$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: xCqpjbnpRRLCdMhZ/qKK1qJWfrWae1o+mpzQXARI5TE= Subject key identifier: 94:62:DB:81:36:E3:29:62:17:0E:F4:94:51:CA:2F:E0:B1:49:B9:89 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 308A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 305C Signing time: Wed 10 Sep 2025 15:31:07 +0000 Manifest this update: Wed 10 Sep 2025 15:31:07 +0000 Manifest next update: Wed 17 Sep 2025 15:31:07 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: 6YNfdd6KghxkZLadEi325uyaXPM/lyPlJYZnyDWTdgs=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: J9SJ4DIJ/7Jqarub1sf8j6PHgZAGlGGdRbRsMiv9apI=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: 9deMiuArgkPyt65CV7Ht+L/9JKrWYVcP+qJb8LKGzOI=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: 2+WTGnYcaeWw8w6rtvBrYx7uq+JHkK1rDrCVxpG+T+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 15:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12426 (0x308a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Sep 10 15:31:07 2025 GMT Not After : Sep 17 15:31:07 2025 GMT Subject: CN=68c199bb-1bca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3f:20:33:22:0c:72:c1:b2:46:46:f2:ed:dd: 6e:65:73:78:99:a6:73:1f:2e:c3:0a:de:31:d0:1f: d8:cb:99:ff:f1:18:b6:45:d9:8e:6c:12:44:e4:12: 06:49:8a:77:df:14:0e:ff:5d:73:b4:cb:fe:fa:38: 8d:27:16:a1:80:b4:05:bf:ad:05:b9:93:72:64:87: 1c:77:0a:bb:3e:e1:36:56:f8:99:4a:0c:04:bc:c2: 3e:9d:32:ad:3a:54:96:fa:52:bb:63:ad:f6:e2:bf: c0:c4:10:3e:23:9e:7c:a4:7c:f7:a6:b0:ad:48:51: 4e:f4:54:23:cb:17:ac:81:5a:c0:b9:e5:91:7e:0c: 44:78:43:98:af:83:83:9d:49:79:80:08:08:5c:a7: 58:d6:f1:49:1e:97:0e:4a:59:1e:1a:9b:90:76:b6: 90:c5:f1:24:62:36:11:98:e5:17:1b:0c:36:54:fa: fb:31:12:88:1d:0a:f8:67:21:24:f5:22:dc:4d:6a: 8e:3e:fd:56:e4:21:ab:ed:46:bc:19:4d:64:52:a6: 72:59:cf:6b:0e:54:c7:b1:e4:67:c4:5b:f4:4f:3d: 39:dd:ac:4e:64:b3:6a:47:f7:1c:d3:fc:19:5a:a2: f6:80:3e:08:b6:10:8c:df:e7:b8:9d:0b:ea:05:8c: 73:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:62:DB:81:36:E3:29:62:17:0E:F4:94:51:CA:2F:E0:B1:49:B9:89 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:1c:f2:10:66:80:11:5e:ba:3f:8b:d2:1c:98:42:5a:6b:2a: 7c:2b:2c:98:d2:e9:3b:a4:6e:21:86:c9:eb:36:bf:4d:51:ae: a9:79:f1:8c:a6:9f:70:e2:64:e8:c7:04:10:6b:19:c0:23:86: 7e:67:94:19:bb:94:16:ba:8c:7f:89:ad:c1:a1:91:a6:67:5e: 1b:d2:7d:53:21:cc:3d:c7:fe:a2:a3:72:39:65:fb:4a:26:e8: e4:cd:22:ed:5d:05:07:7c:a9:ed:46:e5:84:29:64:44:85:74: e0:0f:08:fc:22:42:6d:5e:98:66:cd:ba:0d:65:d2:81:b0:8e: 5a:1c:7a:55:8e:7b:59:b2:d8:8f:71:7a:99:08:60:c3:70:85: fa:db:c8:da:fa:52:6f:9f:eb:c0:e4:74:7c:84:3b:d6:79:7a: 06:a5:a8:5a:dc:98:0b:d1:5c:35:3b:7f:ca:39:9c:56:24:82: 00:cb:2b:57:3d:8d:f7:8c:98:ff:c3:b4:18:b7:8c:e1:81:8a: 30:1a:67:8d:c8:57:72:ea:aa:76:89:89:32:a4:a4:88:dc:53: 5d:86:f4:23:7a:d4:d5:1c:14:7b:eb:36:24:71:7c:21:72:bd: e9:68:11:7b:fa:e9:24:ed:14:1f:2d:68:96:38:d5:2c:ca:c5: 80:a5:aa:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUwOTEwMTUzMTA3WhcNMjUwOTE3MTUzMTA3WjAYMRYwFAYD VQQDEw02OGMxOTliYi0xYmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvD8gMyIMcsGyRkby7d1uZXN4maZzHy7DCt4x0B/Yy5n/8Ri2RdmObBJE5BIG SYp33xQO/11ztMv++jiNJxahgLQFv60FuZNyZIccdwq7PuE2VviZSgwEvMI+nTKt OlSW+lK7Y6324r/AxBA+I558pHz3prCtSFFO9FQjyxesgVrAueWRfgxEeEOYr4OD nUl5gAgIXKdY1vFJHpcOSlkeGpuQdraQxfEkYjYRmOUXGww2VPr7MRKIHQr4ZyEk 9SLcTWqOPv1W5CGr7Ua8GU1kUqZyWc9rDlTHseRnxFv0Tz053axOZLNqR/cc0/wZ WqL2gD4IthCM3+e4nQvqBYxzAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRi24E2 4yliFw70lFHKL+CxSbmJMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHHPIQZoARXro/i9IcmEJaayp8KyyY0uk7pG4hhsnrNr9NUa6pefGM pp9w4mToxwQQaxnAI4Z+Z5QZu5QWuox/ia3BoZGmZ14b0n1TIcw9x/6io3I5ZftK JujkzSLtXQUHfKntRuWEKWREhXTgDwj8IkJtXphmzboNZdKBsI5aHHpVjntZstiP cXqZCGDDcIX628ja+lJvn+vA5HR8hDvWeXoGpaha3JgL0Vw1O3/KOZxWJIIAyytX PY33jJj/w7QYt4zhgYowGmeNyFdy6qp2iYkypKSI3FNdhvQjetTVHBR76zYkcXwh cr3paBF7+ukk7RQfLWiWONUsysWAparB -----END CERTIFICATE-----Generated at Thu Sep 11 19:41:28 2025 by rpki-client