$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft File: oYXAxXSCnF_NcURUSeU0za70E5Y.mft (raw, json) Hash identifier: unLvwvxsLBLy7rvBXik+auktmTxkHAhMvBktiNaYGD4= Subject key identifier: B9:B5:F8:69:C6:AA:A4:42:BC:07:BF:1E:8F:F5:1C:1A:A6:27:B0:2C Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 0356 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft Manifest number: 030E Signing time: Sat 23 Aug 2025 01:38:36 +0000 Manifest this update: Sat 23 Aug 2025 01:38:35 +0000 Manifest next update: Sat 30 Aug 2025 01:38:35 +0000 Files and hashes: 1: oYXAxXSCnF_NcURUSeU0za70E5Y.crl (hash: 9Hfp/BguU4Ugkefkcw6OGNIfvzd6xVLylzb5fy9uPnA=) 2: 212691F85C8A11F09D065A67C4F9AE02.roa (hash: iyDMS6tOGnY0vV2tRBpkImtDJt2yb1m8IIZ76sEjG28=) 3: AF5AD402224711F0B0CDB07DC4F9AE02.roa (hash: Rd9F0rhnVp5Iq5KfDW7kM6BcAp4B6e5cA4C+HDxhcWk=) 4: 2D153A4648B711F0B6D4592EC4F9AE02.roa (hash: 2idrkUiE1glbbdM/t25K//0O3gKsqe5+guvE9Yfyva4=) 5: 1C8BEF04E24511EF96354978C4F9AE02.roa (hash: emdOoNHeNPd2I/1TXnCpTax46mU70PVq1qcXN4YL9To=) 6: A3571FDE47EC11EFB51C3666C4F9AE02.roa (hash: oa1DI9U4A4Nx6Hk3PHDp1mXpYhzRJyPS5jmqfG2Om0Y=) 7: B111111288B411EF80480527C4F9AE02.roa (hash: qLIDrHWS/i6A8fwW8H8k+xkymy4Akbi61wq5s13V2Ww=) 8: 205AD1805C8A11F09D065A67C4F9AE02.roa (hash: /HSo5jxbj7peidwO9alg4qXB6CLHjHvT7Exk5bMgxFc=) 9: CD90ED68057211F0B6E2301BC4F9AE02.roa (hash: DFlr8Tn/hG96eJuSS2hv0WiijRfajfy1iDPzEugU79I=) 10: D8885778736E11F09285BB57C4F9AE02.roa (hash: kWy/MHRch8VxHGm3EaH/i/2JFapmHcdFJkSNEBAgbk0=) 11: EE235A42736E11F09E7CF457C4F9AE02.roa (hash: LrODa4UTwGwep9R4xvDIfrpYcTvSHvqSkIcijnpsmZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 854 (0x356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32, serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: Aug 23 01:38:35 2025 GMT Not After : Aug 30 01:38:35 2025 GMT Subject: CN=68a91b9b-ea9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:19:24:da:c5:08:c3:f9:e9:67:1f:db:30:24: b9:6c:fa:fd:2a:39:af:1b:4b:ad:00:76:1d:8a:48: 19:76:a7:e3:28:62:52:f5:f0:4e:69:47:97:42:63: 19:cb:8f:54:ae:06:5b:e8:b4:ff:5b:d6:69:47:5e: 96:25:c7:0d:f9:b3:7f:ab:82:6d:6c:5f:1e:8c:a3: 58:cf:af:f2:fa:86:4b:be:65:59:06:ad:d3:67:06: 6e:cb:4c:f0:86:c1:c0:fd:ae:b8:78:b7:ac:08:30: 7c:c6:6b:38:02:1b:06:37:f4:61:38:98:fc:f3:05: 6a:50:38:37:13:6f:24:77:a9:39:e1:7d:77:bf:c8: c3:ec:8d:8f:21:d8:ab:87:10:0f:6a:09:95:9e:d2: 19:c8:f7:ec:b5:c8:41:fe:0d:91:21:02:a1:0e:b2: 45:46:d3:6c:24:22:cd:13:25:2a:f9:ee:e9:bf:1e: 32:2b:7b:19:c3:41:b8:ab:63:d8:f4:b2:23:36:76: b4:b2:e0:97:2f:54:be:b7:ec:de:74:9a:d3:98:4b: 18:1f:2b:11:53:2c:b7:35:f1:01:c9:62:58:cc:cf: 75:f7:26:f7:bb:46:21:f8:66:9f:32:5d:38:c3:a2: 56:09:28:b1:4a:95:0a:74:47:a7:17:ed:04:7e:be: 80:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B5:F8:69:C6:AA:A4:42:BC:07:BF:1E:8F:F5:1C:1A:A6:27:B0:2C X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:67:9f:25:a0:d2:3b:47:cd:72:99:14:b5:d8:e4:51:9c:49: 54:fe:bb:40:5b:98:d4:ee:52:9f:43:15:9e:73:b4:7c:71:ea: 4e:d3:3d:64:b7:d4:85:8f:eb:a2:22:1f:90:c8:0b:0a:51:32: 1d:3f:ce:bd:3c:6b:88:9b:e2:e5:4d:eb:f9:39:7c:1e:58:13: f0:7d:1a:48:dc:b3:9d:48:57:0f:74:64:ff:31:17:df:29:d8: de:97:43:66:85:5e:0c:7c:5a:4d:db:0f:f6:7d:d0:0d:21:77: af:e1:51:02:93:34:5d:3c:e8:67:d9:26:d5:51:c1:6a:74:ef: 57:45:b0:c8:7c:55:f1:fd:ab:47:ed:40:82:86:82:09:85:bd: 7f:fd:0c:4d:5d:df:53:1c:5e:b9:04:4d:e4:1f:37:1b:86:b2: db:b7:53:38:71:5d:f4:f2:87:09:1a:1b:35:3c:93:f0:5b:2c: 11:b5:61:fb:1c:84:6c:10:43:c9:c2:6f:cf:6b:46:4e:25:1f: f8:d3:93:12:9b:b5:4d:9f:01:01:9a:c3:6e:b1:c6:12:b2:ca: 19:8e:aa:c1:69:e1:7f:b6:ba:a5:d0:22:9b:0b:e5:43:b1:25: f9:b4:72:bb:8b:82:18:13:88:98:5a:13:8c:3e:6b:cb:8f:e7: 51:3d:e6:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjUwODIzMDEzODM1WhcNMjUwODMwMDEzODM1WjAYMRYwFAYD VQQDEw02OGE5MWI5Yi1lYTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRkk2sUIw/npZx/bMCS5bPr9KjmvG0utAHYdikgZdqfjKGJS9fBOaUeXQmMZ y49UrgZb6LT/W9ZpR16WJccN+bN/q4JtbF8ejKNYz6/y+oZLvmVZBq3TZwZuy0zw hsHA/a64eLesCDB8xms4AhsGN/RhOJj88wVqUDg3E28kd6k54X13v8jD7I2PIdir hxAPagmVntIZyPfstchB/g2RIQKhDrJFRtNsJCLNEyUq+e7pvx4yK3sZw0G4q2PY 9LIjNna0suCXL1S+t+zedJrTmEsYHysRUyy3NfEByWJYzM919yb3u0Yh+GafMl04 w6JWCSixSpUKdEenF+0Efr6ASwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLm1+GnG qqRCvAe/Ho/1HBqmJ7AsMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEUzMi83MjA5NTlGQzAxQzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25G X05jVVJVU2VVMHphNzBFNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOZ58loNI7R81ymRS12ORRnElU/rtAW5jU7lKfQxWec7R8cepO0z1k t9SFj+uiIh+QyAsKUTIdP869PGuIm+LlTev5OXweWBPwfRpI3LOdSFcPdGT/MRff Kdjel0NmhV4MfFpN2w/2fdANIXev4VECkzRdPOhn2SbVUcFqdO9XRbDIfFXx/atH 7UCChoIJhb1//QxNXd9THF65BE3kHzcbhrLbt1M4cV308ocJGhs1PJPwWywRtWH7 HIRsEEPJwm/Pa0ZOJR/405MSm7VNnwEBmsNuscYSssoZjqrBaeF/trql0CKbC+VD sSX5tHK7i4IYE4iYWhOMPmvLj+dRPeaJ -----END CERTIFICATE-----Generated at Sat Aug 23 22:16:27 2025 by rpki-client