$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft File: o222tflxI3VeVEH6xWqmu6BbCAo.mft (raw, json) Hash identifier: wf2elf43eo20ah12B4GIPNr58deK2lofM229fyBIIqI= Subject key identifier: 69:C7:F9:BD:08:A3:47:CF:FB:D2:78:27:20:BA:B8:40:60:3A:5F:23 Authority key identifier: A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A Certificate issuer: /CN=A91BD4DF/serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft Manifest number: E1 Signing time: Sun 07 Sep 2025 05:56:10 +0000 Manifest this update: Sun 07 Sep 2025 05:56:09 +0000 Manifest next update: Sun 14 Sep 2025 05:56:09 +0000 Files and hashes: 1: o222tflxI3VeVEH6xWqmu6BbCAo.crl (hash: OifMOisdEY3OkgaBX0bLUTFv23XP5Doy57H2oEdplOk=) 2: 4136642C39AA11EF933F9583C4F9AE02.roa (hash: +fFDWaDnFu7mpfAvBElCeG8uNXNIs5iwZjBDkX/SJz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:56:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD4DF, serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Validity Not Before: Sep 7 05:56:09 2025 GMT Not After : Sep 14 05:56:09 2025 GMT Subject: CN=68bd1e7a-91a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:70:15:35:2f:9a:f3:b1:a5:5d:e7:6b:de:38: f1:eb:79:29:61:91:fe:b2:3d:6c:c7:43:56:9e:3e: 19:f5:ae:b4:22:a2:81:91:d4:ab:84:07:dc:e6:81: 4e:49:0b:3a:5b:6f:e0:0a:d8:f5:7f:b5:60:51:54: 84:b8:be:a7:f4:2a:a6:3c:59:73:9e:83:04:15:b1: a9:29:45:26:d0:3a:da:81:00:eb:60:a8:9f:b1:5d: 32:83:6b:21:07:d8:0d:89:b1:3f:7b:9b:e5:61:5f: 3c:6a:f0:ab:1d:be:ec:81:6c:16:d0:b0:34:b2:e8: 69:6a:2b:e8:3b:6e:bd:5b:8f:ab:97:3c:52:a4:11: c7:8a:18:86:63:c4:95:1c:57:82:62:c6:6e:12:58: e0:9e:16:62:cb:69:44:38:85:a0:08:1f:82:79:26: d7:2d:98:d2:73:c4:de:92:af:ab:d5:8d:c0:e4:3f: 99:42:42:02:c9:b2:e3:ee:58:b3:95:6f:67:fd:98: 69:c7:f1:87:46:92:ec:fd:32:fa:42:de:45:1d:14: 12:53:d9:29:7a:60:bd:c6:e1:b2:1a:fd:0b:98:98: 38:d9:d8:7b:0d:e0:4f:d6:d8:01:6c:74:b8:dc:79: b8:d7:b3:89:b8:88:12:e8:2d:69:93:f1:8f:e7:27: 9f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C7:F9:BD:08:A3:47:CF:FB:D2:78:27:20:BA:B8:40:60:3A:5F:23 X509v3 Authority Key Identifier: keyid:A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b5:96:80:39:28:2e:c1:67:e3:f0:6a:50:cd:15:e4:f3:5e: 12:9e:7b:19:54:a1:eb:35:12:e4:e8:f8:7d:c1:ae:c8:94:a3: a7:bc:c4:56:fc:87:97:37:9a:e2:50:09:76:5b:a4:87:5b:bd: f1:44:2e:52:34:4a:85:58:bf:e4:f1:9a:72:93:00:38:7a:d9: 20:a4:c7:a5:e0:cf:44:0b:50:99:c9:31:24:77:89:9c:8a:68: f7:29:02:15:03:d7:14:62:59:b4:47:c9:19:89:98:33:eb:cf: b1:5c:c0:05:9a:60:4a:f2:7d:66:2f:e1:bd:6d:3e:6e:ee:0d: f7:4d:5f:1a:3e:d8:63:56:5b:fc:22:21:72:bc:5a:6d:7e:92: c6:e8:42:56:b2:0b:76:3e:cb:e0:19:2d:fd:01:c2:09:6b:74: 3c:b1:d7:e6:2c:10:f1:0d:40:dd:2e:ec:8f:b6:07:67:c9:47: 80:92:81:63:10:0f:64:80:93:40:58:9d:ee:96:37:74:a1:f1: 47:6a:fc:63:9f:08:b2:7a:78:50:44:15:00:d6:49:c0:38:59: 41:30:40:ad:52:af:1f:d2:46:fd:68:54:9f:43:1d:b4:f9:37: 5f:1f:e9:e0:f4:8e:70:6d:ff:86:e2:32:f5:21:ec:75:f9:a0: 49:3b:82:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ0REYxMTAvBgNVBAUTKEEzNkRCNkI1Rjk3MTIzNzU1RTU0NDFGQUM1NkFBNkJC QTA1QjA4MEEwHhcNMjUwOTA3MDU1NjA5WhcNMjUwOTE0MDU1NjA5WjAYMRYwFAYD VQQDEw02OGJkMWU3YS05MWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3AVNS+a87GlXedr3jjx63kpYZH+sj1sx0NWnj4Z9a60IqKBkdSrhAfc5oFO SQs6W2/gCtj1f7VgUVSEuL6n9CqmPFlznoMEFbGpKUUm0DragQDrYKifsV0yg2sh B9gNibE/e5vlYV88avCrHb7sgWwW0LA0suhpaivoO269W4+rlzxSpBHHihiGY8SV HFeCYsZuEljgnhZiy2lEOIWgCB+CeSbXLZjSc8Tekq+r1Y3A5D+ZQkICybLj7liz lW9n/Zhpx/GHRpLs/TL6Qt5FHRQSU9kpemC9xuGyGv0LmJg42dh7DeBP1tgBbHS4 3Hm417OJuIgS6C1pk/GP5yefdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnH+b0I o0fP+9J4JyC6uEBgOl8jMB8GA1UdIwQYMBaAFKNttrX5cSN1XlRB+sVqprugWwgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDRERi8zMTBEMzU0MjM5 OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkzVmVWRUg2eFdxbXU2QmJD QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yMjJ0Zmx4STNWZVZFSDZ4V3FtdTZCYkNBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDRERi8zMTBEMzU0MjM5OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkz VmVWRUg2eFdxbXU2QmJDQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBatZaAOSguwWfj8GpQzRXk814SnnsZVKHrNRLk6Ph9wa7IlKOnvMRW /IeXN5riUAl2W6SHW73xRC5SNEqFWL/k8ZpykwA4etkgpMel4M9EC1CZyTEkd4mc imj3KQIVA9cUYlm0R8kZiZgz68+xXMAFmmBK8n1mL+G9bT5u7g33TV8aPthjVlv8 IiFyvFptfpLG6EJWsgt2PsvgGS39AcIJa3Q8sdfmLBDxDUDdLuyPtgdnyUeAkoFj EA9kgJNAWJ3uljd0ofFHavxjnwiyenhQRBUA1knAOFlBMECtUq8f0kb9aFSfQx20 +TdfH+ng9I5wbf+G4jL1Iex1+aBJO4L4 -----END CERTIFICATE-----Generated at Mon Sep 8 00:01:41 2025 by rpki-client