$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: bfLqF0M7MWl4nUjFO7h3P69A8WpZHYmaVwAKL2QrmIc= Subject key identifier: FF:D9:CD:7B:A2:98:BE:1D:5D:AA:1B:E5:39:84:9B:E3:AB:83:84:30 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 358D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 352D Signing time: Sun 24 Aug 2025 14:48:35 +0000 Manifest this update: Sun 24 Aug 2025 14:48:34 +0000 Manifest next update: Sun 31 Aug 2025 14:48:34 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: phQLZmceE41pOOB5OD2zBiEg4mEeXeNc5A1pkluRkhY=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: K9GG+06i99foR/2RXGf0/I8Kvx2roZu5heq1VZdQ+OI=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: IyDQYJrM5fIKR+ASJpDKeAtN9Kfn9iiroq8ekuZROvU=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: JsgxM7O87UBNAKRhO7z2ipB7o5ZRGqkbp9Qr0swNUZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13709 (0x358d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Aug 24 14:48:34 2025 GMT Not After : Aug 31 14:48:34 2025 GMT Subject: CN=68ab2642-018e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8b:d7:8e:e4:92:f5:7a:ec:83:f9:67:18:f1: 5b:31:f7:0c:e7:f8:8a:86:3c:a4:0c:59:28:7a:21: 34:f5:36:3d:99:c6:3e:4d:89:42:7a:72:a7:a5:78: 4b:07:b4:15:dd:9e:fc:0e:0b:40:b4:2a:f0:05:ed: 67:3d:2a:6f:ad:87:5c:a1:99:da:1c:b9:e2:ca:32: fa:c1:f1:70:50:5a:8a:f1:b6:6c:d4:12:3e:06:63: 19:85:88:4d:ab:92:c2:c2:cf:9d:9a:49:42:75:02: a4:40:5a:46:f5:e8:e3:91:ca:5e:0a:af:e6:d5:8e: 3e:66:2a:47:59:98:18:f0:5b:fd:7a:e9:bc:57:fe: 06:f2:a2:26:00:e5:7b:79:08:09:3f:14:89:78:bd: f9:db:04:ad:b4:be:3b:3b:55:8e:27:04:e4:88:8c: 52:96:38:ee:e1:39:fd:ca:e7:c2:77:33:4d:12:75: 0d:0f:93:fd:41:ad:8b:7a:7a:12:4d:c9:f4:bd:07: f8:21:3f:42:d5:fb:32:6a:90:71:68:06:34:1c:64: f7:23:a7:c3:48:da:f7:63:d1:75:0e:d1:7c:54:db: 23:55:85:6d:55:2e:6f:81:9e:32:d0:af:45:d6:65: 58:0e:a6:01:b8:06:7a:e0:83:b7:12:8d:4a:99:ca: c9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:D9:CD:7B:A2:98:BE:1D:5D:AA:1B:E5:39:84:9B:E3:AB:83:84:30 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:65:15:d1:c1:5a:09:00:68:3d:b2:f4:3c:af:e3:94:3b:d5: 27:33:cb:da:16:5b:25:90:28:32:88:27:a6:8f:5b:5e:29:ee: 55:00:f3:bc:a8:0c:12:c6:ff:e5:11:f3:14:39:d7:e5:1e:cd: 24:e6:65:47:e9:10:bf:c0:20:0a:4a:c2:dc:35:b0:1a:13:18: 3d:df:ef:42:b0:04:d5:61:6f:f1:c4:c1:af:e9:a7:ba:f5:f5: e3:4f:3d:72:78:22:5e:85:60:4a:ad:2d:fd:d6:e6:36:fb:9f: ce:61:9a:56:21:e2:ab:e7:70:d4:47:56:bb:95:51:79:00:87: 82:34:47:f4:2f:1d:6c:db:46:0b:93:c8:fc:49:54:77:6a:c9: d5:fe:29:18:2b:a1:c6:88:1a:ab:6f:c3:96:55:dc:e7:e0:25: 6a:8d:b7:c3:ff:75:4d:16:ec:c9:dc:4a:61:f6:92:c7:d1:79: e4:95:5d:94:ba:44:91:57:23:9d:0d:47:0b:29:ae:21:89:2d: 54:6a:90:a7:34:69:ff:47:35:1b:36:d3:d1:8e:af:3b:68:dc: 30:c3:1b:5f:8c:a8:ee:52:1f:b5:ff:58:d3:ef:79:96:f8:9a: d0:49:27:a3:41:81:87:cf:a1:03:83:56:c1:c1:0e:84:3b:f5: e2:f3:eb:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUwODI0MTQ0ODM0WhcNMjUwODMxMTQ0ODM0WjAYMRYwFAYD VQQDEw02OGFiMjY0Mi0wMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34vXjuSS9Xrsg/lnGPFbMfcM5/iKhjykDFkoeiE09TY9mcY+TYlCenKnpXhL B7QV3Z78DgtAtCrwBe1nPSpvrYdcoZnaHLniyjL6wfFwUFqK8bZs1BI+BmMZhYhN q5LCws+dmklCdQKkQFpG9ejjkcpeCq/m1Y4+ZipHWZgY8Fv9eum8V/4G8qImAOV7 eQgJPxSJeL352wSttL47O1WOJwTkiIxSljju4Tn9yufCdzNNEnUND5P9Qa2LenoS Tcn0vQf4IT9C1fsyapBxaAY0HGT3I6fDSNr3Y9F1DtF8VNsjVYVtVS5vgZ4y0K9F 1mVYDqYBuAZ64IO3Eo1KmcrJBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/ZzXui mL4dXaob5TmEm+Org4QwMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSZRXRwVoJAGg9svQ8r+OUO9UnM8vaFlslkCgyiCemj1teKe5VAPO8 qAwSxv/lEfMUOdflHs0k5mVH6RC/wCAKSsLcNbAaExg93+9CsATVYW/xxMGv6ae6 9fXjTz1yeCJehWBKrS391uY2+5/OYZpWIeKr53DUR1a7lVF5AIeCNEf0Lx1s20YL k8j8SVR3asnV/ikYK6HGiBqrb8OWVdzn4CVqjbfD/3VNFuzJ3Eph9pLH0XnklV2U ukSRVyOdDUcLKa4hiS1UapCnNGn/RzUbNtPRjq87aNwwwxtfjKjuUh+1/1jT73mW +JrQSSejQYGHz6EDg1bBwQ6EO/Xi8+tL -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:59 2025 by rpki-client