$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft File: Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft (raw, json) Hash identifier: FUpNIoeXRErjmtB26LLAJFgP1NT8FwW9t8WzwAjslw0= Subject key identifier: 0C:1A:97:3C:3D:85:58:9E:08:D1:7A:EB:A6:DB:B0:24:6F:E1:99:5B Authority key identifier: 3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D Certificate issuer: /CN=A91F8E3D/serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Certificate serial: 049C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft Manifest number: 0489 Signing time: Sat 23 Aug 2025 00:20:54 +0000 Manifest this update: Sat 23 Aug 2025 00:20:54 +0000 Manifest next update: Sat 30 Aug 2025 00:20:54 +0000 Files and hashes: 1: Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl (hash: RUGmfheQ58HLGCK0Qy40sph0eHsXjQsxNaK1lWda5u8=) 2: FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa (hash: p5RWbmc3OrbusuGd87uXwNNKECyHXGRqb7DFbO3Zzjc=) 3: 451AF9F2E3DC11ECB9410B43C4F9AE02.roa (hash: PvyXkvk9rsG65qDLSBUO/zxV1I1w1ViEmt67rzLWH3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1180 (0x49c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E3D, serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Validity Not Before: Aug 23 00:20:54 2025 GMT Not After : Aug 30 00:20:54 2025 GMT Subject: CN=68a90966-7891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:13:80:63:f5:b2:e9:86:a6:af:c6:fc:64:68: 08:49:6f:cf:12:e7:b0:99:07:8c:dd:8f:b4:a6:c5: 6d:e5:8c:0f:a4:ab:6e:d1:82:c6:78:29:36:ed:ba: cd:01:28:43:9f:b0:5c:98:4c:b5:09:5b:c0:2a:35: 94:74:92:1b:3b:15:fb:a3:50:e4:24:d6:4a:ea:be: 60:94:61:12:30:59:bc:a7:6e:27:ef:39:04:24:83: 8c:46:8b:c5:c5:b1:7e:ad:fc:60:65:c7:7d:1f:11: 8c:61:80:69:65:c5:5e:f3:1e:5e:71:67:5a:67:d5: ae:33:a9:72:9e:5d:9f:61:c3:33:29:b4:3f:42:37: 1c:09:b3:f0:60:d6:16:2d:e0:c9:40:b3:27:d9:ac: 5a:46:49:61:b6:bf:6d:c5:f7:8c:92:96:22:55:76: 21:57:92:63:ed:1d:e1:56:ba:cf:62:69:b9:1a:93: 47:70:ef:69:aa:51:7a:56:d4:73:a6:2d:55:ce:7d: 31:c5:12:b6:11:df:01:71:24:6f:e5:cf:fc:22:8c: 4e:21:4b:09:c4:69:72:02:d9:9e:ff:04:3f:09:94: 84:40:03:76:c8:ff:7e:f5:d3:e5:aa:ce:da:c4:dc: dd:34:38:0e:7b:2b:43:8c:a9:64:f3:25:4e:c6:03: 98:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1A:97:3C:3D:85:58:9E:08:D1:7A:EB:A6:DB:B0:24:6F:E1:99:5B X509v3 Authority Key Identifier: keyid:3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:62:64:40:a3:58:21:21:a7:80:9e:f0:50:99:fe:08:80:f4: 3e:4a:ac:d0:e5:8a:78:8a:76:e7:de:9e:06:a5:fc:04:a8:b5: 35:f3:bd:13:b0:b0:9f:64:98:3e:34:41:9e:fb:d5:48:ac:3d: 9e:a9:36:b7:fd:fc:a6:91:05:20:46:2b:35:f7:65:9d:b9:72: 7f:15:92:ca:b0:41:e9:b1:65:59:78:b0:e2:67:8d:0a:15:c7: 38:6c:7c:20:dd:7e:f1:b9:ac:ff:df:2a:1f:ef:dc:34:7d:31: b0:10:3a:74:2b:05:34:9c:48:53:b5:bc:12:43:ec:72:11:e4: 80:fa:52:60:20:b8:c0:df:78:63:a9:c1:94:e1:2a:6d:ec:42: 9d:0e:e9:d6:23:0c:fd:15:89:a6:64:aa:b1:ed:bc:cb:cb:30: 70:ff:11:fa:6f:d9:22:4a:a0:10:26:16:31:f2:88:0c:24:32: c3:36:52:9c:dc:8b:54:78:43:fa:c0:97:1f:24:3c:99:e6:9e: de:21:e9:b9:1a:09:a0:15:dc:31:96:c2:24:e6:1b:ba:1d:73: 95:e8:c1:74:3c:fd:e5:5f:3b:dd:89:68:84:ba:79:75:bd:e2: 5d:a9:3f:47:67:56:7a:85:99:d4:20:80:86:85:03:4a:be:8c: a9:c7:aa:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFM0QxMTAvBgNVBAUTKDNBQUZGQkI3RUE0QTYwRDc3QkI0NDI4NEFDQkYyNUMz OThCQTlBNkQwHhcNMjUwODIzMDAyMDU0WhcNMjUwODMwMDAyMDU0WjAYMRYwFAYD VQQDEw02OGE5MDk2Ni03ODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhOAY/Wy6Yamr8b8ZGgISW/PEuewmQeM3Y+0psVt5YwPpKtu0YLGeCk27brN AShDn7BcmEy1CVvAKjWUdJIbOxX7o1DkJNZK6r5glGESMFm8p24n7zkEJIOMRovF xbF+rfxgZcd9HxGMYYBpZcVe8x5ecWdaZ9WuM6lynl2fYcMzKbQ/QjccCbPwYNYW LeDJQLMn2axaRklhtr9txfeMkpYiVXYhV5Jj7R3hVrrPYmm5GpNHcO9pqlF6VtRz pi1Vzn0xxRK2Ed8BcSRv5c/8IoxOIUsJxGlyAtme/wQ/CZSEQAN2yP9+9dPlqs7a xNzdNDgOeytDjKlk8yVOxgOYdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwalzw9 hVieCNF666bbsCRv4ZlbMB8GA1UdIwQYMBaAFDqv+7fqSmDXe7RChKy/JcOYuppt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUzRC8wQUI0Mzg2QTU4 NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lOZDd0RUtFckw4bHc1aTZt bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xXzd0LXBLWU5kN3RFS0VyTDhsdzVpNm1tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUzRC8wQUI0Mzg2QTU4NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lO ZDd0RUtFckw4bHc1aTZtbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHYmRAo1ghIaeAnvBQmf4IgPQ+SqzQ5Yp4inbn3p4GpfwEqLU1870T sLCfZJg+NEGe+9VIrD2eqTa3/fymkQUgRis192WduXJ/FZLKsEHpsWVZeLDiZ40K Fcc4bHwg3X7xuaz/3yof79w0fTGwEDp0KwU0nEhTtbwSQ+xyEeSA+lJgILjA33hj qcGU4Spt7EKdDunWIwz9FYmmZKqx7bzLyzBw/xH6b9kiSqAQJhYx8ogMJDLDNlKc 3ItUeEP6wJcfJDyZ5p7eIem5GgmgFdwxlsIk5hu6HXOV6MF0PP3lXzvdiWiEunl1 veJdqT9HZ1Z6hZnUIICGhQNKvoypx6qe -----END CERTIFICATE-----Generated at Sun Aug 24 00:54:14 2025 by rpki-client