$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft File: onKsr-j6pPKpcApvwRQlkIx0PUs.mft (raw, json) Hash identifier: eU2BLd7ePuERkZN1viA7saStjCiTDc9ayx+4hk/Fw+M= Subject key identifier: 48:6F:EB:1E:8B:7D:85:85:40:BF:76:B7:CD:F7:12:1B:7C:ED:BE:C5 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0AE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft Manifest number: 0A95 Signing time: Mon 08 Sep 2025 19:42:45 +0000 Manifest this update: Mon 08 Sep 2025 19:42:44 +0000 Manifest next update: Mon 15 Sep 2025 19:42:44 +0000 Files and hashes: 1: onKsr-j6pPKpcApvwRQlkIx0PUs.crl (hash: EDn6guDaz6Mny6tVdM0AdiDSZOCu3P3KicT734ei6oA=) 2: 879C6CC6BC0A11EF8387A57BC4F9AE02.roa (hash: GD8TE1iM2Ym7f93p/1VYDkqCG50V4KFtJCkioUpH7AI=) 3: B379B0346F4711EA81200366C4F9AE02.roa (hash: 34aVw5Rt72hNPVd0d/UxB/shSl9fnFPWjJTO5/uz5ZU=) 4: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (hash: 5hsatirdoTAMt8sVP/32NV6rGnCIOasP2d6dKTsMLr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 19:42:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Sep 8 19:42:44 2025 GMT Not After : Sep 15 19:42:44 2025 GMT Subject: CN=68bf31b4-69e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ab:9a:14:1c:53:77:f6:53:af:6a:04:99:c6: 41:7a:a6:92:c2:b8:57:c4:41:ff:29:b6:b4:82:82: b2:fe:b5:0f:72:82:38:f0:dc:64:3e:27:38:08:03: 50:de:a9:5c:8e:ad:f4:ed:8a:3f:5d:8c:b2:84:24: 0d:9f:07:1a:bc:a6:1b:4d:25:6d:cf:dd:19:ff:68: 8e:17:63:0a:3e:bd:dd:cd:00:1c:b1:cf:c4:95:ee: 11:22:dd:60:9b:f3:43:04:c2:9e:44:d7:8a:2e:54: 7d:f0:c0:26:f3:3a:1e:5f:78:9c:a5:7f:ab:70:3f: 8d:59:e3:8c:16:bb:f8:ef:92:99:4a:2f:cd:26:bf: b5:61:57:7c:ce:72:11:48:8f:a1:f5:f9:c9:5d:a6: 4f:00:0e:43:95:60:6f:b0:6d:7f:fc:40:f5:98:ff: 14:b2:90:24:23:c0:a9:34:cd:ea:23:da:18:c2:17: 2f:8e:eb:95:35:50:9f:be:b0:2e:97:02:fc:f5:f8: b7:d6:3a:5b:cf:98:dd:76:95:c6:ad:1a:ad:4f:6b: 66:01:15:8e:6a:38:29:51:1a:57:c4:0f:30:fc:2f: ab:f7:77:32:d6:29:78:c0:44:ae:8c:a2:ae:77:de: 4f:81:00:a4:ea:a5:33:61:6f:2c:b1:53:2a:95:8c: 06:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:6F:EB:1E:8B:7D:85:85:40:BF:76:B7:CD:F7:12:1B:7C:ED:BE:C5 X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:2c:75:88:96:57:27:45:36:d7:ed:4c:0b:c2:52:df:4a:b3: 20:98:65:3f:02:c9:16:f2:35:4d:15:6e:da:9d:35:79:a4:d5: 9c:72:ef:2e:41:d9:ca:fc:2e:88:ef:3c:94:53:f4:f2:07:17: 4d:30:c1:9d:34:8b:5c:5e:89:b9:a0:9b:85:74:26:9d:cd:31: 9a:14:01:c0:95:94:27:6b:26:38:08:22:d3:11:03:00:00:f3: 01:e5:b5:8d:b4:09:7d:4f:2e:93:56:73:f9:a9:da:23:24:32: 46:2c:cb:d0:18:65:6b:bf:e5:fc:b1:df:05:32:08:63:a4:92: 5c:9d:77:44:da:b2:fa:48:67:ae:d4:ff:20:9a:b0:bc:3a:84: d4:38:87:73:4e:3a:bd:4e:a9:1b:2c:07:f7:7c:80:48:82:a1: db:c5:14:89:8c:12:bb:e2:17:46:a5:85:94:ce:28:40:65:93: 1b:92:35:d5:1d:13:7a:5c:97:9f:ef:f8:58:52:4f:c7:bf:46: 05:02:12:e5:5c:6f:9b:8d:f0:05:d9:5e:20:0a:33:9b:95:73: fa:0a:b0:ff:d0:84:ab:6b:41:8c:38:b9:0f:b4:d2:d3:e2:eb: 4f:f3:e4:39:c3:92:55:fe:77:ce:15:8b:71:20:6a:a9:54:ec: 3f:02:0c:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjUwOTA4MTk0MjQ0WhcNMjUwOTE1MTk0MjQ0WjAYMRYwFAYD VQQDEw02OGJmMzFiNC02OWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36uaFBxTd/ZTr2oEmcZBeqaSwrhXxEH/Kba0goKy/rUPcoI48NxkPic4CANQ 3qlcjq307Yo/XYyyhCQNnwcavKYbTSVtz90Z/2iOF2MKPr3dzQAcsc/Ele4RIt1g m/NDBMKeRNeKLlR98MAm8zoeX3icpX+rcD+NWeOMFrv475KZSi/NJr+1YVd8znIR SI+h9fnJXaZPAA5DlWBvsG1//ED1mP8UspAkI8CpNM3qI9oYwhcvjuuVNVCfvrAu lwL89fi31jpbz5jddpXGrRqtT2tmARWOajgpURpXxA8w/C+r93cy1il4wESujKKu d95PgQCk6qUzYW8ssVMqlYwGgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhv6x6L fYWFQL92t833Eht87b7FMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UyNy9GMzg4ODc2NjZGM0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQ S3BjQXB2d1JRbGtJeDBQVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTLHWIllcnRTbX7UwLwlLfSrMgmGU/AskW8jVNFW7anTV5pNWccu8u QdnK/C6I7zyUU/TyBxdNMMGdNItcXom5oJuFdCadzTGaFAHAlZQnayY4CCLTEQMA APMB5bWNtAl9Ty6TVnP5qdojJDJGLMvQGGVrv+X8sd8FMghjpJJcnXdE2rL6SGeu 1P8gmrC8OoTUOIdzTjq9TqkbLAf3fIBIgqHbxRSJjBK74hdGpYWUzihAZZMbkjXV HRN6XJef7/hYUk/Hv0YFAhLlXG+bjfAF2V4gCjOblXP6CrD/0ISra0GMOLkPtNLT 4utP8+Q5w5JV/nfOFYtxIGqpVOw/AgzT -----END CERTIFICATE-----Generated at Wed Sep 10 20:44:56 2025 by rpki-client