$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: z68RN/VTcBEaxXoaNjwid4A6mfn7jjry9ZWb6FPC5RM= Subject key identifier: 47:23:B7:E3:62:CD:57:62:71:96:A3:DC:59:29:28:F8:C3:C8:45:FE Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 0ACE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 0AC4 Signing time: Sun 24 Aug 2025 19:29:28 +0000 Manifest this update: Sun 24 Aug 2025 19:29:27 +0000 Manifest next update: Sun 31 Aug 2025 19:29:27 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: OqTBSkicQDQiwtk92KR7VQ7so+z33xuWgih6fNFARdk=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: iGeCqjea5TKx5w3j1RMFWZOzP6n/8IBkqpNhUcYz96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0, serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: Aug 24 19:29:27 2025 GMT Not After : Aug 31 19:29:27 2025 GMT Subject: CN=68ab6818-18e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:dd:cc:b7:22:a1:bc:63:d8:e7:1e:54:d9:25: 2d:d8:ec:d9:93:8a:a9:60:8a:b7:80:01:d4:c5:ce: 66:18:e4:71:e1:db:6e:3f:05:b8:c4:41:1b:30:b6: 16:26:7f:78:1c:88:93:a1:13:de:af:30:bd:43:db: 60:f5:8f:fa:e1:24:bb:ef:a0:59:90:bb:f2:93:a8: a5:98:31:66:00:b1:03:8b:d0:d6:5a:50:a6:f2:68: 2a:da:76:c6:4f:22:45:bb:52:58:b6:63:30:97:e1: e3:ed:c1:02:cc:ea:dc:b2:2f:df:f7:30:70:ed:7a: dc:68:92:4d:cb:26:dc:33:5c:29:03:28:e0:b0:82: 89:bf:4d:bd:46:dc:11:4d:ff:ae:0e:3c:91:e0:52: ca:07:03:9e:56:b3:a6:86:67:67:88:6f:72:a7:57: d4:74:e4:86:d6:ac:dd:f6:63:45:dd:6a:60:68:a3: d9:ee:bd:f1:f1:d2:0c:d2:2e:09:1a:2a:37:bd:8e: c2:16:57:2f:bf:a5:9e:63:1a:b8:b7:20:b9:49:c0: c1:86:ac:19:b9:9e:dd:67:be:ec:45:ed:a7:45:1a: 8d:fb:93:d6:85:07:df:1a:f4:ab:0f:0e:e9:db:b6: 0d:4b:a2:14:f7:af:f9:23:44:29:aa:f0:68:75:09: cf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:23:B7:E3:62:CD:57:62:71:96:A3:DC:59:29:28:F8:C3:C8:45:FE X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:5b:06:70:83:1a:fa:a9:f0:50:80:73:80:22:51:8f:2c:63: fe:81:9b:d7:de:e4:71:6b:c5:d9:af:c1:e1:53:6e:4c:a1:c5: 67:73:62:86:d2:b7:fa:5c:97:b1:e8:da:bf:b8:91:87:2d:06: a9:6f:2e:52:69:e0:60:f1:fb:2c:6e:ea:02:95:d9:1a:9c:69: 71:0a:ab:b1:73:b5:12:66:4c:f9:f4:5c:d3:d4:e6:c6:3b:72: 57:2a:15:ab:77:28:4a:9f:b7:ba:a9:33:d0:f2:cd:01:38:4f: d7:d1:6c:28:c2:b0:5a:84:a8:79:f3:7e:6e:c6:c1:bc:c9:c2: 10:19:4f:4a:a3:4d:39:1c:1e:c3:51:b0:a9:5e:ba:a4:8c:b1: e0:cf:51:fd:67:ca:d2:d0:54:cd:67:c8:ce:fd:b2:b6:69:e5: 25:be:44:4c:8b:24:b4:46:24:de:1b:25:c2:9d:66:cb:2d:15: 27:22:85:6c:0a:95:dc:9b:f7:11:4b:16:33:ed:31:76:05:e1: 94:e0:c5:ec:59:a4:f6:a7:55:00:9e:35:e2:04:37:b7:a9:86: fe:3f:b3:3a:e8:94:b7:94:f2:c2:e1:50:f6:c9:76:77:76:eb: d9:05:41:f5:56:66:f0:a8:7a:50:a3:91:59:8b:dc:7b:28:9d: 1e:59:aa:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjUwODI0MTkyOTI3WhcNMjUwODMxMTkyOTI3WjAYMRYwFAYD VQQDEw02OGFiNjgxOC0xOGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2N3MtyKhvGPY5x5U2SUt2OzZk4qpYIq3gAHUxc5mGORx4dtuPwW4xEEbMLYW Jn94HIiToRPerzC9Q9tg9Y/64SS776BZkLvyk6ilmDFmALEDi9DWWlCm8mgq2nbG TyJFu1JYtmMwl+Hj7cECzOrcsi/f9zBw7XrcaJJNyybcM1wpAyjgsIKJv029RtwR Tf+uDjyR4FLKBwOeVrOmhmdniG9yp1fUdOSG1qzd9mNF3WpgaKPZ7r3x8dIM0i4J Gio3vY7CFlcvv6WeYxq4tyC5ScDBhqwZuZ7dZ77sRe2nRRqN+5PWhQffGvSrDw7p 27YNS6IU96/5I0QpqvBodQnPUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcjt+Ni zVdicZaj3FkpKPjDyEX+MB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAWwZwgxr6qfBQgHOAIlGPLGP+gZvX3uRxa8XZr8HhU25MocVnc2KG 0rf6XJex6Nq/uJGHLQapby5SaeBg8fssbuoCldkanGlxCquxc7USZkz59FzT1ObG O3JXKhWrdyhKn7e6qTPQ8s0BOE/X0WwowrBahKh5835uxsG8ycIQGU9Ko005HB7D UbCpXrqkjLHgz1H9Z8rS0FTNZ8jO/bK2aeUlvkRMiyS0RiTeGyXCnWbLLRUnIoVs CpXcm/cRSxYz7TF2BeGU4MXsWaT2p1UAnjXiBDe3qYb+P7M66JS3lPLC4VD2yXZ3 duvZBUH1VmbwqHpQo5FZi9x7KJ0eWarY -----END CERTIFICATE-----Generated at Sun Aug 24 22:11:22 2025 by rpki-client