$ rpki-client -vvf rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft File: oXkseNMOEHMKPERWHH5YIufxwvg.mft (raw, json) Hash identifier: sA9HZDs9ZidW6BDWBvyW+JDtHwsFlEKHfHmknRTl/u4= Subject key identifier: 33:F3:B8:8C:E9:68:17:5B:5C:F0:47:1F:4A:0B:76:80:33:0C:F8:3D Authority key identifier: A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 Certificate issuer: /CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Certificate serial: 088D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft Manifest number: 0881 Signing time: Mon 08 Sep 2025 20:37:15 +0000 Manifest this update: Mon 08 Sep 2025 20:37:14 +0000 Manifest next update: Mon 15 Sep 2025 20:37:14 +0000 Files and hashes: 1: oXkseNMOEHMKPERWHH5YIufxwvg.crl (hash: UDZ1/sn0Me9N3QlYFbRvXGR5PlFV3gz8Dsfs9WUsJIc=) 2: 153A3AE86A9111EF905C3C37C4F9AE02.roa (hash: LYF+KadzZ69diyD5rWiKHJlYkwO/eA/Z250K04w+xPI=) 3: AA973CB86A8B11EFB0774B61C4F9AE02.roa (hash: +w6DPiK2iGC1sFd6+H0KMfGyjFvRHYPwKc/prnzBHkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A093A, serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Validity Not Before: Sep 8 20:37:14 2025 GMT Not After : Sep 15 20:37:14 2025 GMT Subject: CN=68bf3e7b-9a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e3:e6:b5:e2:84:9c:cf:df:0a:3e:48:13:95: e6:22:c1:13:d1:cf:eb:9f:2e:c6:36:3e:6a:7f:f1: 06:bd:47:31:51:b1:07:d1:3f:08:43:53:f3:5e:3a: 2b:60:14:df:df:ea:8f:c0:b1:4a:21:99:0f:a7:a7: e6:94:f4:ed:78:af:eb:4c:f7:9a:6b:59:c3:b3:4f: 30:8f:97:ed:71:a3:84:a7:40:57:4a:7b:e8:87:f9: 34:44:2d:26:be:0c:db:91:eb:fb:03:d7:7f:6c:78: e8:45:77:c3:02:e6:93:6c:d7:ff:dc:7d:c6:e6:6d: 20:64:cd:d4:bd:ab:79:9b:66:60:6f:42:d5:2b:4c: e8:c0:77:77:36:26:ee:80:ef:11:9a:54:a4:d3:f7: 69:40:97:e7:c6:c1:52:ed:48:b2:9a:98:95:49:84: 49:12:76:f7:9d:7c:63:b1:ac:3e:44:90:b2:90:71: 9a:90:f5:73:f1:2c:c8:fa:51:8c:39:18:0d:b8:30: 9f:66:a0:64:ec:56:e8:cb:f7:6b:e6:e0:cb:b1:e5: 6a:58:47:a8:fa:d2:bb:72:35:49:b8:4a:75:98:83: 75:0c:5b:45:15:3a:a4:7e:d0:0a:c5:e6:bd:41:d2: 8b:b7:e1:b7:4b:11:80:fa:90:7e:69:58:8f:9c:dd: eb:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F3:B8:8C:E9:68:17:5B:5C:F0:47:1F:4A:0B:76:80:33:0C:F8:3D X509v3 Authority Key Identifier: keyid:A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:50:a1:da:9e:d1:46:e0:7b:c8:3e:bd:39:20:93:e6:ac:16: 3e:c1:af:e7:f0:5b:d9:fb:44:fc:97:ee:78:a8:23:8f:9e:9f: fc:df:2c:28:a8:ce:54:90:19:25:33:7e:12:bf:2b:c1:e0:12: e4:28:fd:2b:c9:00:bd:e7:e5:5f:5a:c5:b1:82:85:03:d6:b7: f0:0f:b9:a4:2b:2e:51:78:77:bc:6e:3a:92:87:21:78:da:42: 57:72:7f:f2:54:9c:49:d5:59:de:12:9b:3e:2b:c4:2a:3c:61: a2:06:f9:5f:5d:79:2a:36:1d:d8:7c:8b:2c:14:61:bf:a0:f6: ad:79:c2:e9:03:fe:33:4d:c1:6a:84:34:77:5c:c1:c8:78:4b: 0a:06:83:9b:8d:c0:23:14:ba:97:2c:bf:de:aa:80:6f:d8:03: c6:ce:ca:15:34:11:21:d7:c1:fe:c4:82:51:1a:73:9a:6c:e6: 73:5d:e3:7d:6d:64:eb:1e:3f:c7:d5:8c:30:85:df:ea:c8:17: 6d:44:66:f0:4e:76:66:7e:bf:31:60:be:d0:20:5c:56:c9:d2: 00:b8:6a:55:6e:29:48:e7:62:07:a7:47:5a:8b:f8:a2:57:e5: 3c:d5:ea:e0:8c:7a:7f:83:36:e9:90:59:60:23:1a:e7:74:53: 52:c9:8b:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5M0ExMTAvBgNVBAUTKEExNzkyQzc4RDMwRTEwNzMwQTNDNDQ1NjFDN0U1ODIy RTdGMUMyRjgwHhcNMjUwOTA4MjAzNzE0WhcNMjUwOTE1MjAzNzE0WjAYMRYwFAYD VQQDEw02OGJmM2U3Yi05YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtePmteKEnM/fCj5IE5XmIsET0c/rny7GNj5qf/EGvUcxUbEH0T8IQ1PzXjor YBTf3+qPwLFKIZkPp6fmlPTteK/rTPeaa1nDs08wj5ftcaOEp0BXSnvoh/k0RC0m vgzbkev7A9d/bHjoRXfDAuaTbNf/3H3G5m0gZM3Uvat5m2Zgb0LVK0zowHd3Nibu gO8RmlSk0/dpQJfnxsFS7UiympiVSYRJEnb3nXxjsaw+RJCykHGakPVz8SzI+lGM ORgNuDCfZqBk7Fboy/dr5uDLseVqWEeo+tK7cjVJuEp1mIN1DFtFFTqkftAKxea9 QdKLt+G3SxGA+pB+aViPnN3rGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPzuIzp aBdbXPBHH0oLdoAzDPg9MB8GA1UdIwQYMBaAFKF5LHjTDhBzCjxEVhx+WCLn8cL4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDkzQS9FQkEzNTMxRUNC RDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VITUtQRVJXSEg1WUl1Znh3 dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Ya3NlTk1PRUhNS1BFUldISDVZSXVmeHd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDkzQS9FQkEzNTMxRUNCRDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VI TUtQRVJXSEg1WUl1Znh3dmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaUKHantFG4HvIPr05IJPmrBY+wa/n8FvZ+0T8l+54qCOPnp/83ywo qM5UkBklM34SvyvB4BLkKP0ryQC95+VfWsWxgoUD1rfwD7mkKy5ReHe8bjqShyF4 2kJXcn/yVJxJ1VneEps+K8QqPGGiBvlfXXkqNh3YfIssFGG/oPatecLpA/4zTcFq hDR3XMHIeEsKBoObjcAjFLqXLL/eqoBv2APGzsoVNBEh18H+xIJRGnOabOZzXeN9 bWTrHj/H1Ywwhd/qyBdtRGbwTnZmfr8xYL7QIFxWydIAuGpVbilI52IHp0dai/ii V+U81ergjHp/gzbpkFlgIxrndFNSyYsI -----END CERTIFICATE-----Generated at Tue Sep 9 08:49:18 2025 by rpki-client