$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: PS7bqDTztSTp/N9uP3ZoM3RCtDbgwoVaFBbQadc6tLA= Subject key identifier: 2B:90:2D:28:9E:4D:C7:23:39:A9:CC:A1:48:1E:69:65:FC:15:D3:6C Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 3347 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 32F1 Signing time: Fri 22 Aug 2025 15:27:32 +0000 Manifest this update: Fri 22 Aug 2025 15:27:31 +0000 Manifest next update: Fri 29 Aug 2025 15:27:31 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: 51zcv5oI0naXwSQMBU8UdYAoa9bYatm+t1AcVOIyMa8=) 2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=) 3: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=) 4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=) 5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13127 (0x3347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Aug 22 15:27:31 2025 GMT Not After : Aug 29 15:27:31 2025 GMT Subject: CN=68a88c64-fe51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:be:82:1b:08:fe:be:c5:ff:ff:2c:a1:e5:b5: b9:1f:06:dd:b8:09:76:b9:dc:79:b5:4e:71:95:2c: 85:50:ab:e6:e4:6e:40:85:4e:dc:51:ae:4a:a8:de: 78:cd:f4:14:10:3b:6d:6b:42:f8:7d:98:0d:7a:67: dc:b1:49:06:4e:34:b9:29:eb:48:b8:80:4b:fb:6b: 49:11:94:0b:6b:c4:4c:7b:f4:c9:a8:d5:b5:5f:d4: 0b:c9:b3:27:d1:db:6a:21:95:ab:bf:3d:dd:b8:c4: 2c:4d:0f:61:d2:fc:75:52:dd:6d:7e:09:86:5a:26: dd:65:ec:9d:4e:b4:52:6b:22:ba:a9:df:3a:58:21: 90:83:d6:95:a4:23:25:9b:c9:db:65:a2:6c:8e:9b: 61:8a:da:fb:6c:d3:60:b6:c6:e9:c0:ef:69:73:30: 7f:29:6a:58:c6:16:c1:04:ea:df:fd:e5:8a:f5:49: 43:f6:d4:9c:a1:93:37:41:0e:ed:c0:c9:73:f8:26: 71:50:f4:db:3b:cf:df:70:ed:5c:ac:db:90:2d:e2: ef:2a:da:6d:a6:4a:88:53:f1:ff:46:7c:75:7c:30: 62:4a:dd:35:9b:c8:f4:ab:57:4e:9e:02:24:b3:b1: 13:fa:a2:a2:bb:ca:34:ad:78:16:02:5d:2a:39:66: 61:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:90:2D:28:9E:4D:C7:23:39:A9:CC:A1:48:1E:69:65:FC:15:D3:6C X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f2:e2:24:d2:fd:6d:6c:3f:1a:96:d8:44:86:bd:d8:40:2b: 1a:6b:0a:40:f2:04:9f:e7:76:51:d4:85:ff:51:64:ba:8a:a7: dc:fb:55:13:b4:a0:be:fb:56:d5:f6:65:16:6c:ac:3c:18:7a: 40:d2:87:57:ee:36:b6:0a:65:c9:c8:1a:fe:41:f9:87:11:94: 5e:5c:36:82:39:79:23:42:9c:ac:c2:0f:6e:33:43:a6:51:09: 9a:69:3c:11:f9:dd:7f:f5:73:07:a6:77:22:3a:6b:6e:ef:dc: cf:06:9a:bb:e7:3d:24:d2:42:2e:78:d3:5a:e2:7a:f5:4f:e9: 89:4c:98:ef:89:9d:80:06:3f:7d:4e:55:5e:e4:80:d1:15:93: 49:cd:83:b8:73:dc:06:19:25:aa:0a:37:d8:d2:da:4b:b9:5a: 65:70:cc:d8:d3:fe:ce:da:2b:0a:e0:95:7e:f3:d1:8a:bf:fd: d2:9f:f8:f9:96:ce:5c:29:93:c6:b2:77:5b:a9:86:da:bf:42: a1:63:94:b7:c6:89:09:b1:cf:ef:ea:e3:0d:de:fe:3a:f3:6c: d2:9e:60:27:75:f0:3b:63:41:f7:e2:ff:8f:a2:da:b1:76:bb: 9a:f9:9f:4a:3b:ef:29:75:7b:26:e0:7c:d5:78:ee:a6:71:f4: af:91:78:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUwODIyMTUyNzMxWhcNMjUwODI5MTUyNzMxWjAYMRYwFAYD VQQDEw02OGE4OGM2NC1mZTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2b6CGwj+vsX//yyh5bW5HwbduAl2udx5tU5xlSyFUKvm5G5AhU7cUa5KqN54 zfQUEDtta0L4fZgNemfcsUkGTjS5KetIuIBL+2tJEZQLa8RMe/TJqNW1X9QLybMn 0dtqIZWrvz3duMQsTQ9h0vx1Ut1tfgmGWibdZeydTrRSayK6qd86WCGQg9aVpCMl m8nbZaJsjpthitr7bNNgtsbpwO9pczB/KWpYxhbBBOrf/eWK9UlD9tScoZM3QQ7t wMlz+CZxUPTbO8/fcO1crNuQLeLvKtptpkqIU/H/Rnx1fDBiSt01m8j0q1dOngIk s7ET+qKiu8o0rXgWAl0qOWZhlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuQLSie TccjOanMoUgeaWX8FdNsMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg8uIk0v1tbD8althEhr3YQCsaawpA8gSf53ZR1IX/UWS6iqfc+1UT tKC++1bV9mUWbKw8GHpA0odX7ja2CmXJyBr+QfmHEZReXDaCOXkjQpyswg9uM0Om UQmaaTwR+d1/9XMHpnciOmtu79zPBpq75z0k0kIueNNa4nr1T+mJTJjviZ2ABj99 TlVe5IDRFZNJzYO4c9wGGSWqCjfY0tpLuVplcMzY0/7O2isK4JV+89GKv/3Sn/j5 ls5cKZPGsndbqYbav0KhY5S3xokJsc/v6uMN3v4682zSnmAndfA7Y0H34v+Potqx drua+Z9KO+8pdXsm4HzVeO6mcfSvkXj1 -----END CERTIFICATE-----Generated at Sun Aug 24 02:28:12 2025 by rpki-client