$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: 1pWTuLyF1hOQjWNKEmHO49TmZaLj9JP5GvldkXKIQWI= Subject key identifier: 2F:91:3C:C5:B7:3C:1C:3E:A7:C0:AA:1F:D3:BE:B2:11:BC:27:0F:FA Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 0928 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 091B Signing time: Mon 08 Sep 2025 20:18:19 +0000 Manifest this update: Mon 08 Sep 2025 20:18:19 +0000 Manifest next update: Mon 15 Sep 2025 20:18:19 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: OZfo9AdvosFkPfMMjdhTFXihX5Gjk+QWz4CoLQAx7k0=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: jBS/1Hlfhun69e6e4ZHEVPi7ipp4H+jsjI8X7M9ZNQw=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: /W7jNuOZe0YfOd8yIagbqgnCN+PhgeGc0tSQIMsMPPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2344 (0x928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Sep 8 20:18:19 2025 GMT Not After : Sep 15 20:18:19 2025 GMT Subject: CN=68bf3a0b-26ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:56:30:f5:2d:ed:be:18:fc:50:09:b3:22:af: ca:f2:c6:67:b8:dc:03:aa:02:b2:08:4c:02:66:16: 3f:13:4d:c1:33:d7:52:5e:88:9a:36:bb:d9:1c:be: 2d:25:84:45:04:6d:23:95:8b:a2:a8:42:5d:20:df: c8:0e:71:1d:e8:64:da:f8:d1:bc:0c:24:93:c4:c7: d5:7c:97:a6:9a:52:11:a1:4a:af:7e:ba:34:2e:4d: b4:6c:da:6d:ae:32:7e:7b:49:87:35:5c:14:7e:9c: 2d:53:0f:c2:1d:c6:30:ef:96:13:98:4b:e6:80:b4: fe:8a:7e:8a:60:50:43:ee:fb:c9:2c:57:1e:db:7e: 86:27:fd:df:1e:a9:2f:82:a8:7e:53:58:63:15:9d: 99:53:2c:34:15:95:5a:a1:b4:8e:d3:52:d5:db:71: 5c:2e:86:36:9c:9b:d9:04:7e:87:07:cc:c3:0d:58: d4:dd:25:35:43:51:3c:da:14:f3:ed:e8:65:75:36: 53:78:cd:9d:51:3e:0e:a6:48:5d:5d:3b:45:a2:93: 8a:32:34:d7:86:99:cc:9a:26:e7:ab:e1:19:64:ae: 0f:9e:86:72:28:be:6c:f1:7b:02:fd:65:6d:f1:d7: 8a:2f:9a:09:73:4d:1c:5b:d3:3d:21:ad:94:d9:25: 69:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:91:3C:C5:B7:3C:1C:3E:A7:C0:AA:1F:D3:BE:B2:11:BC:27:0F:FA X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:1b:be:70:e0:82:06:b0:9c:e4:d9:40:c4:30:9e:65:5a:ec: 2f:c3:32:86:25:60:fd:e7:d8:28:27:79:d9:77:94:e4:05:29: 5d:19:12:76:30:85:3d:78:09:4d:4a:20:42:da:8b:ee:1a:07: dc:aa:1c:0f:cd:57:8d:e5:0f:83:c2:4c:77:8a:50:fc:de:4e: 97:2f:0a:e6:e9:f7:41:e6:cb:3c:d0:9d:6c:27:f6:94:df:80: f0:ad:b8:01:db:95:fb:2d:be:19:85:6f:1a:d3:95:2b:d8:59: f0:90:65:61:b3:d3:1d:49:4f:47:0f:fc:50:09:ca:84:41:32: 07:56:9c:c3:4e:f1:36:12:83:a7:d7:86:5a:e6:2c:93:97:d5: fb:64:28:7e:eb:0d:c4:2f:d4:c4:a6:8c:4a:76:77:b5:a3:f1: f7:65:a2:27:d1:71:b1:f7:f5:18:95:d2:5b:88:f8:23:c0:19: 62:85:08:58:7e:36:dc:26:f2:fb:75:f7:69:d5:57:aa:cf:fa: 6e:6b:11:f9:6a:b1:5a:0c:8f:90:10:68:c4:99:58:7d:0e:41: 55:d8:6e:c3:31:0f:c7:f8:1f:d0:92:44:79:41:ee:2c:b7:71: 89:b7:28:c9:ae:d7:95:22:97:c5:1b:a7:f0:41:a0:87:07:93: 8c:a3:90:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjUwOTA4MjAxODE5WhcNMjUwOTE1MjAxODE5WjAYMRYwFAYD VQQDEw02OGJmM2EwYi0yNmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlYw9S3tvhj8UAmzIq/K8sZnuNwDqgKyCEwCZhY/E03BM9dSXoiaNrvZHL4t JYRFBG0jlYuiqEJdIN/IDnEd6GTa+NG8DCSTxMfVfJemmlIRoUqvfro0Lk20bNpt rjJ+e0mHNVwUfpwtUw/CHcYw75YTmEvmgLT+in6KYFBD7vvJLFce236GJ/3fHqkv gqh+U1hjFZ2ZUyw0FZVaobSO01LV23FcLoY2nJvZBH6HB8zDDVjU3SU1Q1E82hTz 7ehldTZTeM2dUT4OpkhdXTtFopOKMjTXhpnMmibnq+EZZK4PnoZyKL5s8XsC/WVt 8deKL5oJc00cW9M9Ia2U2SVpFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+RPMW3 PBw+p8CqH9O+shG8Jw/6MB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeG75w4IIGsJzk2UDEMJ5lWuwvwzKGJWD959goJ3nZd5TkBSldGRJ2 MIU9eAlNSiBC2ovuGgfcqhwPzVeN5Q+Dwkx3ilD83k6XLwrm6fdB5ss80J1sJ/aU 34DwrbgB25X7Lb4ZhW8a05Ur2FnwkGVhs9MdSU9HD/xQCcqEQTIHVpzDTvE2EoOn 14Za5iyTl9X7ZCh+6w3EL9TEpoxKdne1o/H3ZaIn0XGx9/UYldJbiPgjwBlihQhY fjbcJvL7dfdp1Veqz/puaxH5arFaDI+QEGjEmVh9DkFV2G7DMQ/H+B/QkkR5Qe4s t3GJtyjJrteVIpfFG6fwQaCHB5OMo5Ab -----END CERTIFICATE-----Generated at Tue Sep 9 10:12:41 2025 by rpki-client