$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft File: OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft (raw, json) Hash identifier: pwJs6ltTq5xGGwrCD5rJc6t6qfcBEkvKtmA2KWpLSBM= Subject key identifier: 0F:0C:F7:35:40:79:A2:EF:55:43:92:E5:E9:B4:5D:69:EF:D2:9D:C8 Authority key identifier: 3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 Certificate issuer: /CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft Manifest number: 0152 Signing time: Fri 05 Sep 2025 04:32:29 +0000 Manifest this update: Fri 05 Sep 2025 04:32:29 +0000 Manifest next update: Fri 12 Sep 2025 04:32:29 +0000 Files and hashes: 1: OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl (hash: l2O9Tv2/8Gyg2mKkF+h0hjWlwChb2Mqh5axCAC99I2s=) 2: 67CB8C7287E711EEAC6C0B48C4F9AE02.roa (hash: F1mmz33PgwMDoRRZC6GtV9seLtgQSAErXHweDotrVWA=) 3: C1BECCFC68ED11EF85713047C4F9AE02.roa (hash: Sezt6J9wGq2uA81TOBF7C4CUuNihzkNfNyFAuKq+xQc=) 4: 675EE9DC87E711EEAC6C0B48C4F9AE02.roa (hash: drw42sYp0Yh/VWP9xaFHuMDcqO3Tii4R1NV32pLiPSM=) 5: 08310D28339011EFA4FD915FC4F9AE02.roa (hash: SpJu5nU/KENpOPLXjRvExSZV1G2bbDwfeZ2+Dj1X+E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Validity Not Before: Sep 5 04:32:29 2025 GMT Not After : Sep 12 04:32:29 2025 GMT Subject: CN=68ba67dd-d946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ec:05:50:6b:d1:5d:dc:76:3d:3a:11:1d:d5: 61:0e:0d:dc:d5:1e:04:7f:4e:ae:7e:61:b1:4c:c7: 72:06:0a:73:3c:23:3c:e8:0d:42:a7:67:1a:01:43: 60:44:25:65:2e:d7:e4:03:b9:26:5a:f5:1e:d4:68: 01:69:bb:a7:d0:bf:74:8b:ce:0d:31:53:8a:03:43: 94:76:37:00:4d:39:7c:d6:3c:62:d3:30:dd:06:88: 33:a1:ea:25:14:64:28:9b:d9:ab:75:00:d8:29:3d: 39:b0:7c:38:32:7e:c5:bf:37:bd:89:1b:e8:3b:68: 94:71:5e:af:a9:4e:af:cd:c0:1b:de:0f:7f:d9:a8: 68:e4:cb:bd:88:a1:6d:bc:9b:8a:e2:b2:3d:61:5a: 42:dd:a8:4f:d1:fa:97:c3:dd:f5:b5:bb:2c:f0:40: 06:18:19:3b:b2:fd:20:5e:5a:96:c5:e0:17:07:c6: 59:e9:6d:a2:0b:94:cc:7e:21:fa:90:7d:21:d8:6d: 5d:ca:33:1f:a4:34:3d:49:51:47:ef:45:b5:5c:4f: 0f:5e:f7:cc:c2:4e:0d:80:71:15:ce:f9:c4:a3:f8: 49:fe:c7:54:9c:3e:e4:41:24:0a:4f:96:39:33:14: 7d:33:db:ae:55:24:04:30:83:90:29:7c:08:c3:ec: c4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:0C:F7:35:40:79:A2:EF:55:43:92:E5:E9:B4:5D:69:EF:D2:9D:C8 X509v3 Authority Key Identifier: keyid:3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:10:c6:ea:97:b3:51:1a:be:ef:1c:31:32:37:88:fd:fa:b4: ab:1e:03:96:9a:93:25:07:cb:d6:c2:d9:be:9f:74:0b:0f:ee: ff:9e:1b:71:9f:02:25:9b:ab:ea:7d:3b:d5:d8:9a:98:e2:d0: a8:2e:d5:83:f7:77:a0:ee:40:27:2d:cf:27:04:49:00:9d:af: 3f:8e:9a:6e:ab:6e:8c:57:5d:07:a2:a5:3a:62:87:41:ab:36: 6a:e4:26:59:fd:10:b6:32:3b:5b:06:47:86:c5:ca:b8:06:26: b2:4a:fb:f9:cc:43:1e:e2:d0:42:52:1e:43:09:0b:e4:29:40: 6c:ad:6d:f0:b1:b7:91:a7:98:08:bc:aa:0a:7c:28:c1:fc:d1: 71:4a:e5:39:c1:05:85:8a:45:57:0f:86:18:79:6d:78:7a:17: 3f:94:ec:84:43:7f:e0:c7:2a:bf:66:5c:9a:b1:be:82:d8:ac: 4c:b2:c0:01:d6:a3:2f:e7:bc:d4:63:ff:f3:f5:c1:32:a3:f1: ed:dc:66:47:30:41:95:ed:df:b6:5b:01:04:1d:a5:97:27:99: de:bd:f5:93:0c:af:77:a9:37:ee:0f:fa:bd:e1:5a:ff:02:5b: 24:fc:37:50:8f:fc:d9:a6:ef:4b:a7:ce:1b:ed:f8:83:63:30: 2b:18:10:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDNBMTU0M0JERjM3NzJBOThEMjk0RUI5MDAyMzgwM0RE RERGMTFFNjIwHhcNMjUwOTA1MDQzMjI5WhcNMjUwOTEyMDQzMjI5WjAYMRYwFAYD VQQDEw02OGJhNjdkZC1kOTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApewFUGvRXdx2PToRHdVhDg3c1R4Ef06ufmGxTMdyBgpzPCM86A1Cp2caAUNg RCVlLtfkA7kmWvUe1GgBabun0L90i84NMVOKA0OUdjcATTl81jxi0zDdBogzoeol FGQom9mrdQDYKT05sHw4Mn7Fvze9iRvoO2iUcV6vqU6vzcAb3g9/2aho5Mu9iKFt vJuK4rI9YVpC3ahP0fqXw931tbss8EAGGBk7sv0gXlqWxeAXB8ZZ6W2iC5TMfiH6 kH0h2G1dyjMfpDQ9SVFH70W1XE8PXvfMwk4NgHEVzvnEo/hJ/sdUnD7kQSQKT5Y5 MxR9M9uuVSQEMIOQKXwIw+zEeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8M9zVA eaLvVUOS5em0XWnv0p3IMB8GA1UdIwQYMBaAFDoVQ73zdyqY0pTrkAI4A93d8R5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9FQ0ZGMkFGODg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0twalNsT3VRQWpnRDNkM3hI bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09oVkR2Zk4zS3BqU2xPdVFBamdEM2QzeEhtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9FQ0ZGMkFGODg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0tw alNsT3VRQWpnRDNkM3hIbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSEMbql7NRGr7vHDEyN4j9+rSrHgOWmpMlB8vWwtm+n3QLD+7/nhtx nwIlm6vqfTvV2JqY4tCoLtWD93eg7kAnLc8nBEkAna8/jppuq26MV10HoqU6YodB qzZq5CZZ/RC2MjtbBkeGxcq4BiaySvv5zEMe4tBCUh5DCQvkKUBsrW3wsbeRp5gI vKoKfCjB/NFxSuU5wQWFikVXD4YYeW14ehc/lOyEQ3/gxyq/Zlyasb6C2KxMssAB 1qMv57zUY//z9cEyo/Ht3GZHMEGV7d+2WwEEHaWXJ5nevfWTDK93qTfuD/q94Vr/ Alsk/DdQj/zZpu9Lp84b7fiDYzArGBAZ -----END CERTIFICATE-----Generated at Sat Sep 6 13:45:21 2025 by rpki-client