$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft File: 4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft (raw, json) Hash identifier: 6oPxqeHpggxNrP+Gvtnu/LhKwimTKXv5uMQFoxTjdXA= Subject key identifier: 53:58:ED:29:5D:68:BA:10:06:22:A7:4E:2E:29:DE:47:5F:74:8D:D0 Authority key identifier: E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B Certificate issuer: /CN=A91E1887/serialNumber=E0E9B9399B8A4A5FDCDE209FC5BEC078AF95CF7B Certificate serial: 0759 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft Manifest number: 0752 Signing time: Fri 22 Aug 2025 21:50:21 +0000 Manifest this update: Fri 22 Aug 2025 21:50:20 +0000 Manifest next update: Fri 29 Aug 2025 21:50:20 +0000 Files and hashes: 1: 4Om5OZuKSl_c3iCfxb7AeK-Vz3s.crl (hash: 039k3tKcti6OJlzTgciKEbeYcgLoJSm4B1jTMj/+NKY=) 2: 9F46C468355711EBA5B81020C4F9AE02.roa (hash: 03WpwA3JZLQp184AJleW1z4TTnMqm9OpYp8fSIGXxK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.crl rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1881 (0x759) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1887, serialNumber=E0E9B9399B8A4A5FDCDE209FC5BEC078AF95CF7B Validity Not Before: Aug 22 21:50:20 2025 GMT Not After : Aug 29 21:50:20 2025 GMT Subject: CN=68a8e61c-bc4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9a:51:a5:e4:11:5f:0d:9e:9e:08:b3:23:d4: 49:1e:4c:d2:79:45:17:ca:8b:0d:3b:65:8a:1e:8b: 4a:27:3b:64:1b:37:92:b7:02:74:7d:f5:c1:ea:9d: 74:30:c3:ff:9f:84:f6:4f:be:15:8d:5d:9e:b9:9c: 88:a5:3b:62:8b:9b:14:06:23:b8:89:30:eb:c6:30: 14:8d:93:cf:25:d4:eb:14:01:20:7c:39:44:5e:8d: a3:d5:a9:e1:c1:f1:38:41:1c:e2:4d:8b:fc:89:0a: 48:12:6b:3a:a4:d5:8a:0a:26:db:c4:58:84:0c:7a: 21:06:09:4c:33:f2:45:9c:b9:4c:b0:0c:c2:0c:82: 03:b6:b2:41:e7:f8:2e:13:88:58:84:2c:e4:79:d4: 9a:aa:70:9c:19:82:5c:12:9c:3f:93:30:8e:ef:d5: 0c:08:0d:75:a0:88:2a:68:b7:14:6d:1d:5e:09:c9: 8b:36:40:bf:c1:eb:56:b0:3d:0f:0c:96:b1:b2:f7: d9:02:85:a1:46:97:49:0b:40:92:8e:f3:70:0e:71: 16:aa:5d:06:b4:dd:05:3a:d6:88:2c:b0:7c:1a:73: 21:99:8d:9c:a0:2c:11:e7:2b:06:18:8b:ab:11:9f: 14:d5:8b:cc:4e:49:05:2c:a7:02:1c:48:74:db:2c: 65:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:58:ED:29:5D:68:BA:10:06:22:A7:4E:2E:29:DE:47:5F:74:8D:D0 X509v3 Authority Key Identifier: keyid:E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:1d:c3:4d:45:f2:34:1d:75:cd:1d:e7:7f:2f:3a:54:6e:7e: 70:af:1d:91:c4:50:4e:17:86:fd:59:d2:12:18:0c:37:b4:49: af:35:ea:aa:73:66:bb:3e:aa:be:ed:15:82:9e:a1:f9:f8:ef: be:07:c1:d2:df:a1:1e:d8:fb:0f:17:38:ae:95:e6:1b:ef:2a: 44:4e:c0:26:b2:d2:c6:d9:bf:d1:fa:86:f9:7c:80:9f:22:be: 72:f0:d2:fc:c3:75:3a:d3:d5:cc:84:c6:cb:ba:39:eb:89:7b: 27:7c:00:1d:7c:e1:32:40:16:4c:3a:62:76:9f:0d:20:ff:57: 50:51:0a:84:d3:7c:3a:24:3e:5d:45:49:bd:7e:ae:0a:b2:de: 1a:e7:71:e6:8f:ca:85:d0:60:2e:d1:ed:9f:ac:4f:fb:73:52: f3:b6:8c:60:b5:e6:dc:f1:c8:7a:40:88:79:40:bd:af:63:d4: 7e:fc:77:4f:d0:ee:01:9f:06:aa:3e:e9:c1:93:da:22:c3:bc: 6c:ed:34:42:a2:69:f3:e2:7c:93:2a:03:5e:39:9f:45:6d:6f: ab:5e:46:fd:d3:fa:97:4a:86:fe:32:fb:ea:0a:b4:94:5a:66: 99:14:38:80:7a:71:8d:97:35:e2:2f:2a:c3:8d:df:a7:c9:e0: eb:fe:e0:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE4ODcxMTAvBgNVBAUTKEUwRTlCOTM5OUI4QTRBNUZEQ0RFMjA5RkM1QkVDMDc4 QUY5NUNGN0IwHhcNMjUwODIyMjE1MDIwWhcNMjUwODI5MjE1MDIwWjAYMRYwFAYD VQQDEw02OGE4ZTYxYy1iYzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZpRpeQRXw2engizI9RJHkzSeUUXyosNO2WKHotKJztkGzeStwJ0ffXB6p10 MMP/n4T2T74VjV2euZyIpTtii5sUBiO4iTDrxjAUjZPPJdTrFAEgfDlEXo2j1anh wfE4QRziTYv8iQpIEms6pNWKCibbxFiEDHohBglMM/JFnLlMsAzCDIIDtrJB5/gu E4hYhCzkedSaqnCcGYJcEpw/kzCO79UMCA11oIgqaLcUbR1eCcmLNkC/wetWsD0P DJaxsvfZAoWhRpdJC0CSjvNwDnEWql0GtN0FOtaILLB8GnMhmY2coCwR5ysGGIur EZ8U1YvMTkkFLKcCHEh02yxlIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNY7Sld aLoQBiKnTi4p3kdfdI3QMB8GA1UdIwQYMBaAFODpuTmbikpf3N4gn8W+wHivlc97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTg4Ny84NEVFOEI2MDM1 NTExMUVCOUY0MTk1MEVDNEY5QUUwMi80T201T1p1S1NsX2MzaUNmeGI3QWVLLVZ6 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRPbTVPWnVLU2xfYzNpQ2Z4YjdBZUstVnozcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTg4Ny84NEVFOEI2MDM1NTExMUVCOUY0MTk1MEVDNEY5QUUwMi80T201T1p1S1Ns X2MzaUNmeGI3QWVLLVZ6M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATHcNNRfI0HXXNHed/LzpUbn5wrx2RxFBOF4b9WdISGAw3tEmvNeqq c2a7Pqq+7RWCnqH5+O++B8HS36Ee2PsPFziuleYb7ypETsAmstLG2b/R+ob5fICf Ir5y8NL8w3U609XMhMbLujnriXsnfAAdfOEyQBZMOmJ2nw0g/1dQUQqE03w6JD5d RUm9fq4Kst4a53Hmj8qF0GAu0e2frE/7c1Lztoxgtebc8ch6QIh5QL2vY9R+/HdP 0O4BnwaqPunBk9oiw7xs7TRComnz4nyTKgNeOZ9FbW+rXkb90/qXSob+MvvqCrSU WmaZFDiAenGNlzXiLyrDjd+nyeDr/uDv -----END CERTIFICATE-----Generated at Sat Aug 23 15:52:44 2025 by rpki-client