$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: GSdJJMdCJTL4UbZ1xeniJNd5MLCgNSc9pUDM05qfIFk= Subject key identifier: 36:D5:C3:FD:48:08:75:16:D0:F3:18:AB:58:69:6B:53:B8:AC:8A:1E Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 02CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 02C1 Signing time: Sat 23 Aug 2025 01:42:11 +0000 Manifest this update: Sat 23 Aug 2025 01:42:11 +0000 Manifest next update: Sat 30 Aug 2025 01:42:11 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: myypPcy3/PUdg4S78+P6MeW85gKxZZh0C0dbeW4hCJM=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:42:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 717 (0x2cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Aug 23 01:42:11 2025 GMT Not After : Aug 30 01:42:11 2025 GMT Subject: CN=68a91c73-cb1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:5e:12:5b:fb:ec:7f:48:22:1b:15:63:18: 92:fc:81:ce:09:66:8c:21:92:75:d4:cf:dd:1a:7d: de:3d:60:e8:46:77:d9:73:48:a7:d8:cd:55:53:54: eb:37:29:c0:4f:8c:29:73:90:cd:55:1f:7f:f6:7d: 6d:83:fd:0e:16:12:e5:f1:1b:ac:d8:55:ae:39:68: 5d:f2:99:e4:6e:83:ff:bd:22:9a:a7:52:7d:67:21: 41:ca:fd:d7:50:49:8e:1e:c6:f6:24:61:91:bc:3c: 68:ca:36:fb:17:51:5f:72:2f:ed:7d:47:7e:5b:f1: c5:91:67:0f:58:b4:67:c2:b4:4d:fe:06:7c:05:60: 75:3a:fc:6f:fa:86:12:ca:fc:58:dd:82:9c:41:30: e7:e3:67:53:ac:34:1b:3a:21:7c:7e:22:d2:12:c9: 8f:d2:5e:bc:87:b8:69:53:a3:fd:b4:15:17:14:36: 7c:96:b0:d3:15:94:ed:a8:1c:d1:73:f8:5e:96:a8: 07:b3:c2:9a:23:b9:ba:db:99:70:96:29:97:e2:86: 86:58:99:db:d8:4f:3e:eb:54:74:25:bd:ed:ed:57: f4:12:2d:bd:e0:64:9d:31:ea:fb:f4:93:a4:27:98: b9:45:41:89:f0:f7:69:05:1e:6c:03:f6:d3:77:01: a9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D5:C3:FD:48:08:75:16:D0:F3:18:AB:58:69:6B:53:B8:AC:8A:1E X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:c3:b1:4a:2a:a7:18:b6:94:20:11:be:60:a5:55:67:eb:12: 1d:70:fe:22:2b:2f:7d:40:f5:6d:cf:6f:58:f0:e3:8d:f2:6e: f6:dd:44:fb:a6:a7:48:9b:9a:c4:f6:26:e4:dd:de:07:64:d1: 3e:ff:df:4f:2a:82:75:ee:b1:5a:ed:c1:9d:c1:84:fc:eb:8e: 03:96:ed:7b:92:1a:b4:b9:b6:cf:fd:0f:d5:f8:18:af:43:0d: 13:18:f0:6f:94:60:88:97:b5:e0:ec:07:d3:ec:33:7a:1b:f4: dc:32:46:48:e1:40:33:5c:90:da:7a:7c:b0:3c:9d:30:6d:7c: df:d0:79:c9:c5:fd:69:ed:69:f2:82:40:f8:70:f6:b3:53:df: c3:98:b1:eb:88:c2:f1:fe:fb:39:ac:d2:b8:e9:5e:cc:5a:c2: f2:47:92:b1:57:da:ae:67:d5:e7:58:11:34:b2:aa:2f:b7:c8: 2a:8f:1d:74:30:ac:f1:86:b2:f0:b4:03:cf:17:14:bd:59:4f: 68:2c:97:40:34:56:c4:6a:03:ef:47:51:00:7c:e3:4d:8a:73: 14:ee:b8:a6:44:c0:db:a7:27:5c:38:7e:5f:78:d2:ec:c2:3f: 06:7a:9e:f4:12:f2:88:43:d1:e4:37:d1:86:4a:cb:49:6c:fe: 86:0d:58:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUwODIzMDE0MjExWhcNMjUwODMwMDE0MjExWjAYMRYwFAYD VQQDEw02OGE5MWM3My1jYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoJeElv77H9IIhsVYxiS/IHOCWaMIZJ11M/dGn3ePWDoRnfZc0in2M1VU1Tr NynAT4wpc5DNVR9/9n1tg/0OFhLl8Rus2FWuOWhd8pnkboP/vSKap1J9ZyFByv3X UEmOHsb2JGGRvDxoyjb7F1Ffci/tfUd+W/HFkWcPWLRnwrRN/gZ8BWB1Ovxv+oYS yvxY3YKcQTDn42dTrDQbOiF8fiLSEsmP0l68h7hpU6P9tBUXFDZ8lrDTFZTtqBzR c/helqgHs8KaI7m625lwlimX4oaGWJnb2E8+61R0Jb3t7Vf0Ei294GSdMer79JOk J5i5RUGJ8PdpBR5sA/bTdwGpXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbVw/1I CHUW0PMYq1hpa1O4rIoeMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmw7FKKqcYtpQgEb5gpVVn6xIdcP4iKy99QPVtz29Y8OON8m723UT7 pqdIm5rE9ibk3d4HZNE+/99PKoJ17rFa7cGdwYT8644Dlu17khq0ubbP/Q/V+Biv Qw0TGPBvlGCIl7Xg7AfT7DN6G/TcMkZI4UAzXJDaenywPJ0wbXzf0HnJxf1p7Wny gkD4cPazU9/DmLHriMLx/vs5rNK46V7MWsLyR5KxV9quZ9XnWBE0sqovt8gqjx10 MKzxhrLwtAPPFxS9WU9oLJdANFbEagPvR1EAfONNinMU7rimRMDbpydcOH5feNLs wj8Gep70EvKIQ9HkN9GGSstJbP6GDVhz -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:06 2025 by rpki-client