$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json) Hash identifier: J7etU4P3yHkcdkVbm7AMLQXdeKW7Gj19+Gd6hBfUgUM= Subject key identifier: B7:A0:6A:EA:49:C0:9A:08:A6:83:C0:D4:4F:DD:93:43:8D:DA:D2:CF Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Certificate serial: 0D6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft Manifest number: 0D64 Signing time: Fri 22 Aug 2025 18:05:48 +0000 Manifest this update: Fri 22 Aug 2025 18:05:48 +0000 Manifest next update: Fri 29 Aug 2025 18:05:48 +0000 Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: DMLLS0cIy4KufGN4rE3gFViDNZwpTo0kpXQUVwxKkls=) 2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: C8YUnzVpdG1ic9MCuW7celmXkhXkYeCvagfWnZShYbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3436 (0xd6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Validity Not Before: Aug 22 18:05:48 2025 GMT Not After : Aug 29 18:05:48 2025 GMT Subject: CN=68a8b17c-df12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:61:d7:1c:d7:df:d1:1e:82:3c:f7:46:92:ca: d3:36:3b:52:b2:3d:51:43:f8:01:2c:86:f8:3b:02: b4:c2:72:38:cc:ca:a9:1b:a1:5a:15:df:76:b4:ed: 70:e3:ae:bd:da:18:0c:82:0b:ca:50:d2:2f:85:3c: be:67:5e:8d:8e:4a:7b:35:d0:fe:ed:9e:86:61:8b: 44:e0:81:25:0d:94:1d:44:f6:29:0d:41:01:ad:32: 80:ad:b8:92:d1:06:8e:34:b0:a6:9d:db:c4:b7:ff: ac:91:29:64:d2:37:f0:f4:49:3c:ee:17:9f:de:40: 11:5e:29:3e:2c:10:0e:eb:e1:46:3a:88:e3:9d:bb: 45:ca:20:b2:e7:6a:bb:7d:a5:bc:72:86:db:24:f1: 34:90:e6:e5:32:9b:72:f1:76:12:3a:98:3c:ff:4a: f2:f9:6f:76:c5:07:84:45:b8:42:d1:0e:00:60:bd: 95:4d:42:fd:c1:a4:8d:da:d9:80:4e:08:f1:d0:c4: 4a:08:36:06:c2:94:a2:fd:44:5f:48:65:d0:01:ae: e5:6d:b0:42:7d:06:21:cc:9b:5e:85:c6:7f:36:e1: 64:79:fe:82:a6:d2:1d:b2:5f:0a:a2:b5:a7:07:9a: 66:86:2f:77:39:94:66:36:41:3c:33:66:48:f2:f8: b1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A0:6A:EA:49:C0:9A:08:A6:83:C0:D4:4F:DD:93:43:8D:DA:D2:CF X509v3 Authority Key Identifier: keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:24:95:d6:01:43:a7:de:4a:1e:94:0e:57:de:50:84:7a:66: 79:16:e9:a5:b6:4b:99:10:c9:da:5e:07:02:04:38:5f:d4:bf: c9:06:f6:5d:ee:a3:7a:e3:e0:e9:f6:c9:a5:e2:cd:2a:25:b0: 8c:c5:65:a8:f3:f1:55:83:2c:e8:08:69:e3:3d:40:5c:bd:a4: e9:9d:f3:e9:87:7c:6c:0d:f5:23:99:80:36:d7:77:cb:36:90: 91:a8:ca:a3:74:b6:1b:78:bf:e8:fe:43:4f:5a:41:40:8c:20: e6:f7:c5:66:cc:4e:b2:30:d0:51:25:48:b4:31:33:1e:8c:b7: 53:a0:f9:ef:a5:43:bb:0c:67:8b:9e:55:c4:c8:80:56:f3:de: 4e:4d:5a:da:5d:73:6c:0f:a9:14:58:08:3c:09:19:e5:43:83: 9b:38:7b:a8:b7:6e:8a:c0:ea:72:47:82:bd:8c:ab:91:61:c0: 0a:49:7f:3a:97:e3:ba:02:7f:a3:b6:4e:ee:50:c5:53:e9:69: bf:9c:d9:b9:d0:45:92:af:41:5e:99:57:c1:64:60:4b:dc:60: 58:87:05:96:01:8e:c3:70:3d:86:35:9a:6b:fa:2a:dc:40:e7: 79:ef:b4:36:ab:43:06:1f:fe:7d:e1:07:3c:41:a0:34:c0:60: fe:3c:e4:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0 NjIyRkQ2MjcwHhcNMjUwODIyMTgwNTQ4WhcNMjUwODI5MTgwNTQ4WjAYMRYwFAYD VQQDEw02OGE4YjE3Yy1kZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mHXHNff0R6CPPdGksrTNjtSsj1RQ/gBLIb4OwK0wnI4zMqpG6FaFd92tO1w 46692hgMggvKUNIvhTy+Z16Njkp7NdD+7Z6GYYtE4IElDZQdRPYpDUEBrTKArbiS 0QaONLCmndvEt/+skSlk0jfw9Ek87hef3kARXik+LBAO6+FGOojjnbtFyiCy52q7 faW8cobbJPE0kOblMpty8XYSOpg8/0ry+W92xQeERbhC0Q4AYL2VTUL9waSN2tmA Tgjx0MRKCDYGwpSi/URfSGXQAa7lbbBCfQYhzJtehcZ/NuFkef6CptIdsl8KorWn B5pmhi93OZRmNkE8M2ZI8vix+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLegaupJ wJoIpoPA1E/dk0ON2tLPMB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEJJXWAUOn3koelA5X3lCEemZ5FumltkuZEMnaXgcCBDhf1L/JBvZd 7qN64+Dp9sml4s0qJbCMxWWo8/FVgyzoCGnjPUBcvaTpnfPph3xsDfUjmYA213fL NpCRqMqjdLYbeL/o/kNPWkFAjCDm98VmzE6yMNBRJUi0MTMejLdToPnvpUO7DGeL nlXEyIBW895OTVraXXNsD6kUWAg8CRnlQ4ObOHuot26KwOpyR4K9jKuRYcAKSX86 l+O6An+jtk7uUMVT6Wm/nNm50EWSr0FemVfBZGBL3GBYhwWWAY7DcD2GNZpr+irc QOd577Q2q0MGH/594Qc8QaA0wGD+POTd -----END CERTIFICATE-----Generated at Sat Aug 23 10:42:50 2025 by rpki-client