$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft File: ogavyWamnnC0ibOPEEg9wfpdPiI.mft (raw, json) Hash identifier: JBEmvNwzttSNssdfT6CjT0tDqWamixuYtk/kE9Y3pEE= Subject key identifier: F0:9F:CA:1F:A8:24:EC:55:DC:A2:F3:47:43:07:69:3D:CE:91:E7:27 Authority key identifier: A2:06:AF:C9:66:A6:9E:70:B4:89:B3:8F:10:48:3D:C1:FA:5D:3E:22 Certificate issuer: /CN=A91E4B6A/serialNumber=A206AFC966A69E70B489B38F10483DC1FA5D3E22 Certificate serial: 0403 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft Manifest number: 03FF Signing time: Sat 23 Aug 2025 00:41:56 +0000 Manifest this update: Sat 23 Aug 2025 00:41:55 +0000 Manifest next update: Sat 30 Aug 2025 00:41:55 +0000 Files and hashes: 1: ogavyWamnnC0ibOPEEg9wfpdPiI.crl (hash: r9oFyVdTKzJxcP7y8BJk10EBbicSxK++P/HP/X4DhLU=) 2: F7335D9484D911EC89E5246EC4F9AE02.roa (hash: zIQCvO1cYT9GDGEyMPF0tBOYTt1JAajUXmcBSrFDxrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.crl rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1027 (0x403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4B6A, serialNumber=A206AFC966A69E70B489B38F10483DC1FA5D3E22 Validity Not Before: Aug 23 00:41:55 2025 GMT Not After : Aug 30 00:41:55 2025 GMT Subject: CN=68a90e54-0f19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b8:01:2c:d3:12:50:ad:38:c0:2a:98:9a:33: 01:66:0f:46:17:51:ad:d7:66:d6:25:da:9e:38:2b: ee:c0:ac:0f:63:64:d8:49:ec:e1:f9:ca:2c:10:55: fc:a2:30:23:34:9e:03:dc:e3:5e:af:aa:d1:df:0e: cf:6a:ea:44:88:40:95:ca:16:30:db:4c:70:3b:75: 29:2d:e3:35:b7:23:a0:f1:d7:57:93:99:ce:70:3b: 31:b8:b0:58:7d:d2:a2:b8:02:6b:f1:37:25:04:8f: bc:0d:f8:b3:d4:9c:44:9b:b1:0e:f3:49:56:d2:76: 05:9a:8b:a9:06:33:b1:83:43:1b:9f:12:be:9c:91: 69:55:85:5c:cb:f5:1f:12:30:1e:2d:f8:26:a2:be: 8f:da:4e:8e:14:5e:a1:8a:7a:fe:7a:a0:dd:a8:c6: dd:d5:78:e9:db:03:80:fa:e2:2b:fe:12:43:17:2f: e2:67:fc:e4:56:d9:59:eb:61:ac:75:21:1b:a3:21: 04:e2:9d:a8:bb:9d:22:bc:80:b8:36:df:a9:65:91: c8:fb:d5:66:8c:57:df:83:35:ca:73:52:e2:1f:c1: 2f:c1:dd:8d:34:e2:35:4d:56:b7:16:b7:fc:30:7d: bc:05:48:63:6f:27:6d:ea:28:5b:48:ee:c6:c7:3f: 27:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:9F:CA:1F:A8:24:EC:55:DC:A2:F3:47:43:07:69:3D:CE:91:E7:27 X509v3 Authority Key Identifier: keyid:A2:06:AF:C9:66:A6:9E:70:B4:89:B3:8F:10:48:3D:C1:FA:5D:3E:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:27:7e:9d:bd:7b:99:d9:1a:f5:d5:15:f5:34:dc:91:5c:5c: c1:09:f7:0c:af:e4:f9:2b:54:2c:7a:ca:dc:ac:68:a0:d6:53: 49:27:ba:13:0d:db:fe:0f:5d:bf:ca:c6:17:8a:ce:ae:17:6c: d2:60:39:cb:03:9f:c3:3a:15:f3:27:93:18:75:ee:ab:07:5a: 02:1c:63:8b:82:1d:2d:09:2c:c0:87:7f:fd:b0:b9:de:6d:ed: f2:7e:8d:74:cc:ab:1d:93:f8:5f:58:d1:62:24:b3:c1:0c:55: a7:ae:58:c4:ce:47:ed:00:53:d2:b9:23:7a:34:b2:16:e7:e3: fa:26:c0:de:94:8c:6e:8d:96:b1:23:b9:e3:b0:e4:cf:b1:4f: 5f:a8:4d:30:4a:fb:8e:9b:c5:64:39:3c:b8:1a:cf:49:74:d6: d3:d6:26:73:3f:be:c9:0a:a1:04:56:8a:b4:90:1a:8e:32:5e: 52:ec:68:29:e9:88:e5:ea:d0:10:80:95:52:44:4e:da:00:31: 4f:47:cf:86:b5:fc:1b:d2:45:20:55:b5:14:16:04:87:51:28: 6e:f8:76:d1:a3:37:d1:44:03:e6:58:0c:6f:7d:d0:21:ca:55: 90:f5:f9:40:75:9b:2b:5e:e9:5f:43:54:f2:ec:34:a3:00:77: f5:eb:de:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCNkExMTAvBgNVBAUTKEEyMDZBRkM5NjZBNjlFNzBCNDg5QjM4RjEwNDgzREMx RkE1RDNFMjIwHhcNMjUwODIzMDA0MTU1WhcNMjUwODMwMDA0MTU1WjAYMRYwFAYD VQQDEw02OGE5MGU1NC0wZjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA87gBLNMSUK04wCqYmjMBZg9GF1Gt12bWJdqeOCvuwKwPY2TYSezh+cosEFX8 ojAjNJ4D3ONer6rR3w7PaupEiECVyhYw20xwO3UpLeM1tyOg8ddXk5nOcDsxuLBY fdKiuAJr8TclBI+8Dfiz1JxEm7EO80lW0nYFmoupBjOxg0MbnxK+nJFpVYVcy/Uf EjAeLfgmor6P2k6OFF6hinr+eqDdqMbd1Xjp2wOA+uIr/hJDFy/iZ/zkVtlZ62Gs dSEboyEE4p2ou50ivIC4Nt+pZZHI+9VmjFffgzXKc1LiH8Evwd2NNOI1TVa3Frf8 MH28BUhjbydt6ihbSO7Gxz8nTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCfyh+o JOxV3KLzR0MHaT3OkecnMB8GA1UdIwQYMBaAFKIGr8lmpp5wtImzjxBIPcH6XT4i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEI2QS9CNDgxMzM0Mjg0 RDcxMUVDOEUwNzQxNkRDNEY5QUUwMi9vZ2F2eVdhbW5uQzBpYk9QRUVnOXdmcGRQ aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29nYXZ5V2Ftbm5DMGliT1BFRWc5d2ZwZFBpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEI2QS9CNDgxMzM0Mjg0RDcxMUVDOEUwNzQxNkRDNEY5QUUwMi9vZ2F2eVdhbW5u QzBpYk9QRUVnOXdmcGRQaUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPJ36dvXuZ2Rr11RX1NNyRXFzBCfcMr+T5K1QsesrcrGig1lNJJ7oT Ddv+D12/ysYXis6uF2zSYDnLA5/DOhXzJ5MYde6rB1oCHGOLgh0tCSzAh3/9sLne be3yfo10zKsdk/hfWNFiJLPBDFWnrljEzkftAFPSuSN6NLIW5+P6JsDelIxujZax I7njsOTPsU9fqE0wSvuOm8VkOTy4Gs9JdNbT1iZzP77JCqEEVoq0kBqOMl5S7Ggp 6Yjl6tAQgJVSRE7aADFPR8+Gtfwb0kUgVbUUFgSHUShu+HbRozfRRAPmWAxvfdAh ylWQ9flAdZsrXulfQ1Ty7DSjAHf1695q -----END CERTIFICATE-----Generated at Sun Aug 24 00:07:04 2025 by rpki-client