$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: W55DeWAAomEo2DBb2hPp+jWdLOf0aYUXDEFkMslGCZc= Subject key identifier: E0:01:78:BF:D0:FD:46:49:F8:09:EA:7A:D6:3E:EB:32:57:BC:10:1B Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 015A Signing time: Sat 23 Aug 2025 04:11:08 +0000 Manifest this update: Sat 23 Aug 2025 04:11:07 +0000 Manifest next update: Sat 30 Aug 2025 04:11:07 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: UocEL9a7WWsoLMgcGwUBn6QD7cmL6izktmaVjOGh6Ig=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: QQ5QrwGTURdTMG/7o8+lIRwrf/ztbEh4ekM9cA/bz/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Aug 23 04:11:07 2025 GMT Not After : Aug 30 04:11:07 2025 GMT Subject: CN=68a93f5c-879a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4e:4f:9d:1f:33:1b:a6:cd:6b:e8:7e:92:54: 5a:d8:22:3b:40:c9:dd:53:26:c8:26:c4:4f:f6:81: de:77:86:17:7e:a8:ad:26:a5:b1:55:f5:4d:73:57: 50:62:ae:ea:62:e3:82:67:25:c1:9f:3d:8a:60:b9: 27:0f:21:7e:ef:ff:2b:f3:f2:e0:83:21:68:f3:b1: bc:5f:4f:8a:3b:3c:a5:45:84:91:18:1e:90:36:d5: 2e:7a:b2:bd:95:78:08:ac:41:d2:60:5c:0b:6c:2f: db:7b:ae:63:4f:8a:4a:9b:84:28:2f:e8:34:68:83: 39:eb:13:6a:7a:d7:1e:3d:b8:7c:ee:10:40:bd:36: 15:36:3c:6e:72:06:4a:33:7a:e3:98:0a:f2:a8:16: 80:12:3d:e1:40:2b:a3:c7:79:d9:dc:30:3f:18:2c: 3e:1b:7c:4b:62:0e:9f:aa:2e:9d:28:e2:ea:b7:33: f0:44:7b:ee:89:4b:ea:f6:f9:aa:a7:f1:69:5f:b8: 13:cb:6c:b2:56:1e:5c:51:63:3c:0e:f8:78:57:ff: 5a:24:28:58:b7:5f:5d:af:58:ce:f0:e7:2c:26:5d: 44:f4:73:d8:65:a1:02:17:ce:db:a3:c2:6d:29:d5: 64:c3:0a:d2:62:ac:a9:2c:3f:c2:71:1e:40:71:02: b7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:01:78:BF:D0:FD:46:49:F8:09:EA:7A:D6:3E:EB:32:57:BC:10:1B X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:21:42:04:e8:f8:cf:3f:62:56:88:73:77:cd:b0:af:73:72: ec:93:d8:a3:eb:c9:08:b9:04:5d:aa:74:ad:29:4b:c3:6c:d3: 84:6e:68:6d:91:7f:c9:3c:52:97:ca:94:34:b7:87:ea:a1:21: 3c:15:fc:63:67:79:d5:c5:bc:75:67:8b:fd:39:19:08:f8:fe: 29:eb:09:a3:6a:03:5a:a9:a1:c8:6c:ce:ff:89:64:0f:3b:6d: a3:71:42:fd:bb:fa:30:5d:4c:93:bd:76:0f:4b:fa:39:11:7c: 04:63:c5:75:6a:e6:45:26:f2:13:fe:91:30:ad:e2:c4:f6:db: 4e:10:10:e1:d5:c5:c3:dd:3c:ab:b9:36:65:0a:d6:a9:83:75: 4f:77:1c:fb:4d:0f:d6:50:45:b8:e6:33:96:af:7d:ab:7c:df: 19:ef:02:7c:9a:a9:d6:1c:82:65:7f:06:a8:ad:06:b8:6c:a2: 7b:69:a4:ba:1c:61:84:43:a5:8b:66:7b:98:97:09:b5:9d:3d: 27:1f:03:be:fd:28:87:a1:05:64:93:1e:46:7f:04:d5:d0:31: 68:63:72:a2:ec:29:a9:40:94:89:ca:68:9e:8e:a2:28:40:d7: e4:1d:6b:a5:31:aa:a2:68:13:0d:5c:52:9c:86:f5:8f:a2:92: 6c:03:99:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjUwODIzMDQxMTA3WhcNMjUwODMwMDQxMTA3WjAYMRYwFAYD VQQDEw02OGE5M2Y1Yy04NzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6E5PnR8zG6bNa+h+klRa2CI7QMndUybIJsRP9oHed4YXfqitJqWxVfVNc1dQ Yq7qYuOCZyXBnz2KYLknDyF+7/8r8/LggyFo87G8X0+KOzylRYSRGB6QNtUuerK9 lXgIrEHSYFwLbC/be65jT4pKm4QoL+g0aIM56xNqetcePbh87hBAvTYVNjxucgZK M3rjmAryqBaAEj3hQCujx3nZ3DA/GCw+G3xLYg6fqi6dKOLqtzPwRHvuiUvq9vmq p/FpX7gTy2yyVh5cUWM8Dvh4V/9aJChYt19dr1jO8OcsJl1E9HPYZaECF87bo8Jt KdVkwwrSYqypLD/CcR5AcQK3xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOABeL/Q /UZJ+AnqetY+6zJXvBAbMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEIUIE6PjPP2JWiHN3zbCvc3Lsk9ij68kIuQRdqnStKUvDbNOEbmht kX/JPFKXypQ0t4fqoSE8FfxjZ3nVxbx1Z4v9ORkI+P4p6wmjagNaqaHIbM7/iWQP O22jcUL9u/owXUyTvXYPS/o5EXwEY8V1auZFJvIT/pEwreLE9ttOEBDh1cXD3Tyr uTZlCtapg3VPdxz7TQ/WUEW45jOWr32rfN8Z7wJ8mqnWHIJlfwaorQa4bKJ7aaS6 HGGEQ6WLZnuYlwm1nT0nHwO+/SiHoQVkkx5GfwTV0DFoY3Ki7CmpQJSJymiejqIo QNfkHWulMaqiaBMNXFKchvWPopJsA5nS -----END CERTIFICATE-----Generated at Sat Aug 23 15:40:48 2025 by rpki-client