$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: 4uz6PMdyhdXq1TRFMQ2/F7/Ezc2DffDqW+u1zJ5xQxQ= Subject key identifier: 7F:CA:B2:6A:59:E7:FE:57:60:7D:5D:20:F1:94:5B:7B:0A:5D:1E:56 Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 34B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 34B1 Signing time: Wed 20 Aug 2025 14:53:11 +0000 Manifest this update: Wed 20 Aug 2025 14:53:11 +0000 Manifest next update: Wed 27 Aug 2025 14:53:11 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: 7DVwU0ZNXqunBL4ligr+fHvNvdlxkdSVubJJ8sCvJwE=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: e40Fx6yfX6nJRx1dMJZUnN8AeYmm3aJoH7MptW5kCWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 14:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13493 (0x34b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Aug 20 14:53:11 2025 GMT Not After : Aug 27 14:53:11 2025 GMT Subject: CN=68a5e157-2cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a7:9d:d8:c4:0f:55:bb:01:e2:e7:2b:0e:1d: 4c:3e:df:1b:b3:70:4f:a0:a0:f8:e1:b3:6f:41:14: fc:8d:33:e6:dd:dd:c8:2a:f6:07:c0:54:3c:12:fb: 4e:70:27:da:68:08:52:0c:df:b3:07:60:95:82:b9: 76:ba:af:82:c8:c1:00:7d:a1:37:e5:14:95:b8:3f: e4:6b:cb:5c:25:a6:55:80:eb:6c:3c:58:6c:93:a0: 23:f2:72:b3:9a:90:26:10:d6:88:3e:bd:51:3c:11: f4:a3:37:84:02:15:15:04:20:ad:55:8f:81:7a:de: b4:d0:56:c2:86:26:51:97:e8:ea:71:c9:c2:22:9b: 9b:22:85:71:87:92:90:e7:24:2e:37:b4:c8:f2:24: 1b:b9:23:16:b2:08:f4:16:cc:2c:3a:a0:09:6a:02: c5:0f:00:d1:ac:cb:1b:e7:dd:61:37:0e:c5:7b:14: f8:dd:62:d1:92:d0:2b:98:32:f5:c7:7d:3c:57:55: 36:5e:e1:69:03:10:f7:79:c9:b9:00:26:86:f6:21: e1:9c:ea:f7:02:80:59:e1:c0:13:62:c3:8f:8f:a8: b1:1d:f1:4c:a7:e8:c3:91:f8:d2:4f:39:b7:24:0e: f9:ed:03:48:8a:11:10:0c:51:1b:59:aa:da:77:bf: 8a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:CA:B2:6A:59:E7:FE:57:60:7D:5D:20:F1:94:5B:7B:0A:5D:1E:56 X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:82:c5:97:fa:b2:5e:a4:c9:22:1e:38:6b:30:63:2b:dd:2f: 5f:51:13:37:fe:2c:3b:1f:fa:74:87:34:bd:f1:e9:4c:5a:f0: 17:5b:c1:20:7a:2e:02:34:0c:93:53:c0:04:f1:11:ac:08:60: 3a:5e:20:7a:a5:4e:26:83:2f:0a:1e:e0:c2:a1:d6:fc:53:49: 51:ec:70:6d:25:45:49:d5:8f:31:a4:bc:62:54:f0:c3:5b:74: 0f:bb:a5:1f:dc:1c:c4:48:c3:19:24:c5:70:a0:5a:fe:46:a2: 4a:00:3d:4c:39:a0:2f:cc:ca:d4:89:3f:01:44:99:25:c4:07: 53:95:bf:e3:de:c6:06:ec:d7:dd:90:ab:da:4a:0d:dd:ff:c7: 99:f0:38:fd:8a:23:9b:8a:c0:45:a9:01:43:b1:ca:1b:31:2d: 99:80:5a:98:34:d7:a4:7b:f3:2d:32:78:25:eb:e4:32:3a:7b: 9b:9b:88:9f:01:05:ea:e8:57:15:b6:ad:6d:42:39:df:e3:d8: ed:1c:2f:36:eb:a5:44:2c:55:39:bc:b1:9c:66:00:cb:ee:11: 22:6a:57:75:d5:c5:14:9c:73:64:14:19:a8:a7:89:33:80:4a: 4e:3b:c4:91:53:58:4f:e1:fb:56:39:66:83:f8:8d:62:c7:6c: 1f:d3:ab:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUwODIwMTQ1MzExWhcNMjUwODI3MTQ1MzExWjAYMRYwFAYD VQQDEw02OGE1ZTE1Ny0yY2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKed2MQPVbsB4ucrDh1MPt8bs3BPoKD44bNvQRT8jTPm3d3IKvYHwFQ8EvtO cCfaaAhSDN+zB2CVgrl2uq+CyMEAfaE35RSVuD/ka8tcJaZVgOtsPFhsk6Aj8nKz mpAmENaIPr1RPBH0ozeEAhUVBCCtVY+Bet600FbChiZRl+jqccnCIpubIoVxh5KQ 5yQuN7TI8iQbuSMWsgj0FswsOqAJagLFDwDRrMsb591hNw7FexT43WLRktArmDL1 x308V1U2XuFpAxD3ecm5ACaG9iHhnOr3AoBZ4cATYsOPj6ixHfFMp+jDkfjSTzm3 JA757QNIihEQDFEbWarad7+KpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/KsmpZ 5/5XYH1dIPGUW3sKXR5WMB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkgsWX+rJepMkiHjhrMGMr3S9fURM3/iw7H/p0hzS98elMWvAXW8Eg ei4CNAyTU8AE8RGsCGA6XiB6pU4mgy8KHuDCodb8U0lR7HBtJUVJ1Y8xpLxiVPDD W3QPu6Uf3BzESMMZJMVwoFr+RqJKAD1MOaAvzMrUiT8BRJklxAdTlb/j3sYG7Nfd kKvaSg3d/8eZ8Dj9iiObisBFqQFDscobMS2ZgFqYNNeke/MtMngl6+QyOnubm4if AQXq6FcVtq1tQjnf49jtHC8266VELFU5vLGcZgDL7hEiald11cUUnHNkFBmop4kz gEpOO8SRU1hP4ftWOWaD+I1ix2wf06vO -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:27 2025 by rpki-client