$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft File: OU6gholcbxfZNlSKMiOLgs95KU0.mft (raw, json) Hash identifier: TNHozlUmUOROri+28E4loFDO0NaxMMXmIipgQsLL7yw= Subject key identifier: 0E:BE:0D:0D:6C:05:ED:3C:46:BC:69:24:6E:26:71:DC:70:8E:62:B8 Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 0FEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft Manifest number: 0FDF Signing time: Mon 08 Sep 2025 17:31:44 +0000 Manifest this update: Mon 08 Sep 2025 17:31:43 +0000 Manifest next update: Mon 15 Sep 2025 17:31:43 +0000 Files and hashes: 1: OU6gholcbxfZNlSKMiOLgs95KU0.crl (hash: Abn5MuCLVE3zSWcCu+YEQ8Ll8EwfaeuKk2OUqcRcxjo=) 2: 68DA14E65BB211E9BF474F16C4F9AE02.roa (hash: +yhzJzGn+WxW2d4EtUHBstgfBIaoIoaYoJwg0N+/u2I=) 3: B2409F28DF9311EEBF6BC36DC4F9AE02.roa (hash: bOx/MaRmXB38ne/1h1RZYscRhBFAXmNorXwlc1KE7w8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 17:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4078 (0xfee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Sep 8 17:31:43 2025 GMT Not After : Sep 15 17:31:43 2025 GMT Subject: CN=68bf12ff-b815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:a3:cf:4a:f0:96:30:1d:16:c0:0a:fa:5a:35: 6b:a7:40:68:d6:a0:3d:67:26:c7:31:69:89:bf:e7: d4:01:f4:42:23:44:a1:a1:0d:f6:8b:ff:21:1b:94: 28:d2:9d:a5:21:6d:59:43:df:6a:49:08:0a:5c:76: 69:04:d1:59:b3:b9:d2:ac:9c:0e:eb:3a:62:96:af: 75:6c:7e:12:62:c6:5b:eb:f3:3f:94:b1:fb:f0:cf: c7:52:79:6d:6c:77:de:ec:d1:2d:ee:1d:a7:9a:df: df:61:b3:54:37:ad:70:dc:f8:16:3e:2b:bf:bd:76: bb:1b:8c:cf:68:2d:69:87:f4:09:90:46:bf:24:24: 9c:b8:02:27:c9:c2:22:cc:23:f3:a5:dc:22:a1:07: 7e:59:8d:69:77:06:37:c8:e0:63:e3:60:05:14:a3: 17:b3:b0:3c:f6:2e:81:71:fa:8b:18:04:3f:bd:ff: cb:73:0f:fb:79:fc:9a:42:87:70:45:54:41:1a:07: 1d:03:5f:56:38:e0:4d:7d:31:3b:98:52:2b:1c:09: d5:b3:ed:65:59:ca:b7:df:c1:30:43:b4:44:fd:fd: 11:fa:a2:a1:bd:0a:b9:e9:86:a1:6f:8d:40:24:0c: d6:15:23:32:57:18:36:6a:91:51:03:ed:c5:27:15: 44:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:BE:0D:0D:6C:05:ED:3C:46:BC:69:24:6E:26:71:DC:70:8E:62:B8 X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:d3:8b:1e:11:73:7d:95:19:b8:70:dd:48:85:fb:0e:61:26: 9d:bf:0d:66:6a:03:ba:77:3d:ae:4c:00:00:2c:4d:60:c6:b5: 0e:24:34:f3:45:47:a0:69:90:bf:c9:3b:8e:ae:cf:a7:0a:c0: d2:5a:2c:81:3a:0c:de:f9:af:a4:8c:97:b0:a5:0a:f0:f6:3f: bd:1c:6e:66:b2:a3:b2:10:7f:14:3e:4a:fd:43:96:88:ec:91: 06:2c:11:60:d5:f7:81:e8:b2:f2:f4:ee:74:5b:fc:6c:1d:07: 18:f4:e2:2b:dc:10:7b:c5:b2:9b:71:d4:be:04:89:d2:5b:f8: a4:cc:ee:31:e4:d0:c2:84:19:89:84:fa:b2:92:aa:dc:ac:29: 39:96:29:1e:a1:e6:5e:5b:bd:d5:df:71:54:5e:37:b9:87:1d: 1b:7a:12:7a:80:49:e0:d7:cf:ba:5b:5c:97:08:5e:60:1b:b6: 2e:1c:c3:25:25:43:8e:bf:47:bc:1d:1d:3e:03:86:15:a1:59: 57:76:f8:55:58:cd:02:e5:05:ca:d0:ad:53:cf:de:c5:25:ea: f3:d6:ea:49:53:7e:f4:61:44:44:7a:48:2f:76:56:aa:c6:c5: 86:f4:1e:e2:47:77:e3:7b:d6:78:2a:6e:80:a6:79:11:69:a0: fe:e2:87:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjUwOTA4MTczMTQzWhcNMjUwOTE1MTczMTQzWjAYMRYwFAYD VQQDEw02OGJmMTJmZi1iODE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/aPPSvCWMB0WwAr6WjVrp0Bo1qA9ZybHMWmJv+fUAfRCI0ShoQ32i/8hG5Qo 0p2lIW1ZQ99qSQgKXHZpBNFZs7nSrJwO6zpilq91bH4SYsZb6/M/lLH78M/HUnlt bHfe7NEt7h2nmt/fYbNUN61w3PgWPiu/vXa7G4zPaC1ph/QJkEa/JCScuAInycIi zCPzpdwioQd+WY1pdwY3yOBj42AFFKMXs7A89i6BcfqLGAQ/vf/Lcw/7efyaQodw RVRBGgcdA19WOOBNfTE7mFIrHAnVs+1lWcq338EwQ7RE/f0R+qKhvQq56Yahb41A JAzWFSMyVxg2apFRA+3FJxVEGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6+DQ1s Be08RrxpJG4mcdxwjmK4MB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8xNzQ4ODU1MDVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4 ZlpObFNLTWlPTGdzOTVLVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh04seEXN9lRm4cN1IhfsOYSadvw1magO6dz2uTAAALE1gxrUOJDTz RUegaZC/yTuOrs+nCsDSWiyBOgze+a+kjJewpQrw9j+9HG5msqOyEH8UPkr9Q5aI 7JEGLBFg1feB6LLy9O50W/xsHQcY9OIr3BB7xbKbcdS+BInSW/ikzO4x5NDChBmJ hPqykqrcrCk5likeoeZeW73V33FUXje5hx0behJ6gEng18+6W1yXCF5gG7YuHMMl JUOOv0e8HR0+A4YVoVlXdvhVWM0C5QXK0K1Tz97FJerz1upJU370YUREekgvdlaq xsWG9B7iR3fje9Z4Km6ApnkRaaD+4ocj -----END CERTIFICATE-----Generated at Tue Sep 9 13:35:02 2025 by rpki-client