$ rpki-client -vvf rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft File: OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft (raw, json) Hash identifier: AJYjlZSkYzJXAOnmGVO1zE9A0eNe5REZVmJ7NvRX6D8= Subject key identifier: 49:31:2E:D3:81:A9:A3:44:E2:43:10:4F:31:F1:93:C9:A6:57:5F:F7 Authority key identifier: 39:01:AF:4A:93:FE:FA:AE:B8:79:CC:9F:59:94:E4:E7:F0:1A:F8:38 Certificate issuer: /CN=A91613AB/serialNumber=3901AF4A93FEFAAEB879CC9F5994E4E7F01AF838 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft Manifest number: 01F8 Signing time: Sat 19 Jul 2025 02:43:58 +0000 Manifest this update: Sat 19 Jul 2025 02:43:58 +0000 Manifest next update: Sat 26 Jul 2025 02:43:58 +0000 Files and hashes: 1: OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl (hash: 8PWv36PNFyVVsXguFdQ2FEJhCYpm20Qeisd4AC/ShFg=) 2: 65AFE18C91DB11EFBC4C2A3EC4F9AE02.roa (hash: LqvEH1o9qv1Spv16C52zEqgMsWnx5LeCvM7wNncYwmQ=) 3: A50FD050DA7911EDB0D3866BC4F9AE02.roa (hash: sq3CtUxJWk/lwN1trxwIddBHXPOdGnUuNzRlPvsNflY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91613AB, serialNumber=3901AF4A93FEFAAEB879CC9F5994E4E7F01AF838 Validity Not Before: Jul 19 02:43:58 2025 GMT Not After : Jul 26 02:43:58 2025 GMT Subject: CN=687b066e-e54c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:92:0e:e9:4e:bd:e3:c1:5b:6a:d5:a3:1d:ec: 7e:ac:80:a9:2b:d3:b8:bc:7c:17:e9:81:96:9c:6e: 4b:2a:af:4a:12:41:5f:5b:64:d3:3a:be:f0:0e:f1: 00:cd:71:f2:1e:71:2d:ad:2c:78:c9:03:41:cd:b6: e8:64:de:5e:3a:ca:76:be:d5:e4:75:f3:bd:3b:b5: 84:15:9d:8b:68:37:a8:66:e1:95:ef:b4:a1:2c:fe: 60:a0:68:87:c5:d4:87:c3:af:e4:58:94:8e:3a:d7: fd:f3:f5:dc:8e:06:25:62:78:67:c0:22:52:d9:4e: ed:a4:5f:7e:ab:5e:a0:f8:fc:4e:e8:b2:92:a3:4d: ee:43:17:7f:e2:f4:bf:af:0d:23:10:9a:86:60:d9: c1:8a:ff:29:8a:8a:50:b4:b1:24:35:9a:76:6a:aa: a2:40:cb:79:de:da:21:7c:70:f8:59:dd:5b:51:41: 8d:a9:03:33:f5:6f:d5:c1:b1:c3:50:a8:4c:bd:2f: 0f:3f:ab:75:5c:40:2a:d0:28:d0:fd:04:ec:e0:47: 05:07:de:b3:46:6c:6b:bd:5f:e3:47:5e:84:68:e9: ea:16:b3:fd:9f:3d:17:6a:93:cc:5d:bd:05:86:43: b1:da:0e:e7:af:e5:a5:16:7d:ed:04:cb:e6:04:e1: 54:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:31:2E:D3:81:A9:A3:44:E2:43:10:4F:31:F1:93:C9:A6:57:5F:F7 X509v3 Authority Key Identifier: keyid:39:01:AF:4A:93:FE:FA:AE:B8:79:CC:9F:59:94:E4:E7:F0:1A:F8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OQGvSpP--q64ecyfWZTk5_Aa-Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91613AB/9CF7ECDA6F8B11ED8FAE3C11C4F9AE02/OQGvSpP--q64ecyfWZTk5_Aa-Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:eb:c0:6f:b9:60:dc:71:a5:3f:60:9d:2c:d5:dd:08:84:7a: d4:be:6b:1a:e6:99:66:fe:6b:4f:54:74:2c:7b:9f:9d:00:d2: bb:06:dd:6d:ff:36:fe:1b:bb:ad:be:cd:6d:d0:db:53:05:b5: 81:fa:84:6a:64:8b:ed:d0:08:8c:18:e8:dc:81:2f:72:fd:9c: d7:33:bb:bf:4b:f9:37:52:bc:65:1b:4a:ce:ee:a9:81:a8:e9: 1f:0f:1b:aa:38:f9:c0:9d:fb:bd:cf:3f:b1:3c:d5:b0:a4:26: 37:c6:05:b4:40:03:ff:44:0b:fa:1c:bf:75:e9:cc:ab:d8:aa: 1a:6d:99:fb:c2:c2:38:04:8b:46:cc:79:69:d4:00:8d:cd:18: 64:2f:cd:da:75:1a:20:f0:5f:c2:69:d4:74:76:b5:59:44:5a: 90:b4:a7:a5:43:be:9d:8a:5f:6b:f3:c8:59:c1:c9:a4:00:d9: e8:49:13:75:88:e0:d0:c0:e3:71:c4:39:76:16:fe:1a:d2:e7: b4:6c:7e:7d:d6:c4:c9:d3:1f:61:ca:8c:fd:c2:ad:60:8c:ea: 02:77:6a:bd:d7:95:f3:0e:ba:ab:04:f6:4a:77:d3:28:06:df: 6a:cc:c8:b4:0e:d7:c3:c0:5c:2f:24:f7:98:2e:66:fd:e5:b5: f3:c9:44:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEzQUIxMTAvBgNVBAUTKDM5MDFBRjRBOTNGRUZBQUVCODc5Q0M5RjU5OTRFNEU3 RjAxQUY4MzgwHhcNMjUwNzE5MDI0MzU4WhcNMjUwNzI2MDI0MzU4WjAYMRYwFAYD VQQDEw02ODdiMDY2ZS1lNTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpIO6U6948FbatWjHex+rICpK9O4vHwX6YGWnG5LKq9KEkFfW2TTOr7wDvEA zXHyHnEtrSx4yQNBzbboZN5eOsp2vtXkdfO9O7WEFZ2LaDeoZuGV77ShLP5goGiH xdSHw6/kWJSOOtf98/XcjgYlYnhnwCJS2U7tpF9+q16g+PxO6LKSo03uQxd/4vS/ rw0jEJqGYNnBiv8piopQtLEkNZp2aqqiQMt53tohfHD4Wd1bUUGNqQMz9W/VwbHD UKhMvS8PP6t1XEAq0CjQ/QTs4EcFB96zRmxrvV/jR16EaOnqFrP9nz0XapPMXb0F hkOx2g7nr+WlFn3tBMvmBOFUkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkxLtOB qaNE4kMQTzHxk8mmV1/3MB8GA1UdIwQYMBaAFDkBr0qT/vquuHnMn1mU5OfwGvg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTNBQi85Q0Y3RUNEQTZG OEIxMUVEOEZBRTNDMTFDNEY5QUUwMi9PUUd2U3BQLS1xNjRlY3lmV1pUazVfQWEt RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09RR3ZTcFAtLXE2NGVjeWZXWlRrNV9BYS1EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTNBQi85Q0Y3RUNEQTZGOEIxMUVEOEZBRTNDMTFDNEY5QUUwMi9PUUd2U3BQLS1x NjRlY3lmV1pUazVfQWEtRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT68BvuWDccaU/YJ0s1d0IhHrUvmsa5plm/mtPVHQse5+dANK7Bt1t /zb+G7utvs1t0NtTBbWB+oRqZIvt0AiMGOjcgS9y/ZzXM7u/S/k3UrxlG0rO7qmB qOkfDxuqOPnAnfu9zz+xPNWwpCY3xgW0QAP/RAv6HL916cyr2KoabZn7wsI4BItG zHlp1ACNzRhkL83adRog8F/CadR0drVZRFqQtKelQ76dil9r88hZwcmkANnoSRN1 iODQwONxxDl2Fv4a0ue0bH591sTJ0x9hyoz9wq1gjOoCd2q915XzDrqrBPZKd9Mo Bt9qzMi0DtfDwFwvJPeYLmb95bXzyUTk -----END CERTIFICATE-----Generated at Mon Jul 21 02:27:02 2025 by rpki-client