$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft File: OG9viqHmbFJU6h5HiIwQP0U2Iio.mft (raw, json) Hash identifier: xfk6Y3qDicaiRJJkANjjTANDcT1Dh8Yh6bOg+G1zmQg= Subject key identifier: CE:B2:48:42:C2:5D:7E:FC:65:C9:76:9C:24:CD:70:27:88:20:C8:EA Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Certificate serial: 1A9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft Manifest number: 1A68 Signing time: Sun 20 Jul 2025 16:22:37 +0000 Manifest this update: Sun 20 Jul 2025 16:22:37 +0000 Manifest next update: Sun 27 Jul 2025 16:22:37 +0000 Files and hashes: 1: OG9viqHmbFJU6h5HiIwQP0U2Iio.crl (hash: w4aYXbnX7d3IDRS+7PFQnx+kcxdzbuljdq0ahu1XLKw=) 2: 6C897E54597B11EDB603273AC4F9AE02.roa (hash: tECuYiObkHM8+lQ9pAL6rPX0WAXD3+sDD+oT9RLjEFY=) 3: 6E44CE88597B11EDB603273AC4F9AE02.roa (hash: uSAHzBc+YHmREVNWY2QOkLWbks+7w1YPJ8vpHREo1FM=) 4: 63B4F05E482611E7ABDEF831C4F9AE02.roa (hash: UvxhutC//RajTrYueD0iUFQneJ/UQC0+drD5TAjJyFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6814 (0x1a9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB077, serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Validity Not Before: Jul 20 16:22:37 2025 GMT Not After : Jul 27 16:22:37 2025 GMT Subject: CN=687d17cd-252d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0a:0d:85:94:8b:d7:96:30:cd:06:a2:a0:1f: 53:23:fb:f5:dd:03:db:f9:8f:91:08:3e:29:63:5e: 9f:02:c6:bc:83:2c:72:87:9d:db:07:a7:40:13:29: 00:d8:f6:0a:7d:c0:a1:05:30:b0:3c:1d:77:c1:14: 57:cf:a5:3d:d1:2d:08:6a:21:a1:ad:69:1b:a4:fd: 41:10:4c:47:c1:7f:f9:fa:b0:de:7c:e5:8d:da:90: 20:d8:da:67:1d:3a:ce:e9:4d:ae:0e:e2:c3:09:94: 02:8c:b4:cd:bc:dd:1f:88:86:f4:be:7f:81:52:71: 2b:b9:70:17:1d:6f:4b:04:95:39:16:66:54:12:c5: eb:79:05:3f:46:8e:e0:1e:72:22:76:09:27:a4:24: 6e:a3:d2:00:3d:70:d5:70:34:57:70:72:2b:74:fa: fd:52:f8:2b:12:39:bf:53:32:2e:fe:ba:9a:33:ab: 40:84:05:83:06:cf:25:87:5c:d5:77:5e:d0:e8:a9: a4:76:7a:16:a4:83:3e:a8:0f:a3:14:ed:5b:a6:74: 5a:f2:bd:20:8d:3c:5f:66:1e:39:67:e4:2d:3e:4c: 20:82:dd:f2:b3:c1:b0:4c:d4:a4:62:30:97:19:83: e7:4f:d0:8f:ce:58:0a:62:41:5d:6d:62:87:ba:aa: 01:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B2:48:42:C2:5D:7E:FC:65:C9:76:9C:24:CD:70:27:88:20:C8:EA X509v3 Authority Key Identifier: keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:8b:d1:83:e6:00:44:3a:6d:fd:e1:7a:21:74:be:6e:fe:b4: 62:dd:b9:2c:f3:fe:82:09:8e:cf:7d:0e:57:cb:e6:21:7c:8b: 82:3d:2b:46:42:2c:9a:c8:ce:9f:71:37:49:e0:50:38:93:21: f9:bd:fa:78:43:f7:38:11:90:e6:01:51:1f:6b:89:c3:36:f3: 78:a5:18:fb:aa:78:37:57:56:f0:4f:81:19:30:90:23:0b:49: ee:06:35:1b:6c:e9:22:27:1b:92:38:3d:98:05:4e:6f:a2:2c: fc:a6:c1:56:1c:10:e4:f8:c2:9b:9e:90:75:02:a6:90:0a:cd: 5f:d0:c4:d7:4b:65:2f:0d:9f:64:ee:1e:be:6e:41:5c:2c:fe: 9c:8c:c5:59:6d:91:9b:b4:4b:c4:1e:28:f9:4d:2f:44:42:eb: ec:90:86:9e:70:16:3d:3d:a0:35:9c:08:3e:8b:74:5c:7a:50: 70:58:12:77:f5:db:e9:08:80:d3:fc:9b:f5:72:be:b8:cb:93: a7:af:d5:7d:00:98:98:96:c2:75:56:27:ac:08:00:df:d3:75: 38:94:ff:80:ca:6a:12:7a:09:6d:d7:41:d3:2b:27:ca:1b:5d: f1:19:74:1f:2c:d4:e1:79:2c:8c:f9:61:a2:f6:92:ba:a8:e8: 14:56:6f:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwNzcxMTAvBgNVBAUTKDM4NkY2RjhBQTFFNjZDNTI1NEVBMUU0Nzg4OEMxMDNG NDUzNjIyMkEwHhcNMjUwNzIwMTYyMjM3WhcNMjUwNzI3MTYyMjM3WjAYMRYwFAYD VQQDEw02ODdkMTdjZC0yNTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3goNhZSL15YwzQaioB9TI/v13QPb+Y+RCD4pY16fAsa8gyxyh53bB6dAEykA 2PYKfcChBTCwPB13wRRXz6U90S0IaiGhrWkbpP1BEExHwX/5+rDefOWN2pAg2Npn HTrO6U2uDuLDCZQCjLTNvN0fiIb0vn+BUnEruXAXHW9LBJU5FmZUEsXreQU/Ro7g HnIidgknpCRuo9IAPXDVcDRXcHIrdPr9UvgrEjm/UzIu/rqaM6tAhAWDBs8lh1zV d17Q6KmkdnoWpIM+qA+jFO1bpnRa8r0gjTxfZh45Z+QtPkwggt3ys8GwTNSkYjCX GYPnT9CPzlgKYkFdbWKHuqoBnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6ySELC XX78Zcl2nCTNcCeIIMjqMB8GA1UdIwQYMBaAFDhvb4qh5mxSVOoeR4iMED9FNiIq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA3Ny9EQjdCNzAwNjQ4 MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJGSlU2aDVIaUl3UVAwVTJJ aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HOXZpcUhtYkZKVTZoNUhpSXdRUDBVMklpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjA3Ny9EQjdCNzAwNjQ4MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJG SlU2aDVIaUl3UVAwVTJJaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/i9GD5gBEOm394XohdL5u/rRi3bks8/6CCY7PfQ5Xy+YhfIuCPStG QiyayM6fcTdJ4FA4kyH5vfp4Q/c4EZDmAVEfa4nDNvN4pRj7qng3V1bwT4EZMJAj C0nuBjUbbOkiJxuSOD2YBU5voiz8psFWHBDk+MKbnpB1AqaQCs1f0MTXS2UvDZ9k 7h6+bkFcLP6cjMVZbZGbtEvEHij5TS9EQuvskIaecBY9PaA1nAg+i3RcelBwWBJ3 9dvpCIDT/Jv1cr64y5Onr9V9AJiYlsJ1ViesCADf03U4lP+AymoSeglt10HTKyfK G13xGXQfLNTheSyM+WGi9pK6qOgUVm8z -----END CERTIFICATE-----Generated at Mon Jul 21 05:50:28 2025 by rpki-client