$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft File: O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft (raw, json) Hash identifier: uHUwtIlIdxTce6vewfPNP9IlFVB8MWWmpOGbDPKR3VM= Subject key identifier: 4D:31:AF:92:F3:65:1E:DE:4F:7A:A5:E2:D9:FA:B3:43:83:52:F5:D5 Authority key identifier: 3B:A4:8C:4A:FB:00:F7:33:42:24:C0:51:53:AA:C6:F2:68:68:43:B7 Certificate issuer: /CN=A91AB92D/serialNumber=3BA48C4AFB00F7334224C05153AAC6F2686843B7 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft Manifest number: 0123 Signing time: Fri 05 Sep 2025 03:05:35 +0000 Manifest this update: Fri 05 Sep 2025 03:05:35 +0000 Manifest next update: Fri 12 Sep 2025 03:05:35 +0000 Files and hashes: 1: O6SMSvsA9zNCJMBRU6rG8mhoQ7c.crl (hash: guhbbNvFpjcnYdjyu/QTConOVfQSRXC46GoJR2E1Fjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.crl rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:05:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB92D, serialNumber=3BA48C4AFB00F7334224C05153AAC6F2686843B7 Validity Not Before: Sep 5 03:05:35 2025 GMT Not After : Sep 12 03:05:35 2025 GMT Subject: CN=68ba537f-8134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9e:cc:44:b4:df:a6:ae:c3:a4:a0:17:f7:f2: 45:b1:02:17:94:de:13:0a:0d:d7:16:76:0d:20:3e: 48:bc:f8:22:39:da:e3:43:97:b2:d3:96:32:b1:46: f6:f0:fa:ea:a9:0d:2b:32:54:ba:a5:09:db:32:1b: 1c:d9:a8:23:4b:28:e7:55:97:2e:15:03:e8:cd:12: 78:74:a0:b3:48:ae:f1:c0:31:6f:50:6f:bf:44:1a: 01:00:46:ac:ad:82:0a:74:b3:c9:2d:2b:b9:30:72: ec:33:6d:62:fa:3c:d6:d8:5b:53:9a:9b:cd:7e:0f: da:63:04:99:98:25:d7:76:71:cc:fb:37:3a:cc:d9: 77:4a:b1:d4:c2:cd:41:8f:c7:ba:0d:00:81:cd:6c: 25:9d:85:bc:a6:99:71:64:e3:f1:82:de:5f:c9:cc: 63:f8:88:15:e3:d6:9e:20:bb:c1:f0:19:22:4c:d0: ed:c2:5d:af:c5:be:7c:a7:07:28:a0:cb:54:c9:30: b9:26:99:d4:66:5b:93:74:c0:57:f9:e3:e3:c1:0d: 5a:34:14:af:b3:ad:20:0b:db:14:05:b6:48:11:7d: b6:48:36:77:4c:14:ee:c3:21:9d:0d:40:54:ea:66: d7:af:dd:22:c7:8b:8e:63:0c:f3:60:8d:d3:18:7c: ce:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:31:AF:92:F3:65:1E:DE:4F:7A:A5:E2:D9:FA:B3:43:83:52:F5:D5 X509v3 Authority Key Identifier: keyid:3B:A4:8C:4A:FB:00:F7:33:42:24:C0:51:53:AA:C6:F2:68:68:43:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:98:48:5d:ce:59:be:87:dd:b3:9f:99:a3:1e:93:37:3b:4a: 12:a8:31:7e:96:46:0c:32:49:f8:db:45:d7:85:a1:65:37:69: dd:a4:ec:73:9f:73:e2:78:bc:c6:b8:9f:7a:3d:4b:9a:5f:e4: 09:08:74:17:ce:a6:3a:fc:a0:fe:05:95:f5:64:cc:52:89:6e: bb:94:b7:8b:dd:bd:f8:ef:38:17:c3:23:9b:6b:22:06:42:7f: 1c:7a:00:90:7a:5f:8d:17:09:f6:3b:05:24:fb:0a:75:07:51: 63:fe:33:21:d1:93:0f:81:21:c6:e1:34:1b:6a:bc:d1:7a:fc: 78:60:01:26:30:11:a3:9d:6f:6e:28:cf:99:b5:83:c6:9f:7c: 6b:68:15:ab:82:49:8a:38:67:4c:2c:31:84:30:a8:20:e1:62: 36:a3:0d:61:98:b1:1d:69:85:cd:40:91:b0:af:f9:28:09:05: 6d:ec:1c:dd:31:a3:92:3e:8d:ac:e0:4f:9a:29:cc:c8:7b:16: be:a7:25:52:77:d2:e7:5e:a9:51:56:c0:c2:30:4b:51:9e:79: 9f:70:2b:09:77:53:90:bf:5f:69:c3:0b:fa:4e:77:c9:b9:67: be:92:f9:20:98:db:33:25:a5:96:0d:5d:36:f5:ff:3c:4b:a5: 33:88:b7:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5MkQxMTAvBgNVBAUTKDNCQTQ4QzRBRkIwMEY3MzM0MjI0QzA1MTUzQUFDNkYy Njg2ODQzQjcwHhcNMjUwOTA1MDMwNTM1WhcNMjUwOTEyMDMwNTM1WjAYMRYwFAYD VQQDEw02OGJhNTM3Zi04MTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr57MRLTfpq7DpKAX9/JFsQIXlN4TCg3XFnYNID5IvPgiOdrjQ5ey05YysUb2 8PrqqQ0rMlS6pQnbMhsc2agjSyjnVZcuFQPozRJ4dKCzSK7xwDFvUG+/RBoBAEas rYIKdLPJLSu5MHLsM21i+jzW2FtTmpvNfg/aYwSZmCXXdnHM+zc6zNl3SrHUws1B j8e6DQCBzWwlnYW8pplxZOPxgt5fycxj+IgV49aeILvB8BkiTNDtwl2vxb58pwco oMtUyTC5JpnUZluTdMBX+ePjwQ1aNBSvs60gC9sUBbZIEX22SDZ3TBTuwyGdDUBU 6mbXr90ix4uOYwzzYI3TGHzOCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0xr5Lz ZR7eT3ql4tn6s0ODUvXVMB8GA1UdIwQYMBaAFDukjEr7APczQiTAUVOqxvJoaEO3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjkyRC84MEI4MTcxQUNF RDExMUVFOEJGNjRCNzNDNEY5QUUwMi9PNlNNU3ZzQTl6TkNKTUJSVTZyRzhtaG9R N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL082U01TdnNBOXpOQ0pNQlJVNnJHOG1ob1E3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjkyRC84MEI4MTcxQUNFRDExMUVFOEJGNjRCNzNDNEY5QUUwMi9PNlNNU3ZzQTl6 TkNKTUJSVTZyRzhtaG9RN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSmEhdzlm+h92zn5mjHpM3O0oSqDF+lkYMMkn420XXhaFlN2ndpOxz n3PieLzGuJ96PUuaX+QJCHQXzqY6/KD+BZX1ZMxSiW67lLeL3b347zgXwyObayIG Qn8cegCQel+NFwn2OwUk+wp1B1Fj/jMh0ZMPgSHG4TQbarzRevx4YAEmMBGjnW9u KM+ZtYPGn3xraBWrgkmKOGdMLDGEMKgg4WI2ow1hmLEdaYXNQJGwr/koCQVt7Bzd MaOSPo2s4E+aKczIexa+pyVSd9LnXqlRVsDCMEtRnnmfcCsJd1OQv19pwwv6TnfJ uWe+kvkgmNszJaWWDV029f88S6UziLfX -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:52 2025 by rpki-client