$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: n3RCiFG/XQv4wv7kuACLorRx8OYzqnOclQZZV0LvTtc= Subject key identifier: 61:E6:CB:D4:C2:1B:DB:C1:43:F3:A4:3C:C0:29:D6:F7:72:46:E2:A3 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 080A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0802 Signing time: Fri 22 Aug 2025 21:03:48 +0000 Manifest this update: Fri 22 Aug 2025 21:03:47 +0000 Manifest next update: Fri 29 Aug 2025 21:03:47 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: bGJC/7tR5NCSgBKLwKo7pxxZjbUe3XCIb/IHQlNGZes=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2058 (0x80a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Aug 22 21:03:47 2025 GMT Not After : Aug 29 21:03:47 2025 GMT Subject: CN=68a8db33-6281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:2b:cb:69:4a:0a:5d:8c:6a:e2:10:94:39:93: 28:d3:1d:a0:eb:16:5a:0c:d6:f6:49:ab:5e:3e:70: ae:82:12:39:4a:95:0d:1b:27:7a:54:35:31:47:e1: 35:66:77:ba:8c:4f:a3:1c:4d:2a:9a:c8:a3:2c:a6: 17:b3:60:a7:9e:d0:14:c0:9b:80:43:4b:af:a4:27: f9:9a:b8:2a:ba:9c:37:2b:42:c8:58:ad:38:0a:fe: 28:79:64:92:b8:63:fb:80:6b:10:c6:d4:3f:4a:0c: f0:ca:bd:f6:2a:6d:71:d0:92:36:aa:50:3d:63:61: e3:a0:c1:19:5d:18:10:46:a7:8c:52:c5:ec:39:98: 2f:de:2b:1f:34:08:14:06:70:9e:c8:b7:90:86:b7: 62:ee:cc:19:14:2a:9e:c4:ca:71:73:62:0c:05:21: f0:6b:b9:b4:16:9f:c2:39:06:bc:f4:a5:81:9c:ce: fc:8a:71:bd:38:3c:90:23:87:df:80:a7:b5:5f:b7: 49:2e:5f:43:92:44:0c:06:86:02:c7:4e:59:0e:da: d2:9f:32:db:4e:65:83:c6:df:b9:dc:40:a0:61:73: db:4e:3e:60:12:e3:b5:2a:24:00:20:c7:b1:ef:16: b9:34:a0:df:98:99:ec:64:fa:cc:2d:dc:32:37:c4: c7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E6:CB:D4:C2:1B:DB:C1:43:F3:A4:3C:C0:29:D6:F7:72:46:E2:A3 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:00:1d:8b:14:c9:93:23:9e:aa:b9:f2:61:7e:81:f5:59:8f: 55:77:b7:3d:4b:0c:4d:23:0b:1f:e8:1f:51:89:cf:b2:5d:4c: 9e:5f:29:fe:26:9a:79:2f:7b:0a:d4:c3:e1:54:e7:f6:27:7c: 1d:11:14:6e:d5:9b:5f:c4:1a:17:c2:e3:62:c5:96:5a:32:c7: 03:0e:22:97:7e:83:e0:6f:d3:19:63:c9:f9:22:dc:4a:cc:2b: a9:3d:c0:f6:83:d0:11:ca:83:9c:16:e1:3f:cd:f4:12:31:95: 61:43:f0:9c:6d:9f:69:03:3e:41:b6:02:5d:66:f9:f4:51:41: e9:d6:64:d6:bd:e6:2e:9f:f6:24:42:f5:50:f7:2b:0a:36:78: 4d:71:83:00:ae:31:20:84:81:21:e3:b7:f8:4b:dc:dd:23:9c: 7b:4b:09:44:0a:7e:36:c8:0c:36:a9:aa:b7:20:8c:5a:df:38: ac:a8:c4:c7:c0:d3:3f:c5:43:db:8b:30:2e:64:88:dc:b5:5d: 8f:37:3e:88:1a:a5:a7:77:aa:95:40:40:73:72:db:cc:e3:44: eb:f5:34:bb:ff:e3:28:89:c9:02:74:e7:f9:bc:45:05:53:13: 0e:26:81:50:94:4e:17:35:60:e4:39:06:30:18:e9:1c:c7:7b: c3:46:46:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUwODIyMjEwMzQ3WhcNMjUwODI5MjEwMzQ3WjAYMRYwFAYD VQQDEw02OGE4ZGIzMy02MjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9yvLaUoKXYxq4hCUOZMo0x2g6xZaDNb2SatePnCughI5SpUNGyd6VDUxR+E1 Zne6jE+jHE0qmsijLKYXs2CnntAUwJuAQ0uvpCf5mrgqupw3K0LIWK04Cv4oeWSS uGP7gGsQxtQ/Sgzwyr32Km1x0JI2qlA9Y2HjoMEZXRgQRqeMUsXsOZgv3isfNAgU BnCeyLeQhrdi7swZFCqexMpxc2IMBSHwa7m0Fp/COQa89KWBnM78inG9ODyQI4ff gKe1X7dJLl9DkkQMBoYCx05ZDtrSnzLbTmWDxt+53ECgYXPbTj5gEuO1KiQAIMex 7xa5NKDfmJnsZPrMLdwyN8THpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHmy9TC G9vBQ/OkPMAp1vdyRuKjMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2AB2LFMmTI56qufJhfoH1WY9Vd7c9SwxNIwsf6B9Ric+yXUyeXyn+ Jpp5L3sK1MPhVOf2J3wdERRu1ZtfxBoXwuNixZZaMscDDiKXfoPgb9MZY8n5ItxK zCupPcD2g9ARyoOcFuE/zfQSMZVhQ/CcbZ9pAz5BtgJdZvn0UUHp1mTWveYun/Yk QvVQ9ysKNnhNcYMArjEghIEh47f4S9zdI5x7SwlECn42yAw2qaq3IIxa3zisqMTH wNM/xUPbizAuZIjctV2PNz6IGqWnd6qVQEBzctvM40Tr9TS7/+MoickCdOf5vEUF UxMOJoFQlE4XNWDkOQYwGOkcx3vDRkYD -----END CERTIFICATE-----Generated at Sun Aug 24 03:07:59 2025 by rpki-client