$ rpki-client -vvf rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft File: o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft (raw, json) Hash identifier: vmBOEL1S1X1WmEtp/6HI1ABzZHAqPCRlfVrNBvyNcrY= Subject key identifier: 4F:39:6D:7D:9C:A7:68:26:26:5E:1F:2F:38:A9:87:2B:E2:2C:94:63 Authority key identifier: A3:EB:7C:43:50:63:BC:54:D3:57:3D:81:DB:DC:18:73:98:76:63:E0 Certificate issuer: /CN=A91C77BD/serialNumber=A3EB7C435063BC54D3573D81DBDC1873987663E0 Certificate serial: 218B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft Manifest number: 2182 Signing time: Fri 18 Jul 2025 16:01:06 +0000 Manifest this update: Fri 18 Jul 2025 16:01:06 +0000 Manifest next update: Fri 25 Jul 2025 16:01:06 +0000 Files and hashes: 1: o-t8Q1BjvFTTVz2B29wYc5h2Y-A.crl (hash: u6U8L9TsZcJcFFDXTOIlzS/OrlEU1TM79Gfl13zeX44=) 2: A257A95EA9DC11E9AA03780DC4F9AE02.roa (hash: Kqxe3AlQssfHaUaGQ94xh+g433EOzW+NAhxS/kOyvHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.crl rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8587 (0x218b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C77BD, serialNumber=A3EB7C435063BC54D3573D81DBDC1873987663E0 Validity Not Before: Jul 18 16:01:06 2025 GMT Not After : Jul 25 16:01:06 2025 GMT Subject: CN=687a6fc2-d7d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:de:87:23:b0:fc:5e:4d:d2:ee:b1:a2:54:af: 48:f1:db:1a:51:e4:e4:bf:8f:ef:b4:6b:98:97:43: 09:00:43:de:8f:d8:74:70:16:b4:2f:47:01:41:bd: 3d:a7:34:04:8d:02:e7:62:75:8b:d0:38:77:77:e7: 1b:25:be:d0:50:83:43:6f:33:6a:d6:ea:7d:7d:d8: 45:02:0c:5e:a6:22:fe:02:e6:bb:9d:c5:fe:2a:2e: e7:e4:81:ca:94:26:44:f4:26:da:41:13:38:6b:27: 2d:8f:44:b7:8f:26:4a:bf:28:aa:2b:c0:ec:45:75: d5:68:20:3c:30:a1:5c:cb:98:9b:88:76:02:0c:45: f7:00:f3:e7:fd:8e:43:57:9d:de:6e:ab:20:e5:bd: 34:e5:8f:11:5d:29:31:04:90:ca:75:e5:25:06:5d: da:7a:ff:6e:5d:6c:a5:fd:b6:b0:eb:97:21:2f:5b: 61:d1:65:f2:84:c6:6f:40:9a:3f:d8:a0:ea:52:40: 8a:f2:f7:41:08:08:61:1e:da:6c:af:27:61:7d:11: c9:c5:03:d2:81:f9:02:ba:3b:9b:03:5a:b2:7f:ba: 91:ff:a8:98:c0:57:0f:61:1e:d3:91:53:eb:c3:77: 3c:87:df:96:34:f4:85:1e:c1:c1:bb:3f:1b:48:a7: f3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:39:6D:7D:9C:A7:68:26:26:5E:1F:2F:38:A9:87:2B:E2:2C:94:63 X509v3 Authority Key Identifier: keyid:A3:EB:7C:43:50:63:BC:54:D3:57:3D:81:DB:DC:18:73:98:76:63:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C77BD/38937198DF4011E58232734AC4F9AE02/o-t8Q1BjvFTTVz2B29wYc5h2Y-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:57:84:75:36:8e:97:73:ca:10:fd:9d:3b:9e:d3:d8:08:57: a4:1f:0e:60:e1:b1:ee:17:c8:42:f0:cf:22:35:29:67:88:67: 02:a4:b1:9b:8d:63:17:7e:ae:61:31:1c:fb:3f:9d:f0:81:29: 13:2b:34:85:7d:a3:b4:6f:f0:99:f2:dd:7e:b1:16:66:c3:1c: c3:20:23:58:aa:6d:21:48:21:fb:c1:b1:be:1c:3a:e8:28:d0: 2a:58:64:76:a0:c2:54:59:a1:38:56:0c:63:0d:1b:6f:77:04: 75:1a:2f:9d:fd:ec:ff:47:75:e4:27:45:d2:43:f2:7f:f5:ae: 3c:a8:0a:ed:40:61:12:64:ce:ac:a0:70:ca:0f:e9:6a:2c:88: 84:be:ce:70:4b:c3:33:96:db:df:d6:95:0c:43:07:f0:98:69: 34:7f:67:dc:48:cd:ca:59:0b:64:a6:c4:20:b1:05:91:4d:b8: 16:1c:28:50:7c:f7:67:4d:bb:cc:fe:d3:2f:33:44:a6:a7:6e: 91:1a:fe:f0:79:3c:28:46:54:7e:76:2a:00:bb:37:e6:81:b1: 47:9f:8d:3f:30:1d:71:ff:b9:eb:08:1b:b3:b0:cb:6e:4c:05: df:61:47:9a:83:3d:61:57:9a:cb:a4:a8:ee:c6:71:45:c3:c8: 92:75:31:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3QkQxMTAvBgNVBAUTKEEzRUI3QzQzNTA2M0JDNTREMzU3M0Q4MURCREMxODcz OTg3NjYzRTAwHhcNMjUwNzE4MTYwMTA2WhcNMjUwNzI1MTYwMTA2WjAYMRYwFAYD VQQDEw02ODdhNmZjMi1kN2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArN6HI7D8Xk3S7rGiVK9I8dsaUeTkv4/vtGuYl0MJAEPej9h0cBa0L0cBQb09 pzQEjQLnYnWL0Dh3d+cbJb7QUINDbzNq1up9fdhFAgxepiL+Aua7ncX+Ki7n5IHK lCZE9CbaQRM4ayctj0S3jyZKvyiqK8DsRXXVaCA8MKFcy5ibiHYCDEX3APPn/Y5D V53ebqsg5b005Y8RXSkxBJDKdeUlBl3aev9uXWyl/baw65chL1th0WXyhMZvQJo/ 2KDqUkCK8vdBCAhhHtpsrydhfRHJxQPSgfkCujubA1qyf7qR/6iYwFcPYR7TkVPr w3c8h9+WNPSFHsHBuz8bSKfz5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE85bX2c p2gmJl4fLziphyviLJRjMB8GA1UdIwQYMBaAFKPrfENQY7xU01c9gdvcGHOYdmPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzdCRC8zODkzNzE5OERG NDAxMUU1ODIzMjczNEFDNEY5QUUwMi9vLXQ4UTFCanZGVFRWejJCMjl3WWM1aDJZ LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28tdDhRMUJqdkZUVFZ6MkIyOXdZYzVoMlktQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzdCRC8zODkzNzE5OERGNDAxMUU1ODIzMjczNEFDNEY5QUUwMi9vLXQ4UTFCanZG VFRWejJCMjl3WWM1aDJZLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJV4R1No6Xc8oQ/Z07ntPYCFekHw5g4bHuF8hC8M8iNSlniGcCpLGb jWMXfq5hMRz7P53wgSkTKzSFfaO0b/CZ8t1+sRZmwxzDICNYqm0hSCH7wbG+HDro KNAqWGR2oMJUWaE4VgxjDRtvdwR1Gi+d/ez/R3XkJ0XSQ/J/9a48qArtQGESZM6s oHDKD+lqLIiEvs5wS8Mzltvf1pUMQwfwmGk0f2fcSM3KWQtkpsQgsQWRTbgWHChQ fPdnTbvM/tMvM0Smp26RGv7weTwoRlR+dioAuzfmgbFHn40/MB1x/7nrCBuzsMtu TAXfYUeagz1hV5rLpKjuxnFFw8iSdTGA -----END CERTIFICATE-----Generated at Sun Jul 20 12:19:37 2025 by rpki-client