$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft File: i16Our4JofST0QJTwaO5OTm_yoo.mft (raw, json) Hash identifier: NU4oRSNSFsK7erpfkSZd3m6RY4DZ5z8Hm0gciLlwz2Q= Subject key identifier: 34:5D:33:AA:1D:85:5E:54:2D:F8:2A:9C:63:CD:E1:EA:09:FB:14:5A Authority key identifier: 8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A Certificate issuer: /CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft Manifest number: 97 Signing time: Wed 23 Jul 2025 06:41:26 +0000 Manifest this update: Wed 23 Jul 2025 06:41:26 +0000 Manifest next update: Wed 30 Jul 2025 06:41:26 +0000 Files and hashes: 1: i16Our4JofST0QJTwaO5OTm_yoo.crl (hash: Gor3nOFlxqF0s0vX9tQ0mjOmc7j0jT2PPkOznU8he2Q=) 2: D5A3117E85DF11EFA2C33754C4F9AE02.roa (hash: DRt8K6jlAria6yTB9gWZIhOKN+7LEqAGx7rHUxgtPQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 06:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91336DF, serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Validity Not Before: Jul 23 06:41:26 2025 GMT Not After : Jul 30 06:41:26 2025 GMT Subject: CN=68808416-eb9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:24:a3:ce:70:23:31:63:bf:ea:61:a2:b2:80: 3e:bd:3d:22:15:7e:f5:c9:ad:85:77:1f:33:34:81: a4:21:6c:aa:36:5d:a5:cf:87:70:29:fc:72:f7:66: e6:26:e0:5d:63:ec:26:19:c4:8a:b4:db:5d:b6:2d: ee:a3:55:39:46:f6:de:9e:f0:9c:86:ea:97:22:df: db:ba:f0:13:22:bc:ea:fd:a0:5f:1c:94:b8:a2:89: 4f:16:86:03:e2:64:c0:b2:e4:11:fe:f5:0f:cc:e4: 19:be:f7:3b:89:7b:bf:1e:d7:31:99:6d:47:6d:b9: cd:3e:56:73:c1:e1:a8:cb:a8:97:19:6a:7b:85:ab: 40:e8:52:56:63:c0:f0:7c:30:b7:74:17:cd:81:84: 37:12:99:84:f3:36:6d:9b:97:95:28:c1:1b:ac:b4: df:88:5f:89:ef:ed:de:98:09:be:04:56:7e:5b:2d: a9:98:48:53:ae:e2:2f:a7:74:10:33:13:87:cd:c5: 67:b4:95:df:25:90:b4:f4:89:f3:79:d9:41:b8:0d: c4:66:42:99:c5:be:bf:bb:78:06:11:03:42:86:57: b3:e8:67:02:0e:0f:56:3f:dc:81:0e:3e:5a:26:e0: 61:dd:3e:04:3b:ed:70:04:c6:c3:3d:57:05:19:85: ec:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5D:33:AA:1D:85:5E:54:2D:F8:2A:9C:63:CD:E1:EA:09:FB:14:5A X509v3 Authority Key Identifier: keyid:8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:5d:c8:a2:bf:10:f7:c7:d1:e6:a7:ad:49:29:68:62:ed:f8: 34:0c:5c:c6:d3:2f:ac:b2:e6:72:f4:8f:b4:b7:23:73:6e:fe: 13:3d:f6:ef:ab:90:3d:a1:64:bf:f5:37:3c:4e:78:df:a1:dd: 14:c3:91:6c:17:c6:b7:93:4f:6c:6c:14:de:f9:68:89:79:38: f5:c6:8f:e9:a2:1e:cf:f7:87:5a:b0:e1:16:3b:ac:33:5b:26: 23:9f:fb:7c:19:49:35:b3:26:fc:8c:ce:09:25:59:3e:60:b6: 2c:f6:ab:0c:e7:ba:8a:1d:cd:66:13:7e:eb:37:67:ec:34:8b: 9a:0d:bf:09:39:9c:a8:0f:82:52:53:bf:7a:ce:2c:5e:5a:d7: 32:68:66:29:fc:bd:9a:2f:d5:fc:2f:88:a9:e8:53:3a:3f:4a: 9b:04:0f:25:43:f9:e1:b6:fb:1c:bd:5d:f3:f9:3b:88:10:d2: db:58:d6:a9:12:50:0a:5f:7c:01:47:95:36:ab:b7:1f:bc:8b: 6c:5b:f7:f2:a7:67:ec:ad:a3:22:5f:a4:d0:35:87:54:20:b2: 0d:00:a6:2c:9d:fc:66:5c:cb:53:23:90:bf:23:7e:c6:54:d9: 0b:9e:9f:f3:dc:32:4a:8e:cb:81:a0:bf:30:0d:c9:f7:e3:5e: 17:e7:74:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM2REYxMTAvBgNVBAUTKDhCNUU4RUJBQkUwOUExRjQ5M0QxMDI1M0MxQTNCOTM5 MzlCRkNBOEEwHhcNMjUwNzIzMDY0MTI2WhcNMjUwNzMwMDY0MTI2WjAYMRYwFAYD VQQDEw02ODgwODQxNi1lYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnySjznAjMWO/6mGisoA+vT0iFX71ya2Fdx8zNIGkIWyqNl2lz4dwKfxy92bm JuBdY+wmGcSKtNtdti3uo1U5RvbenvCchuqXIt/buvATIrzq/aBfHJS4oolPFoYD 4mTAsuQR/vUPzOQZvvc7iXu/HtcxmW1HbbnNPlZzweGoy6iXGWp7hatA6FJWY8Dw fDC3dBfNgYQ3EpmE8zZtm5eVKMEbrLTfiF+J7+3emAm+BFZ+Wy2pmEhTruIvp3QQ MxOHzcVntJXfJZC09InzedlBuA3EZkKZxb6/u3gGEQNChlez6GcCDg9WP9yBDj5a JuBh3T4EO+1wBMbDPVcFGYXsQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRdM6od hV5ULfgqnGPN4eoJ+xRaMB8GA1UdIwQYMBaAFItejrq+CaH0k9ECU8GjuTk5v8qK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzZERi8xQTM2MkE1Njgx M0YxMUVGOUNDRTFBMUFDNEY5QUUwMi9pMTZPdXI0Sm9mU1QwUUpUd2FPNU9UbV95 b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kxNk91cjRKb2ZTVDBRSlR3YU81T1RtX3lvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzZERi8xQTM2MkE1NjgxM0YxMUVGOUNDRTFBMUFDNEY5QUUwMi9pMTZPdXI0Sm9m U1QwUUpUd2FPNU9UbV95b28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBXciivxD3x9Hmp61JKWhi7fg0DFzG0y+ssuZy9I+0tyNzbv4TPfbv q5A9oWS/9Tc8Tnjfod0Uw5FsF8a3k09sbBTe+WiJeTj1xo/poh7P94dasOEWO6wz WyYjn/t8GUk1syb8jM4JJVk+YLYs9qsM57qKHc1mE37rN2fsNIuaDb8JOZyoD4JS U796zixeWtcyaGYp/L2aL9X8L4ip6FM6P0qbBA8lQ/nhtvscvV3z+TuIENLbWNap ElAKX3wBR5U2q7cfvItsW/fyp2fsraMiX6TQNYdUILINAKYsnfxmXMtTI5C/I37G VNkLnp/z3DJKjsuBoL8wDcn3414X53Rg -----END CERTIFICATE-----Generated at Thu Jul 24 05:05:24 2025 by rpki-client