$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft File: OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft (raw, json) Hash identifier: yp3wE/ERquqP6nSGKJoLXGIMbiVYPHRe7o65WGDlY7E= Subject key identifier: 51:2C:43:DD:F3:A6:66:3B:F8:B8:27:58:70:72:85:26:0E:28:96:E4 Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft Manifest number: 67 Signing time: Wed 17 Sep 2025 07:45:37 +0000 Manifest this update: Wed 17 Sep 2025 07:45:36 +0000 Manifest next update: Wed 24 Sep 2025 07:45:36 +0000 Files and hashes: 1: OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl (hash: OV3OTJh7hF8nK4+Xl8FHaZQ2pID7XLSl90ad5cZVfhk=) 2: 54DA33D2FB2E11EFB488A95EC4F9AE02.roa (hash: L/7VzM2fbo0IdE808LBeTzf3z0geWQ0SpeUJCZmWPBg=) 3: 53E9C44CFB2E11EFB488A95EC4F9AE02.roa (hash: hzaK0MTBJLVrmr0hWnuGmH3SdcFclIxCzlQUZOQabQ8=) 4: 5460E9C8FB2E11EFB488A95EC4F9AE02.roa (hash: bkhjgOMD/IEHS+ly/VrsRugL9cN6Yu5sgUx5f40TuYM=) 5: 553798E2FB2E11EFB488A95EC4F9AE02.roa (hash: p8161Irka1RhOlKGL72R+iegNNjEoBL5dnyvjeUTVQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C Validity Not Before: Sep 17 07:45:36 2025 GMT Not After : Sep 24 07:45:36 2025 GMT Subject: CN=68ca6721-a324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d0:0a:3e:c0:e2:6f:ad:91:8a:c7:61:0c:e4: 65:c7:85:90:4a:25:9c:6b:f3:de:f0:4c:61:9b:9c: fb:d6:f4:04:28:fb:5d:b2:19:6c:43:f0:6a:28:3f: 7f:0c:1e:d7:b7:74:4d:3d:ad:2b:0f:24:b0:8e:b8: fb:a4:1e:ba:cb:1b:bd:ce:1c:86:d6:f3:45:fc:ee: 73:67:a6:f5:93:d6:81:04:1f:6b:28:0c:a7:1b:b8: 86:af:aa:b6:39:15:48:d5:27:46:18:46:db:70:7d: 7c:14:9b:c1:75:14:d8:68:34:fa:6d:07:75:5a:b8: 49:f4:4b:8d:f1:38:c5:be:b5:1a:0e:e2:a4:c3:67: fc:3c:62:7b:78:11:56:ca:3e:e9:6f:66:99:e5:b1: 96:0a:47:8b:20:1f:60:1d:03:d5:79:1c:96:69:94: e4:95:5d:3a:71:13:ab:0f:05:e6:35:f0:d4:9b:01: d0:4a:80:6e:ad:21:ae:2d:5f:0f:2e:7e:72:39:34: 31:bd:55:2a:c3:cc:6a:f9:6c:3a:6b:db:7e:b0:55: 61:a0:0a:79:a5:15:a4:06:89:aa:fe:98:d5:5b:69: a1:9f:b6:1f:af:da:dd:e9:56:d1:41:30:38:a9:d5: 94:c5:11:a6:55:56:ff:36:71:fa:e7:dd:a5:ef:47: 45:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:2C:43:DD:F3:A6:66:3B:F8:B8:27:58:70:72:85:26:0E:28:96:E4 X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:23:f1:2e:b7:3e:c2:ba:db:e0:52:6d:82:5f:a6:de:58:a9: 76:2d:e1:ac:67:b0:c2:15:55:ff:86:6a:9d:c0:47:4a:0f:67: 22:5e:61:d4:48:1c:76:82:f1:fb:de:bb:a9:b0:72:7a:80:42: 10:7d:c0:58:a7:b0:4b:57:a2:cf:90:d0:fc:34:21:6e:8b:51: bf:69:66:10:93:b3:c0:a7:58:6f:cd:b9:2a:01:3d:07:d8:f8: 58:6f:a4:12:28:29:cc:38:a2:48:e9:b7:e6:e4:f3:a7:1d:ff: 19:10:10:83:3e:f8:35:35:4f:38:31:0d:89:1c:25:07:62:ea: be:49:63:d7:6f:1d:8a:5d:29:72:ac:e6:32:2e:cf:29:73:45: df:b0:86:32:48:c7:eb:b3:78:3e:4b:58:98:ce:df:e2:0a:d6: 4c:14:6b:e4:68:44:d7:ad:0d:97:2f:c7:78:e5:db:1a:ec:03: 70:ae:70:91:ba:46:0c:b1:02:ba:2c:0d:e7:df:15:e0:1f:3d: 33:75:a4:d2:9a:3d:65:4f:18:ac:81:c2:48:44:a4:69:e0:20: 14:98:ed:78:f7:ac:34:56:37:4e:73:11:8c:33:aa:17:86:4e: e7:ab:62:05:00:9a:ca:f8:ea:88:7f:ec:87:f5:d1:c5:8e:8a: a1:c8:d2:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTUwMjExMC8GA1UEBRMoMzg2QzMwMEVENzJGMTJCOTA1NDc4QTMzQ0VGMjc3OTky NTRBNjkxQzAeFw0yNTA5MTcwNzQ1MzZaFw0yNTA5MjQwNzQ1MzZaMBgxFjAUBgNV BAMTDTY4Y2E2NzIxLWEzMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCj0Ao+wOJvrZGKx2EM5GXHhZBKJZxr897wTGGbnPvW9AQo+12yGWxD8GooP38M Hte3dE09rSsPJLCOuPukHrrLG73OHIbW80X87nNnpvWT1oEEH2soDKcbuIavqrY5 FUjVJ0YYRttwfXwUm8F1FNhoNPptB3VauEn0S43xOMW+tRoO4qTDZ/w8Ynt4EVbK PulvZpnlsZYKR4sgH2AdA9V5HJZplOSVXTpxE6sPBeY18NSbAdBKgG6tIa4tXw8u fnI5NDG9VSrDzGr5bDpr236wVWGgCnmlFaQGiar+mNVbaaGfth+v2t3pVtFBMDip 1ZTFEaZVVv82cfrn3aXvR0X3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUSxD3fOm Zjv4uCdYcHKFJg4oluQwHwYDVR0jBBgwFoAUOGwwDtcvErkFR4ozzvJ3mSVKaRww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNTAyLzg3QzNGRDBBRkIy OTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FS dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0d3d0R0Y3ZFcmtGUjRvenp2SjNtU1ZLYVJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NTAyLzg3QzNGRDBBRkIyOTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJr RlI0b3p6dkozbVNWS2FSdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABsj8S63PsK62+BSbYJfpt5YqXYt4axnsMIVVf+Gap3AR0oPZyJeYdRI HHaC8fveu6mwcnqAQhB9wFinsEtXos+Q0Pw0IW6LUb9pZhCTs8CnWG/NuSoBPQfY +FhvpBIoKcw4okjpt+bk86cd/xkQEIM++DU1TzgxDYkcJQdi6r5JY9dvHYpdKXKs 5jIuzylzRd+whjJIx+uzeD5LWJjO3+IK1kwUa+RoRNetDZcvx3jl2xrsA3CucJG6 RgyxArosDeffFeAfPTN1pNKaPWVPGKyBwkhEpGngIBSY7Xj3rDRWN05zEYwzqheG TuerYgUAmsr46oh/7If10cWOiqHI0mk= -----END CERTIFICATE-----Generated at Thu Sep 18 23:24:05 2025 by rpki-client