$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: YVOwvLg2g++0sPq68xl2UGQ0BzMApCb8+pd7q0JoIlM= Subject key identifier: DE:B1:66:BE:43:26:E9:DA:5C:8C:1E:C4:AA:C4:6E:99:42:3A:AC:EB Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 1668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 1656 Signing time: Thu 04 Sep 2025 16:49:53 +0000 Manifest this update: Thu 04 Sep 2025 16:49:53 +0000 Manifest next update: Thu 11 Sep 2025 16:49:53 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: vZ726b3vHR9T8LAT0R5vSG7QQpSPhO6ZhOyP/rkNxTg=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: sJz6G/xstqw6p4gPUJK4gZEDHHsTgFb0oSV9wpMQ7es=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: bW1tXZTK5POt+zZDGbG4YDsox5kPeg50QnLxOuLANNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5736 (0x1668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Sep 4 16:49:53 2025 GMT Not After : Sep 11 16:49:53 2025 GMT Subject: CN=68b9c331-e7e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:01:98:8b:23:82:7e:f8:13:6c:3c:3a:19:57: 4b:52:1d:da:7c:b4:b6:86:f9:43:a0:9a:e9:42:77: fc:12:fa:85:b1:7b:a8:8e:7e:56:cf:bd:65:84:57: 9d:77:6c:bc:11:b7:06:86:c1:c2:30:8f:7f:59:22: b1:8d:83:10:17:f6:a2:43:92:00:15:56:64:91:e6: bd:8b:e4:a9:61:d8:81:3a:fc:14:3c:6d:47:a3:51: 09:49:be:ea:90:06:90:16:a5:04:0b:42:cc:b1:98: c4:4b:8b:79:9c:bf:63:3b:e5:93:72:af:fc:cd:ca: 71:44:4d:27:f9:cc:f9:91:9f:ee:f5:6b:ae:c8:6d: 6f:f3:24:66:f5:c8:31:97:90:12:82:45:9f:1b:a7: 77:93:39:f5:4c:80:ae:f3:7a:e4:d7:f1:f5:8f:bb: fe:34:52:f4:0c:1c:7f:7e:6b:cc:57:2b:49:df:30: 1a:65:bd:26:88:29:de:25:b3:e0:81:7a:4a:1b:a3: 30:d8:ce:af:83:86:22:f3:93:19:bf:da:9c:a7:34: 7a:de:48:d5:88:08:d1:a8:36:20:fb:90:22:bf:05: cd:b5:f9:f8:79:8e:df:09:ff:c2:fe:ff:85:8a:57: 56:81:13:9f:f7:7b:96:3a:bf:b1:ac:47:f0:18:98: b1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B1:66:BE:43:26:E9:DA:5C:8C:1E:C4:AA:C4:6E:99:42:3A:AC:EB X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:73:07:35:f5:8a:04:cc:8a:4b:65:5d:75:11:ae:dd:24:f3: 87:15:04:56:3c:47:66:71:4c:37:24:96:13:a1:0a:4f:5c:ae: bb:d1:06:1b:e8:9d:f1:1f:e0:46:a9:3b:34:56:de:6a:63:66: 5a:af:e5:9c:9c:0a:ad:9e:b2:e2:13:9a:b9:7b:0a:fc:47:9f: cd:96:0b:19:02:f2:6b:2e:d2:be:e3:f2:1f:87:9d:50:41:05: 4d:b1:52:85:d5:7b:fd:d5:01:5a:7c:76:d4:70:52:25:af:63: ed:74:40:26:83:db:12:16:0c:2f:98:82:80:e4:68:d7:47:94: 50:84:cd:00:2d:79:39:f1:d1:cd:71:83:b8:89:c4:f4:ec:33: 72:cf:e6:f6:21:a1:ff:6f:ba:93:c6:5f:89:74:7c:37:17:21: 4c:07:e3:71:41:54:3e:3a:0e:7a:05:59:3e:49:83:e5:52:49: 66:a2:06:8e:54:07:6f:cb:d6:a7:a9:22:a2:b3:ed:f9:68:f8: 3b:af:84:71:2c:dd:45:3e:27:d5:5a:7f:f5:2e:01:14:7e:44: 73:83:b7:28:3f:0c:14:3a:65:39:d0:94:31:b9:50:bf:5e:15: 5e:50:4f:3a:40:11:9c:03:c9:55:e2:e1:54:e3:86:11:a1:36: 33:0f:67:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjUwOTA0MTY0OTUzWhcNMjUwOTExMTY0OTUzWjAYMRYwFAYD VQQDEw02OGI5YzMzMS1lN2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gGYiyOCfvgTbDw6GVdLUh3afLS2hvlDoJrpQnf8EvqFsXuojn5Wz71lhFed d2y8EbcGhsHCMI9/WSKxjYMQF/aiQ5IAFVZkkea9i+SpYdiBOvwUPG1Ho1EJSb7q kAaQFqUEC0LMsZjES4t5nL9jO+WTcq/8zcpxRE0n+cz5kZ/u9WuuyG1v8yRm9cgx l5ASgkWfG6d3kzn1TICu83rk1/H1j7v+NFL0DBx/fmvMVytJ3zAaZb0miCneJbPg gXpKG6Mw2M6vg4Yi85MZv9qcpzR63kjViAjRqDYg+5AivwXNtfn4eY7fCf/C/v+F ildWgROf93uWOr+xrEfwGJixSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6xZr5D JunaXIwexKrEbplCOqzrMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3cwc19YoEzIpLZV11Ea7dJPOHFQRWPEdmcUw3JJYToQpPXK670QYb 6J3xH+BGqTs0Vt5qY2Zar+WcnAqtnrLiE5q5ewr8R5/NlgsZAvJrLtK+4/Ifh51Q QQVNsVKF1Xv91QFafHbUcFIlr2PtdEAmg9sSFgwvmIKA5GjXR5RQhM0ALXk58dHN cYO4icT07DNyz+b2IaH/b7qTxl+JdHw3FyFMB+NxQVQ+Og56BVk+SYPlUklmogaO VAdvy9anqSKis+35aPg7r4RxLN1FPifVWn/1LgEUfkRzg7coPwwUOmU50JQxuVC/ XhVeUE86QBGcA8lV4uFU44YRoTYzD2dg -----END CERTIFICATE-----Generated at Sat Sep 6 16:59:55 2025 by rpki-client