$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: 4dkU1zxuJ+vVFaJf1KeREd1xT8DLzeNe4pEpMRGQLgc= Subject key identifier: E7:AE:8E:07:83:A5:9A:80:7F:27:3A:22:7A:C0:BB:8B:44:57:2B:CA Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 91 Signing time: Tue 09 Sep 2025 03:04:03 +0000 Manifest this update: Tue 09 Sep 2025 03:04:02 +0000 Manifest next update: Tue 16 Sep 2025 03:04:02 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: c9/OfA679natLXwMnTPd6jUpsYylkyAeKVLBcNR04Mg=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 03:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Sep 9 03:04:02 2025 GMT Not After : Sep 16 03:04:02 2025 GMT Subject: CN=68bf9922-10d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a0:9e:8d:e7:28:85:36:49:5f:a8:d0:6e:b5: d3:7f:b5:8e:9b:bd:9c:23:20:3f:e5:01:62:49:8b: 45:cc:72:a7:f4:39:7f:55:1c:19:1b:65:ee:e9:a0: 7f:bf:39:71:d4:56:16:77:33:64:2b:a0:4c:1c:94: 6a:3f:e4:d0:de:0b:ec:96:d2:95:16:d4:4b:3f:8c: 35:5c:05:76:9e:64:73:ec:ed:c3:a2:a8:ae:ec:2a: e2:5b:17:52:39:63:61:b3:e5:d9:b5:5b:eb:bb:31: 03:ab:79:59:1e:0e:eb:e7:73:94:77:ce:e7:4e:d2: 9a:35:08:c3:9a:fd:24:a1:40:83:f6:10:78:53:ae: d1:e9:af:08:9c:d0:2d:4b:be:4e:66:78:98:6b:2d: ee:35:f8:d2:55:5d:e4:f0:3e:df:a5:68:a0:1c:ab: c2:f5:ee:12:97:d2:39:75:d8:96:4c:b4:b1:6a:71: fb:67:00:04:c4:13:a6:ce:7d:b8:91:97:88:36:04: 26:8a:97:ab:2b:56:92:ba:8b:f6:03:93:e1:9e:33: ff:a8:b6:7e:21:eb:1f:65:3a:60:db:d3:91:19:76: 02:30:b2:92:82:ec:3e:ba:10:95:ed:cd:93:0a:3b: 9b:19:cf:2c:e9:b1:77:81:c2:72:69:f6:c3:89:74: 91:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:AE:8E:07:83:A5:9A:80:7F:27:3A:22:7A:C0:BB:8B:44:57:2B:CA X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:e3:ed:5f:71:87:73:45:e0:af:df:66:1f:16:e9:12:24:55: 1a:0b:40:d6:11:f0:88:52:85:ba:06:84:ad:11:01:7d:04:eb: d7:3a:d5:8e:92:b1:8e:a2:59:61:0e:a4:e5:6f:c6:f9:ff:9b: 90:48:ba:c7:8c:36:b4:b4:2f:74:e5:d7:8a:d1:83:93:43:5a: 81:cf:a4:d8:4a:94:5b:5d:36:d3:7b:e9:d3:8a:02:15:81:29: 21:0f:b7:ae:1d:eb:03:63:4f:f4:e6:b6:e1:32:fb:84:d9:65: 91:7f:ca:32:77:0a:81:69:ec:54:8b:f9:74:4d:27:95:63:91: 0d:65:67:1c:5f:7a:4e:af:4e:12:5b:90:d0:7d:02:e2:16:d4: 4e:69:43:33:e7:31:cf:c1:d5:97:37:28:13:31:51:ad:75:15: 00:7c:3b:ab:3b:28:fb:6a:96:02:e4:de:14:23:cb:3d:31:f6: e8:6f:32:57:85:a0:cc:9c:de:a2:5e:77:15:c8:60:c5:ea:4c: a7:fd:af:1e:b8:89:ad:07:2e:34:a8:1b:7c:44:9f:af:28:aa: 8c:f5:e1:6b:d7:0e:4d:e3:26:40:21:0c:98:6c:d2:c0:4d:08: 17:4e:0a:c9:13:1c:b3:c9:94:e4:79:58:c0:b6:eb:c4:1c:71: bb:58:33:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUwOTA5MDMwNDAyWhcNMjUwOTE2MDMwNDAyWjAYMRYwFAYD VQQDEw02OGJmOTkyMi0xMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqCejecohTZJX6jQbrXTf7WOm72cIyA/5QFiSYtFzHKn9Dl/VRwZG2Xu6aB/ vzlx1FYWdzNkK6BMHJRqP+TQ3gvsltKVFtRLP4w1XAV2nmRz7O3Doqiu7CriWxdS OWNhs+XZtVvruzEDq3lZHg7r53OUd87nTtKaNQjDmv0koUCD9hB4U67R6a8InNAt S75OZniYay3uNfjSVV3k8D7fpWigHKvC9e4Sl9I5ddiWTLSxanH7ZwAExBOmzn24 kZeINgQmiperK1aSuov2A5PhnjP/qLZ+IesfZTpg29ORGXYCMLKSguw+uhCV7c2T CjubGc8s6bF3gcJyafbDiXSRkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeujgeD pZqAfyc6InrAu4tEVyvKMB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN4+1fcYdzReCv32YfFukSJFUaC0DWEfCIUoW6BoStEQF9BOvXOtWO krGOollhDqTlb8b5/5uQSLrHjDa0tC905deK0YOTQ1qBz6TYSpRbXTbTe+nTigIV gSkhD7euHesDY0/05rbhMvuE2WWRf8oydwqBaexUi/l0TSeVY5ENZWccX3pOr04S W5DQfQLiFtROaUMz5zHPwdWXNygTMVGtdRUAfDurOyj7apYC5N4UI8s9MfbobzJX haDMnN6iXncVyGDF6kyn/a8euImtBy40qBt8RJ+vKKqM9eFr1w5N4yZAIQyYbNLA TQgXTgrJExyzyZTkeVjAtuvEHHG7WDPT -----END CERTIFICATE-----Generated at Tue Sep 9 18:43:24 2025 by rpki-client