$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: GZCYabQR2CEBkGW7fr+TuWcioiHBHWAd0b3Dmua1KLQ= Subject key identifier: AF:E7:95:64:7E:66:99:82:37:37:6B:FB:7E:62:FB:F3:64:FB:D3:FF Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 0370 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 0367 Signing time: Tue 09 Sep 2025 01:01:52 +0000 Manifest this update: Tue 09 Sep 2025 01:01:52 +0000 Manifest next update: Tue 16 Sep 2025 01:01:52 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: tfY7Xz9uG82rQFgOAryI5C/P+6wU0N795onVlsKzfq0=) 2: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (hash: SFUw1crOwEdM2KZGmzmI0Y/ekMkiUyOErHqNpQ3ZimY=) 3: A047A07AD56811EFB57A5D33C4F9AE02.roa (hash: hW5FiSV5239AbImQE/mYJwi40OATdFzGCdVUMZFhemo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 880 (0x370) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: Sep 9 01:01:52 2025 GMT Not After : Sep 16 01:01:52 2025 GMT Subject: CN=68bf7c80-24eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:82:20:ff:c6:42:92:9a:02:55:62:3f:6e:6f: 83:11:a7:6d:4d:21:c9:24:2d:cc:bd:c0:19:d6:fa: ad:9c:7c:4d:e8:f9:d6:36:38:a5:ce:17:ae:7e:75: f2:7f:92:73:9a:3e:4e:ed:3f:c7:55:9d:80:29:e3: fe:d6:f4:6a:e9:16:26:e1:93:b8:61:bf:46:9d:a2: 7a:58:c3:16:1c:9c:8e:d2:38:a5:37:d8:9d:be:48: 86:99:6b:3a:50:f9:14:6e:b1:4f:81:a7:65:32:dd: a1:b8:cd:71:4d:85:73:8f:4e:67:2e:63:3c:58:3d: f7:c4:92:24:ac:7f:c6:ad:2f:98:ee:44:c2:01:58: 03:6c:bf:88:64:eb:75:64:52:e3:16:06:66:08:3d: 1e:9f:93:72:68:bc:28:0c:ea:c7:0b:d6:f3:49:2d: 5e:65:db:44:ac:cd:67:1c:bb:ea:6b:19:07:00:5e: 0f:8f:0f:94:c3:dc:88:b2:21:7f:5b:7c:60:cf:33: 0c:5d:98:e4:24:fa:71:1d:f0:dc:fe:4d:e8:0c:5b: 78:7a:e0:0f:16:a5:16:be:95:32:8a:6c:c7:8c:c1: 2d:9a:ee:f5:8e:5c:37:3d:b8:84:0e:07:7b:23:1c: 47:99:b3:db:39:92:e5:b6:4f:fc:47:16:51:40:4b: 6b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E7:95:64:7E:66:99:82:37:37:6B:FB:7E:62:FB:F3:64:FB:D3:FF X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:fa:9a:47:ae:36:14:96:74:fd:a2:4d:98:28:fc:0c:d3:a2: 5c:ef:c1:ea:e4:93:c6:06:f2:56:01:75:ea:58:0b:8e:6c:34: d4:2e:94:cd:7a:b6:da:a0:61:0e:b7:a6:88:36:f0:68:f8:5b: c2:6d:e1:9b:cc:7f:95:f3:15:f2:30:a9:02:35:2d:e3:34:78: 29:54:5e:38:83:ae:f0:de:f0:da:f8:f5:12:9e:8c:19:0f:31: 22:21:bb:36:18:f2:32:23:dd:9a:57:d2:66:28:ed:8f:1d:5a: 9d:5c:0a:7f:97:bc:2a:74:a3:5a:d8:2f:f9:c1:48:0f:02:9f: c5:66:e2:ae:9a:af:71:b4:7a:86:89:fa:cd:7d:d2:88:a4:86: 16:1b:09:e9:e6:b6:00:d1:dd:9b:67:65:22:40:83:5c:fd:f9: 09:4c:e9:b3:5f:30:b1:94:2a:2e:85:32:b6:96:7f:9b:f9:03: 01:30:e9:d5:d7:a8:56:ed:22:06:e4:e6:63:1c:c4:82:15:c2: 54:f7:8f:54:ee:e1:d7:54:58:3d:2b:18:25:25:79:cb:02:9a: d5:c7:87:bf:14:c3:c7:b7:24:74:3d:e0:43:c8:ae:ad:48:ef: 52:3c:9d:5b:f8:7e:c2:21:a2:45:58:80:4f:9f:17:8c:34:25: ec:be:ef:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjUwOTA5MDEwMTUyWhcNMjUwOTE2MDEwMTUyWjAYMRYwFAYD VQQDEw02OGJmN2M4MC0yNGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44Ig/8ZCkpoCVWI/bm+DEadtTSHJJC3MvcAZ1vqtnHxN6PnWNjilzheufnXy f5Jzmj5O7T/HVZ2AKeP+1vRq6RYm4ZO4Yb9GnaJ6WMMWHJyO0jilN9idvkiGmWs6 UPkUbrFPgadlMt2huM1xTYVzj05nLmM8WD33xJIkrH/GrS+Y7kTCAVgDbL+IZOt1 ZFLjFgZmCD0en5NyaLwoDOrHC9bzSS1eZdtErM1nHLvqaxkHAF4Pjw+Uw9yIsiF/ W3xgzzMMXZjkJPpxHfDc/k3oDFt4euAPFqUWvpUyimzHjMEtmu71jlw3PbiEDgd7 IxxHmbPbOZLltk/8RxZRQEtrdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/nlWR+ ZpmCNzdr+35i+/Nk+9P/MB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL+ppHrjYUlnT9ok2YKPwM06Jc78Hq5JPGBvJWAXXqWAuObDTULpTN erbaoGEOt6aINvBo+FvCbeGbzH+V8xXyMKkCNS3jNHgpVF44g67w3vDa+PUSnowZ DzEiIbs2GPIyI92aV9JmKO2PHVqdXAp/l7wqdKNa2C/5wUgPAp/FZuKumq9xtHqG ifrNfdKIpIYWGwnp5rYA0d2bZ2UiQINc/fkJTOmzXzCxlCouhTK2ln+b+QMBMOnV 16hW7SIG5OZjHMSCFcJU949U7uHXVFg9KxglJXnLAprVx4e/FMPHtyR0PeBDyK6t SO9SPJ1b+H7CIaJFWIBPnxeMNCXsvu/f -----END CERTIFICATE-----Generated at Tue Sep 9 18:27:37 2025 by rpki-client