$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: CLpp597ZHuwyKMH06CXqqC6gLpYxp0eka3gxu/tS1T8= Subject key identifier: 07:AA:0C:04:AB:88:2A:FB:6C:16:24:A3:89:64:4C:25:C7:B0:6B:95 Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 0230 Signing time: Thu 21 Aug 2025 02:04:48 +0000 Manifest this update: Thu 21 Aug 2025 02:04:47 +0000 Manifest next update: Thu 28 Aug 2025 02:04:47 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: 2TxwEM+JJQvUx2Q6ciHk7GJeHnlDNAMTiy0pEFM133U=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: JUU9x04r0AO1GN2PUUX6ELgHywTKgyrE2nXs4Tcl03M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Aug 21 02:04:47 2025 GMT Not After : Aug 28 02:04:47 2025 GMT Subject: CN=68a67ebf-63b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:03:06:85:2f:2d:c6:14:b8:f0:32:2a:75:07: b1:2c:68:bf:3f:1d:46:fb:7b:77:af:f6:40:bd:c0: 13:f4:f9:59:f8:79:95:69:0c:74:a6:c3:7f:e0:2f: 3e:a2:67:bd:d0:79:98:09:0f:6b:75:fb:b2:23:bf: a9:40:78:6f:73:38:7b:72:90:63:a6:6c:3d:2d:41: 3b:2a:73:ec:7f:52:d3:00:4d:e9:60:64:1d:62:12: e1:f1:90:14:9a:cf:eb:75:20:34:fb:0d:d0:72:d6: 30:b9:e6:ba:7b:25:0f:27:2d:e4:96:e6:e1:02:b3: 24:2c:f0:a6:61:ce:41:06:c8:16:76:ac:24:8a:95: ad:2a:96:e5:50:52:a6:f6:28:fd:98:04:1f:44:53: ab:e5:03:6a:d9:3e:27:16:c9:7e:40:d7:93:fa:60: 1b:c7:c1:28:eb:a3:2a:df:16:24:f3:a2:8c:bf:f1: bc:80:84:d8:c4:d9:31:59:8e:a2:02:d3:dc:0b:99: 39:a7:d4:e4:25:18:67:62:b0:29:b8:6e:2b:ca:7e: f4:55:2d:96:d1:98:23:c5:d1:55:ff:53:54:4b:a9: f3:e0:81:6f:a4:c7:17:12:9c:6a:24:44:3a:ae:0d: 4f:31:3b:e0:1b:aa:e4:5b:72:e6:ff:ea:2d:ee:fc: 7d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AA:0C:04:AB:88:2A:FB:6C:16:24:A3:89:64:4C:25:C7:B0:6B:95 X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:f9:81:5a:74:5c:fd:6f:ce:c9:e0:5c:ed:90:6e:b7:23:5b: b4:d3:ce:bb:fd:be:d2:21:b4:13:5a:46:79:4b:87:8b:7a:cf: e3:e4:8d:2f:e7:83:48:41:8c:e0:28:1e:58:7f:d3:e1:c3:90: 58:be:3d:25:3c:ec:46:52:ef:e5:4d:46:f9:56:97:9b:53:fa: 56:84:10:17:d3:68:bc:ad:04:97:10:f7:b4:98:a2:df:a8:43: 25:f9:b0:a2:50:7f:ae:17:da:69:be:86:1b:a2:46:15:fa:78: 24:16:c2:08:14:c0:08:2f:da:d1:fc:98:d8:56:e4:08:1f:05: 7d:dd:22:22:ee:c2:75:19:ef:c6:32:9c:6d:bd:ac:fd:b0:c3: c8:1f:db:29:a0:5b:38:cc:bf:07:60:da:6f:e1:b3:c1:86:77: 22:17:68:ab:55:31:2d:bf:77:94:e3:74:65:c9:cd:73:57:c5: c6:c7:c4:12:06:f3:09:08:a9:f4:aa:70:b5:7f:ab:ed:c3:8c: af:51:16:19:44:d1:7f:f5:90:58:2c:6a:dc:eb:0c:d8:07:94: 42:c9:b0:ca:4e:e7:46:9d:3e:53:cb:38:a1:2d:82:6c:ae:72: dc:11:0e:c8:2e:f8:00:a7:dd:98:25:a0:49:36:3c:31:a9:96: b2:59:ee:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjUwODIxMDIwNDQ3WhcNMjUwODI4MDIwNDQ3WjAYMRYwFAYD VQQDEw02OGE2N2ViZi02M2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwMGhS8txhS48DIqdQexLGi/Px1G+3t3r/ZAvcAT9PlZ+HmVaQx0psN/4C8+ ome90HmYCQ9rdfuyI7+pQHhvczh7cpBjpmw9LUE7KnPsf1LTAE3pYGQdYhLh8ZAU ms/rdSA0+w3QctYwuea6eyUPJy3klubhArMkLPCmYc5BBsgWdqwkipWtKpblUFKm 9ij9mAQfRFOr5QNq2T4nFsl+QNeT+mAbx8Eo66Mq3xYk86KMv/G8gITYxNkxWY6i AtPcC5k5p9TkJRhnYrApuG4ryn70VS2W0ZgjxdFV/1NUS6nz4IFvpMcXEpxqJEQ6 rg1PMTvgG6rkW3Lm/+ot7vx9lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeqDASr iCr7bBYko4lkTCXHsGuVMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu+YFadFz9b87J4FztkG63I1u00867/b7SIbQTWkZ5S4eLes/j5I0v 54NIQYzgKB5Yf9Phw5BYvj0lPOxGUu/lTUb5VpebU/pWhBAX02i8rQSXEPe0mKLf qEMl+bCiUH+uF9ppvoYbokYV+ngkFsIIFMAIL9rR/JjYVuQIHwV93SIi7sJ1Ge/G Mpxtvaz9sMPIH9spoFs4zL8HYNpv4bPBhnciF2irVTEtv3eU43Rlyc1zV8XGx8QS BvMJCKn0qnC1f6vtw4yvURYZRNF/9ZBYLGrc6wzYB5RCybDKTudGnT5TyzihLYJs rnLcEQ7ILvgAp92YJaBJNjwxqZayWe7e -----END CERTIFICATE-----Generated at Fri Aug 22 16:32:11 2025 by rpki-client