$ rpki-client -vvf rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft File: OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft (raw, json) Hash identifier: MUHk/9brU6URXI25HrSlhd8nH/CE+4FFRW2mltHBlow= Subject key identifier: 40:9E:CC:7C:9F:9E:65:DF:D0:27:24:94:70:4E:F3:7D:06:98:B7:9E Authority key identifier: 3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 Certificate issuer: /CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Certificate serial: 2453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft Manifest number: 243D Signing time: Thu 04 Sep 2025 15:53:09 +0000 Manifest this update: Thu 04 Sep 2025 15:53:08 +0000 Manifest next update: Thu 11 Sep 2025 15:53:08 +0000 Files and hashes: 1: OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl (hash: 6kUJPIg+wD+rtvY9zNTe28kgn9LMsOkBriaQX13nM4U=) 2: 9876A6C025B211ECB5356475C4F9AE02.roa (hash: DNBT8zhDN25f9UDGQ5nfWBA6s2lB80HUpbXVqjHmAQM=) 3: D8D3FB6414F111F08EE5E32DC4F9AE02.roa (hash: tOvAiPhxRE202cumPZpJeSLK5i3uUM9dNppjhBHTGzA=) 4: 54EE8F7615FE11ECAF541012C4F9AE02.roa (hash: IA4iHCGoqRIo6kbssAA01N8/wPFo68lHVDwSEc9PASs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9299 (0x2453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91592B3, serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Validity Not Before: Sep 4 15:53:08 2025 GMT Not After : Sep 11 15:53:08 2025 GMT Subject: CN=68b9b5e4-63ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4d:78:4e:5c:67:1b:4e:1b:b8:7a:a6:17:c9: fd:c8:77:a3:c5:2f:37:8c:90:78:44:08:2b:00:17: 79:3c:79:4a:a9:7b:3b:57:00:11:b0:c6:d7:ce:aa: ba:e5:ac:9c:04:26:09:60:87:bb:a0:15:a8:cf:9e: b9:90:f8:ad:f6:3c:2b:d1:08:82:8d:a9:12:a4:20: 7a:f1:88:4b:71:23:91:c4:4d:f0:11:55:a7:92:08: d8:2c:eb:d8:2b:1f:51:9f:8e:3a:df:f8:c5:d8:bc: 92:14:b1:58:28:5c:72:fa:32:02:ff:4e:b4:40:06: 41:ee:be:1b:96:ed:f4:2d:8c:fb:7a:4b:eb:99:a9: 8d:35:b4:11:45:d5:40:d8:2c:d6:64:35:a7:70:f2: d3:8f:fa:79:8b:7d:3f:db:4c:67:e1:f8:27:87:8f: 53:7e:ef:bb:18:20:0f:10:ba:bf:cd:b5:42:10:3d: 21:0e:8f:1a:81:1b:2c:77:82:4a:99:0a:e7:91:e8: 8e:4f:49:69:97:51:5b:b3:81:0a:3a:58:ad:1d:ad: ec:59:fd:f0:1c:a3:60:19:b0:6c:7b:98:95:90:b3: 1e:69:00:02:95:ac:01:9d:eb:b2:9a:fb:a7:61:b5: 71:b4:4c:80:74:3f:65:9c:34:3d:87:c8:a7:72:ba: 66:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:9E:CC:7C:9F:9E:65:DF:D0:27:24:94:70:4E:F3:7D:06:98:B7:9E X509v3 Authority Key Identifier: keyid:3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:96:d8:57:14:94:67:df:79:c7:bf:1a:5a:00:6b:68:bd:da: 0f:72:60:55:57:6b:99:fa:98:c6:0c:a8:65:3f:a6:f9:52:5a: d7:fc:9d:5d:a6:d0:23:b8:f6:b5:a3:cb:c8:c7:77:7d:e4:c9: 9d:01:63:d1:85:1a:ea:15:8c:cb:7d:a6:17:a5:10:78:2f:af: be:ae:51:a0:1c:4f:39:af:81:8e:4c:b7:e8:9d:67:67:4b:11: 7c:05:b9:a7:e3:15:3e:8a:d4:cb:85:4e:cf:af:b6:8d:9a:e0: 87:f1:92:f4:e9:1c:af:5b:15:21:54:3e:2c:7d:72:bb:1b:bf: d2:88:4a:93:d8:08:17:46:25:d0:db:e3:b7:c2:99:44:79:83: 36:94:c6:96:89:69:10:25:7a:dc:f5:cc:ba:ce:f0:1e:2d:e6: b2:12:4a:9b:13:d7:f7:f1:2b:c8:15:d3:33:f3:cd:48:8d:a8: 9d:8c:49:ee:01:23:c7:46:a9:13:3b:e4:ed:7c:d3:3a:da:5a: ae:00:cb:2e:43:12:c6:6e:fd:e2:6b:20:97:45:aa:1c:f1:d2: 24:bb:a0:85:40:4b:02:8b:8f:b2:c7:05:ad:13:dc:7f:c5:cf: 0f:4f:39:c7:dc:07:98:25:0f:f1:44:ec:1a:c6:ab:97:58:cf: 05:31:d4:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyQjMxMTAvBgNVBAUTKDNBNUMwODEzQzBGRUQwQTgzQjNERDAxQjdBNUFFMUEx MzA4MjcwMjgwHhcNMjUwOTA0MTU1MzA4WhcNMjUwOTExMTU1MzA4WjAYMRYwFAYD VQQDEw02OGI5YjVlNC02M2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxU14TlxnG04buHqmF8n9yHejxS83jJB4RAgrABd5PHlKqXs7VwARsMbXzqq6 5aycBCYJYIe7oBWoz565kPit9jwr0QiCjakSpCB68YhLcSORxE3wEVWnkgjYLOvY Kx9Rn4463/jF2LySFLFYKFxy+jIC/060QAZB7r4blu30LYz7ekvrmamNNbQRRdVA 2CzWZDWncPLTj/p5i30/20xn4fgnh49Tfu+7GCAPELq/zbVCED0hDo8agRssd4JK mQrnkeiOT0lpl1Fbs4EKOlitHa3sWf3wHKNgGbBse5iVkLMeaQAClawBneuymvun YbVxtEyAdD9lnDQ9h8incrpm/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECezHyf nmXf0CcklHBO830GmLeeMB8GA1UdIwQYMBaAFDpcCBPA/tCoOz3QG3pa4aEwgnAo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTJCMy84OTE3RkIyQTVE MEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBLZzdQZEFiZWxyaG9UQ0Nj Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sd0lFOEQtMEtnN1BkQWJlbHJob1RDQ2NDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTJCMy84OTE3RkIyQTVEMEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBL ZzdQZEFiZWxyaG9UQ0NjQ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6lthXFJRn33nHvxpaAGtovdoPcmBVV2uZ+pjGDKhlP6b5UlrX/J1d ptAjuPa1o8vIx3d95MmdAWPRhRrqFYzLfaYXpRB4L6++rlGgHE85r4GOTLfonWdn SxF8Bbmn4xU+itTLhU7Pr7aNmuCH8ZL06RyvWxUhVD4sfXK7G7/SiEqT2AgXRiXQ 2+O3wplEeYM2lMaWiWkQJXrc9cy6zvAeLeayEkqbE9f38SvIFdMz881IjaidjEnu ASPHRqkTO+TtfNM62lquAMsuQxLGbv3iayCXRaoc8dIku6CFQEsCi4+yxwWtE9x/ xc8PTznH3AeYJQ/xROwaxquXWM8FMdQd -----END CERTIFICATE-----Generated at Sat Sep 6 08:14:53 2025 by rpki-client