$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: CtfhJ18F9s1acgsXjf2pn/XVJn7dY4avOUYStforQ+4= Subject key identifier: 63:19:80:8F:CC:59:10:4C:A1:E8:F5:F5:D1:20:E7:7B:22:51:4A:CC Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: 87 Signing time: Tue 19 Aug 2025 07:05:33 +0000 Manifest this update: Tue 19 Aug 2025 07:05:33 +0000 Manifest next update: Tue 26 Aug 2025 07:05:33 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: QDER7jhd4zrVNeW8dGTOT102+5j0vWo6XGKAjJYESJg=) 2: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 7A02Qe5tU1BaVkRNS6N9PAYKa4qN0Lgazu0at/u/nBw=) 3: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: ELgn79sVAW9E3JP6Gcqdp6NoM1aGV5NXuDSvgrgOR0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 07:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Aug 19 07:05:33 2025 GMT Not After : Aug 26 07:05:33 2025 GMT Subject: CN=68a4223d-7425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:48:79:fc:05:7c:cf:ce:4b:c5:53:81:cd:49: a3:45:44:c5:d1:0d:2d:47:89:22:59:bd:de:ab:ba: 5c:9c:aa:15:b7:6e:d4:ad:ba:67:f0:c1:86:a7:88: d4:87:79:34:69:9b:6d:78:9f:4d:6b:26:48:a5:bd: 05:ff:e7:ef:8e:b2:dd:fb:d1:27:7a:c9:b3:5b:59: ac:88:19:55:7e:52:e1:20:ed:e5:cc:cf:9f:4c:e3: 58:1d:52:b3:94:0a:24:45:a7:d2:d0:e6:d4:a7:9c: 4c:20:85:16:85:95:b2:6c:c1:d1:6b:8a:3d:5c:e9: e6:53:54:dc:be:03:98:64:ab:b4:7e:1d:e1:cd:85: 10:65:e5:0a:e9:4b:b4:8f:e5:70:32:b2:a0:b3:fa: d0:3f:8f:b4:79:02:3a:9e:71:68:71:83:1f:fa:0e: 03:7c:22:4e:a5:7c:e1:c3:65:74:76:d2:4b:54:05: fc:73:35:30:73:6f:5f:70:f9:79:1f:b2:84:6c:02: 97:55:a5:64:4d:06:9e:c0:61:3c:35:59:08:41:04: 93:8d:2a:05:b0:23:36:67:2a:98:ce:b7:3e:48:3c: 3a:7d:61:bf:40:65:93:fa:90:7c:af:16:cf:fd:6a: cf:51:25:47:2d:d9:3b:38:07:3e:5b:59:67:f6:57: 7a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:19:80:8F:CC:59:10:4C:A1:E8:F5:F5:D1:20:E7:7B:22:51:4A:CC X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:bb:b9:68:7e:03:0c:04:e2:35:d0:cd:52:aa:33:88:5e:de: 6d:0f:12:c5:19:e5:73:9c:0e:3d:7a:f2:67:f1:0a:3d:00:bc: 89:d9:b1:1e:63:06:c2:1c:f3:9c:07:f7:e7:45:3f:ac:5c:eb: 87:c2:ac:46:fd:1a:74:56:e3:fd:3d:b7:ca:f2:a2:52:2a:c5: 20:a3:a5:5f:56:ae:a8:34:ff:d7:41:04:55:27:31:34:3b:1d: 48:77:15:0d:27:ee:16:8f:87:c0:85:ea:c9:7c:5d:85:c2:dc: e4:cc:b4:82:b6:22:1d:8e:4d:ec:ad:3f:60:a0:ba:10:91:9f: ec:6a:51:3a:4e:9b:e2:84:c7:e4:e2:dc:17:81:63:65:16:4c: 9c:03:41:0a:9b:60:b8:c9:04:c9:88:44:44:e6:49:91:ad:54: 7e:16:a5:fa:42:ae:bb:2f:51:50:21:25:32:24:5c:68:31:63: 6f:de:b6:0a:0f:f8:d9:92:03:c6:fa:54:8e:a3:60:a8:28:55: 67:85:bb:69:c5:49:ab:89:e2:91:ae:b9:9b:bd:f0:c0:90:33: 59:38:92:7c:31:d5:1e:c2:d0:18:3d:24:77:38:1e:31:62:83: 08:26:2d:ec:87:c1:60:d6:f1:f2:45:f4:11:a2:85:3b:87:b5: ff:25:97:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU1RTUxMTAvBgNVBAUTKEEwMEUwMkRDNzgzRjkwODQwMjFERjk0Rjc1ODYyNjRF QzQ3RDM0MzgwHhcNMjUwODE5MDcwNTMzWhcNMjUwODI2MDcwNTMzWjAYMRYwFAYD VQQDEw02OGE0MjIzZC03NDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEh5/AV8z85LxVOBzUmjRUTF0Q0tR4kiWb3eq7pcnKoVt27Urbpn8MGGp4jU h3k0aZtteJ9NayZIpb0F/+fvjrLd+9EnesmzW1msiBlVflLhIO3lzM+fTONYHVKz lAokRafS0ObUp5xMIIUWhZWybMHRa4o9XOnmU1TcvgOYZKu0fh3hzYUQZeUK6Uu0 j+VwMrKgs/rQP4+0eQI6nnFocYMf+g4DfCJOpXzhw2V0dtJLVAX8czUwc29fcPl5 H7KEbAKXVaVkTQaewGE8NVkIQQSTjSoFsCM2ZyqYzrc+SDw6fWG/QGWT+pB8rxbP /WrPUSVHLdk7OAc+W1ln9ld6cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMZgI/M WRBMoej19dEg53siUUrMMB8GA1UdIwQYMBaAFKAOAtx4P5CEAh35T3WGJk7EfTQ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTVFNS9GOTdCQzMwMkFG QkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJUUNIZmxQZFlZbVRzUjlO RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GOTdCQzMwMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJ UUNIZmxQZFlZbVRzUjlORGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiu7lofgMMBOI10M1SqjOIXt5tDxLFGeVznA49evJn8Qo9ALyJ2bEe YwbCHPOcB/fnRT+sXOuHwqxG/Rp0VuP9PbfK8qJSKsUgo6VfVq6oNP/XQQRVJzE0 Ox1IdxUNJ+4Wj4fAherJfF2FwtzkzLSCtiIdjk3srT9goLoQkZ/salE6TpvihMfk 4twXgWNlFkycA0EKm2C4yQTJiERE5kmRrVR+FqX6Qq67L1FQISUyJFxoMWNv3rYK D/jZkgPG+lSOo2CoKFVnhbtpxUmrieKRrrmbvfDAkDNZOJJ8MdUewtAYPSR3OB4x YoMIJi3sh8Fg1vHyRfQRooU7h7X/JZce -----END CERTIFICATE-----Generated at Wed Aug 20 17:19:32 2025 by rpki-client