$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: STVIERaMDVD9oae/Dp7rh1iwDCRKoulyi+zD+elRfPA= Subject key identifier: 28:AF:17:76:BB:9C:60:2D:76:18:57:8B:63:8B:6C:A7:5F:12:AC:AB Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 0360 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 0357 Signing time: Sat 09 Aug 2025 01:31:50 +0000 Manifest this update: Sat 09 Aug 2025 01:31:49 +0000 Manifest next update: Sat 16 Aug 2025 01:31:49 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: ZcDsiURwNl92NzIOeQdG1iF348cQpP4l3JQdQGLAMVE=) 2: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (hash: SFUw1crOwEdM2KZGmzmI0Y/ekMkiUyOErHqNpQ3ZimY=) 3: A047A07AD56811EFB57A5D33C4F9AE02.roa (hash: hW5FiSV5239AbImQE/mYJwi40OATdFzGCdVUMZFhemo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 864 (0x360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: Aug 9 01:31:49 2025 GMT Not After : Aug 16 01:31:49 2025 GMT Subject: CN=6896a506-0ad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:35:40:b9:74:69:37:e0:7a:a8:44:7f:e7:8a: 62:66:94:6e:dc:da:f1:1c:bb:7b:46:c3:4b:4f:b0: 67:5b:74:84:bd:6a:fc:02:f5:64:b3:7c:aa:b9:6a: cb:c6:5c:91:39:90:ea:3b:73:d8:98:d1:f7:89:4f: 43:1c:81:50:a0:30:a7:2e:f3:da:90:11:49:69:de: f4:b6:fc:e8:34:45:67:cb:f0:cb:cc:9d:82:ea:55: bb:98:b6:7f:f7:94:97:c1:2f:89:9c:24:d2:09:8f: b7:4e:8f:5f:7f:bb:fa:cd:09:c9:be:ad:95:5c:6a: 94:65:de:38:a5:1b:3b:fe:e7:31:4e:47:dd:4e:d5: 65:a5:ea:71:82:5c:ed:1a:f5:b4:05:86:02:57:c4: 5f:98:e0:7e:2b:f9:73:16:be:32:d8:e3:17:d3:65: 81:dd:32:44:62:c7:d9:50:96:9a:fe:08:9f:65:cd: 35:75:71:99:bf:5b:b5:7f:0e:bc:39:ba:dd:45:d4: 16:ed:b3:05:80:c0:1d:6b:5f:fc:e3:2e:bb:8d:2d: 24:c7:81:bf:a3:a6:e1:8c:9a:54:5f:37:b0:78:91: 62:ec:6f:81:d5:0f:ef:f1:5c:c0:ff:cc:9e:a0:e2: c9:2b:31:f7:f7:22:6b:34:e4:60:ce:70:0c:1a:93: ab:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AF:17:76:BB:9C:60:2D:76:18:57:8B:63:8B:6C:A7:5F:12:AC:AB X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:f6:dd:38:cd:0b:71:e7:9e:69:2d:06:c3:6c:5f:51:5b:e4: 50:a1:6b:b9:37:a9:61:5d:c9:1f:f3:c1:19:b1:d3:bd:fd:da: 67:03:47:92:69:66:01:de:c6:2d:db:36:e4:c9:85:3f:78:0f: 87:18:7e:8d:20:b4:d8:63:6b:3e:6c:54:0c:04:97:b2:d8:90: 33:18:f4:c2:98:9e:fe:7a:e4:84:53:c8:db:34:74:91:9c:11: a0:e0:62:b3:e5:09:ce:64:65:ec:b6:ee:ee:4a:48:bf:c8:6b: df:91:af:9b:c8:b5:1c:23:39:24:35:95:ad:7a:a2:69:c9:68: 38:c5:27:15:79:2e:08:59:04:df:fb:9d:c6:c3:37:2a:44:43: 55:e2:f5:2b:e2:99:63:0f:22:88:24:31:e7:d4:e6:2b:5f:0f: 8e:82:48:c3:2a:95:69:bd:34:89:20:03:4e:b8:21:01:a0:58: 4c:e8:91:1c:78:e2:41:11:09:fa:0e:df:81:ca:8e:f9:7f:e6: 0a:b3:95:48:37:c3:b5:1c:88:57:90:ec:66:2c:d6:0b:d7:ac: a8:e2:f5:df:ed:5e:4e:cf:3e:4b:99:56:d6:38:e6:ec:b1:a6: 0f:ff:4f:98:bc:5e:47:3b:ac:1c:c7:99:7b:6a:d2:b7:c7:82: 31:de:49:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjUwODA5MDEzMTQ5WhcNMjUwODE2MDEzMTQ5WjAYMRYwFAYD VQQDEw02ODk2YTUwNi0wYWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTVAuXRpN+B6qER/54piZpRu3NrxHLt7RsNLT7BnW3SEvWr8AvVks3yquWrL xlyROZDqO3PYmNH3iU9DHIFQoDCnLvPakBFJad70tvzoNEVny/DLzJ2C6lW7mLZ/ 95SXwS+JnCTSCY+3To9ff7v6zQnJvq2VXGqUZd44pRs7/ucxTkfdTtVlpepxglzt GvW0BYYCV8RfmOB+K/lzFr4y2OMX02WB3TJEYsfZUJaa/gifZc01dXGZv1u1fw68 ObrdRdQW7bMFgMAda1/84y67jS0kx4G/o6bhjJpUXzeweJFi7G+B1Q/v8VzA/8ye oOLJKzH39yJrNORgznAMGpOrqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCivF3a7 nGAtdhhXi2OLbKdfEqyrMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA9t04zQtx555pLQbDbF9RW+RQoWu5N6lhXckf88EZsdO9/dpnA0eS aWYB3sYt2zbkyYU/eA+HGH6NILTYY2s+bFQMBJey2JAzGPTCmJ7+euSEU8jbNHSR nBGg4GKz5QnOZGXstu7uSki/yGvfka+byLUcIzkkNZWteqJpyWg4xScVeS4IWQTf +53GwzcqRENV4vUr4pljDyKIJDHn1OYrXw+OgkjDKpVpvTSJIANOuCEBoFhM6JEc eOJBEQn6Dt+Byo75f+YKs5VIN8O1HIhXkOxmLNYL16yo4vXf7V5Ozz5LmVbWOObs saYP/0+YvF5HO6wcx5l7atK3x4Ix3knX -----END CERTIFICATE-----Generated at Sun Aug 10 05:00:41 2025 by rpki-client