$ rpki-client -vvf rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft File: OIX50v0IYCg7VTgfHE9KWjoe7z8.mft (raw, json) Hash identifier: dvphEV6fjMuFHZR8yO2SWzEv6yyjRqX2BRDvuFyYThE= Subject key identifier: 30:86:B7:62:1A:5F:67:1B:80:EE:50:13:F1:96:65:65:58:5F:3D:08 Authority key identifier: 38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F Certificate issuer: /CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft Manifest number: FF Signing time: Tue 09 Sep 2025 05:11:14 +0000 Manifest this update: Tue 09 Sep 2025 05:11:14 +0000 Manifest next update: Tue 16 Sep 2025 05:11:14 +0000 Files and hashes: 1: OIX50v0IYCg7VTgfHE9KWjoe7z8.crl (hash: MI2+K/+MQusTH6J+6HyiEQj91C5uXFzvT/pPRczENOY=) 2: 744D8A1005EE11EF851FA42FC4F9AE02.roa (hash: g7/I1107TKCwjJnWd7arEQMGj8EBr7MRJOF1ZUaFXNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847C2, serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Validity Not Before: Sep 9 05:11:14 2025 GMT Not After : Sep 16 05:11:14 2025 GMT Subject: CN=68bfb6f2-2cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8d:fe:81:22:0a:0a:09:55:56:03:51:e5:07: fa:fc:a3:c9:dc:5e:e6:65:3c:3b:e6:c3:19:51:9e: 58:97:5e:a2:5e:6d:a4:49:ee:bb:ab:91:5c:f6:63: 3a:ad:ad:70:02:e6:99:a3:9e:8a:f9:6e:c0:39:f6: a0:e1:55:04:9e:b1:f4:78:0a:27:ad:3d:54:4e:7e: af:d7:86:a6:f7:fa:77:32:02:db:c3:d4:c5:6e:d6: 0c:86:ff:c2:47:27:30:6b:a1:d3:bb:3c:33:b3:5a: 6c:ff:74:7c:0b:d0:5a:fb:b5:1b:71:f2:f2:fe:37: b4:cb:64:29:ae:52:31:8d:8d:63:b8:8a:b2:82:f6: e4:25:77:dd:9b:40:67:45:93:41:78:9b:f7:ec:af: 15:3e:fa:83:69:09:47:02:12:ab:a4:fb:cc:a8:59: ab:bc:ff:b2:8a:fc:27:25:b5:ca:a4:16:61:6f:05: 83:e7:51:1d:3a:26:ac:d5:c9:91:2d:ff:b0:fc:59: f1:6c:86:e4:c4:e7:51:dd:d7:b1:fb:42:46:ee:1d: be:66:0c:af:d8:18:d7:54:94:2d:86:8b:de:be:94: bd:16:80:93:fc:50:ab:87:66:25:85:cd:cc:5a:ef: a0:f4:b3:f8:4b:66:4c:00:ce:4b:58:a2:15:11:3d: 34:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:86:B7:62:1A:5F:67:1B:80:EE:50:13:F1:96:65:65:58:5F:3D:08 X509v3 Authority Key Identifier: keyid:38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:6a:93:89:7e:80:5c:6b:9c:60:a0:c1:37:d9:37:db:9c:c2: 6e:f8:2c:bc:bf:f9:f9:b1:1c:fd:0a:48:10:f7:1a:64:17:ad: cb:78:93:57:48:cf:fa:5a:b5:e8:f2:75:1e:bf:e7:03:68:b8: d1:c0:49:67:cc:90:ca:93:fc:e5:c6:af:e2:e3:8f:e1:ed:0c: b5:a2:4c:bc:39:ad:66:8f:09:e4:e4:27:f4:6c:e0:7f:8a:13: a0:70:94:b2:db:0a:1c:c1:89:6f:5e:c4:89:8e:31:80:59:96: 20:b5:e2:2f:45:e7:de:14:97:2a:bb:70:32:97:c1:f4:f1:dc: 16:a7:30:dc:22:c6:b1:7d:73:64:b8:ef:ac:f5:98:61:4f:27: 6a:75:b3:19:94:99:66:4f:3a:ba:11:50:01:14:02:bc:0f:ba: 50:28:27:6e:12:88:0a:d5:38:4f:b5:a1:e0:34:e5:23:3e:f3: 88:69:23:82:57:0e:ce:b7:f1:39:b5:6a:24:88:bd:e5:c2:22: de:0d:38:a2:b3:3d:dd:a1:a4:11:8b:a1:65:a1:20:2c:73:93: fd:ac:14:33:71:91:d6:98:6b:b1:ef:e1:58:08:7c:5a:36:71: bd:e2:ac:47:9e:82:79:f1:a7:7e:fd:7c:ac:13:fb:92:4b:d2: 83:4b:f0:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QzIxMTAvBgNVBAUTKDM4ODVGOUQyRkQwODYwMjgzQjU1MzgxRjFDNEY0QTVB M0ExRUVGM0YwHhcNMjUwOTA5MDUxMTE0WhcNMjUwOTE2MDUxMTE0WjAYMRYwFAYD VQQDEw02OGJmYjZmMi0yY2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1o3+gSIKCglVVgNR5Qf6/KPJ3F7mZTw75sMZUZ5Yl16iXm2kSe67q5Fc9mM6 ra1wAuaZo56K+W7AOfag4VUEnrH0eAonrT1UTn6v14am9/p3MgLbw9TFbtYMhv/C Rycwa6HTuzwzs1ps/3R8C9Ba+7UbcfLy/je0y2QprlIxjY1juIqygvbkJXfdm0Bn RZNBeJv37K8VPvqDaQlHAhKrpPvMqFmrvP+yivwnJbXKpBZhbwWD51EdOias1cmR Lf+w/FnxbIbkxOdR3dex+0JG7h2+Zgyv2BjXVJQthovevpS9FoCT/FCrh2Ylhc3M Wu+g9LP4S2ZMAM5LWKIVET00dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCGt2Ia X2cbgO5QE/GWZWVYXz0IMB8GA1UdIwQYMBaAFDiF+dL9CGAoO1U4HxxPSlo6Hu8/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdDMi9COTJCRkFENDA1 RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlDZzdWVGdmSEU5S1dqb2U3 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JWDUwdjBJWUNnN1ZUZ2ZIRTlLV2pvZTd6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdDMi9COTJCRkFENDA1RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlD ZzdWVGdmSEU5S1dqb2U3ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNapOJfoBca5xgoME32TfbnMJu+Cy8v/n5sRz9CkgQ9xpkF63LeJNX SM/6WrXo8nUev+cDaLjRwElnzJDKk/zlxq/i44/h7Qy1oky8Oa1mjwnk5Cf0bOB/ ihOgcJSy2wocwYlvXsSJjjGAWZYgteIvRefeFJcqu3Ayl8H08dwWpzDcIsaxfXNk uO+s9ZhhTydqdbMZlJlmTzq6EVABFAK8D7pQKCduEogK1ThPtaHgNOUjPvOIaSOC Vw7Ot/E5tWokiL3lwiLeDTiisz3doaQRi6FloSAsc5P9rBQzcZHWmGux7+FYCHxa NnG94qxHnoJ58ad+/XysE/uSS9KDS/Cj -----END CERTIFICATE-----Generated at Tue Sep 9 18:33:37 2025 by rpki-client