$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: OUgiT55DMniWNVLlXlM/YnhVkRfpTQTOF4HpaaiT+a8= Subject key identifier: 69:B0:46:6B:A8:B4:95:91:07:E2:75:54:6F:AE:F9:F4:41:E7:EE:EC Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 0A02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 09F0 Signing time: Sun 24 Aug 2025 19:56:02 +0000 Manifest this update: Sun 24 Aug 2025 19:56:01 +0000 Manifest next update: Sun 31 Aug 2025 19:56:01 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: m6xx+g/aTh+e/E6hGUXgBtqjANxmIM2p2Cdrab/CIXI=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: Cf8bqRacvTWl+UzpH6e1kxekXSzzSxIQ9wSazOTj5Ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2562 (0xa02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE, serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: Aug 24 19:56:01 2025 GMT Not After : Aug 31 19:56:01 2025 GMT Subject: CN=68ab6e51-3d22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:12:ab:f1:ea:28:44:91:ae:d9:b9:fc:f7:33: dc:75:21:d0:08:c9:29:df:c7:c4:b2:2b:7d:f8:db: 4c:ac:bc:9e:2d:7c:f9:59:f4:03:aa:f9:66:cc:98: c8:6a:95:72:a2:b9:b4:cf:41:f5:a6:ef:2e:f4:72: b4:70:8a:9d:06:37:e4:c7:68:80:8c:4b:97:f2:e0: fa:3a:02:ff:a0:31:7b:e4:b2:6c:2c:86:cb:33:f7: 37:bb:3e:49:fb:99:ca:88:60:f5:c0:38:60:78:4c: 36:41:8b:e5:45:31:2c:b6:56:5e:ed:b8:20:91:a5: 98:24:81:55:66:37:a8:2b:fc:23:94:77:5c:61:1d: 42:ee:c5:e6:16:03:74:dd:64:2c:b6:11:ea:ae:9d: f2:e3:b2:e9:36:6a:e6:c5:8b:c8:a3:76:99:b2:99: e5:8c:89:e6:37:86:64:a5:b3:f9:ed:a1:3e:aa:f2: a4:5f:26:19:c6:35:53:d2:41:23:d5:ca:ab:ee:31: d0:3d:cd:e1:57:fb:ab:f0:69:74:a7:2d:0e:18:3f: e3:f5:28:40:32:b2:94:62:4f:b2:93:dc:2b:47:0d: 51:a5:32:9e:c2:62:e7:72:a3:31:fe:64:9d:cb:19: fd:32:5b:89:ec:28:71:75:0f:9d:69:2c:be:11:dc: e4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:B0:46:6B:A8:B4:95:91:07:E2:75:54:6F:AE:F9:F4:41:E7:EE:EC X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:16:29:c7:0a:2e:74:85:fa:e1:ca:38:ed:69:fe:83:8a:cd: 48:a4:cd:d4:a4:61:b2:12:a5:3f:7c:00:91:fd:52:b3:e4:c5: 55:35:10:24:55:94:f5:6e:b1:4c:c9:3c:90:60:5b:7f:a8:be: ed:66:74:b7:c5:75:cd:80:de:6f:9b:ed:8d:4a:41:03:20:71: 73:f7:09:e8:64:51:89:c6:45:22:4a:9c:32:ec:39:b5:9b:f2: b3:44:da:2c:c2:6b:fa:21:3b:10:67:94:5d:e5:3f:c5:f2:af: 99:2d:04:06:74:8e:dc:f6:e4:7c:a6:91:40:2b:0b:17:a5:d4: 98:b2:83:ad:48:f2:0c:df:be:7e:94:18:46:8b:d2:d7:f6:34: c8:a8:3e:f7:6a:62:39:0b:3f:ad:75:34:f5:6e:1b:9b:f5:af: 6d:01:4f:f9:c0:fc:cd:c5:9d:f5:39:d9:7f:69:cc:82:2e:bc: f7:b8:30:01:84:da:a1:17:52:df:0a:9f:0c:ab:9c:1a:1e:ff: 05:9f:ab:dd:23:16:61:40:64:21:00:6b:99:8a:ba:e7:70:4a: 79:6e:55:80:20:87:f3:88:66:e6:d4:8b:07:7c:80:82:a3:4b: e4:b0:00:39:f7:bf:d8:5a:3c:c6:2e:d3:e4:6c:b9:d4:6f:6c: a1:82:d5:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjUwODI0MTk1NjAxWhcNMjUwODMxMTk1NjAxWjAYMRYwFAYD VQQDEw02OGFiNmU1MS0zZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhKr8eooRJGu2bn89zPcdSHQCMkp38fEsit9+NtMrLyeLXz5WfQDqvlmzJjI apVyorm0z0H1pu8u9HK0cIqdBjfkx2iAjEuX8uD6OgL/oDF75LJsLIbLM/c3uz5J +5nKiGD1wDhgeEw2QYvlRTEstlZe7bggkaWYJIFVZjeoK/wjlHdcYR1C7sXmFgN0 3WQsthHqrp3y47LpNmrmxYvIo3aZspnljInmN4ZkpbP57aE+qvKkXyYZxjVT0kEj 1cqr7jHQPc3hV/ur8Gl0py0OGD/j9ShAMrKUYk+yk9wrRw1RpTKewmLncqMx/mSd yxn9MluJ7ChxdQ+daSy+EdzkaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmwRmuo tJWRB+J1VG+u+fRB5+7sMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKFinHCi50hfrhyjjtaf6Dis1IpM3UpGGyEqU/fACR/VKz5MVVNRAk VZT1brFMyTyQYFt/qL7tZnS3xXXNgN5vm+2NSkEDIHFz9wnoZFGJxkUiSpwy7Dm1 m/KzRNoswmv6ITsQZ5Rd5T/F8q+ZLQQGdI7c9uR8ppFAKwsXpdSYsoOtSPIM375+ lBhGi9LX9jTIqD73amI5Cz+tdTT1bhub9a9tAU/5wPzNxZ31Odl/acyCLrz3uDAB hNqhF1LfCp8Mq5waHv8Fn6vdIxZhQGQhAGuZirrncEp5blWAIIfziGbm1IsHfICC o0vksAA597/YWjzGLtPkbLnUb2yhgtV1 -----END CERTIFICATE-----Generated at Sun Aug 24 22:25:57 2025 by rpki-client