$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: ivub7sjan6jnEvff1DH7md15uIDU+1hYJVSNT80GIIU= Subject key identifier: 36:F4:04:F2:34:0C:61:2C:A2:A4:E8:3E:21:9B:47:D2:C5:B4:F4:CF Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 017B Signing time: Wed 17 Sep 2025 04:15:53 +0000 Manifest this update: Wed 17 Sep 2025 04:15:52 +0000 Manifest next update: Wed 24 Sep 2025 04:15:52 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: QTwZ21ZrHtaGsE85OnOAYeEKcIJYb9kx5WTbHBLHfWQ=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: RkTUA678ggeVul1y+nwQF7cmzTi/KyCvH3jL9UTL73c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:15:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804, serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: Sep 17 04:15:52 2025 GMT Not After : Sep 24 04:15:52 2025 GMT Subject: CN=68ca35f9-8ffe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a9:25:ef:c0:57:54:08:0a:d4:5c:80:e4:bf: 44:c1:a7:dd:08:72:a6:6c:4e:c4:10:3c:56:84:60: 7b:71:32:0f:63:ff:28:f6:40:e3:0f:ea:72:8a:2e: 99:71:af:16:37:7e:ac:3e:88:a2:0a:ba:a5:28:9a: 20:32:fa:74:3b:50:0b:af:67:f7:0c:51:0e:b5:b9: 76:59:ee:b9:11:69:9e:4e:de:c8:36:1d:b4:23:e3: 18:1c:9d:a1:9e:34:22:1d:f5:ba:f1:8c:b4:54:51: 9f:52:dd:98:2a:0f:9d:07:99:86:31:bd:b8:20:82: 40:e6:d3:1b:e5:46:02:d4:83:94:17:6a:f6:89:81: 32:64:a9:6a:4e:bb:4c:7b:fe:ea:f4:af:5f:95:97: b3:cb:e2:5a:2d:10:be:86:0e:7d:4d:32:f1:73:71: 9d:cf:9d:98:52:3c:d4:d6:32:ce:7e:4d:5a:1b:b4: f1:03:db:70:07:0d:ec:9c:68:db:72:7d:0d:0f:84: 5d:a6:54:6b:87:ea:02:54:38:e2:f8:48:63:46:a2: 50:82:0a:46:66:8e:de:6a:aa:4a:61:fa:8e:1b:db: 51:6c:38:49:e3:69:f2:df:25:bc:e2:22:88:8f:1b: 94:cf:b4:35:67:87:0c:d8:31:5e:85:31:51:aa:fb: 91:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F4:04:F2:34:0C:61:2C:A2:A4:E8:3E:21:9B:47:D2:C5:B4:F4:CF X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:f8:aa:14:df:1d:fd:c9:71:c1:f5:a9:b9:71:fd:0c:26:de: fb:3f:e7:b0:cd:25:a2:47:43:f4:3e:5e:3b:1e:81:c1:a4:97: 70:71:f5:3c:80:e9:2e:ca:dd:34:2f:52:45:aa:69:b9:c3:8d: 9b:ec:5d:fc:f0:4c:59:af:fd:81:9c:e5:33:32:35:61:a6:c9: 86:7e:09:ac:60:26:7a:d0:55:4b:5a:56:4f:a4:85:5d:48:24: 31:3f:8b:d8:7d:bd:90:3c:95:4a:d2:10:c4:04:8d:a2:ad:72: 59:18:92:1d:b8:d2:97:2c:1d:ea:40:ba:6e:68:6c:a8:ae:26: ba:b8:20:64:e3:ec:19:fd:92:6e:81:45:7f:43:cf:03:3b:40: 0e:1d:9e:5f:24:8e:1b:6a:a9:35:e6:8e:99:27:a3:43:ba:53: 22:c6:d3:e3:03:25:28:5a:6a:67:aa:e4:f9:0a:7c:14:ca:6e: ef:3c:4e:43:33:90:f0:2b:d6:e0:e2:f8:5b:7b:92:7f:8f:24: 2d:56:37:f6:fd:fa:c9:0f:5b:62:2a:fd:cb:54:02:91:7b:b7: 5b:e3:c0:f7:7b:0c:12:4a:41:d9:9b:0f:55:36:1a:fa:4f:5c: 2c:21:20:43:de:dc:25:f4:a4:f4:7f:00:c9:80:b3:22:3f:06: f5:c7:a1:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjUwOTE3MDQxNTUyWhcNMjUwOTI0MDQxNTUyWjAYMRYwFAYD VQQDEw02OGNhMzVmOS04ZmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKkl78BXVAgK1FyA5L9EwafdCHKmbE7EEDxWhGB7cTIPY/8o9kDjD+pyii6Z ca8WN36sPoiiCrqlKJogMvp0O1ALr2f3DFEOtbl2We65EWmeTt7INh20I+MYHJ2h njQiHfW68Yy0VFGfUt2YKg+dB5mGMb24IIJA5tMb5UYC1IOUF2r2iYEyZKlqTrtM e/7q9K9flZezy+JaLRC+hg59TTLxc3Gdz52YUjzU1jLOfk1aG7TxA9twBw3snGjb cn0ND4RdplRrh+oCVDji+EhjRqJQggpGZo7eaqpKYfqOG9tRbDhJ42ny3yW84iKI jxuUz7Q1Z4cM2DFehTFRqvuRgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDb0BPI0 DGEsoqToPiGbR9LFtPTPMB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB+KoU3x39yXHB9am5cf0MJt77P+ewzSWiR0P0Pl47HoHBpJdwcfU8 gOkuyt00L1JFqmm5w42b7F388ExZr/2BnOUzMjVhpsmGfgmsYCZ60FVLWlZPpIVd SCQxP4vYfb2QPJVK0hDEBI2irXJZGJIduNKXLB3qQLpuaGyoria6uCBk4+wZ/ZJu gUV/Q88DO0AOHZ5fJI4baqk15o6ZJ6NDulMixtPjAyUoWmpnquT5CnwUym7vPE5D M5DwK9bg4vhbe5J/jyQtVjf2/frJD1tiKv3LVAKRe7db48D3ewwSSkHZmw9VNhr6 T1wsISBD3twl9KT0fwDJgLMiPwb1x6Gg -----END CERTIFICATE-----Generated at Fri Sep 19 02:49:50 2025 by rpki-client