:ff:16:c1:95:63:aa:31:ec:d5:d3:6c:37:8b:f2:99:50:0d: 34:57:3e:08:27:f7:b6:d0:ab:b5:58:85:10:43:9a:db:61:07: ee:11:87:4d:ae:02:88:9c:c7:39:98:a7:a5:47:4c:48:58:af: 6d:15:00:77:4e:61:29:4a:a1:17:54:67:be:c3:85:c4:3c:84: 23:5b:0b:0c:7e:e8:f6:e1:1b:6b:be:78:16:58:5a:63:c2:4d: c4:83:36:0a:9b:3b:41:21:29:ae:3d:96:83:d2:5b:5a:29:a6: 25:ab:c2:7a:68:7c:07:bf:a3:14:13:20:1b:20:3a:15:a5:c2: 9a:cd:b7:42:d2:04:3f:96:5f:be:6a:07:b1:66:07:06:17:11: c8:33:30:92:d2:b9:9f:e1:69:c1:c6:a6:dc:14:cc:8e:42:86: c6:09:c0:33:ee:8c:c9:92:61:3f:81:b7:3b:99:69:67:d0:61: ca:92:12:bf:ae:77:2e:86:67:e1:cd:f1:21:58:6b:cc:09:2a: 0c:7c:79:91:1f:f2:88:f9:a2:88:81:72:60:0b:f0:5d:25:cb: ad:f7:15:45:ec:3b:3f:ae:fc:81:70:99:d0:9f:72:95:e9:d9: 86:21:d2:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVGMkQxMTAvBgNVBAUTKEEwMTNCMTM4OEEzOTMzQkUxMDZCRUFFRERGRTlGM0I4 MzQ2RDM3NDgwHhcNMjUwODIzMDA1MDQ0WhcNMjUwODMwMDA1MDQ0WjAYMRYwFAYD VQQDEw02OGE5MTA2NC0zMDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzM/FWnuIbPnD/ct5tM1Zfkfoal4mSqkyMc3hYYNdloP8hvDAAtArH/XoSyp4 nBysFadon+FmKCYUSXLgIvQ7+ozmyBR7et3AKsNhyAXVGTMhKm62gnV/T1Oqxt7e 6NWWfzCsguZMkc6yUDkCt4KHbJNI3KYbVyqlKcN/PB9CqTzx3yjki5U2Ch+Do1qy oKsPsJI75ln2+pdjKgFrKG33CDg2OaeN2DKXUzQi4Q0+res2wE8vJFuay81nsNeU jChH7m3eJL+MpTrLXV3N9PgQ0e4A77OPmW5udi/UR6rl4d70+hlda2dMiwAvzxah Wbzbxy1F6Yc4jWmAsHjL2g8u8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOERply 6WJLTH3MK48+nXANQpr4MB8GA1UdIwQYMBaAFKATsTiKOTO+EGvq7d/p87g0bTdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUYyRC9DRDZENkU1Njk4 OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03NFFhLXJ0My1uenVEUnRO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CT3hPSW81TTc0UWEtcnQzLW56dURSdE4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUYyRC9DRDZENkU1Njk4OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03 NFFhLXJ0My1uenVEUnROMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp31GwcAmZQsyK3xaSMbNKu1mn/xbBlWOqMezV02w3i/KZUA00Vz4I J/e20Ku1WIUQQ5rbYQfuEYdNrgKInMc5mKelR0xIWK9tFQB3TmEpSqEXVGe+w4XE PIQjWwsMfuj24RtrvngWWFpjwk3EgzYKmztBISmuPZaD0ltaKaYlq8J6aHwHv6MU EyAbIDoVpcKazbdC0gQ/ll++agexZgcGFxHIMzCS0rmf4WnBxqbcFMyOQobGCcAz 7ozJkmE/gbc7mWln0GHKkhK/rncuhmfhzfEhWGvMCSoMfHmRH/KI+aKIgXJgC/Bd Jcut9xVF7Ds/rvyBcJnQn3KV6dmGIdKQ -----END CERTIFICATE-----Generated at Sun Aug 24 02:24:57 2025 by rpki-client