$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: fwZ+6cVeWLnzq6Ek8p8PAdjm/EHCqBfmbSikY7EtA+4= Subject key identifier: 28:1A:CD:2E:1E:27:50:32:63:80:66:D4:93:03:ED:EC:CF:85:45:5D Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 0150 Signing time: Wed 17 Sep 2025 04:50:19 +0000 Manifest this update: Wed 17 Sep 2025 04:50:19 +0000 Manifest next update: Wed 24 Sep 2025 04:50:19 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: WQHN9sOCYL8Fol8rXMskUV7hZxqoG5hTdYr6N6An9g0=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: gJAOPk4iFoIW/KqNitxUF3g+S02/W0OUx3yJyNEqzJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Sep 17 04:50:19 2025 GMT Not After : Sep 24 04:50:19 2025 GMT Subject: CN=68ca3e0b-6fb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:eb:10:77:f0:54:a7:28:c6:1a:58:ba:ac:66: b3:a0:87:1d:3a:1a:f6:12:ce:5a:d8:71:b4:94:d9: 61:f1:9f:a3:a6:0d:d3:04:ca:e3:53:22:cb:a3:14: 0f:31:a9:4a:e1:a6:8c:64:13:d4:79:2a:09:51:b1: 50:6a:0a:72:6c:d8:85:da:f4:68:d3:ad:92:f6:e9: 99:e9:b7:7d:04:cb:33:55:ef:35:b6:e9:e2:a5:b2: 05:47:d8:f8:c7:96:df:59:6a:ca:0d:ea:dd:88:02: c1:1d:83:6f:19:3c:48:86:42:b6:f5:35:57:03:5f: 65:94:33:07:82:01:09:66:b4:d1:0e:cf:5a:db:12: d2:06:6b:ab:1e:d9:92:e8:e0:60:ea:98:e4:db:8e: 47:76:94:27:e4:13:67:b1:3e:9c:dc:0b:c4:65:d3: 11:35:fa:3d:95:3f:f8:73:64:fd:34:c1:a9:c5:e5: 46:39:db:49:ed:66:32:1a:fd:4b:7a:2b:ca:50:6b: 8f:7f:3d:b1:67:ee:62:15:64:ae:d6:a9:be:3b:11: 5e:6a:63:eb:0a:fc:6c:36:bf:16:13:70:be:2c:e7: db:6f:3f:b7:69:dc:7e:b3:f9:00:2f:57:d5:9e:2e: c0:70:22:c6:83:50:42:db:63:34:d4:41:09:31:53: 5d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:1A:CD:2E:1E:27:50:32:63:80:66:D4:93:03:ED:EC:CF:85:45:5D X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:9c:7c:de:4a:16:c7:43:3a:30:d4:c0:38:25:f5:68:b4:80: 4c:cb:a4:6f:34:5d:64:21:c1:d5:81:30:ae:b4:96:1e:be:40: e4:04:d8:0f:79:0a:55:4c:ea:6e:36:f3:8f:e9:cf:35:95:65: 96:c5:4b:7c:54:02:f0:af:38:da:60:8e:cc:08:c6:c8:d4:ca: f0:c3:85:39:61:6c:b0:83:4f:92:35:3c:91:2f:f1:cf:6c:84: 49:86:f3:b6:09:79:31:31:c2:b0:fe:63:0c:4f:c7:0c:75:7b: 2d:86:8a:0a:f4:c9:6a:a2:0d:cc:90:e5:6f:a3:ad:89:a3:e5: ba:b8:d3:94:73:a5:49:a0:29:6e:52:69:92:3b:a9:0c:2a:72: 4f:e9:ab:10:09:23:1f:0b:72:a2:17:70:9d:e9:76:fa:45:bd: c5:03:5b:57:46:95:84:ba:ac:f4:f1:3c:bd:ac:41:b1:4c:b7: 5a:07:f1:77:4d:87:42:42:70:e0:25:58:08:0f:f2:97:21:7d: 8b:0a:c4:9e:e5:99:00:c1:a6:20:1e:a9:82:c3:21:2b:27:ba: c8:25:ae:c9:47:38:8a:9e:75:26:da:31:9b:9a:01:62:fd:77: c9:b8:6b:bf:bd:5e:f7:0f:07:4c:d7:18:da:f7:e8:c2:df:8f: 44:71:5a:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUwOTE3MDQ1MDE5WhcNMjUwOTI0MDQ1MDE5WjAYMRYwFAYD VQQDEw02OGNhM2UwYi02ZmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyusQd/BUpyjGGli6rGazoIcdOhr2Es5a2HG0lNlh8Z+jpg3TBMrjUyLLoxQP MalK4aaMZBPUeSoJUbFQagpybNiF2vRo062S9umZ6bd9BMszVe81tunipbIFR9j4 x5bfWWrKDerdiALBHYNvGTxIhkK29TVXA19llDMHggEJZrTRDs9a2xLSBmurHtmS 6OBg6pjk245HdpQn5BNnsT6c3AvEZdMRNfo9lT/4c2T9NMGpxeVGOdtJ7WYyGv1L eivKUGuPfz2xZ+5iFWSu1qm+OxFeamPrCvxsNr8WE3C+LOfbbz+3adx+s/kAL1fV ni7AcCLGg1BC22M01EEJMVNd+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgazS4e J1AyY4Bm1JMD7ezPhUVdMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgnHzeShbHQzow1MA4JfVotIBMy6RvNF1kIcHVgTCutJYevkDkBNgP eQpVTOpuNvOP6c81lWWWxUt8VALwrzjaYI7MCMbI1Mrww4U5YWywg0+SNTyRL/HP bIRJhvO2CXkxMcKw/mMMT8cMdXsthooK9Mlqog3MkOVvo62Jo+W6uNOUc6VJoClu UmmSO6kMKnJP6asQCSMfC3KiF3Cd6Xb6Rb3FA1tXRpWEuqz08Ty9rEGxTLdaB/F3 TYdCQnDgJVgID/KXIX2LCsSe5ZkAwaYgHqmCwyErJ7rIJa7JRziKnnUm2jGbmgFi /XfJuGu/vV73DwdM1xja9+jC349EcVpe -----END CERTIFICATE-----Generated at Fri Sep 19 05:09:25 2025 by rpki-client