$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft File: oUDUgGrgz2DnP-FYvyQvOag60AU.mft (raw, json) Hash identifier: 2M6ilgGjVMdFsGpQGCToBYSV19aDmnat4c6cEVOjgUc= Subject key identifier: 9A:F9:B3:E2:EB:D0:86:A8:A2:A3:17:24:72:26:D7:7B:A6:14:D4:6D Authority key identifier: A1:40:D4:80:6A:E0:CF:60:E7:3F:E1:58:BF:24:2F:39:A8:3A:D0:05 Certificate issuer: /CN=A91E1B78/serialNumber=A140D4806AE0CF60E73FE158BF242F39A83AD005 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft Manifest number: 4A Signing time: Sat 23 Aug 2025 07:38:44 +0000 Manifest this update: Sat 23 Aug 2025 07:38:43 +0000 Manifest next update: Sat 30 Aug 2025 07:38:43 +0000 Files and hashes: 1: oUDUgGrgz2DnP-FYvyQvOag60AU.crl (hash: HFkqtmn+AjFnl/kiigL8xImhIC9HkywYmfZ+3e3/6dc=) 2: 47131A44145511F082FDAA7AC4F9AE02.roa (hash: btGSbXlYPwUm6r4aT9dqMB2WqeFs4xBX2s74blUbTR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.crl rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:38:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1B78, serialNumber=A140D4806AE0CF60E73FE158BF242F39A83AD005 Validity Not Before: Aug 23 07:38:43 2025 GMT Not After : Aug 30 07:38:43 2025 GMT Subject: CN=68a97003-1d92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:dd:62:5e:a9:80:e9:92:f1:55:fa:47:67:61: e6:25:25:bd:82:e2:ed:4d:3a:4b:fa:ec:93:fa:4c: 06:a2:73:9d:ce:15:93:29:e6:e7:d5:06:4a:9e:8e: d5:db:0a:eb:e7:f1:f2:2a:b3:2d:6b:d1:6e:60:93: 41:c8:98:df:8d:f3:2d:fc:97:0b:35:42:32:b9:38: 79:4a:17:f3:eb:b6:a0:ad:75:41:91:dc:b0:3c:7f: ab:ef:fb:4d:67:2f:68:7e:b7:62:ef:a6:df:6e:69: c0:df:b6:67:74:34:a2:9c:73:b3:9e:6b:3d:7e:24: 2b:c9:3d:39:40:6b:86:73:88:9f:ab:02:29:a2:a2: 28:78:7a:b6:ff:0a:bc:33:d2:41:08:ce:da:78:79: 7e:7b:92:79:1d:be:d9:73:0a:d8:e6:fd:c9:3c:a0: 8e:1d:a1:24:f1:99:01:1f:df:0c:6f:37:2b:2f:e4: 43:d7:88:2e:11:57:66:a3:a4:a5:db:5b:c8:62:a1: 30:ee:bc:7b:a1:d9:42:72:cb:3b:ee:3e:3f:c8:e7: c0:08:91:2a:63:24:f9:c2:a9:b5:02:b2:36:37:ad: 45:7d:20:9c:77:02:91:a6:e8:89:f2:f3:fa:8d:19: ae:a4:15:fe:3e:36:e6:5a:19:1c:89:3c:2a:bd:50: d3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F9:B3:E2:EB:D0:86:A8:A2:A3:17:24:72:26:D7:7B:A6:14:D4:6D X509v3 Authority Key Identifier: keyid:A1:40:D4:80:6A:E0:CF:60:E7:3F:E1:58:BF:24:2F:39:A8:3A:D0:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:dd:a5:54:10:fd:af:ce:4e:83:b7:05:51:4e:49:8e:4d:00: 19:73:ea:5a:0d:f9:bb:a3:f1:82:8d:43:35:8c:b8:b8:62:ef: 54:46:93:f6:ca:c0:22:b4:f0:ef:39:17:b0:eb:c7:cb:24:84: e0:31:18:0e:14:61:98:61:44:7f:2e:55:2c:94:35:54:55:3a: 93:de:6f:90:82:95:7b:c3:bd:79:a4:6d:5c:98:cb:de:11:a3: ea:3a:1c:d8:eb:29:37:8b:1c:48:93:50:61:e5:36:3e:c2:68: 2c:54:93:c8:4c:9e:e2:2d:0c:7c:86:ba:ce:09:d0:65:37:fc: 42:03:f7:64:45:61:85:56:49:6c:00:9e:b1:45:bb:1b:b3:8f: bf:bb:36:ce:fd:94:29:8e:f8:76:52:68:0e:8b:4e:96:f9:e5: ba:7f:e6:7d:fd:6e:c2:c0:75:ff:3b:29:b3:f8:71:32:1f:fb: f0:6e:2a:db:43:59:10:0e:8d:1e:88:ed:93:be:08:8b:75:bd: 56:39:f1:87:90:14:c7:12:4c:aa:45:37:ae:d0:c3:db:5a:3e: e0:38:5d:df:64:9c:a1:ac:fb:87:c8:91:85:2d:fd:67:f8:43: 31:70:d7:b3:bf:06:07:d3:42:d5:d9:ed:ff:85:9c:fd:5b:5d: dd:d2:16:2c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUI3ODExMC8GA1UEBRMoQTE0MEQ0ODA2QUUwQ0Y2MEU3M0ZFMTU4QkYyNDJGMzlB ODNBRDAwNTAeFw0yNTA4MjMwNzM4NDNaFw0yNTA4MzAwNzM4NDNaMBgxFjAUBgNV BAMTDTY4YTk3MDAzLTFkOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDv3WJeqYDpkvFV+kdnYeYlJb2C4u1NOkv67JP6TAaic53OFZMp5ufVBkqejtXb Cuvn8fIqsy1r0W5gk0HImN+N8y38lws1QjK5OHlKF/PrtqCtdUGR3LA8f6vv+01n L2h+t2Lvpt9uacDftmd0NKKcc7Oeaz1+JCvJPTlAa4ZziJ+rAimioih4erb/Crwz 0kEIztp4eX57knkdvtlzCtjm/ck8oI4doSTxmQEf3wxvNysv5EPXiC4RV2ajpKXb W8hioTDuvHuh2UJyyzvuPj/I58AIkSpjJPnCqbUCsjY3rUV9IJx3ApGm6Iny8/qN Ga6kFf4+NuZaGRyJPCq9UNOFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmvmz4uvQ hqiioxckcibXe6YU1G0wHwYDVR0jBBgwFoAUoUDUgGrgz2DnP+FYvyQvOag60AUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxQjc4L0M4REY0MUFDMTQ1 NDExRjBCM0I3QzY3OUM0RjlBRTAyL29VRFVnR3JnejJEblAtRll2eVF2T2FnNjBB VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1VEVWdHcmd6MkRuUC1GWXZ5UXZPYWc2MEFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx Qjc4L0M4REY0MUFDMTQ1NDExRjBCM0I3QzY3OUM0RjlBRTAyL29VRFVnR3JnejJE blAtRll2eVF2T2FnNjBBVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEjdpVQQ/a/OToO3BVFOSY5NABlz6loN+buj8YKNQzWMuLhi71RGk/bK wCK08O85F7Drx8skhOAxGA4UYZhhRH8uVSyUNVRVOpPeb5CClXvDvXmkbVyYy94R o+o6HNjrKTeLHEiTUGHlNj7CaCxUk8hMnuItDHyGus4J0GU3/EID92RFYYVWSWwA nrFFuxuzj7+7Ns79lCmO+HZSaA6LTpb55bp/5n39bsLAdf87KbP4cTIf+/BuKttD WRAOjR6I7ZO+CIt1vVY58YeQFMcSTKpFN67Qw9taPuA4Xd9knKGs+4fIkYUt/Wf4 QzFw17O/BgfTQtXZ7f+FnP1bXd3SFiw= -----END CERTIFICATE-----Generated at Sun Aug 24 00:53:25 2025 by rpki-client