$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: MmzMFDSJcIZRvIWbnG2tcSbib3MVYnIEHVlGDSi+JSU= Subject key identifier: C7:53:BE:89:D4:8B:7A:E6:10:07:92:79:83:61:F9:18:BD:86:AF:C1 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 016E Signing time: Sat 23 Aug 2025 03:59:22 +0000 Manifest this update: Sat 23 Aug 2025 03:59:22 +0000 Manifest next update: Sat 30 Aug 2025 03:59:22 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: uvub3IpPX+DU5eq1jVrZXJVnOyXCFKqSD6KalFNPwdA=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: RkTUA678ggeVul1y+nwQF7cmzTi/KyCvH3jL9UTL73c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804, serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: Aug 23 03:59:22 2025 GMT Not After : Aug 30 03:59:22 2025 GMT Subject: CN=68a93c9a-c580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:44:08:26:ac:53:b8:1d:f1:fb:10:9f:03: 73:c2:a2:e1:ab:1a:50:82:93:b0:f8:96:65:c5:cb: 90:57:a2:4b:d8:f9:b7:cf:fd:a3:b6:96:29:bf:31: 78:de:22:03:fb:c2:19:6e:e3:41:9a:24:f4:f6:58: 05:ad:55:ba:31:aa:0b:35:a9:92:ce:c4:7d:60:4c: cc:16:3a:4a:a1:c0:93:72:da:4f:69:ab:2d:e7:53: 1c:7f:94:01:6c:7d:e1:56:fc:9e:e4:01:34:67:a8: f5:0b:f1:ab:87:79:3e:c6:83:fd:4e:c6:d0:68:be: c2:75:ce:5c:c5:4f:74:e9:90:9d:5a:0f:e7:13:9d: 0f:ed:1a:8a:e0:8f:96:66:2d:bb:7a:99:7a:a3:d3: 18:be:c5:53:19:4f:64:a8:db:30:54:0f:72:7d:d9: e1:06:2c:b7:eb:13:9b:89:74:ef:d6:9c:39:fa:0a: c2:83:56:2d:0c:da:04:86:66:ee:2a:b9:8c:e8:8f: bd:ea:d1:24:b5:2b:e7:5d:65:68:a8:1c:85:6b:1e: 7c:e1:fc:b5:da:90:7d:9d:b2:68:ac:6d:07:1b:28: 05:bc:6e:14:52:a9:3c:14:22:23:bc:e6:88:2a:44: 4c:62:22:62:cf:64:af:0d:c5:b3:d7:5e:d3:15:0e: f4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:53:BE:89:D4:8B:7A:E6:10:07:92:79:83:61:F9:18:BD:86:AF:C1 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:df:1c:58:fe:31:ac:dc:bf:b7:0e:51:8f:00:15:f2:55:3f: d8:f3:a6:4c:a9:dd:66:5b:bf:a8:f2:7b:db:c3:d6:7a:00:74: e1:3e:29:b5:11:3a:7c:ee:0a:e3:43:42:0f:8d:9e:6a:17:63: 98:b1:af:41:16:94:4d:71:a4:94:1e:bd:a3:32:5c:f6:94:26: 09:08:4e:24:c6:2a:2c:3b:a1:08:46:03:a5:89:4f:03:91:50: 32:c5:2e:a6:62:15:9f:5f:5c:25:78:01:c5:43:fe:67:1f:c9: 17:dd:33:58:fc:9e:61:ac:d9:3d:68:a4:04:f8:bf:20:83:96: eb:b4:c2:b9:5c:ec:db:6c:f9:48:88:7c:d1:fa:b1:3a:94:cc: 41:51:30:6c:70:0b:92:34:6d:15:79:4f:62:7b:a4:92:bb:85: 4e:a2:de:4a:78:41:fe:45:20:d7:32:bf:4a:de:40:96:1f:dd: ed:b8:86:1a:ce:ea:96:6f:57:a5:42:29:ea:87:68:15:14:7d: ff:6d:9e:b2:be:e0:18:8d:a0:15:22:c4:26:8d:33:ee:f6:a0: bc:bf:5f:d6:d2:fe:6d:bf:8d:ff:89:61:5f:a7:bc:0d:58:68: 7b:99:18:d2:fe:d7:cf:cb:20:83:0b:9e:91:35:a4:e8:53:e1: 67:b7:fa:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjUwODIzMDM1OTIyWhcNMjUwODMwMDM1OTIyWjAYMRYwFAYD VQQDEw02OGE5M2M5YS1jNTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxdECCasU7gd8fsQnwNzwqLhqxpQgpOw+JZlxcuQV6JL2Pm3z/2jtpYpvzF4 3iID+8IZbuNBmiT09lgFrVW6MaoLNamSzsR9YEzMFjpKocCTctpPaast51Mcf5QB bH3hVvye5AE0Z6j1C/Grh3k+xoP9TsbQaL7Cdc5cxU906ZCdWg/nE50P7RqK4I+W Zi27epl6o9MYvsVTGU9kqNswVA9yfdnhBiy36xObiXTv1pw5+grCg1YtDNoEhmbu KrmM6I+96tEktSvnXWVoqByFax584fy12pB9nbJorG0HGygFvG4UUqk8FCIjvOaI KkRMYiJiz2SvDcWz117TFQ70jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdTvonU i3rmEAeSeYNh+Ri9hq/BMB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX3xxY/jGs3L+3DlGPABXyVT/Y86ZMqd1mW7+o8nvbw9Z6AHThPim1 ETp87grjQ0IPjZ5qF2OYsa9BFpRNcaSUHr2jMlz2lCYJCE4kxiosO6EIRgOliU8D kVAyxS6mYhWfX1wleAHFQ/5nH8kX3TNY/J5hrNk9aKQE+L8gg5brtMK5XOzbbPlI iHzR+rE6lMxBUTBscAuSNG0VeU9ie6SSu4VOot5KeEH+RSDXMr9K3kCWH93tuIYa zuqWb1elQinqh2gVFH3/bZ6yvuAYjaAVIsQmjTPu9qC8v1/W0v5tv43/iWFfp7wN WGh7mRjS/tfPyyCDC56RNaToU+Fnt/o9 -----END CERTIFICATE-----Generated at Sun Aug 24 04:48:05 2025 by rpki-client