$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: irmwlT2uwFo/118pGKRb0HikpZmrcWWSAcNH/HfS8ww= Subject key identifier: 0F:5C:25:B8:D5:0E:2E:B2:99:68:D4:EB:3F:B1:4D:FC:57:18:6A:8F Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 01B1 Signing time: Fri 05 Sep 2025 03:28:46 +0000 Manifest this update: Fri 05 Sep 2025 03:28:46 +0000 Manifest next update: Fri 12 Sep 2025 03:28:46 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: qPxhOa4S2+iV65qv5UT48jeDD+orJkhvYf0jA+p1vyA=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Sep 5 03:28:46 2025 GMT Not After : Sep 12 03:28:46 2025 GMT Subject: CN=68ba58ee-af16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0a:2f:1c:75:b4:db:be:20:7f:90:b2:82:5d: 00:29:64:35:a0:5b:42:62:ae:f0:e1:b7:a7:cc:8c: b4:66:64:9f:f1:f2:f6:45:4c:31:12:02:dc:bc:ea: 33:3e:84:51:2a:e1:81:16:f7:57:b4:9e:fb:47:29: 7b:63:cb:3a:47:18:77:ed:6f:15:21:49:09:9f:44: eb:5e:b7:15:ba:10:dd:3d:84:3c:36:2a:43:bc:a2: 12:1b:5d:7d:4a:ca:02:a5:f2:05:10:41:4c:fd:fb: b6:cf:47:ed:ef:ec:e2:19:fd:c6:df:1c:e7:4c:a8: 11:32:91:28:0b:95:0c:15:e5:5f:03:4d:91:f6:63: ff:c1:6c:2e:36:41:02:0c:77:b4:dc:fa:fd:54:18: ed:88:77:d9:a8:5a:1a:39:79:28:48:37:e1:6b:b6: 45:7d:57:6b:5e:20:96:40:17:19:af:1e:f1:8a:a9: 70:54:c9:27:c5:65:74:4c:ab:d3:c1:25:f3:16:19: 01:0b:aa:e6:fe:cf:50:95:2d:21:35:60:f2:8b:1d: ac:03:10:e0:74:98:93:4e:9a:3b:cb:85:d6:d8:39: 8e:f0:c1:0c:0c:9d:8a:77:98:de:56:99:ba:bc:91: 21:5e:99:63:57:21:b5:76:16:59:70:ae:83:0b:1f: 11:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5C:25:B8:D5:0E:2E:B2:99:68:D4:EB:3F:B1:4D:FC:57:18:6A:8F X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:94:50:92:1d:b4:ef:97:61:6d:b4:df:7b:45:06:ec:03:c9: fd:59:df:bd:59:8b:e3:ba:6b:8e:3e:e4:f0:b8:27:d2:ef:10: df:15:4f:a4:2d:d0:6a:75:f9:c2:1c:c3:76:ad:ee:59:a4:58: 07:ac:1c:b9:0b:2e:e1:76:42:bc:4e:f7:25:e5:7b:84:9d:88: e2:ce:07:16:a0:9c:08:c3:e8:2b:af:04:09:ae:ce:f2:f1:2c: 06:4c:8a:c1:f2:fe:d7:be:e3:dc:2a:43:24:1a:71:d5:e6:75: b6:a7:0b:c5:9f:c9:7c:0d:58:44:ec:0b:56:3e:97:99:17:34: 3c:86:c1:40:98:8a:7a:a2:f6:85:df:c5:8e:58:36:9f:a6:37: fb:4f:37:4c:20:60:83:8d:39:ef:27:d2:32:11:3a:bf:47:3d: 31:67:d6:ef:8b:a5:b0:50:da:cc:39:a5:50:62:19:db:74:30: ed:b6:e1:93:7f:62:47:a9:29:ce:a2:64:15:5b:b8:32:49:02: 9e:9e:94:3f:76:f6:b8:d6:3e:36:4f:96:2d:35:3b:00:4f:5d: ef:1d:6b:a8:f2:5d:11:bb:0e:a7:0b:f2:80:1a:f4:b1:9d:0c: e6:6c:f4:19:bf:4f:9f:d3:b4:d3:07:f5:11:3d:e1:2b:b3:26: 27:65:e7:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUwOTA1MDMyODQ2WhcNMjUwOTEyMDMyODQ2WjAYMRYwFAYD VQQDEw02OGJhNThlZS1hZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQovHHW0274gf5Cygl0AKWQ1oFtCYq7w4benzIy0ZmSf8fL2RUwxEgLcvOoz PoRRKuGBFvdXtJ77Ryl7Y8s6Rxh37W8VIUkJn0TrXrcVuhDdPYQ8NipDvKISG119 SsoCpfIFEEFM/fu2z0ft7+ziGf3G3xznTKgRMpEoC5UMFeVfA02R9mP/wWwuNkEC DHe03Pr9VBjtiHfZqFoaOXkoSDfha7ZFfVdrXiCWQBcZrx7xiqlwVMknxWV0TKvT wSXzFhkBC6rm/s9QlS0hNWDyix2sAxDgdJiTTpo7y4XW2DmO8MEMDJ2Kd5jeVpm6 vJEhXpljVyG1dhZZcK6DCx8R7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9cJbjV Di6ymWjU6z+xTfxXGGqPMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBalFCSHbTvl2FttN97RQbsA8n9Wd+9WYvjumuOPuTwuCfS7xDfFU+k LdBqdfnCHMN2re5ZpFgHrBy5Cy7hdkK8Tvcl5XuEnYjizgcWoJwIw+grrwQJrs7y 8SwGTIrB8v7XvuPcKkMkGnHV5nW2pwvFn8l8DVhE7AtWPpeZFzQ8hsFAmIp6ovaF 38WOWDafpjf7TzdMIGCDjTnvJ9IyETq/Rz0xZ9bvi6WwUNrMOaVQYhnbdDDttuGT f2JHqSnOomQVW7gySQKenpQ/dva41j42T5YtNTsAT13vHWuo8l0Ruw6nC/KAGvSx nQzmbPQZv0+f07TTB/URPeErsyYnZef0 -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:25 2025 by rpki-client