$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft File: DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft (raw, json) Hash identifier: YNyPqHCbrTEssay29Do4+9HlFtvi832+RA6ehZyY8rE= Subject key identifier: 8D:AC:A4:D0:E8:A0:6F:7E:D7:43:E7:92:01:AB:77:79:8E:89:DA:0E Authority key identifier: 0C:E0:60:C2:E4:30:DD:85:18:10:C9:F2:0F:EC:1B:A2:11:99:E3:D6 Certificate issuer: /CN=A91F2C07/serialNumber=0CE060C2E430DD851810C9F20FEC1BA21199E3D6 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft Manifest number: 3F Signing time: Sat 23 Aug 2025 07:42:37 +0000 Manifest this update: Sat 23 Aug 2025 07:42:37 +0000 Manifest next update: Sat 30 Aug 2025 07:42:37 +0000 Files and hashes: 1: DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl (hash: oX+XgUqwTEj86cR3BqnyJvxoQsOEbWq8fN48exsLuvo=) 2: FDD4FA341E6111F0B8D45B79C4F9AE02.roa (hash: 7JB/cgKUwfUR4YGlIPTezqpMMVQ3OA1LBmpMpECbKmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2C07, serialNumber=0CE060C2E430DD851810C9F20FEC1BA21199E3D6 Validity Not Before: Aug 23 07:42:37 2025 GMT Not After : Aug 30 07:42:37 2025 GMT Subject: CN=68a970ed-328d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:31:f8:b1:81:0a:49:de:6e:19:b7:d5:5f:f4: 48:b9:d1:81:65:d7:03:ed:7e:05:fe:52:c4:9e:11: 8d:74:97:2f:5a:6c:0a:6d:19:83:c6:39:9e:af:56: 92:5c:12:a6:8d:1b:8b:b2:9e:24:9f:9b:ae:ac:d6: 98:bb:37:08:1d:c2:0c:32:4f:7c:e4:4a:13:51:58: 80:55:60:48:e6:c8:a7:f5:4c:b3:79:f8:c7:87:1d: fd:f2:f0:3e:f3:5b:1f:02:7c:af:9f:75:8f:38:58: 71:cf:52:ed:72:83:4d:df:96:01:cb:af:bf:79:58: d0:a6:43:63:4e:cf:ad:e3:fc:1e:e9:e7:c6:d0:e2: 38:8d:46:5c:c1:4b:ab:5d:1a:42:7f:f7:aa:57:5c: 07:2a:b0:8b:e5:c8:0f:88:6e:b7:c2:fe:87:73:f5: 34:2a:0f:af:96:68:08:1b:12:33:3b:b7:f6:e9:a3: 2d:fd:fb:05:1a:4c:24:54:b7:08:63:1f:9f:14:b0: f8:a4:98:32:1b:49:46:3b:ac:35:e9:31:d4:6a:44: db:ec:d0:a3:f5:58:f1:3e:29:a9:a3:7f:82:9f:16: 81:cd:ad:e5:48:fd:61:ce:1b:37:8e:65:55:3b:3a: b3:a4:8d:fe:3f:14:85:56:b6:81:38:98:eb:97:a6: 56:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:AC:A4:D0:E8:A0:6F:7E:D7:43:E7:92:01:AB:77:79:8E:89:DA:0E X509v3 Authority Key Identifier: keyid:0C:E0:60:C2:E4:30:DD:85:18:10:C9:F2:0F:EC:1B:A2:11:99:E3:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b6:27:56:7e:fb:0e:b0:82:1c:be:33:4a:d7:a4:73:ea:01: ea:5c:16:10:29:aa:f4:20:a8:18:ca:da:df:ac:f0:cd:ba:ca: 71:df:7a:e4:d4:5f:26:e6:a8:82:e8:4d:75:fc:87:e1:93:6d: 99:b2:0f:71:61:d7:e9:75:4f:e5:67:11:e9:4e:be:6c:44:68: b8:ab:43:e1:b1:a7:8c:6b:af:7c:af:92:15:78:09:9b:33:1d: e9:f1:3d:b3:14:60:12:33:6f:c9:a6:ad:f4:b5:f5:ed:48:62: e4:4a:7d:84:a8:72:f3:cf:88:84:1d:72:8b:33:68:6e:88:bb: a1:5e:96:5a:1f:1e:eb:c2:a3:af:1a:70:31:6d:d9:cc:a6:6e: 53:1f:87:42:a0:76:76:2f:51:57:b8:d7:9c:ce:20:4c:b7:ec: 80:ed:59:99:55:f8:68:32:e0:7a:78:a5:15:77:42:95:02:3e: a6:46:18:e3:28:99:1d:3e:c3:98:fe:f2:04:9a:ff:47:f3:64: 92:ff:d4:b5:e0:67:a5:94:d9:b7:a5:ac:01:fa:3b:68:c4:a4: 24:59:8e:2c:17:a4:ca:20:bd:84:6b:40:95:bb:66:fd:d8:c3: 1f:c9:1b:11:12:89:a5:55:92:9a:ad:c4:1d:76:96:e7:e6:f7: 61:16:e9:b2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MkMwNzExMC8GA1UEBRMoMENFMDYwQzJFNDMwREQ4NTE4MTBDOUYyMEZFQzFCQTIx MTk5RTNENjAeFw0yNTA4MjMwNzQyMzdaFw0yNTA4MzAwNzQyMzdaMBgxFjAUBgNV BAMTDTY4YTk3MGVkLTMyOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuMfixgQpJ3m4Zt9Vf9Ei50YFl1wPtfgX+UsSeEY10ly9abAptGYPGOZ6vVpJc EqaNG4uyniSfm66s1pi7NwgdwgwyT3zkShNRWIBVYEjmyKf1TLN5+MeHHf3y8D7z Wx8CfK+fdY84WHHPUu1yg03flgHLr795WNCmQ2NOz63j/B7p58bQ4jiNRlzBS6td GkJ/96pXXAcqsIvlyA+IbrfC/odz9TQqD6+WaAgbEjM7t/bpoy39+wUaTCRUtwhj H58UsPikmDIbSUY7rDXpMdRqRNvs0KP1WPE+Kamjf4KfFoHNreVI/WHOGzeOZVU7 OrOkjf4/FIVWtoE4mOuXplYBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjayk0Oig b37XQ+eSAat3eY6J2g4wHwYDVR0jBBgwFoAUDOBgwuQw3YUYEMnyD+wbohGZ49Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyQzA3L0E3NzRBOUNFMUU2 MDExRjBCN0RDNzY1NEM0RjlBRTAyL0RPQmd3dVF3M1lVWUVNbnlELXdib2hHWjQ5 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRE9CZ3d1UXczWVVZRU1ueUQtd2JvaEdaNDlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYy QzA3L0E3NzRBOUNFMUU2MDExRjBCN0RDNzY1NEM0RjlBRTAyL0RPQmd3dVF3M1lV WUVNbnlELXdib2hHWjQ5WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEW2J1Z++w6wghy+M0rXpHPqAepcFhApqvQgqBjK2t+s8M26ynHfeuTU XybmqILoTXX8h+GTbZmyD3Fh1+l1T+VnEelOvmxEaLirQ+Gxp4xrr3yvkhV4CZsz HenxPbMUYBIzb8mmrfS19e1IYuRKfYSocvPPiIQdcoszaG6Iu6FellofHuvCo68a cDFt2cymblMfh0KgdnYvUVe415zOIEy37IDtWZlV+Ggy4Hp4pRV3QpUCPqZGGOMo mR0+w5j+8gSa/0fzZJL/1LXgZ6WU2belrAH6O2jEpCRZjiwXpMogvYRrQJW7Zv3Y wx/JGxESiaVVkpqtxB12lufm92EW6bI= -----END CERTIFICATE-----Generated at Sun Aug 24 04:48:04 2025 by rpki-client