$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: 63AxJsd7jY/kx61P4cxIttjeDeR0aj3ybxthx93Xpqk= Subject key identifier: 6D:F4:DC:B3:3F:BB:3C:0D:C1:D8:F3:0D:8E:87:02:1C:C2:46:6A:DD Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 21C1 Signing time: Fri 22 Aug 2025 15:56:45 +0000 Manifest this update: Fri 22 Aug 2025 15:56:44 +0000 Manifest next update: Fri 29 Aug 2025 15:56:44 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: 38eMtDHW9Gb1d17jOOFwMYUMbAemEr61hcgmAIVGDkE=) 2: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 1ES+epsnD/DNY/mamto14c9DZbko73ok/bvGYlpnZRA=) 3: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: RV1/DDfUdeMeAI1f60SGG8y1uSkd4aEtHJsKEOkYdXA=) 4: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: xubGUlPUlNCBLJe5+NADMrf4YV/wbfCmoqj7rhjCN20=) 5: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: ftobPRBcc8wlVTCOH3GxCPMFHQM9ebuoV2KFpLluNR4=) 6: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: RArCcLO/kSE5acBXMMlQcl8HS4RV4DSQfZAIgouxT+4=) 7: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 8McChURwVN9JYUVHRVTAHRcHa/Hxc6L3gNtxVyOyx0g=) 8: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 4gXXPKgdGkdsiTu4Fh+U84K4r4ojzbdg0Z4yEj+nXpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8707 (0x2203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Aug 22 15:56:44 2025 GMT Not After : Aug 29 15:56:44 2025 GMT Subject: CN=68a8933d-f7b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b4:54:95:da:40:58:6a:9c:e0:2c:ee:45:0b: ee:46:ec:81:13:9e:78:fa:ee:3e:04:c4:af:bf:96: 28:df:d6:6b:52:6b:59:28:b4:be:c7:8a:d9:a2:d4: 57:f3:09:be:35:cc:ab:61:14:da:90:bb:da:08:0a: 76:fc:00:c7:92:f0:b8:18:62:58:ec:4b:de:8b:0c: 9e:c8:0b:5b:1a:76:ae:43:bd:cd:5c:23:15:1b:04: ed:4e:3d:30:b1:e9:5b:14:d9:62:ba:d7:92:96:ba: 20:17:52:b2:2b:4a:3f:67:f9:a9:3d:60:5c:43:ec: f2:a4:80:29:ff:db:2f:eb:8c:94:d7:86:14:e5:a4: 12:ac:ac:62:d7:58:4d:08:64:4b:c8:3a:24:3b:88: 37:75:c3:41:db:60:be:ee:f8:06:2d:c0:7c:53:d6: 75:0b:81:b1:c7:66:98:13:4b:0c:a8:d0:f8:08:a1: 03:91:b7:bf:c6:3d:da:a6:2b:e0:ee:35:96:5d:0e: 0f:aa:b2:a9:41:dc:b1:fa:dc:22:22:b2:e1:0c:4c: fb:b9:58:33:54:fa:cf:42:5f:aa:f7:5b:e4:35:36: 52:f4:4e:e2:bb:80:19:db:97:00:91:b8:79:89:55: 7c:dc:00:41:a6:e3:55:12:b3:52:59:7c:24:27:b4: f6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F4:DC:B3:3F:BB:3C:0D:C1:D8:F3:0D:8E:87:02:1C:C2:46:6A:DD X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:3e:79:7a:19:ec:2a:56:bc:0e:eb:32:e4:e0:e6:b7:40:88: 64:89:27:8e:d5:bc:98:27:d2:8b:d6:68:a7:66:5f:e1:ec:55: 1b:d8:51:61:00:57:b8:10:3c:93:82:e2:b8:05:29:0e:d7:e5: 00:ad:4c:6f:d8:31:f8:4c:ba:b2:3f:60:3d:f5:4e:15:b5:6a: f6:a3:04:a6:0b:2f:2b:39:84:1e:3c:38:47:37:81:29:ba:c1: c7:33:d9:db:5c:74:85:84:3a:e9:30:dd:5c:68:8d:c6:d4:dd: f6:00:c5:03:48:e3:42:94:2e:5e:6b:6a:78:74:08:55:3b:4a: 1e:c8:d8:15:5f:a7:c8:6f:16:f0:21:11:a6:22:74:4f:bd:31: d6:98:99:35:d3:80:21:35:30:15:27:e2:d2:9a:e3:c0:ec:56: ac:98:9a:27:52:36:23:0e:95:d0:a4:46:9c:d7:6e:4d:82:b1: b8:1c:9a:ba:5e:05:05:b7:9c:f2:ca:e6:a8:a5:a3:ee:65:cd: 54:61:44:93:1c:af:47:10:e1:01:aa:0c:8a:65:3b:51:9f:71: d6:f0:2e:e1:4d:fc:8e:c1:2f:78:8d:bd:e1:19:0d:f7:3a:b2: d3:17:6d:a7:57:ff:a1:e0:c4:22:c7:41:45:ba:95:a2:54:fc: 62:6a:c6:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUwODIyMTU1NjQ0WhcNMjUwODI5MTU1NjQ0WjAYMRYwFAYD VQQDEw02OGE4OTMzZC1mN2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bRUldpAWGqc4CzuRQvuRuyBE554+u4+BMSvv5Yo39ZrUmtZKLS+x4rZotRX 8wm+NcyrYRTakLvaCAp2/ADHkvC4GGJY7EveiwyeyAtbGnauQ73NXCMVGwTtTj0w selbFNliuteSlrogF1KyK0o/Z/mpPWBcQ+zypIAp/9sv64yU14YU5aQSrKxi11hN CGRLyDokO4g3dcNB22C+7vgGLcB8U9Z1C4Gxx2aYE0sMqND4CKEDkbe/xj3apivg 7jWWXQ4PqrKpQdyx+twiIrLhDEz7uVgzVPrPQl+q91vkNTZS9E7iu4AZ25cAkbh5 iVV83ABBpuNVErNSWXwkJ7T2FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG303LM/ uzwNwdjzDY6HAhzCRmrdMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIPnl6GewqVrwO6zLk4Oa3QIhkiSeO1byYJ9KL1minZl/h7FUb2FFh AFe4EDyTguK4BSkO1+UArUxv2DH4TLqyP2A99U4VtWr2owSmCy8rOYQePDhHN4Ep usHHM9nbXHSFhDrpMN1caI3G1N32AMUDSONClC5ea2p4dAhVO0oeyNgVX6fIbxbw IRGmInRPvTHWmJk104AhNTAVJ+LSmuPA7FasmJonUjYjDpXQpEac125NgrG4HJq6 XgUFt5zyyuaopaPuZc1UYUSTHK9HEOEBqgyKZTtRn3HW8C7hTfyOwS94jb3hGQ33 OrLTF22nV/+h4MQix0FFupWiVPxiasb5 -----END CERTIFICATE-----Generated at Sat Aug 23 10:30:35 2025 by rpki-client