$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: a2Jy2ofyq2gkoVd/LdInuAgdzKftgYezvE/BOm0lVp4= Subject key identifier: C9:20:E9:BA:9C:C4:37:52:1C:43:B2:7E:68:17:6D:01:E7:20:4A:B9 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 0140 Signing time: Thu 21 Aug 2025 04:30:06 +0000 Manifest this update: Thu 21 Aug 2025 04:30:06 +0000 Manifest next update: Thu 28 Aug 2025 04:30:06 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: jNxGfUZAlZCs3W+JM418I2Y3GXHd+C7rgQ7ssAiE/gM=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 04:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Aug 21 04:30:06 2025 GMT Not After : Aug 28 04:30:06 2025 GMT Subject: CN=68a6a0ce-fdd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e3:d5:e7:de:d2:3d:78:fa:ef:8e:d8:a0:c5: 11:23:ee:59:cf:27:7f:7c:5a:f0:64:fd:de:fb:8f: 9c:10:47:59:4e:7a:c0:c4:02:7f:db:7e:8f:01:be: 98:54:a3:f9:6a:35:5e:0e:fb:33:05:ae:5c:c2:8c: be:53:b2:6f:72:66:bf:ee:e5:b9:d8:8f:6b:77:09: 3d:c2:4a:52:4a:11:25:7c:1c:fb:2b:fe:5a:e5:83: b0:1e:63:90:c7:72:9c:89:14:7c:06:21:22:de:e3: c2:f5:a4:a3:43:ee:da:26:38:b5:e6:6c:73:ef:2f: a4:bb:11:0c:f6:12:0e:b6:e1:af:3b:9b:ab:22:ef: cd:68:69:fa:81:e5:3c:6b:57:44:43:14:36:07:fb: f5:9a:0e:72:b7:32:88:ed:7e:7f:01:2c:64:7d:58: 48:46:41:fa:b2:cb:cc:92:59:d7:6d:a5:85:02:e0: 5a:d9:7d:44:b6:d1:35:ea:c4:29:0e:25:21:d3:53: 18:a4:02:55:3d:e8:b2:c5:2e:3a:c4:f1:d5:ab:71: 03:e7:c3:a1:d6:37:5c:f2:45:5f:5c:85:b3:3b:e4: 4b:e6:92:5a:f9:35:e2:01:5d:4b:73:14:a0:54:9d: 9d:1a:41:eb:37:a5:45:fb:bf:7f:d7:05:ac:04:58: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:20:E9:BA:9C:C4:37:52:1C:43:B2:7E:68:17:6D:01:E7:20:4A:B9 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:fc:c1:2a:ea:c5:ad:5a:ee:83:6d:a3:60:76:9e:78:d5:f7: d2:f4:dc:26:74:bf:bb:c4:a2:ed:69:ae:4a:60:d9:5a:8a:81: 4d:1c:a6:01:b4:26:e6:a9:68:5a:d3:a6:02:ff:bb:b1:c8:0a: ae:25:2f:3e:5a:54:c9:86:33:73:65:1e:62:4c:2d:04:c1:8a: c9:86:88:c8:2a:09:b2:e9:45:f8:eb:e4:84:df:a3:2b:2e:ce: 7b:a1:eb:60:db:0a:ce:02:5e:e9:f9:9d:66:be:d5:0f:80:9a: 9d:27:b8:83:49:74:43:02:67:b7:d0:03:44:8a:9d:91:81:af: 27:05:e4:bb:65:87:2f:be:d8:f9:ea:3b:86:d1:0b:cb:15:95: ec:73:21:5f:da:52:cc:33:e4:74:aa:42:d4:83:16:b4:17:95: 3c:50:c9:af:85:39:33:fe:6b:b7:5d:16:fb:ed:48:a2:82:09: d4:dc:35:54:d1:f5:6d:a2:39:bf:f0:cc:a8:85:af:29:83:70: 66:0b:15:ee:4a:21:64:f4:b9:39:41:1b:33:05:84:2b:e1:6e: 92:d8:4b:81:92:2d:72:15:d0:69:cd:e8:7b:1a:b3:f2:23:ec: 1c:37:b8:56:bd:40:1b:39:cb:b5:f8:3a:c1:f9:29:3a:bc:dc: af:a8:b5:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUwODIxMDQzMDA2WhcNMjUwODI4MDQzMDA2WjAYMRYwFAYD VQQDEw02OGE2YTBjZS1mZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+PV597SPXj6747YoMURI+5Zzyd/fFrwZP3e+4+cEEdZTnrAxAJ/236PAb6Y VKP5ajVeDvszBa5cwoy+U7Jvcma/7uW52I9rdwk9wkpSShElfBz7K/5a5YOwHmOQ x3KciRR8BiEi3uPC9aSjQ+7aJji15mxz7y+kuxEM9hIOtuGvO5urIu/NaGn6geU8 a1dEQxQ2B/v1mg5ytzKI7X5/ASxkfVhIRkH6ssvMklnXbaWFAuBa2X1EttE16sQp DiUh01MYpAJVPeiyxS46xPHVq3ED58Oh1jdc8kVfXIWzO+RL5pJa+TXiAV1LcxSg VJ2dGkHrN6VF+79/1wWsBFhqEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkg6bqc xDdSHEOyfmgXbQHnIEq5MB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE/MEq6sWtWu6DbaNgdp541ffS9NwmdL+7xKLtaa5KYNlaioFNHKYB tCbmqWha06YC/7uxyAquJS8+WlTJhjNzZR5iTC0EwYrJhojIKgmy6UX46+SE36Mr Ls57oetg2wrOAl7p+Z1mvtUPgJqdJ7iDSXRDAme30ANEip2Rga8nBeS7ZYcvvtj5 6juG0QvLFZXscyFf2lLMM+R0qkLUgxa0F5U8UMmvhTkz/mu3XRb77UiiggnU3DVU 0fVtojm/8Myoha8pg3BmCxXuSiFk9Lk5QRszBYQr4W6S2EuBki1yFdBpzeh7GrPy I+wcN7hWvUAbOcu1+DrB+Sk6vNyvqLUa -----END CERTIFICATE-----Generated at Thu Aug 21 21:43:07 2025 by rpki-client