$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: Mr35qZtqAX6UoQdJi7VqcW6m8Xgve4g5LCVoT4PGjQM= Subject key identifier: F4:4F:B9:CB:AA:E6:59:B3:93:E4:0D:30:BB:3E:26:96:38:DA:E0:BC Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 13DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 13D4 Signing time: Fri 22 Aug 2025 17:04:26 +0000 Manifest this update: Fri 22 Aug 2025 17:04:26 +0000 Manifest next update: Fri 29 Aug 2025 17:04:26 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: GdQsfOynGznArPhWGmDDUBI4ZpL9Uk1Bp4jdjDIUFvc=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: M9FXaqMN3xRXkYSG9XQqHpw6Lro8+iU9Ajk3i3+nJw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5087 (0x13df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639, serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: Aug 22 17:04:26 2025 GMT Not After : Aug 29 17:04:26 2025 GMT Subject: CN=68a8a31a-646c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:17:c0:d0:be:6e:0f:0e:01:55:fa:96:24:03: 60:88:16:08:f3:ed:3d:91:de:17:98:e5:c9:9d:4f: c9:aa:24:27:73:13:37:e0:b7:22:b5:9b:de:2f:eb: d6:fe:58:ed:69:d9:c8:78:c4:c3:dd:5e:af:02:94: 66:3f:17:ec:6f:8a:2b:aa:14:37:a2:21:76:07:1b: e2:06:a8:ef:64:0e:07:20:db:31:81:62:15:b6:87: a9:c3:5c:f1:8d:9c:43:2c:0e:c1:70:80:77:6e:ba: 9a:97:43:dc:4c:28:89:59:ea:ff:b2:86:eb:77:49: f7:88:dd:7b:90:3b:e3:3b:8f:eb:e3:7b:26:5f:8e: 7a:bd:e2:2c:f5:ab:1a:3f:4f:23:93:c8:61:48:55: 81:ce:67:3d:51:ad:2f:e0:36:06:99:31:ee:63:cb: 29:28:12:45:b3:71:94:ab:5f:a7:b4:31:aa:de:31: db:84:ef:8a:a8:e5:9e:5e:0a:1c:62:33:88:8f:e0: 49:83:ed:64:17:94:bf:58:07:0f:6c:d4:92:08:35: 2a:72:f3:7d:55:2b:a4:83:fa:90:90:21:6a:3b:d1: 74:19:2e:5d:9c:d7:53:01:9f:f8:e2:df:7a:d1:15: 51:38:df:a0:fc:61:68:3e:f4:81:b3:69:10:40:8c: 06:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:4F:B9:CB:AA:E6:59:B3:93:E4:0D:30:BB:3E:26:96:38:DA:E0:BC X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:20:0d:e7:a5:f5:be:9a:56:09:7d:f0:20:c6:a0:ab:d8:29: cb:17:c0:de:9c:7c:27:b4:d0:44:bc:f6:92:4d:4b:4d:45:94: e2:1c:e4:af:49:4f:f7:f4:d9:ba:cf:f6:88:f7:2e:22:b4:73: 2c:36:65:80:a6:93:b7:df:08:8b:d1:49:80:ac:66:b6:b0:8a: 94:11:a6:61:b4:5c:a9:d6:fb:cf:c3:6b:63:c9:b2:b4:fd:76: 96:32:db:12:29:fe:af:ef:7f:ec:0a:49:6f:f6:3d:c7:cb:b0: 43:f6:da:5c:e7:57:cc:3b:26:8f:df:91:d8:7b:36:4c:a5:37: 28:0f:d5:d6:9a:dd:cb:e3:e6:5e:3b:a8:55:58:40:a8:2f:7a: 51:65:94:5f:38:29:34:f5:f3:a9:e2:59:6d:5f:d2:69:5b:52: 14:b8:59:5a:66:8d:1a:f0:64:b3:4d:07:0f:67:aa:5f:12:66: 8e:6f:14:f8:d5:2a:72:14:ab:5e:dc:10:f0:63:78:ae:a7:29: ad:4c:2e:16:95:dd:62:de:ff:49:79:32:86:6a:c1:fc:6f:35: f0:4e:83:88:76:24:54:5a:5c:78:c0:3d:74:e4:02:63:ed:b0: c8:d7:27:56:1b:3e:25:89:a5:0a:13:49:52:f7:c7:0c:89:b2: d6:35:53:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjUwODIyMTcwNDI2WhcNMjUwODI5MTcwNDI2WjAYMRYwFAYD VQQDEw02OGE4YTMxYS02NDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBfA0L5uDw4BVfqWJANgiBYI8+09kd4XmOXJnU/JqiQncxM34LcitZveL+vW /ljtadnIeMTD3V6vApRmPxfsb4orqhQ3oiF2BxviBqjvZA4HINsxgWIVtoepw1zx jZxDLA7BcIB3brqal0PcTCiJWer/sobrd0n3iN17kDvjO4/r43smX456veIs9asa P08jk8hhSFWBzmc9Ua0v4DYGmTHuY8spKBJFs3GUq1+ntDGq3jHbhO+KqOWeXgoc YjOIj+BJg+1kF5S/WAcPbNSSCDUqcvN9VSukg/qQkCFqO9F0GS5dnNdTAZ/44t96 0RVRON+g/GFoPvSBs2kQQIwG0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRPucuq 5lmzk+QNMLs+JpY42uC8MB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4IA3npfW+mlYJffAgxqCr2CnLF8DenHwntNBEvPaSTUtNRZTiHOSv SU/39Nm6z/aI9y4itHMsNmWAppO33wiL0UmArGa2sIqUEaZhtFyp1vvPw2tjybK0 /XaWMtsSKf6v73/sCklv9j3Hy7BD9tpc51fMOyaP35HYezZMpTcoD9XWmt3L4+Ze O6hVWECoL3pRZZRfOCk09fOp4lltX9JpW1IUuFlaZo0a8GSzTQcPZ6pfEmaObxT4 1SpyFKte3BDwY3iupymtTC4Wld1i3v9JeTKGasH8bzXwToOIdiRUWlx4wD105AJj 7bDI1ydWGz4liaUKE0lS98cMibLWNVOB -----END CERTIFICATE-----Generated at Sat Aug 23 19:16:03 2025 by rpki-client