$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft File: O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json) Hash identifier: PbIewKWJItJd3ZFV5rhbhvL7uWUT+LWwumNBEa3quYk= Subject key identifier: 76:E4:BE:01:EE:5C:22:69:78:CC:9C:69:73:4C:FD:85:90:54:CD:A3 Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Certificate serial: 02E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft Manifest number: 02E0 Signing time: Wed 17 Sep 2025 01:49:22 +0000 Manifest this update: Wed 17 Sep 2025 01:49:22 +0000 Manifest next update: Wed 24 Sep 2025 01:49:22 +0000 Files and hashes: 1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: 6IX0+rCNQeV1y3gvcengVdbHsLWFUsCQjUICTT1/yog=) 2: C78C216A070211EDB5178252C4F9AE02.roa (hash: SRhZlpn7+MBKLxOuK/LxQ3OpeiTq/ZO5FLcjac1mcNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 742 (0x2e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3873, serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Validity Not Before: Sep 17 01:49:22 2025 GMT Not After : Sep 24 01:49:22 2025 GMT Subject: CN=68ca13a2-4012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:80:c0:81:f2:15:17:b8:76:c6:cd:80:38:94: 76:0c:53:7b:c0:e5:62:60:3d:52:2a:e0:ff:5a:d6: 4e:ac:c5:02:c5:6a:64:c8:39:e1:05:7c:4b:6d:ea: 80:50:14:9c:bc:bd:0f:c1:0e:a8:6d:f1:d3:86:45: c2:7c:c2:aa:25:df:1d:5d:41:74:01:81:fc:f9:aa: 6e:a7:02:a7:75:c4:d6:1f:cd:f7:db:69:d2:5c:d3: 50:c8:0f:68:a5:6a:7c:19:60:78:42:21:7c:81:e4: 2e:70:71:47:ce:1b:84:93:ca:ee:63:a7:06:9c:60: 99:70:25:51:85:2e:ac:33:aa:6a:55:f4:42:82:3c: 0b:f2:8a:b0:9e:1a:07:29:93:99:39:e3:41:d0:81: 42:4a:3e:52:88:b1:75:4e:33:c4:ee:0e:e4:f9:cd: 4d:b2:9c:dd:bb:f8:42:6a:b0:d4:ae:f2:f1:36:fe: 8e:c6:7e:a8:2e:b3:39:53:b7:d1:8c:04:7e:51:7a: b5:6a:15:5f:4b:92:24:b4:5d:55:6e:33:ff:6f:ce: 3e:39:68:bf:a6:cc:2c:e6:4f:ff:41:c0:f6:9a:c6: bf:15:46:4e:44:a2:a9:5b:14:5c:67:28:ab:4a:82: 68:d7:59:f5:df:a3:32:71:81:4c:3d:5c:0d:df:ca: 84:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E4:BE:01:EE:5C:22:69:78:CC:9C:69:73:4C:FD:85:90:54:CD:A3 X509v3 Authority Key Identifier: keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:08:db:27:07:3a:24:c6:49:35:0e:03:a8:bc:80:a6:4b:e5: 16:b5:1f:cd:d2:2f:5c:3b:a3:07:de:ff:cf:f4:c3:6d:37:b6: ec:54:45:c0:56:a1:08:24:4c:9e:82:2f:ce:02:51:83:3b:04: ec:d9:7c:ed:c4:46:67:3d:2f:4a:28:3d:44:43:a4:9f:64:1f: 2f:77:2e:87:5d:dd:9b:52:92:67:74:de:ba:52:69:cd:2b:0c: 21:21:d3:57:69:6d:e0:31:3f:11:db:e2:d8:39:72:60:dd:77: df:80:8c:20:af:b8:ea:b6:77:8b:6c:24:18:7d:e7:5d:e5:1b: 03:31:84:a2:fb:b3:ef:da:0b:65:3e:7d:f9:67:36:f1:ac:71: fd:92:91:44:46:c5:0b:f0:6d:37:12:28:83:d6:39:01:ec:fd: a9:1c:e1:96:a2:a2:70:91:8d:24:18:dd:95:cd:87:02:da:45: 7e:a1:9a:5b:f4:08:d4:c6:94:14:07:b6:d5:54:bb:45:53:1c: bb:02:6d:42:cf:d2:0c:68:54:d5:4f:b5:e2:d0:03:a4:12:35: c5:37:27:d4:9f:bb:97:ff:52:45:f6:6d:6b:57:4b:d5:ba:15: 59:4a:29:24:87:a2:eb:85:c8:59:64:2c:19:cc:39:2c:c9:b1: 5b:b1:e2:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4NzMxMTAvBgNVBAUTKDNCNDdBQTBEMDMyMDkxOTVGMDU1NUM2MEFERTMyOTRG MkQzN0EyQTEwHhcNMjUwOTE3MDE0OTIyWhcNMjUwOTI0MDE0OTIyWjAYMRYwFAYD VQQDEw02OGNhMTNhMi00MDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5IDAgfIVF7h2xs2AOJR2DFN7wOViYD1SKuD/WtZOrMUCxWpkyDnhBXxLbeqA UBScvL0PwQ6obfHThkXCfMKqJd8dXUF0AYH8+apupwKndcTWH83322nSXNNQyA9o pWp8GWB4QiF8geQucHFHzhuEk8ruY6cGnGCZcCVRhS6sM6pqVfRCgjwL8oqwnhoH KZOZOeNB0IFCSj5SiLF1TjPE7g7k+c1Nspzdu/hCarDUrvLxNv6Oxn6oLrM5U7fR jAR+UXq1ahVfS5IktF1VbjP/b84+OWi/psws5k//QcD2msa/FUZORKKpWxRcZyir SoJo11n136MycYFMPVwN38qEZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbkvgHu XCJpeMycaXNM/YWQVM2jMB8GA1UdIwQYMBaAFDtHqg0DIJGV8FVcYK3jKU8tN6Kh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzg3My8xMTJFQzE5NkZE QjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2taWHdWVnhncmVNcFR5MDNv cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08wZXFEUU1na1pYd1ZWeGdyZU1wVHkwM29xRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzg3My8xMTJFQzE5NkZEQjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2ta WHdWVnhncmVNcFR5MDNvcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKCNsnBzokxkk1DgOovICmS+UWtR/N0i9cO6MH3v/P9MNtN7bsVEXA VqEIJEyegi/OAlGDOwTs2XztxEZnPS9KKD1EQ6SfZB8vdy6HXd2bUpJndN66UmnN KwwhIdNXaW3gMT8R2+LYOXJg3XffgIwgr7jqtneLbCQYfedd5RsDMYSi+7Pv2gtl Pn35ZzbxrHH9kpFERsUL8G03EiiD1jkB7P2pHOGWoqJwkY0kGN2VzYcC2kV+oZpb 9AjUxpQUB7bVVLtFUxy7Am1Cz9IMaFTVT7Xi0AOkEjXFNyfUn7uX/1JF9m1rV0vV uhVZSikkh6LrhchZZCwZzDksybFbseLb -----END CERTIFICATE-----Generated at Thu Sep 18 20:23:24 2025 by rpki-client