$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft File: owQJVBg5BUscPhXRmD19vYp9ZII.mft (raw, json) Hash identifier: +6dqWwjEliwHNPULBpHuGZAlZzAnHne5F+OO6NS2UpY= Subject key identifier: BE:76:F9:68:EA:03:E9:7A:48:A6:1E:BA:29:ED:85:D7:98:54:4F:A9 Authority key identifier: A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 Certificate issuer: /CN=A91D9E03/serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Certificate serial: 03D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft Manifest number: 03CF Signing time: Wed 17 Sep 2025 01:03:15 +0000 Manifest this update: Wed 17 Sep 2025 01:03:15 +0000 Manifest next update: Wed 24 Sep 2025 01:03:15 +0000 Files and hashes: 1: owQJVBg5BUscPhXRmD19vYp9ZII.crl (hash: XxgZ5UbCYp64im5Vhhnh6H//wOB1ftPEz59GtblpQMc=) 2: 521DCED89C5911EC97E58855C4F9AE02.roa (hash: K/6Sxmjn7Y9RMsh3D/CkcDPEvNJggoP2DR+Gq8xtxL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 979 (0x3d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9E03, serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Validity Not Before: Sep 17 01:03:15 2025 GMT Not After : Sep 24 01:03:15 2025 GMT Subject: CN=68ca08d3-9b1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:a7:0a:7c:6d:ec:d0:a2:97:e8:17:a6:d0: 2c:04:27:3b:ac:3a:e7:e1:ab:bf:91:60:68:1f:c8: 11:9a:10:01:b0:48:47:91:25:11:23:4e:8b:90:0b: b6:e9:61:1f:bb:81:6d:19:bc:f1:df:ab:68:e9:39: 6d:93:50:f8:79:63:66:c7:3f:2e:61:59:9d:25:db: ab:ec:ef:a2:29:96:97:2d:ed:9b:00:f4:29:f8:9b: c0:74:b8:84:1b:13:6b:8a:c4:ef:02:06:0d:8b:14: 18:ae:bc:d4:23:f8:dd:fc:3e:a7:be:38:a9:31:3f: 53:70:8b:e8:6a:cf:e8:15:6a:df:01:b6:29:10:57: 6a:c9:2c:60:7b:88:7d:90:07:05:e1:fc:e4:50:18: 52:6b:04:53:df:42:14:e5:d9:f7:fa:3d:e0:5e:d9: 18:f0:1e:8c:94:bb:dc:5f:f8:8b:a0:2d:3c:7a:9b: 19:fc:eb:d2:11:07:33:73:b7:a7:e4:da:22:70:d8: f9:bd:84:ab:24:9c:18:81:78:1e:b3:42:93:3a:cc: 73:4b:48:d1:65:41:06:13:22:1f:d1:08:71:1c:4d: db:bd:a1:d5:b3:c9:58:cc:5c:dd:5d:78:c1:15:a2: 46:7e:2b:a4:9d:0f:37:04:e2:a8:2f:78:41:3f:b3: 4b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:76:F9:68:EA:03:E9:7A:48:A6:1E:BA:29:ED:85:D7:98:54:4F:A9 X509v3 Authority Key Identifier: keyid:A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:8a:4d:c1:7c:b8:d5:d1:98:9d:52:02:21:dd:95:16:59:2b: 1d:13:5b:d4:12:d8:3a:94:d8:60:2a:01:02:e4:4b:6b:6a:ec: d9:3a:4f:d6:72:4d:78:f9:21:00:37:71:f7:fb:9f:12:2d:95: dd:c9:ca:35:ae:c8:3c:52:f5:8c:47:4e:d4:55:d9:92:55:3f: 43:c1:f0:5a:b0:e8:f1:43:bc:1e:89:07:ca:3e:c9:e9:f2:e1: 31:d0:fa:a1:a0:a7:31:76:5d:bc:8c:77:2e:4d:0d:5c:75:ec: 02:c8:94:c0:5b:61:3a:bb:20:63:60:19:51:ff:e0:5b:b9:1d: aa:7b:d4:ae:74:19:6a:a6:d9:9f:4a:29:c1:02:7c:6a:45:1c: 43:9b:35:e5:d2:80:5d:31:d3:fc:97:52:3c:f1:e0:b6:42:bd: bc:db:f2:bc:78:28:c0:29:72:09:de:e4:36:9c:15:42:65:d9: 33:af:37:ae:79:53:33:14:07:51:0a:8b:4c:42:17:c4:a2:12: f5:5d:cd:7a:60:35:a3:ff:3a:93:3f:a9:fa:15:aa:c8:a4:97: 07:d6:35:35:4c:0e:10:78:c7:b0:d5:ec:fc:41:74:3f:b3:c5: 4f:20:94:f4:ab:70:4f:95:1f:bb:38:7c:dc:b3:cd:20:75:37: 4e:a6:41:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlFMDMxMTAvBgNVBAUTKEEzMDQwOTU0MTgzOTA1NEIxQzNFMTVEMTk4M0Q3REJE OEE3RDY0ODIwHhcNMjUwOTE3MDEwMzE1WhcNMjUwOTI0MDEwMzE1WjAYMRYwFAYD VQQDEw02OGNhMDhkMy05YjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE6nCnxt7NCil+gXptAsBCc7rDrn4au/kWBoH8gRmhABsEhHkSURI06LkAu2 6WEfu4FtGbzx36to6Tltk1D4eWNmxz8uYVmdJdur7O+iKZaXLe2bAPQp+JvAdLiE GxNrisTvAgYNixQYrrzUI/jd/D6nvjipMT9TcIvoas/oFWrfAbYpEFdqySxge4h9 kAcF4fzkUBhSawRT30IU5dn3+j3gXtkY8B6MlLvcX/iLoC08epsZ/OvSEQczc7en 5NoicNj5vYSrJJwYgXges0KTOsxzS0jRZUEGEyIf0QhxHE3bvaHVs8lYzFzdXXjB FaJGfiuknQ83BOKoL3hBP7NLmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL52+Wjq A+l6SKYeuinthdeYVE+pMB8GA1UdIwQYMBaAFKMECVQYOQVLHD4V0Zg9fb2KfWSC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUUwMy85OTZBN0U4ODlD NTYxMUVDQkRFRTA1NTNDNEY5QUUwMi9vd1FKVkJnNUJVc2NQaFhSbUQxOXZZcDla SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293UUpWQmc1QlVzY1BoWFJtRDE5dllwOVpJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUUwMy85OTZBN0U4ODlDNTYxMUVDQkRFRTA1NTNDNEY5QUUwMi9vd1FKVkJnNUJV c2NQaFhSbUQxOXZZcDlaSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYik3BfLjV0ZidUgIh3ZUWWSsdE1vUEtg6lNhgKgEC5EtrauzZOk/W ck14+SEAN3H3+58SLZXdyco1rsg8UvWMR07UVdmSVT9DwfBasOjxQ7weiQfKPsnp 8uEx0PqhoKcxdl28jHcuTQ1cdewCyJTAW2E6uyBjYBlR/+BbuR2qe9SudBlqptmf SinBAnxqRRxDmzXl0oBdMdP8l1I88eC2Qr282/K8eCjAKXIJ3uQ2nBVCZdkzrzeu eVMzFAdRCotMQhfEohL1Xc16YDWj/zqTP6n6FarIpJcH1jU1TA4QeMew1ez8QXQ/ s8VPIJT0q3BPlR+7OHzcs80gdTdOpkFx -----END CERTIFICATE-----Generated at Thu Sep 18 21:59:47 2025 by rpki-client