$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft File: cOaM6FoDjZ4wcEODfKbmsaZglu4.mft (raw, json) Hash identifier: Nu/4fpsM+YdGc4UajxBlj/bMQqi7HkNE66vBpygjjLQ= Subject key identifier: C9:68:03:E3:24:C0:11:CF:C1:C3:34:06:6E:3D:A5:31:F0:54:E3:7D Authority key identifier: 70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE Certificate issuer: /CN=A91F6ADE/serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Certificate serial: 04B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft Manifest number: 04AC Signing time: Sat 23 Aug 2025 00:08:57 +0000 Manifest this update: Sat 23 Aug 2025 00:08:57 +0000 Manifest next update: Sat 30 Aug 2025 00:08:57 +0000 Files and hashes: 1: cOaM6FoDjZ4wcEODfKbmsaZglu4.crl (hash: 0KTGerCXBmCp3oIMV7hUvrAnBp9eBNMUTPTksk6M7pU=) 2: FD0DCDCA41E111EC98FA0C0AC4F9AE02.roa (hash: CzraaquDZ9Uo+Rh3T+BRvbMkjKbruCD1g9kPUW6icAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:08:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6ADE, serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Validity Not Before: Aug 23 00:08:57 2025 GMT Not After : Aug 30 00:08:57 2025 GMT Subject: CN=68a90699-e485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:20:d3:16:0f:ed:1e:69:ad:d6:b9:e9:4a:25: 33:cc:f8:4a:9a:bd:da:74:69:de:88:ff:39:a5:81: 29:04:38:d1:27:ad:ab:aa:f5:b5:da:e9:9a:d9:a2: 80:16:53:a6:26:a0:f5:c9:b4:fd:2f:0a:19:92:f9: 0d:72:7b:a2:b8:38:eb:5e:75:85:67:b1:5d:13:d4: e5:72:d5:f7:91:d7:a8:55:1d:95:c5:e3:07:c1:fa: 75:c0:96:75:94:01:b5:dc:17:fc:14:e2:9f:1f:c4: ec:10:a6:6b:ea:de:af:d2:21:4a:d4:b2:e2:34:36: ee:6c:be:0b:2a:11:21:a5:e2:1d:9b:f8:a4:f1:5d: ff:60:ff:e6:42:75:46:45:7f:8b:86:07:ef:a0:0b: 9a:23:c9:d0:16:9e:1e:ce:b2:25:d2:d7:80:50:a8: 1e:1b:4c:67:d1:d7:f9:71:4e:40:1c:cd:4c:0c:e1: 07:41:d9:a0:fe:78:69:38:7f:b6:4a:b7:ed:36:b9: ab:c0:eb:e1:d1:48:18:ea:e4:d8:0f:b7:5c:5d:d6: f3:5b:5d:bf:31:b5:7b:23:bf:1f:54:77:dd:d4:5a: bf:46:42:34:7f:59:78:8b:50:ee:c9:a5:dc:b3:b0: 66:2d:09:04:90:47:7e:09:2e:5c:44:bf:a8:4b:e2: 7d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:68:03:E3:24:C0:11:CF:C1:C3:34:06:6E:3D:A5:31:F0:54:E3:7D X509v3 Authority Key Identifier: keyid:70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:c0:bd:6a:d0:59:5f:c8:21:51:d9:4b:c7:be:ec:09:a4:ba: 6a:d2:ec:f9:4d:1e:1a:b3:a7:8c:61:34:06:c3:35:cd:ad:b4: 1f:bd:02:df:64:99:32:00:73:e4:ae:4d:9f:28:99:c8:47:07: 01:a8:36:af:cc:b1:38:eb:e7:31:a8:a9:07:8e:c8:9b:c0:1a: ee:42:d4:45:cf:41:ff:e1:17:fe:47:21:9d:a7:ce:b9:c4:29: db:56:e0:ab:8e:d6:06:be:f7:f0:eb:ea:0d:5b:6f:5c:91:58: 8a:1f:71:37:7b:12:67:6a:a6:0a:1d:ba:88:b1:0a:eb:c8:2a: 18:c3:91:c6:63:b6:7a:b2:6b:2b:66:ef:09:86:ab:84:3a:75: 98:29:8f:4e:11:42:7a:e3:0b:e5:d8:cd:b8:29:e1:0e:bf:c7: c4:4c:c7:8a:f9:ca:6c:f5:6f:f4:e6:93:09:dc:5e:35:39:66: f2:31:e2:64:53:93:46:83:d2:ad:48:c1:95:dd:d3:5e:c5:88: 77:7d:1f:9e:7e:ae:d7:d6:64:9b:1a:66:dc:d7:c4:ef:71:a7: 98:94:a1:01:57:e7:a6:b7:9c:0d:9c:8f:58:f7:99:a7:67:b2: 4c:2b:dc:21:a9:fe:f9:f0:72:8e:20:9b:7c:83:53:a3:81:ef: c0:61:ed:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBREUxMTAvBgNVBAUTKDcwRTY4Q0U4NUEwMzhEOUUzMDcwNDM4MzdDQTZFNkIx QTY2MDk2RUUwHhcNMjUwODIzMDAwODU3WhcNMjUwODMwMDAwODU3WjAYMRYwFAYD VQQDEw02OGE5MDY5OS1lNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiDTFg/tHmmt1rnpSiUzzPhKmr3adGneiP85pYEpBDjRJ62rqvW12uma2aKA FlOmJqD1ybT9LwoZkvkNcnuiuDjrXnWFZ7FdE9TlctX3kdeoVR2VxeMHwfp1wJZ1 lAG13Bf8FOKfH8TsEKZr6t6v0iFK1LLiNDbubL4LKhEhpeIdm/ik8V3/YP/mQnVG RX+LhgfvoAuaI8nQFp4ezrIl0teAUKgeG0xn0df5cU5AHM1MDOEHQdmg/nhpOH+2 SrftNrmrwOvh0UgY6uTYD7dcXdbzW12/MbV7I78fVHfd1Fq/RkI0f1l4i1DuyaXc s7BmLQkEkEd+CS5cRL+oS+J9cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMloA+Mk wBHPwcM0Bm49pTHwVON9MB8GA1UdIwQYMBaAFHDmjOhaA42eMHBDg3ym5rGmYJbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFERS8yODczOUQzQTQx REYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpaNHdjRU9EZktibXNhWmds dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NPYU02Rm9Ealo0d2NFT0RmS2Jtc2FaZ2x1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFERS8yODczOUQzQTQxREYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpa NHdjRU9EZktibXNhWmdsdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7wL1q0FlfyCFR2UvHvuwJpLpq0uz5TR4as6eMYTQGwzXNrbQfvQLf ZJkyAHPkrk2fKJnIRwcBqDavzLE46+cxqKkHjsibwBruQtRFz0H/4Rf+RyGdp865 xCnbVuCrjtYGvvfw6+oNW29ckViKH3E3exJnaqYKHbqIsQrryCoYw5HGY7Z6smsr Zu8JhquEOnWYKY9OEUJ64wvl2M24KeEOv8fETMeK+cps9W/05pMJ3F41OWbyMeJk U5NGg9KtSMGV3dNexYh3fR+efq7X1mSbGmbc18TvcaeYlKEBV+emt5wNnI9Y95mn Z7JMK9whqf758HKOIJt8g1Ojge/AYe3T -----END CERTIFICATE-----Generated at Sat Aug 23 15:35:44 2025 by rpki-client