$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: yl6DAga67mxWPK5XquZKn3WYOiE3dfoaBegco+1mfbc= Subject key identifier: D6:8A:EE:55:32:B2:23:07:0A:B1:80:2F:87:57:9B:E3:45:D0:4D:39 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 0392 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 0386 Signing time: Thu 21 Aug 2025 01:01:37 +0000 Manifest this update: Thu 21 Aug 2025 01:01:37 +0000 Manifest next update: Thu 28 Aug 2025 01:01:37 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: hQPN1CFAuP17r7RZwYR7kWR2TphBlthsFdTaS4ToKvU=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 914 (0x392) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Aug 21 01:01:37 2025 GMT Not After : Aug 28 01:01:37 2025 GMT Subject: CN=68a66ff1-ae5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:bd:e5:e6:36:83:53:63:ec:ad:a0:1e:c4:83: bf:8b:6e:b3:4d:a6:d0:83:f0:c4:7f:05:2f:b6:77: da:64:da:57:51:b5:80:3a:a7:86:00:85:3c:3a:11: b6:bd:02:b0:df:30:91:c3:c5:5b:6a:7b:b2:20:82: 9a:62:1a:b2:55:de:b5:7e:c8:d0:25:20:d2:47:44: 05:34:2b:62:a8:ba:96:d2:eb:b9:14:4b:f6:78:f0: 9d:5a:f7:2b:6d:e8:b1:88:7a:2e:8e:9a:84:ff:40: 36:a5:56:96:20:fe:25:00:75:69:31:cd:e4:81:a1: 5b:5e:a1:e5:c1:60:2d:f5:56:8e:e9:8b:a4:65:fb: a0:d3:fd:9b:dc:69:6b:68:95:ca:be:c9:f0:af:4c: 5f:dc:8e:90:9f:b6:eb:d7:a3:66:2d:b2:9c:dd:6b: dc:ec:18:b2:02:6e:47:c4:bc:fb:6f:06:c8:2c:0e: c9:16:2c:5f:c1:41:2f:80:70:b3:9b:94:55:18:80: 9f:ab:50:b4:9a:46:b0:ce:dc:8b:eb:68:26:ce:24: c3:73:cd:81:89:52:64:06:0b:02:38:33:5b:e7:99: 14:e9:c7:ac:eb:ac:c5:70:aa:76:28:e5:22:a4:e6: ff:02:df:2a:5c:6c:6d:36:b2:3b:2c:55:c3:fd:d2: 2e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:8A:EE:55:32:B2:23:07:0A:B1:80:2F:87:57:9B:E3:45:D0:4D:39 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:51:f1:51:da:df:c6:a1:ca:e4:47:30:75:35:e2:e0:d2:94: d1:e9:46:e1:25:ee:68:09:3a:9f:d5:bd:a6:5c:0d:7e:fa:4e: 2b:6b:7c:a1:e2:f3:27:48:f2:4c:75:60:53:02:6f:26:40:44: 51:1f:30:c1:1d:76:40:37:4a:7c:fb:f0:50:86:89:ab:58:eb: 0d:9d:80:15:6f:ec:5b:06:d4:16:5f:92:fa:3b:1e:83:1c:5f: da:f5:c0:f8:69:5d:63:c3:ff:e6:b0:db:1e:e9:94:73:0e:1b: a9:29:45:0b:16:8a:68:5b:8c:70:6f:7f:84:15:7f:e7:72:69: bf:be:f6:39:4d:3d:c7:65:de:70:8d:b2:06:c6:d6:6f:e1:1c: 92:f1:02:56:82:50:52:e0:95:5c:99:33:2d:3f:09:02:72:7c: c8:6e:3b:7b:09:d1:c7:b8:4c:c0:c1:e1:66:ec:cf:38:ef:10: 24:fc:cb:79:2c:ac:3a:e7:9f:38:cd:a9:ce:f0:e6:74:64:2b: 79:9d:da:61:0c:e4:a1:b1:f3:40:90:5d:83:6e:04:e8:8d:a8: 59:d5:aa:22:04:2f:64:79:11:56:d8:5a:ef:77:62:bb:19:63: 6c:53:f1:d8:ee:d7:72:f9:04:7f:c5:02:e8:25:6f:f5:b3:61: d6:04:35:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwODIxMDEwMTM3WhcNMjUwODI4MDEwMTM3WjAYMRYwFAYD VQQDEw02OGE2NmZmMS1hZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7b3l5jaDU2PsraAexIO/i26zTabQg/DEfwUvtnfaZNpXUbWAOqeGAIU8OhG2 vQKw3zCRw8VbanuyIIKaYhqyVd61fsjQJSDSR0QFNCtiqLqW0uu5FEv2ePCdWvcr beixiHoujpqE/0A2pVaWIP4lAHVpMc3kgaFbXqHlwWAt9VaO6YukZfug0/2b3Glr aJXKvsnwr0xf3I6Qn7br16NmLbKc3Wvc7BiyAm5HxLz7bwbILA7JFixfwUEvgHCz m5RVGICfq1C0mkawztyL62gmziTDc82BiVJkBgsCODNb55kU6ces66zFcKp2KOUi pOb/At8qXGxtNrI7LFXD/dIuRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNaK7lUy siMHCrGAL4dXm+NF0E05MB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaUfFR2t/GocrkRzB1NeLg0pTR6UbhJe5oCTqf1b2mXA1++k4ra3yh 4vMnSPJMdWBTAm8mQERRHzDBHXZAN0p8+/BQhomrWOsNnYAVb+xbBtQWX5L6Ox6D HF/a9cD4aV1jw//msNse6ZRzDhupKUULFopoW4xwb3+EFX/ncmm/vvY5TT3HZd5w jbIGxtZv4RyS8QJWglBS4JVcmTMtPwkCcnzIbjt7CdHHuEzAweFm7M847xAk/Mt5 LKw65584zanO8OZ0ZCt5ndphDOShsfNAkF2DbgTojahZ1aoiBC9keRFW2Frvd2K7 GWNsU/HY7tdy+QR/xQLoJW/1s2HWBDWE -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:10 2025 by rpki-client