$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json) Hash identifier: piblBK/aJsAmGE0QyOicYA3kh5gfhtat7gUolIS4cQg= Subject key identifier: 89:7D:CD:60:C0:24:53:E9:3C:F4:D2:8D:22:F9:9B:D9:BF:05:AA:10 Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Certificate serial: 0D73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft Manifest number: 0D6B Signing time: Thu 04 Sep 2025 18:09:12 +0000 Manifest this update: Thu 04 Sep 2025 18:09:12 +0000 Manifest next update: Thu 11 Sep 2025 18:09:12 +0000 Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: ZWKy9kPar8MdUs7iaDbvqHxcA7CHrpcTiyzex7Iw7ko=) 2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: C8YUnzVpdG1ic9MCuW7celmXkhXkYeCvagfWnZShYbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 18:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3443 (0xd73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Validity Not Before: Sep 4 18:09:12 2025 GMT Not After : Sep 11 18:09:12 2025 GMT Subject: CN=68b9d5c8-e251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:30:fa:41:fc:e0:f8:73:79:15:32:d6:4c:e0: 17:39:84:5e:c2:d5:7b:12:5a:66:e3:ed:3a:59:29: 52:db:a5:d0:a6:24:c1:7a:64:2c:73:6d:54:65:f1: d9:4b:7c:57:0e:e0:67:d9:5a:b7:8f:7e:09:0e:41: 14:be:74:d3:08:c3:4d:c2:f1:15:87:1b:aa:ad:70: 6e:fa:98:18:b3:66:85:58:b6:28:7d:ae:db:06:27: 7e:01:2a:f4:8e:b2:16:6b:21:a3:55:ee:bd:63:1a: 98:43:e9:89:94:3a:bb:eb:b3:97:64:a9:2c:15:f0: c2:65:97:e8:1d:f7:55:59:28:ac:27:2f:88:44:0a: f9:cc:35:cc:d3:dc:2d:a9:0c:d7:28:f2:91:27:91: a2:56:38:03:16:b1:e6:49:eb:92:a7:54:3a:53:d8: be:03:53:da:91:ce:84:51:0b:76:d9:b1:a6:52:12: 30:9d:93:6d:47:83:59:ce:f9:8c:1c:c0:92:47:6d: ef:cc:46:6a:05:01:6f:31:99:d2:3b:82:9c:a4:df: 04:5f:ba:98:59:c8:81:a7:ab:62:e3:18:2a:c8:ad: fb:d5:e1:21:d0:eb:92:10:d5:d6:c0:13:f8:64:08: 67:65:f6:e8:88:b6:c2:f6:fc:02:23:99:52:e4:90: 2c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:7D:CD:60:C0:24:53:E9:3C:F4:D2:8D:22:F9:9B:D9:BF:05:AA:10 X509v3 Authority Key Identifier: keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:96:1b:38:03:71:a2:5f:a6:50:61:51:e8:d7:6f:31:fa:c0: 94:5d:d5:2f:47:ef:14:3d:a7:68:7d:2d:3f:2a:de:ad:9a:99: 92:97:3b:46:97:22:e2:71:01:bd:45:18:e0:7a:f5:f0:b6:86: 29:13:3c:8d:50:c3:bf:85:66:17:d0:41:44:91:38:aa:9c:5a: 8e:3a:4e:18:67:ef:e2:35:74:b8:37:62:6b:66:d9:0d:e6:7e: 63:69:b7:2a:12:46:81:b2:c3:37:e2:f0:cf:91:7d:12:c6:12: d6:8f:82:da:0d:3f:93:d9:c8:62:d5:b8:d1:d1:ee:ac:7b:24: cb:e3:51:10:87:1e:bc:02:57:0f:7f:5d:59:08:d2:6d:2a:18: 51:59:a9:7b:68:ec:5d:60:bc:96:f6:e4:1c:6b:0c:bc:ad:de: 7f:d9:ba:e2:19:f4:03:cb:e4:6a:63:40:e0:c5:d5:2f:4c:40: bd:12:de:77:11:97:a7:57:b7:58:3e:76:10:e9:f7:22:28:6b: 00:b6:71:76:d0:91:08:8f:d3:f4:49:ba:0b:4a:2b:42:c0:66: 5e:76:09:6f:db:b4:b4:72:ff:2c:5a:5a:a1:b8:a2:d1:95:71: 9f:f1:4c:af:a4:97:75:80:98:44:3e:1a:21:c0:3a:56:83:b0: 04:9a:4c:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0 NjIyRkQ2MjcwHhcNMjUwOTA0MTgwOTEyWhcNMjUwOTExMTgwOTEyWjAYMRYwFAYD VQQDEw02OGI5ZDVjOC1lMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojD6Qfzg+HN5FTLWTOAXOYRewtV7Elpm4+06WSlS26XQpiTBemQsc21UZfHZ S3xXDuBn2Vq3j34JDkEUvnTTCMNNwvEVhxuqrXBu+pgYs2aFWLYofa7bBid+ASr0 jrIWayGjVe69YxqYQ+mJlDq767OXZKksFfDCZZfoHfdVWSisJy+IRAr5zDXM09wt qQzXKPKRJ5GiVjgDFrHmSeuSp1Q6U9i+A1Pakc6EUQt22bGmUhIwnZNtR4NZzvmM HMCSR23vzEZqBQFvMZnSO4KcpN8EX7qYWciBp6ti4xgqyK371eEh0OuSENXWwBP4 ZAhnZfboiLbC9vwCI5lS5JAsCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIl9zWDA JFPpPPTSjSL5m9m/BaoQMB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdlhs4A3GiX6ZQYVHo128x+sCUXdUvR+8UPadofS0/Kt6tmpmSlztG lyLicQG9RRjgevXwtoYpEzyNUMO/hWYX0EFEkTiqnFqOOk4YZ+/iNXS4N2JrZtkN 5n5jabcqEkaBssM34vDPkX0SxhLWj4LaDT+T2chi1bjR0e6seyTL41EQhx68AlcP f11ZCNJtKhhRWal7aOxdYLyW9uQcawy8rd5/2briGfQDy+RqY0DgxdUvTEC9Et53 EZenV7dYPnYQ6fciKGsAtnF20JEIj9P0SboLSitCwGZedglv27S0cv8sWlqhuKLR lXGf8UyvpJd1gJhEPhohwDpWg7AEmkwF -----END CERTIFICATE-----Generated at Sat Sep 6 19:02:44 2025 by rpki-client