$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft File: OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft (raw, json) Hash identifier: D3kA/zATAPwd9LfbQiGZF5u/sV7gAobEDMcIu8hp7Uw= Subject key identifier: FC:4A:5F:EF:6E:86:45:3E:62:6C:81:75:D2:65:37:58:6A:E6:E4:35 Authority key identifier: 38:EB:0D:8E:7A:F1:EB:18:7D:5A:A3:FC:5F:79:41:91:33:8B:DB:66 Certificate issuer: /CN=A91D0F0F/serialNumber=38EB0D8E7AF1EB187D5AA3FC5F794191338BDB66 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft Manifest number: 27 Signing time: Wed 17 Sep 2025 08:32:41 +0000 Manifest this update: Wed 17 Sep 2025 08:32:40 +0000 Manifest next update: Wed 24 Sep 2025 08:32:40 +0000 Files and hashes: 1: OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl (hash: iOzrNk8v+Y/CM+csxY/ooLihMjC+C+hbquXd79COJxk=) 2: CCD6F0DE5DE711F0BC6E0A50C4F9AE02.roa (hash: oCx5plSmqi8Rm6TAvFIAJcsQRs4OdtkOfKnCiaRUGsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0F0F, serialNumber=38EB0D8E7AF1EB187D5AA3FC5F794191338BDB66 Validity Not Before: Sep 17 08:32:40 2025 GMT Not After : Sep 24 08:32:40 2025 GMT Subject: CN=68ca7228-bab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:04:b9:77:d6:c3:24:47:6f:19:d3:f5:9e:3a: b0:83:09:6f:61:89:25:90:c0:4e:00:46:34:91:14: 66:2a:0b:a9:8d:5f:d6:8f:75:e0:79:8f:e8:49:87: f1:3d:4a:46:76:43:79:66:49:e2:2f:f1:29:16:98: 66:6d:33:77:ce:07:80:ee:f6:6e:5f:c9:7a:ae:76: bc:88:88:f8:18:7d:52:85:a9:d7:cb:95:3d:40:69: 44:e9:f6:d1:3b:a0:5f:19:e1:6a:e7:df:01:6b:7b: fe:d5:68:46:29:19:85:4a:9c:f7:85:ff:5e:4c:7e: ea:32:31:e3:3a:67:16:e1:27:8b:91:57:e8:68:86: 70:4a:c8:68:a9:39:09:8e:94:bc:04:fd:4e:27:ea: 99:18:e8:42:32:d1:b7:5a:41:f3:f8:79:31:61:38: dd:38:ea:26:f0:7e:c9:e3:a3:c4:db:9e:70:42:b9: 4c:88:01:b2:73:3c:79:84:5b:33:43:8c:4d:e6:2a: c7:19:af:87:5d:f0:2f:d3:dc:85:93:a2:fd:84:03: 03:24:74:62:d3:e3:b5:ff:36:5d:23:9a:4c:55:54: 07:b9:68:42:f6:4b:81:e3:6e:38:f5:74:47:de:85: 63:ec:77:af:cf:db:84:2e:f6:65:85:62:75:8d:fb: 8f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:4A:5F:EF:6E:86:45:3E:62:6C:81:75:D2:65:37:58:6A:E6:E4:35 X509v3 Authority Key Identifier: keyid:38:EB:0D:8E:7A:F1:EB:18:7D:5A:A3:FC:5F:79:41:91:33:8B:DB:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:ce:4c:72:01:fa:7c:07:59:26:19:ff:c3:4b:91:d3:ad:c6: 00:79:eb:3e:45:ce:2e:47:e7:1c:d0:30:34:73:af:2c:10:43: 9d:ed:46:52:83:be:f4:07:fb:1e:6e:43:9c:35:64:3d:00:ed: 2a:74:3f:a7:f8:a9:72:39:03:ee:f6:5d:b3:55:97:c9:9c:dd: 0b:84:7d:35:6a:43:fe:7e:3f:4f:79:6f:37:4f:3d:68:57:a4: 45:e0:9d:d0:7a:2e:8d:14:32:3c:29:01:f4:fe:a6:da:9c:d3: 9b:a3:d3:7a:15:5d:0f:ea:9d:6d:2f:c7:d3:ac:9d:27:fd:87: 5e:c2:b3:6d:08:10:bd:58:46:72:26:9c:7d:12:b9:c0:c7:63: c1:d2:07:81:1c:b2:61:f4:74:95:66:36:e1:6f:6d:ca:d6:fe: 71:f1:71:16:97:3e:44:75:87:c5:90:f5:ca:0c:f0:e6:b9:5f: d3:7f:e5:a4:fd:78:f7:91:bc:85:c0:4d:2d:83:f8:e6:3b:cf: c1:e7:f9:e6:01:54:41:2c:77:ce:c7:a7:38:18:8e:9a:eb:5d: c2:45:8d:06:9b:0f:31:f2:25:26:d2:59:66:d6:f4:a4:6c:cc: ab:63:88:ff:2f:fd:1e:4d:5b:be:42:36:90:1a:dd:a5:84:82: 3e:0a:1b:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEYwRjExMC8GA1UEBRMoMzhFQjBEOEU3QUYxRUIxODdENUFBM0ZDNUY3OTQxOTEz MzhCREI2NjAeFw0yNTA5MTcwODMyNDBaFw0yNTA5MjQwODMyNDBaMBgxFjAUBgNV BAMTDTY4Y2E3MjI4LWJhYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8BLl31sMkR28Z0/WeOrCDCW9hiSWQwE4ARjSRFGYqC6mNX9aPdeB5j+hJh/E9 SkZ2Q3lmSeIv8SkWmGZtM3fOB4Du9m5fyXqudryIiPgYfVKFqdfLlT1AaUTp9tE7 oF8Z4Wrn3wFre/7VaEYpGYVKnPeF/15MfuoyMeM6ZxbhJ4uRV+hohnBKyGipOQmO lLwE/U4n6pkY6EIy0bdaQfP4eTFhON046ibwfsnjo8TbnnBCuUyIAbJzPHmEWzND jE3mKscZr4dd8C/T3IWTov2EAwMkdGLT47X/Nl0jmkxVVAe5aEL2S4Hjbjj1dEfe hWPsd6/P24Qu9mWFYnWN+4+hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/Epf726G RT5ibIF10mU3WGrm5DUwHwYDVR0jBBgwFoAUOOsNjnrx6xh9WqP8X3lBkTOL22Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwRjBGLzVDMThBNjEyNURF NzExRjBBODY3OTE0RUM0RjlBRTAyL09Pc05qbnJ4NnhoOVdxUDhYM2xCa1RPTDIy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT09zTmpucng2eGg5V3FQOFgzbEJrVE9MMjJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw RjBGLzVDMThBNjEyNURFNzExRjBBODY3OTE0RUM0RjlBRTAyL09Pc05qbnJ4Nnho OVdxUDhYM2xCa1RPTDIyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAfOTHIB+nwHWSYZ/8NLkdOtxgB56z5Fzi5H5xzQMDRzrywQQ53tRlKD vvQH+x5uQ5w1ZD0A7Sp0P6f4qXI5A+72XbNVl8mc3QuEfTVqQ/5+P095bzdPPWhX pEXgndB6Lo0UMjwpAfT+ptqc05uj03oVXQ/qnW0vx9OsnSf9h17Cs20IEL1YRnIm nH0SucDHY8HSB4EcsmH0dJVmNuFvbcrW/nHxcRaXPkR1h8WQ9coM8Oa5X9N/5aT9 ePeRvIXATS2D+OY7z8Hn+eYBVEEsd87HpzgYjprrXcJFjQabDzHyJSbSWWbW9KRs zKtjiP8v/R5NW75CNpAa3aWEgj4KGwA= -----END CERTIFICATE-----Generated at Thu Sep 18 20:26:38 2025 by rpki-client