$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: 6Bk0gEyb15891CZzfqYTf6UIpgwaCfpkedqIuILc3bE= Subject key identifier: 06:76:DE:8F:8A:A4:35:01:81:C2:19:4A:3F:E6:80:88:F9:03:14:9E Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 01F6 Signing time: Sat 23 Aug 2025 02:35:52 +0000 Manifest this update: Sat 23 Aug 2025 02:35:52 +0000 Manifest next update: Sat 30 Aug 2025 02:35:52 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: +/5G+B4yY7aLIlVZq/0CDNdcv3RvGSQCDhDv+ymI1DY=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: KfdVVRr1UwfhsTtUMM0Ph6w9qtVR9qcrLdXdVzGndCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Aug 23 02:35:52 2025 GMT Not After : Aug 30 02:35:52 2025 GMT Subject: CN=68a92908-22ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:66:d0:5c:c1:23:aa:91:7f:e8:64:97:55:db: d6:7f:49:dd:40:6b:bf:45:62:e6:bd:2a:01:be:3c: 7b:7c:01:cf:48:57:b8:c5:d3:84:2d:2c:3b:7f:6e: f8:00:83:4a:7b:b9:9f:bc:18:1d:2a:e2:b4:7e:c1: f6:62:89:5e:f2:2f:4a:46:fb:86:78:36:65:90:e4: ea:49:5f:e5:d6:cb:9d:a5:62:76:1f:da:a9:8d:67: 2d:87:7a:35:f0:08:c1:f5:7e:c8:ef:62:6c:56:75: c5:eb:df:15:29:6b:aa:94:56:f9:38:d1:04:c7:df: 42:2c:c2:ea:bb:16:b8:f3:5b:16:b7:2f:86:63:3d: e5:a0:d2:bc:29:b0:b4:2c:31:8d:3e:82:90:39:96: 62:e0:6a:3d:1f:91:7e:b5:61:87:4f:48:88:05:f2: 80:2f:47:c0:55:c6:af:00:34:10:77:70:f2:40:fa: d8:da:1a:fd:ab:1b:ad:be:7b:0e:2d:b3:12:9d:75: 04:04:92:09:30:36:92:60:8f:b4:a1:76:31:82:28: b9:44:b0:3a:50:3b:34:21:e8:66:d3:e5:ab:b6:b2: 2f:3c:68:b4:9c:03:a6:69:09:74:4d:ec:42:a8:76: 01:63:d7:f5:5e:a9:04:d0:30:c7:89:81:8d:97:d3: 3e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:76:DE:8F:8A:A4:35:01:81:C2:19:4A:3F:E6:80:88:F9:03:14:9E X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:e0:3a:25:f9:4f:f3:38:70:1e:d8:83:37:a7:b3:26:d8:db: dd:08:0e:c0:5e:a9:13:c4:51:46:f0:3b:2b:88:42:70:e2:1b: 41:ad:26:b6:6f:f4:a8:dd:47:29:35:40:91:8c:45:61:d6:5a: 39:63:2f:32:67:2d:31:85:2f:da:b3:e7:c4:ed:92:8e:ff:e7: bb:a2:52:61:7c:0d:5c:23:9e:57:95:a1:a1:9d:fe:5e:4d:47: 54:63:4d:da:ae:12:dd:3c:2f:33:12:29:2c:e8:93:a1:b2:c3: 33:be:a1:3d:d1:9a:09:3b:d8:6c:7c:fa:b9:96:37:58:6a:5a: 61:57:5a:88:de:b0:0c:4d:a0:30:65:de:c1:5a:7d:77:c2:29: d3:c8:6b:33:90:0b:e1:18:ff:12:af:7e:fb:9a:66:51:43:5c: ab:a5:34:f3:59:7b:3c:40:ab:8b:1a:4d:84:bd:30:50:da:63: 36:35:5c:9e:f2:dc:da:69:a4:33:8a:56:f5:ca:25:4b:e6:8b: 41:87:e8:f1:28:ef:1d:b2:08:aa:2c:9c:58:58:d3:3a:83:e0: 7c:bc:01:23:3f:7b:1c:b9:eb:1d:fb:b9:b7:67:dd:c8:31:83: f1:31:13:4f:24:a4:36:fa:1b:15:27:3f:59:4b:a8:af:57:34: ef:79:28:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUwODIzMDIzNTUyWhcNMjUwODMwMDIzNTUyWjAYMRYwFAYD VQQDEw02OGE5MjkwOC0yMmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2bQXMEjqpF/6GSXVdvWf0ndQGu/RWLmvSoBvjx7fAHPSFe4xdOELSw7f274 AINKe7mfvBgdKuK0fsH2Yole8i9KRvuGeDZlkOTqSV/l1sudpWJ2H9qpjWcth3o1 8AjB9X7I72JsVnXF698VKWuqlFb5ONEEx99CLMLquxa481sWty+GYz3loNK8KbC0 LDGNPoKQOZZi4Go9H5F+tWGHT0iIBfKAL0fAVcavADQQd3DyQPrY2hr9qxutvnsO LbMSnXUEBJIJMDaSYI+0oXYxgii5RLA6UDs0Iehm0+WrtrIvPGi0nAOmaQl0TexC qHYBY9f1XqkE0DDHiYGNl9M+SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZ23o+K pDUBgcIZSj/mgIj5AxSeMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd4Dol+U/zOHAe2IM3p7Mm2NvdCA7AXqkTxFFG8DsriEJw4htBrSa2 b/So3UcpNUCRjEVh1lo5Yy8yZy0xhS/as+fE7ZKO/+e7olJhfA1cI55XlaGhnf5e TUdUY03arhLdPC8zEiks6JOhssMzvqE90ZoJO9hsfPq5ljdYalphV1qI3rAMTaAw Zd7BWn13winTyGszkAvhGP8Sr377mmZRQ1yrpTTzWXs8QKuLGk2EvTBQ2mM2NVye 8tzaaaQzilb1yiVL5otBh+jxKO8dsgiqLJxYWNM6g+B8vAEjP3scuesd+7m3Z93I MYPxMRNPJKQ2+hsVJz9ZS6ivVzTveSho -----END CERTIFICATE-----Generated at Sun Aug 24 21:48:14 2025 by rpki-client