$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: LGum46urL5/Xw2DQ7TFT7dRCEhnmCphjN6sbF8+NTyQ= Subject key identifier: 84:39:43:C9:4B:42:E9:F1:D9:9A:29:BB:B0:E6:52:A6:32:55:7F:2E Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 029D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 0299 Signing time: Fri 19 Sep 2025 02:02:30 +0000 Manifest this update: Fri 19 Sep 2025 02:02:29 +0000 Manifest next update: Fri 26 Sep 2025 02:02:29 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: BXomhCvLxDymsDnbdxWweQGNBX/yrsCTHETClvxs3fw=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 00Bb5TLyF/J2CWzHDjxZA81Dz6rMiVp4bUBC6ncoYxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 01:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Sep 19 02:02:29 2025 GMT Not After : Sep 26 02:02:29 2025 GMT Subject: CN=68ccb9b6-ca6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5c:2a:71:e5:fa:ab:c8:2c:fe:fb:88:fa:87: a3:1a:a0:8a:59:c5:c4:d8:27:f2:fb:72:1b:8f:8c: fc:6c:4d:66:05:ee:c5:12:85:a5:4d:51:a8:39:ca: 06:64:eb:49:d1:fc:f4:7b:16:5b:91:75:78:bc:20: f6:4d:dc:c1:08:15:07:d2:99:43:3c:14:50:af:b7: 47:30:19:96:31:55:2e:1b:cd:d7:83:6a:f7:97:ad: 7e:cb:bc:0b:1f:df:9c:02:c2:f5:98:fc:52:98:c0: f0:6f:94:6b:d1:56:5d:3b:b0:d2:d8:7b:f3:27:9b: 64:bc:b7:68:3d:43:8a:bb:3f:5b:45:06:81:f0:0f: 1a:fb:4d:64:94:27:3f:6e:5f:f0:64:07:0b:8c:d5: fe:65:2f:ca:5a:2d:ad:12:3b:2e:ba:c7:92:b1:e1: 25:64:4a:5b:81:c1:31:bf:45:fb:79:69:53:7f:8c: 6a:a1:b7:9b:08:af:fe:7a:c6:5e:87:35:ad:f7:73: 1b:c1:27:fc:cb:1c:00:84:7c:24:e4:99:0d:46:4d: 4a:15:1e:78:29:1f:85:89:f5:b5:00:6e:75:7d:37: 05:7f:35:bc:13:45:ce:b9:09:2a:14:6e:36:a9:36: 4f:d0:3a:ff:1a:ec:d7:4a:26:b0:be:0d:b2:43:25: 76:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:39:43:C9:4B:42:E9:F1:D9:9A:29:BB:B0:E6:52:A6:32:55:7F:2E X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:d2:05:19:6d:93:bf:9a:ef:13:53:a7:76:f9:88:f8:1f:a6: 86:40:82:bb:b5:fb:db:e3:a0:af:7c:14:c1:38:d9:f1:3a:b8: b3:b6:76:cf:88:ef:6c:e7:2b:1c:38:49:97:9c:46:fc:55:da: 8f:a7:78:eb:8b:c5:74:4f:a4:b5:96:8f:71:1e:d6:2a:96:f5: 3d:04:27:ce:fc:68:e5:99:7d:d9:2e:98:4d:ab:39:b6:13:8b: f6:e6:a6:b2:99:ed:4d:f1:d6:ec:97:19:42:e2:55:ed:df:13: 06:45:84:56:3e:6e:b3:ca:78:ec:5c:83:b2:27:71:ad:d3:1c: 42:d8:95:8e:76:3b:c8:8f:fb:c0:40:76:cb:25:1e:0c:65:e5: f2:83:7b:61:6a:7c:12:e7:e9:44:37:f0:e9:64:da:95:7a:20: 3f:13:be:be:ee:81:d3:2a:1c:29:45:29:2a:ac:2d:5f:20:f4: 02:45:51:35:05:b1:cd:b3:71:3a:8e:4a:00:5d:a3:69:02:a6: 27:13:28:52:35:a5:40:a8:93:a9:2c:5f:e1:73:22:b8:f8:1c: d2:3e:68:d4:3f:93:25:c5:73:26:da:6b:b0:35:04:2e:ab:3a: 8b:21:eb:2f:4b:ed:e9:36:82:c2:3d:45:d0:18:23:38:00:ea: 20:32:1d:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUwOTE5MDIwMjI5WhcNMjUwOTI2MDIwMjI5WjAYMRYwFAYD VQQDEw02OGNjYjliNi1jYTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFwqceX6q8gs/vuI+oejGqCKWcXE2Cfy+3Ibj4z8bE1mBe7FEoWlTVGoOcoG ZOtJ0fz0exZbkXV4vCD2TdzBCBUH0plDPBRQr7dHMBmWMVUuG83Xg2r3l61+y7wL H9+cAsL1mPxSmMDwb5Rr0VZdO7DS2HvzJ5tkvLdoPUOKuz9bRQaB8A8a+01klCc/ bl/wZAcLjNX+ZS/KWi2tEjsuuseSseElZEpbgcExv0X7eWlTf4xqobebCK/+esZe hzWt93MbwSf8yxwAhHwk5JkNRk1KFR54KR+FifW1AG51fTcFfzW8E0XOuQkqFG42 qTZP0Dr/GuzXSiawvg2yQyV2KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQ5Q8lL Qunx2Zopu7DmUqYyVX8uMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf0gUZbZO/mu8TU6d2+Yj4H6aGQIK7tfvb46CvfBTBONnxOriztnbP iO9s5yscOEmXnEb8VdqPp3jri8V0T6S1lo9xHtYqlvU9BCfO/GjlmX3ZLphNqzm2 E4v25qayme1N8dbslxlC4lXt3xMGRYRWPm6zynjsXIOyJ3Gt0xxC2JWOdjvIj/vA QHbLJR4MZeXyg3thanwS5+lEN/DpZNqVeiA/E76+7oHTKhwpRSkqrC1fIPQCRVE1 BbHNs3E6jkoAXaNpAqYnEyhSNaVAqJOpLF/hcyK4+BzSPmjUP5MlxXMm2muwNQQu qzqLIesvS+3pNoLCPUXQGCM4AOogMh3l -----END CERTIFICATE-----Generated at Fri Sep 19 03:53:04 2025 by rpki-client