$ rpki-client -vvf rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft File: OWpdnmemeQypf7kxMEtE57CoIc8.mft (raw, json) Hash identifier: 7j20E/JuCdDTj8tAhS9pPecRP9zN9vwD2gyN25Irodo= Subject key identifier: 91:5B:86:F1:3D:24:C1:64:37:8C:BC:12:24:6C:FE:74:F5:0C:D8:B5 Authority key identifier: 39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF Certificate issuer: /CN=A915664E/serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Certificate serial: 0908 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft Manifest number: 08FD Signing time: Wed 20 Aug 2025 20:25:09 +0000 Manifest this update: Wed 20 Aug 2025 20:25:08 +0000 Manifest next update: Wed 27 Aug 2025 20:25:08 +0000 Files and hashes: 1: OWpdnmemeQypf7kxMEtE57CoIc8.crl (hash: MW+LOzjZymBD1EWxsNQJ0u2Zd4bYV5nbeHyCUPGT8tw=) 2: 442D6434B14411EAB852C134C4F9AE02.roa (hash: dVnV0yH7vHgJph4GIsitDhFnvlBBTZGa61SDpLL66Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 20:25:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2312 (0x908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915664E, serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF Validity Not Before: Aug 20 20:25:08 2025 GMT Not After : Aug 27 20:25:08 2025 GMT Subject: CN=68a62f24-9f27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d1:1d:e2:8e:1c:b4:91:56:85:c0:1e:8b:5e: 1c:ca:80:06:4a:e8:43:a7:79:ee:6b:45:f7:d9:3a: fa:d6:62:01:91:cb:18:5f:f0:d7:56:5c:26:81:22: 63:73:7e:9d:04:42:0d:dd:41:50:fe:07:da:a9:12: fc:43:eb:89:66:fb:a5:7d:4a:a6:6e:6f:69:d6:2a: b6:eb:1d:a2:99:e1:59:c1:98:e2:78:33:49:ed:ba: 05:18:77:d0:9c:16:55:68:6a:09:75:5c:6d:d0:95: 08:c7:ff:e9:08:fc:84:b1:0a:0a:c9:6c:b9:64:ab: d3:66:ef:b9:c2:fd:c6:7a:71:e9:d5:80:f9:69:89: 7a:5b:82:ca:0f:ea:21:f9:c8:43:44:5a:6e:f2:c7: 02:05:8a:30:7d:b9:8f:da:8d:4e:2a:5e:c0:d6:26: aa:70:9d:12:5a:83:88:5f:de:35:51:16:9b:84:e5: 9c:b1:ef:00:c4:c4:02:93:e8:12:f0:ca:d8:62:29: 16:92:19:b1:c4:ba:83:03:30:98:7b:7e:a2:77:6b: 28:11:16:84:36:ec:10:d4:57:f2:e1:4f:5e:b8:29: ba:27:d6:75:0d:62:cf:46:f9:c0:b6:1f:74:82:b1: 22:60:a1:8e:0e:9a:3c:50:99:48:6b:62:aa:f6:cd: 85:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:5B:86:F1:3D:24:C1:64:37:8C:BC:12:24:6C:FE:74:F5:0C:D8:B5 X509v3 Authority Key Identifier: keyid:39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:b5:23:e2:a9:da:b1:41:5f:64:e2:d3:8e:a4:1b:af:ce:5b: 36:d0:01:d1:4a:bc:3c:74:5d:42:0b:91:ce:0b:5a:ba:c7:0b: 5c:3d:6b:06:25:41:6d:35:ad:d8:f2:7c:92:99:3a:bd:27:f0: cf:c5:f2:51:0f:77:63:1c:97:bc:ff:7c:24:cb:f3:f0:63:e2: 6a:d9:2b:a4:f3:4e:b5:6e:5e:08:15:60:28:de:7c:82:f3:cc: 28:37:9c:79:81:60:e3:24:a0:6d:db:c6:f2:08:f1:f0:62:2b: 1c:3d:a2:02:56:c4:7d:04:e9:e7:c4:17:dc:c9:48:5b:39:69: a5:83:28:be:1e:ee:b2:d2:12:06:b4:68:5c:ad:35:19:c7:31: 33:dd:e6:96:a4:e5:86:85:f4:a5:51:ff:07:6e:07:b8:33:9f: 84:ce:c7:e3:2a:d5:24:ac:f7:57:1d:dd:c8:33:2e:b8:85:fd: 57:e2:68:d6:46:79:f4:d2:41:ab:ee:f6:d7:0f:81:c3:d5:c1: be:0b:67:00:54:ea:03:7c:1c:f4:47:be:76:ae:88:8e:64:0c: 6f:13:f5:aa:01:4a:4e:77:fb:d4:f9:63:0e:cc:a3:27:4d:32: df:0a:91:04:14:e4:5e:7b:d8:2b:90:27:88:a9:10:a9:e7:df: bb:96:f2:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY2NEUxMTAvBgNVBAUTKDM5NkE1RDlFNjdBNjc5MENBOTdGQjkzMTMwNEI0NEU3 QjBBODIxQ0YwHhcNMjUwODIwMjAyNTA4WhcNMjUwODI3MjAyNTA4WjAYMRYwFAYD VQQDEw02OGE2MmYyNC05ZjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNEd4o4ctJFWhcAei14cyoAGSuhDp3nua0X32Tr61mIBkcsYX/DXVlwmgSJj c36dBEIN3UFQ/gfaqRL8Q+uJZvulfUqmbm9p1iq26x2imeFZwZjieDNJ7boFGHfQ nBZVaGoJdVxt0JUIx//pCPyEsQoKyWy5ZKvTZu+5wv3GenHp1YD5aYl6W4LKD+oh +chDRFpu8scCBYowfbmP2o1OKl7A1iaqcJ0SWoOIX941URabhOWcse8AxMQCk+gS 8MrYYikWkhmxxLqDAzCYe36id2soERaENuwQ1Ffy4U9euCm6J9Z1DWLPRvnAth90 grEiYKGODpo8UJlIa2Kq9s2FNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFbhvE9 JMFkN4y8EiRs/nT1DNi1MB8GA1UdIwQYMBaAFDlqXZ5npnkMqX+5MTBLROewqCHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjY0RS9CNDZBOUMxRUIx M0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVReXBmN2t4TUV0RTU3Q29J YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09XcGRubWVtZVF5cGY3a3hNRXRFNTdDb0ljOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjY0RS9CNDZBOUMxRUIxM0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1lbWVR eXBmN2t4TUV0RTU3Q29JYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3tSPiqdqxQV9k4tOOpBuvzls20AHRSrw8dF1CC5HOC1q6xwtcPWsG JUFtNa3Y8nySmTq9J/DPxfJRD3djHJe8/3wky/PwY+Jq2Suk8061bl4IFWAo3nyC 88woN5x5gWDjJKBt28byCPHwYiscPaICVsR9BOnnxBfcyUhbOWmlgyi+Hu6y0hIG tGhcrTUZxzEz3eaWpOWGhfSlUf8Hbge4M5+EzsfjKtUkrPdXHd3IMy64hf1X4mjW Rnn00kGr7vbXD4HD1cG+C2cAVOoDfBz0R752roiOZAxvE/WqAUpOd/vU+WMOzKMn TTLfCpEEFORee9grkCeIqRCp59+7lvJf -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:15 2025 by rpki-client