$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: 4jhMDu8HQjQ5G0UKNpqMZtwvO/C5NTMVNexaugkEhIA= Subject key identifier: C0:8A:29:00:AB:F0:09:66:12:DB:9F:B2:95:ED:61:0D:3D:03:E6:4C Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 13E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 13DD Signing time: Mon 08 Sep 2025 16:57:46 +0000 Manifest this update: Mon 08 Sep 2025 16:57:46 +0000 Manifest next update: Mon 15 Sep 2025 16:57:46 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: IDsLNx5ZMr7X0bUhifSleb5CbYgM5SRxUG1leXMCC30=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: M9FXaqMN3xRXkYSG9XQqHpw6Lro8+iU9Ajk3i3+nJw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5096 (0x13e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639, serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: Sep 8 16:57:46 2025 GMT Not After : Sep 15 16:57:46 2025 GMT Subject: CN=68bf0b0a-5743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5f:d3:d6:1d:21:47:b9:55:b1:4f:60:83:92: 6c:ed:d1:02:7f:b2:ba:18:a9:f1:e2:72:91:42:0a: 94:2c:65:09:a7:00:8d:28:c1:da:e6:1c:1c:ef:39: d8:1d:f8:f9:61:3c:ab:11:c4:af:39:ce:6a:d7:e1: 32:61:e6:30:37:56:2e:44:50:17:a9:87:e4:3e:f2: c7:1e:f9:d0:4c:3b:2d:f7:89:c4:88:bf:cf:31:00: 69:8f:bf:8c:8f:73:b0:18:93:f3:35:1f:12:95:ce: a7:1e:4c:1a:52:06:c8:cd:f6:4c:cf:25:14:4f:3f: eb:fe:26:e3:31:e7:07:89:25:77:cf:c0:2c:a5:46: d7:9e:5d:92:63:67:54:46:18:7d:e9:ab:01:e3:5b: 45:1a:81:7b:3d:5d:82:dd:81:47:01:d2:2c:ea:40: 72:30:18:15:11:a6:75:5f:56:9b:93:20:3a:5d:c1: 61:b9:f4:8b:ef:f1:c1:39:9f:6b:78:60:d9:94:b2: 30:3e:3c:f7:d5:cc:3d:32:8a:77:1a:e4:84:09:d1: 31:e2:62:79:ad:bd:a4:49:e8:ee:d5:92:4e:47:6b: dc:b7:7e:e7:8f:52:ea:e6:98:f7:2c:80:8f:05:fa: 4b:76:9f:29:2d:84:0a:3e:db:52:0d:49:0e:12:ff: 2c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:8A:29:00:AB:F0:09:66:12:DB:9F:B2:95:ED:61:0D:3D:03:E6:4C X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:32:0a:92:91:bc:e5:61:46:78:e3:7b:be:7f:ed:03:0c:25: 9a:12:d8:cd:69:ad:e8:a7:15:16:42:4f:4a:cb:84:7e:25:c9: 30:6a:c5:5d:29:1d:25:9f:d4:52:20:83:ea:60:61:f2:bc:49: d3:da:4a:25:90:f2:59:1b:0b:5b:36:06:46:9d:5f:37:fc:a6: c6:e2:f1:5b:11:dc:0a:80:e0:49:85:f3:b9:45:77:57:36:78: 19:e8:c0:b5:34:06:a0:e6:8f:f4:12:a4:f1:46:8f:7a:0a:a9: 40:49:31:fd:e8:7e:6e:ab:09:09:f0:91:8a:89:bd:76:9f:11: 09:19:4c:16:af:4c:f6:ab:03:c0:61:21:19:fd:60:ba:4f:d6: 11:35:ea:df:67:01:ee:27:6f:00:d9:3d:c3:5a:50:8b:b2:76: 03:b0:3f:b6:7a:a7:b5:a4:0f:48:23:f1:81:46:be:36:d6:c2: 35:dc:42:2b:ae:f0:3e:d2:22:b1:8c:5e:31:39:4f:f6:f6:e4: 70:7d:ca:aa:f9:d5:ea:ee:98:1e:08:89:15:09:78:fe:5f:f6: d6:10:5f:36:b1:84:73:9d:3d:11:59:cf:dc:98:60:61:39:ec: d4:79:6a:ec:fc:5e:65:c3:7b:9f:d8:75:bb:fe:df:aa:f5:eb: 02:d1:b2:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjUwOTA4MTY1NzQ2WhcNMjUwOTE1MTY1NzQ2WjAYMRYwFAYD VQQDEw02OGJmMGIwYS01NzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnl/T1h0hR7lVsU9gg5Js7dECf7K6GKnx4nKRQgqULGUJpwCNKMHa5hwc7znY Hfj5YTyrEcSvOc5q1+EyYeYwN1YuRFAXqYfkPvLHHvnQTDst94nEiL/PMQBpj7+M j3OwGJPzNR8Slc6nHkwaUgbIzfZMzyUUTz/r/ibjMecHiSV3z8AspUbXnl2SY2dU Rhh96asB41tFGoF7PV2C3YFHAdIs6kByMBgVEaZ1X1abkyA6XcFhufSL7/HBOZ9r eGDZlLIwPjz31cw9Mop3GuSECdEx4mJ5rb2kSeju1ZJOR2vct37nj1Lq5pj3LICP BfpLdp8pLYQKPttSDUkOEv8sqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCKKQCr 8AlmEtufspXtYQ09A+ZMMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTMgqSkbzlYUZ443u+f+0DDCWaEtjNaa3opxUWQk9Ky4R+JckwasVd KR0ln9RSIIPqYGHyvEnT2kolkPJZGwtbNgZGnV83/KbG4vFbEdwKgOBJhfO5RXdX NngZ6MC1NAag5o/0EqTxRo96CqlASTH96H5uqwkJ8JGKib12nxEJGUwWr0z2qwPA YSEZ/WC6T9YRNerfZwHuJ28A2T3DWlCLsnYDsD+2eqe1pA9II/GBRr421sI13EIr rvA+0iKxjF4xOU/29uRwfcqq+dXq7pgeCIkVCXj+X/bWEF82sYRznT0RWc/cmGBh OezUeWrs/F5lw3uf2HW7/t+q9esC0bLH -----END CERTIFICATE-----Generated at Wed Sep 10 00:49:47 2025 by rpki-client