$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft File: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft (raw, json) Hash identifier: KgZxNBG8ARqBW+XUXk8B+Lzmk3OjSQgUYVpwMlar8N4= Subject key identifier: A7:69:D9:9C:95:FE:F0:E8:D3:1A:ED:55:43:3C:A6:08:A2:A5:A7:BF Authority key identifier: E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 Certificate issuer: /CN=A91E9406/serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Certificate serial: 028D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft Manifest number: 0288 Signing time: Thu 21 Aug 2025 01:50:44 +0000 Manifest this update: Thu 21 Aug 2025 01:50:44 +0000 Manifest next update: Thu 28 Aug 2025 01:50:44 +0000 Files and hashes: 1: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl (hash: 4CRuS8KWyIMjB87Xa7uByAUpcCaJ/Lvcr1/zhZjCyR4=) 2: F76D8A5C170D11EDA7EC2F87C4F9AE02.roa (hash: bEQWXluQGkjHtzXhhM0LUOXQhLNvUEvMyEXkpICCpAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 653 (0x28d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9406, serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Validity Not Before: Aug 21 01:50:44 2025 GMT Not After : Aug 28 01:50:44 2025 GMT Subject: CN=68a67b74-e6d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:dd:43:f4:01:da:dd:5a:79:f4:fa:15:48:b5: 0a:a4:64:84:00:f0:31:b5:ed:dd:6b:fd:93:e8:6c: 81:f6:f1:0c:ea:7f:f1:53:7e:a4:0c:66:43:5c:3b: d7:05:e9:70:21:b4:51:28:32:ac:9c:28:1f:bb:3e: 94:70:43:03:ad:ff:8b:58:f5:99:a3:d1:0a:3e:70: 73:48:20:53:0a:79:c1:48:8a:16:0f:cf:2f:22:e7: 8d:a5:a7:85:76:33:60:6e:65:d7:86:cb:f2:24:e2: 41:6c:5c:af:f4:17:dc:73:15:45:6f:1c:68:6e:86: 79:eb:c3:91:65:f8:57:d7:4a:75:cc:63:bb:e3:52: 91:3d:3b:a4:af:ae:b8:c4:d0:88:2d:ea:53:ee:22: b5:1e:3c:91:f6:ba:1c:70:a4:a9:6e:3a:49:09:40: bc:b8:fa:10:0b:11:dd:8b:83:1d:3a:76:16:b5:17: 23:10:b1:92:5f:a7:a3:58:61:ff:04:93:ba:fe:5d: 25:de:c8:6d:f8:20:a1:72:72:4f:c8:a8:cb:6a:d8: 11:f7:2a:cb:82:84:5f:8b:87:06:ba:21:e8:0f:5d: 78:8f:b7:c2:6e:28:12:0b:f3:08:63:a5:4b:09:b0: be:14:ed:db:c6:7f:51:a5:e7:f8:d8:f4:c3:d8:d0: 57:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:69:D9:9C:95:FE:F0:E8:D3:1A:ED:55:43:3C:A6:08:A2:A5:A7:BF X509v3 Authority Key Identifier: keyid:E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:8e:b0:16:98:99:4d:e8:53:fc:4d:e6:35:b8:55:be:6c:24: 5d:97:a1:94:79:f7:08:d6:45:93:84:e5:95:d2:2f:59:c7:2a: 24:71:2d:6b:14:39:bd:2d:4e:f4:9f:f5:e4:bb:e9:f8:19:d9: 1e:13:cf:64:9d:79:9e:8c:ef:66:18:34:d8:5b:b4:b0:88:a3: 80:97:18:e7:62:e8:29:c2:39:cf:cc:4b:ed:98:82:d4:09:14: 58:19:93:57:0e:88:e8:aa:05:30:54:41:b6:b4:02:a8:4a:89: d8:1f:e2:07:1e:f4:9f:9b:1f:03:74:7a:1e:2b:fb:a1:1e:43: d9:d1:7e:21:ea:59:c7:08:3f:a6:3d:f0:a5:58:ba:3f:8f:0e: 36:96:1c:6f:25:44:20:e8:80:a0:b2:75:1d:38:fd:d1:1f:11: 78:c1:4f:1e:f5:ca:a1:43:db:63:3b:b7:7f:26:aa:19:06:a9: 1c:8c:fd:ff:2b:fe:8f:28:32:0b:4a:c7:03:c6:71:0d:dc:cb: 52:38:20:5f:6e:73:13:c0:a4:03:f2:80:58:8b:a2:45:13:47: d8:0d:f1:a4:63:38:50:80:cc:4e:e0:74:74:2d:c0:7b:45:dc: 4f:91:36:e3:d0:d4:ee:db:93:54:31:2e:5b:f0:97:f7:63:1b: 25:dd:b5:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0MDYxMTAvBgNVBAUTKEUzNDM4NDA1NDc2NDAyQTNBQThGOTg3QzNBRkEwNjkw RDk2RUQ0NzQwHhcNMjUwODIxMDE1MDQ0WhcNMjUwODI4MDE1MDQ0WjAYMRYwFAYD VQQDEw02OGE2N2I3NC1lNmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyt1D9AHa3Vp59PoVSLUKpGSEAPAxte3da/2T6GyB9vEM6n/xU36kDGZDXDvX BelwIbRRKDKsnCgfuz6UcEMDrf+LWPWZo9EKPnBzSCBTCnnBSIoWD88vIueNpaeF djNgbmXXhsvyJOJBbFyv9BfccxVFbxxoboZ568ORZfhX10p1zGO741KRPTukr664 xNCILepT7iK1HjyR9roccKSpbjpJCUC8uPoQCxHdi4MdOnYWtRcjELGSX6ejWGH/ BJO6/l0l3sht+CChcnJPyKjLatgR9yrLgoRfi4cGuiHoD114j7fCbigSC/MIY6VL CbC+FO3bxn9Rpef42PTD2NBXQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdp2ZyV /vDo0xrtVUM8pgiipae/MB8GA1UdIwQYMBaAFONDhAVHZAKjqo+YfDr6BpDZbtR0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQwNi85ODY4QTlGMDE3 MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0FxT3FqNWg4T3ZvR2tObHUx SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwT0VCVWRrQXFPcWo1aDhPdm9Ha05sdTFIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTQwNi85ODY4QTlGMDE3MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0Fx T3FqNWg4T3ZvR2tObHUxSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOjrAWmJlN6FP8TeY1uFW+bCRdl6GUefcI1kWThOWV0i9ZxyokcS1r FDm9LU70n/Xku+n4GdkeE89knXmejO9mGDTYW7SwiKOAlxjnYugpwjnPzEvtmILU CRRYGZNXDojoqgUwVEG2tAKoSonYH+IHHvSfmx8DdHoeK/uhHkPZ0X4h6lnHCD+m PfClWLo/jw42lhxvJUQg6ICgsnUdOP3RHxF4wU8e9cqhQ9tjO7d/JqoZBqkcjP3/ K/6PKDILSscDxnEN3MtSOCBfbnMTwKQD8oBYi6JFE0fYDfGkYzhQgMxO4HR0LcB7 RdxPkTbj0NTu25NUMS5b8Jf3Yxsl3bU9 -----END CERTIFICATE-----Generated at Fri Aug 22 16:19:02 2025 by rpki-client