$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: A0+T/M0U/G4oBzu2IXssDve+ys6zSDpij2OiZTcsSCI= Subject key identifier: C0:2E:06:51:5D:C3:D4:01:3D:0B:C1:ED:31:24:62:8D:C5:A2:0A:DA Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 03EF Signing time: Fri 19 Sep 2025 00:54:20 +0000 Manifest this update: Fri 19 Sep 2025 00:54:20 +0000 Manifest next update: Fri 26 Sep 2025 00:54:20 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: El/7YzJIYw9tGP0XL9WmWAOeDe2JTuMy4K46ZXZ2dKY=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: CfbtaxsbT8QkNpB+dr8l4I71elKTP/TaO4DWd5BrJjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:54:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Sep 19 00:54:20 2025 GMT Not After : Sep 26 00:54:20 2025 GMT Subject: CN=68cca9bc-fd6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:80:24:d5:51:3f:0a:aa:ad:13:ca:54:b5:e7: b6:3e:09:2b:e4:c9:15:04:24:d9:72:6d:7d:8a:b9: 75:a4:af:da:27:f3:b2:67:0d:a2:8b:c5:bb:47:9c: 7a:9e:2f:66:69:2b:00:40:2a:c0:80:14:31:14:1e: 27:c0:62:4e:47:cb:6a:86:36:a7:a2:a5:89:7d:db: dc:7c:13:60:2c:a3:02:1e:8f:03:bb:73:70:84:58: 0c:ab:b3:e8:73:4a:8f:38:b4:f3:7a:e3:20:b2:60: ae:4e:f4:6e:b0:21:cc:5e:cd:eb:b9:ab:65:c0:36: 59:18:e8:19:f2:bd:ce:9f:74:cc:94:76:20:1f:a0: c6:bb:22:4f:44:6c:92:39:89:d2:a8:6e:f6:42:fd: b8:2f:a2:d6:67:c4:32:71:b9:cd:8c:34:19:02:9f: c3:a4:1f:7d:f5:c1:99:91:c4:61:50:6a:ba:c9:a8: cd:44:8b:9d:9e:2e:88:9d:61:87:4d:52:d0:f9:50: 13:a4:03:43:1e:99:38:41:e6:c1:2a:67:fd:1e:d0: d1:2a:1d:f7:c4:06:db:6c:23:bc:f9:49:2e:d4:8e: 37:42:11:7f:6f:19:ed:80:f2:4f:4b:5c:fb:9e:58: 05:55:89:c6:55:53:02:b4:af:55:ac:31:c6:4a:05: cb:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:2E:06:51:5D:C3:D4:01:3D:0B:C1:ED:31:24:62:8D:C5:A2:0A:DA X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:d6:36:69:ce:64:58:e9:c5:25:29:85:7b:3d:64:50:16:8e: 34:58:ff:a3:92:b3:d7:5d:9b:e7:12:94:97:92:a5:13:b7:51: 3b:f2:fd:67:d9:ac:00:1e:33:08:c8:6a:d2:97:27:a6:de:8f: 1f:56:51:74:de:a9:18:9c:9d:ec:03:40:30:22:4b:b9:e5:f8: 4d:2b:88:50:b7:c7:90:d8:e7:15:79:01:6f:89:cb:42:47:1b: 4f:18:2c:31:c6:74:af:86:90:3c:c2:85:c8:12:2a:8b:bc:e0: 8d:80:04:a7:33:ce:8a:3e:21:77:3d:c3:33:2e:ae:5c:d8:41: a0:e8:91:37:6a:11:59:74:f6:42:9d:b1:f7:ca:42:48:b6:09: 46:07:4d:7c:b4:a3:d6:33:16:7c:f7:ff:0f:5f:ee:83:c6:d6: 2f:53:d7:5f:f3:70:0f:e9:76:eb:d3:e1:25:aa:43:1f:66:da: a6:c7:cc:24:63:1c:25:42:34:ad:01:85:fa:0b:58:2d:c3:7b: 7d:e0:16:c7:04:eb:ae:40:50:4e:46:34:44:a0:50:89:06:1d: e7:3f:bd:d4:c7:d4:fd:14:dd:cf:fa:e7:0a:3d:a4:7e:4c:72: b9:31:04:fa:6e:63:6b:79:22:3e:de:d3:80:ec:a7:c2:8c:d7: 48:f3:96:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUwOTE5MDA1NDIwWhcNMjUwOTI2MDA1NDIwWjAYMRYwFAYD VQQDEw02OGNjYTliYy1mZDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4Ak1VE/CqqtE8pUtee2Pgkr5MkVBCTZcm19irl1pK/aJ/OyZw2ii8W7R5x6 ni9maSsAQCrAgBQxFB4nwGJOR8tqhjanoqWJfdvcfBNgLKMCHo8Du3NwhFgMq7Po c0qPOLTzeuMgsmCuTvRusCHMXs3ruatlwDZZGOgZ8r3On3TMlHYgH6DGuyJPRGyS OYnSqG72Qv24L6LWZ8QycbnNjDQZAp/DpB999cGZkcRhUGq6yajNRIudni6InWGH TVLQ+VATpANDHpk4QebBKmf9HtDRKh33xAbbbCO8+Uku1I43QhF/bxntgPJPS1z7 nlgFVYnGVVMCtK9VrDHGSgXLXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAuBlFd w9QBPQvB7TEkYo3FograMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO1jZpzmRY6cUlKYV7PWRQFo40WP+jkrPXXZvnEpSXkqUTt1E78v1n 2awAHjMIyGrSlyem3o8fVlF03qkYnJ3sA0AwIku55fhNK4hQt8eQ2OcVeQFvictC RxtPGCwxxnSvhpA8woXIEiqLvOCNgASnM86KPiF3PcMzLq5c2EGg6JE3ahFZdPZC nbH3ykJItglGB018tKPWMxZ89/8PX+6DxtYvU9df83AP6Xbr0+ElqkMfZtqmx8wk YxwlQjStAYX6C1gtw3t94BbHBOuuQFBORjREoFCJBh3nP73Ux9T9FN3P+ucKPaR+ THK5MQT6bmNreSI+3tOA7KfCjNdI85ap -----END CERTIFICATE-----Generated at Sat Sep 20 05:02:18 2025 by rpki-client