$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: OMfOz5urihCjdzJPf2zdNE5TDaaU8Xt0fT36FNNqdkM= Subject key identifier: B7:45:7F:7E:80:43:A3:7F:26:CB:F3:97:24:4E:B0:A9:63:F9:DE:D6 Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: A0 Signing time: Fri 05 Sep 2025 06:47:13 +0000 Manifest this update: Fri 05 Sep 2025 06:47:12 +0000 Manifest next update: Fri 12 Sep 2025 06:47:12 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: 9er++GnKl63XBGy5Zg969tefnqUsB8IektpGVKXCJ1s=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: X6VArMN74z4tgeDbEQQzHaT88BAEASciUle7rIza6xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: Sep 5 06:47:12 2025 GMT Not After : Sep 12 06:47:12 2025 GMT Subject: CN=68ba8770-f073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ea:82:0d:e6:d4:55:3a:51:fe:d6:e4:78:4c: 74:b0:5e:97:80:7a:dc:6b:b9:3b:80:02:57:82:1c: dd:52:9e:0c:55:de:3f:6a:4d:1d:14:09:a9:80:19: a6:4c:2e:f1:ca:8c:83:37:df:f7:2e:85:dc:6c:71: 49:ef:0e:55:5a:e6:a0:8f:78:68:64:48:99:1d:f3: f6:d3:ec:da:7b:f4:5b:6a:ef:27:0c:1d:e2:66:65: 25:ce:b3:c0:36:c4:15:6f:9f:4c:32:0a:eb:6e:d4: ed:72:07:20:3d:a2:9a:13:32:36:7f:8e:82:44:37: 0a:ce:92:47:f0:10:f7:93:37:47:0b:36:bb:94:d1: e3:f8:b2:a8:c7:2c:af:b4:e6:21:f4:86:af:ba:b2: 0b:5a:ea:70:1f:38:01:22:71:68:81:3d:4e:4c:d7: 85:1d:19:2e:31:65:ef:f8:c0:07:9e:a6:c4:92:82: 50:16:c0:7a:f5:a6:9c:48:9e:e1:6e:e8:a8:42:fa: 8f:4d:b3:15:86:5a:eb:f1:72:e5:38:36:e6:4e:7f: da:9f:23:c2:a1:8b:07:c6:7a:36:a2:ef:22:0e:39: ca:99:8b:4d:3f:6c:6f:b1:75:a9:37:25:b5:e7:85: e9:bc:07:39:fb:64:76:87:57:bd:ff:47:ab:a7:56: 05:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:45:7F:7E:80:43:A3:7F:26:CB:F3:97:24:4E:B0:A9:63:F9:DE:D6 X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:4b:15:ec:05:66:e2:22:a3:f8:d1:96:6b:22:25:fc:36:b7: 6d:a9:32:08:0c:fc:ea:4c:da:fa:ff:4b:42:27:32:fa:18:d0: 00:bf:1e:75:8a:61:d7:4e:ed:74:ad:b9:fb:31:1e:3b:2a:66: 8e:34:35:96:36:f3:34:07:85:1c:dd:0d:3d:93:ce:e7:11:a9: ce:5a:a6:f2:5b:e7:e1:53:17:c5:2c:80:0d:e6:ae:fb:79:4a: fd:14:27:5c:e6:38:69:0a:cd:3d:7c:27:7c:e0:10:4c:09:a6: 22:99:57:95:86:49:5c:8f:b5:19:22:f6:cf:92:e3:5a:27:28: 66:84:1b:52:15:b9:00:1e:cc:e9:cb:a3:b8:e8:26:e7:c2:a1: 67:23:34:73:f8:99:81:7c:18:e7:bf:0a:84:0a:5c:66:b1:32: 08:cf:1a:28:a8:de:3c:c4:2d:e0:13:36:8f:f6:9a:04:3d:b9: 48:74:54:88:b3:1e:cb:5c:19:7f:b4:d1:46:f0:6b:bf:d9:8a: 4e:bb:fe:82:2f:31:52:71:0d:db:f8:26:59:75:8c:ea:e3:e5: f6:24:fc:71:b3:20:bc:f7:69:f7:b9:44:1c:d7:45:ba:dc:b8: 7e:d9:76:d8:ab:95:29:ee:e7:09:a9:71:d2:49:ac:ab:0e:c8: 90:0d:ad:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDM5OUE3QjFGQzQyMDdFQkEwNzA3QTg1MTUxOTVDQzY4 RTgzNkFCRjgwHhcNMjUwOTA1MDY0NzEyWhcNMjUwOTEyMDY0NzEyWjAYMRYwFAYD VQQDEw02OGJhODc3MC1mMDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseqCDebUVTpR/tbkeEx0sF6XgHrca7k7gAJXghzdUp4MVd4/ak0dFAmpgBmm TC7xyoyDN9/3LoXcbHFJ7w5VWuagj3hoZEiZHfP20+zae/Rbau8nDB3iZmUlzrPA NsQVb59MMgrrbtTtcgcgPaKaEzI2f46CRDcKzpJH8BD3kzdHCza7lNHj+LKoxyyv tOYh9IavurILWupwHzgBInFogT1OTNeFHRkuMWXv+MAHnqbEkoJQFsB69aacSJ7h buioQvqPTbMVhlrr8XLlODbmTn/anyPCoYsHxno2ou8iDjnKmYtNP2xvsXWpNyW1 54XpvAc5+2R2h1e9/0erp1YFgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdFf36A Q6N/JsvzlyROsKlj+d7WMB8GA1UdIwQYMBaAFDmaex/EIH66BweoUVGVzGjoNqv4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS84RDdCOUJGMjlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zyb0hCNmhSVVpYTWFPZzJx X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS84RDdCOUJGMjlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zy b0hCNmhSVVpYTWFPZzJxX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnSxXsBWbiIqP40ZZrIiX8NrdtqTIIDPzqTNr6/0tCJzL6GNAAvx51 imHXTu10rbn7MR47KmaONDWWNvM0B4Uc3Q09k87nEanOWqbyW+fhUxfFLIAN5q77 eUr9FCdc5jhpCs09fCd84BBMCaYimVeVhklcj7UZIvbPkuNaJyhmhBtSFbkAHszp y6O46CbnwqFnIzRz+JmBfBjnvwqEClxmsTIIzxooqN48xC3gEzaP9poEPblIdFSI sx7LXBl/tNFG8Gu/2YpOu/6CLzFScQ3b+CZZdYzq4+X2JPxxsyC892n3uUQc10W6 3Lh+2XbYq5Up7ucJqXHSSayrDsiQDa27 -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:13 2025 by rpki-client