$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft File: OXH34h0IySQ6u0A_gDBkv3iy2IA.mft (raw, json) Hash identifier: QEsf3CXwtNoJaHoMkpn685NaC0w3Ew2KfZ688FnwlX8= Subject key identifier: 73:B6:D5:D6:B6:EC:B5:9A:6D:32:E2:F3:24:D4:7A:3E:A4:59:F9:6F Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0CE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft Manifest number: 0CB8 Signing time: Wed 10 Sep 2025 18:25:29 +0000 Manifest this update: Wed 10 Sep 2025 18:25:28 +0000 Manifest next update: Wed 17 Sep 2025 18:25:28 +0000 Files and hashes: 1: OXH34h0IySQ6u0A_gDBkv3iy2IA.crl (hash: rXGLpLfl7ztvCoVEZXOhYQXldUL9Lj+MYF8cLeAkH1I=) 2: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (hash: TeIPGyGqDRDL84HA9NnAzVJOOMFf2EjmrKH/elumev8=) 3: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (hash: lRMtWT21HxefR8cIAkbesXguaIjwdfIuBa6XccIOgBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 18:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3301 (0xce5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F, serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Sep 10 18:25:28 2025 GMT Not After : Sep 17 18:25:28 2025 GMT Subject: CN=68c1c299-ce35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:92:8f:70:0b:41:eb:95:fc:07:83:53:36:40: 3c:05:0f:70:eb:67:c0:95:72:db:06:bf:7a:21:2b: 64:99:db:47:7c:f1:d1:7e:07:df:ab:16:0c:07:60: 80:67:ce:bd:27:fa:12:e7:27:86:1e:b3:96:84:32: cf:6b:4f:6f:39:4d:34:b6:1c:6e:19:92:e2:c3:8c: 53:41:3c:e2:3c:d1:69:0e:cf:26:ae:00:8a:a4:16: 02:0d:c7:a4:bc:8f:9b:99:8e:ea:f1:2d:7f:e2:cc: 7f:87:ae:54:af:b2:28:f3:bc:59:c2:e6:a1:2f:39: 00:d2:17:df:21:24:e3:6b:11:46:89:ed:18:c5:85: b9:fb:ee:4c:5a:cf:7c:1f:88:79:03:20:11:0a:31: bf:7e:f5:c0:c4:09:50:2a:ad:58:81:a0:d4:06:3a: 77:fd:d6:a0:3a:19:2b:30:7a:94:2a:51:71:19:48: ec:ce:8c:ce:f9:e6:96:93:53:fe:76:db:5b:29:51: 7d:c2:7d:79:01:e9:98:99:4e:6c:ca:54:cc:15:aa: 59:cf:eb:fd:2e:93:35:0a:2d:5e:c1:10:b7:6c:d3: 7d:ec:f0:7b:66:9b:5e:e0:30:90:3c:4b:04:04:c6: ab:fd:4f:06:7a:0e:b6:9a:d2:86:17:36:d3:a2:a4: d6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B6:D5:D6:B6:EC:B5:9A:6D:32:E2:F3:24:D4:7A:3E:A4:59:F9:6F X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ea:a4:eb:e7:f5:03:61:31:9b:9a:06:8b:b3:f2:11:6a:c9: 56:27:5a:06:da:4f:4e:18:f1:67:4a:fd:d3:cb:fd:20:51:f9: b9:83:c0:49:65:84:1c:54:8c:b7:06:4f:92:71:83:06:be:29: 89:33:de:44:96:d8:68:70:6c:bc:35:de:e7:cb:2e:38:2a:c1: 56:d3:1f:26:48:82:de:d6:66:84:90:87:e7:54:d9:a1:7e:83: 82:6f:4a:b2:4d:d4:31:00:e1:8f:ff:ff:a8:2a:e5:a9:e2:61: ad:6f:ff:3b:06:5c:d5:d5:95:df:9d:1d:c1:68:cd:db:67:26: 83:7e:34:9b:b6:76:2f:82:4b:29:c7:fa:a7:e0:7c:f2:89:02: e1:c3:bc:f1:ff:b6:1d:f0:78:c8:82:67:58:d7:1b:b6:c7:17: e3:37:48:64:46:26:65:4a:e6:9f:6f:fb:26:a3:6c:13:f2:8b: fb:6d:92:c6:da:fd:e3:b9:2a:6e:8c:2f:bd:28:72:15:61:7c: 03:1b:0b:d2:7d:af:2b:f9:ef:ff:cb:12:d4:25:95:3a:46:10: a6:c5:d3:08:74:c0:da:e3:16:39:53:f7:37:d7:7f:f8:f5:89: 0d:78:26:32:31:a1:48:55:0e:48:7b:93:5b:77:1b:18:00:7f: f9:e9:5f:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjUwOTEwMTgyNTI4WhcNMjUwOTE3MTgyNTI4WjAYMRYwFAYD VQQDEw02OGMxYzI5OS1jZTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5KPcAtB65X8B4NTNkA8BQ9w62fAlXLbBr96IStkmdtHfPHRfgffqxYMB2CA Z869J/oS5yeGHrOWhDLPa09vOU00thxuGZLiw4xTQTziPNFpDs8mrgCKpBYCDcek vI+bmY7q8S1/4sx/h65Ur7Io87xZwuahLzkA0hffISTjaxFGie0YxYW5++5MWs98 H4h5AyARCjG/fvXAxAlQKq1YgaDUBjp3/dagOhkrMHqUKlFxGUjszozO+eaWk1P+ dttbKVF9wn15AemYmU5sylTMFapZz+v9LpM1Ci1ewRC3bNN97PB7Zpte4DCQPEsE BMar/U8Geg62mtKGFzbToqTW7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHO21da2 7LWabTLi8yTUej6kWflvMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDQ2Ri83REEyNEM3QTAwNjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlT UTZ1MEFfZ0RCa3YzaXkySUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp6qTr5/UDYTGbmgaLs/IRaslWJ1oG2k9OGPFnSv3Ty/0gUfm5g8BJ ZYQcVIy3Bk+ScYMGvimJM95ElthocGy8Nd7nyy44KsFW0x8mSILe1maEkIfnVNmh foOCb0qyTdQxAOGP//+oKuWp4mGtb/87BlzV1ZXfnR3BaM3bZyaDfjSbtnYvgksp x/qn4HzyiQLhw7zx/7Yd8HjIgmdY1xu2xxfjN0hkRiZlSuafb/smo2wT8ov7bZLG 2v3juSpujC+9KHIVYXwDGwvSfa8r+e//yxLUJZU6RhCmxdMIdMDa4xY5U/c313/4 9YkNeCYyMaFIVQ5Ie5NbdxsYAH/56V/H -----END CERTIFICATE-----Generated at Thu Sep 11 09:34:06 2025 by rpki-client