$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: CNt6pqngzDsGW/ilZu4R4b6VI9uWkneCe1r2NRiDcQg= Subject key identifier: 8C:51:DB:4A:4C:CA:FA:D1:E6:D7:6E:F4:61:BE:BD:2A:F7:8E:60:61 Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 03DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 03D9 Signing time: Thu 07 Aug 2025 01:08:20 +0000 Manifest this update: Thu 07 Aug 2025 01:08:19 +0000 Manifest next update: Thu 14 Aug 2025 01:08:19 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: p0pz8Z48crJvH65Nj+d67Pap5VidZN5mlJospoQzxJc=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: CfbtaxsbT8QkNpB+dr8l4I71elKTP/TaO4DWd5BrJjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 01:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 989 (0x3dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Aug 7 01:08:19 2025 GMT Not After : Aug 14 01:08:19 2025 GMT Subject: CN=6893fc84-f11f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c1:82:22:ce:8a:5e:81:61:97:ba:fb:cd:9c: a9:f7:72:fc:d0:db:91:31:67:47:e0:ec:40:cf:43: 2c:5e:21:cb:77:97:29:c4:0f:5a:95:aa:7f:cf:e1: 84:35:70:7c:d5:a8:57:10:8c:9e:01:d4:c2:9a:c0: 2f:4d:87:63:42:6f:aa:2a:15:a7:b5:5e:bc:9d:07: 7d:ba:32:7b:a3:4d:eb:31:76:64:f0:2d:c0:5e:30: d3:e1:74:13:ab:0c:2b:41:02:d7:20:c5:4f:8d:ee: 9f:1a:50:d8:52:71:0e:23:ea:7f:cc:95:34:5d:08: 94:34:c1:6b:71:b1:27:ab:0c:f5:ae:d9:c2:37:d3: f7:73:cf:5b:a0:58:aa:95:3e:67:23:8b:9e:b9:93: 64:3c:dd:fd:a5:16:90:c9:29:de:8e:39:02:2f:09: a6:c2:73:e1:71:6a:25:2f:9c:d6:c0:c0:12:9e:11: 40:9f:e5:50:c2:7d:01:a1:9e:af:9a:54:fe:5b:d1: 56:1e:64:b6:fa:3a:b4:72:75:5d:e1:9d:27:61:c6: 55:15:52:e0:ae:16:2d:45:95:c8:e5:38:38:55:72: 6b:87:38:be:51:6f:94:33:b0:20:25:e6:bb:d7:d7: cc:0a:0b:59:b8:9d:04:d8:36:29:20:ec:28:86:0f: df:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:51:DB:4A:4C:CA:FA:D1:E6:D7:6E:F4:61:BE:BD:2A:F7:8E:60:61 X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:da:d9:a7:27:c2:0e:3a:1b:99:2c:53:2b:7b:24:aa:d7:23: 7f:d9:46:46:a8:9e:f1:78:89:81:fa:90:c1:f9:02:33:9f:ed: 14:16:e7:11:f5:9d:99:9d:53:6e:4b:59:d9:f6:71:a2:92:f3: a7:de:dc:7c:41:12:da:42:e1:26:e2:6a:db:a1:cc:77:69:9d: f6:f2:5d:23:f6:e2:0f:6f:1f:56:6a:87:8f:83:7d:96:95:42: f4:e3:16:71:02:04:d4:5d:2f:dc:dc:97:5c:56:66:2a:91:03: 30:49:16:fb:a2:c3:8c:ca:6f:6c:d5:3b:12:d3:a3:34:98:06: 1f:66:71:5a:57:a0:47:43:3a:ea:0c:fb:7b:32:0e:57:d6:3d: 2b:10:0d:dc:1a:9b:26:d8:9d:1f:73:95:61:ed:d5:98:54:68: 80:42:c3:df:d1:07:34:1b:84:a9:94:36:bf:c1:d4:be:65:fc: 61:21:c5:d1:65:c2:38:d9:c3:7b:d1:98:53:c5:4d:32:76:09: f2:a2:0b:25:2f:4b:56:63:f6:96:c0:c6:c0:c5:10:46:0e:62: a9:80:c3:c4:35:44:e8:d1:37:00:92:6f:10:63:0a:1d:a3:5e: 5f:57:c4:92:29:78:1e:86:36:16:f8:e6:73:08:70:25:6d:a5: 0f:08:4f:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUwODA3MDEwODE5WhcNMjUwODE0MDEwODE5WjAYMRYwFAYD VQQDEw02ODkzZmM4NC1mMTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cGCIs6KXoFhl7r7zZyp93L80NuRMWdH4OxAz0MsXiHLd5cpxA9alap/z+GE NXB81ahXEIyeAdTCmsAvTYdjQm+qKhWntV68nQd9ujJ7o03rMXZk8C3AXjDT4XQT qwwrQQLXIMVPje6fGlDYUnEOI+p/zJU0XQiUNMFrcbEnqwz1rtnCN9P3c89boFiq lT5nI4ueuZNkPN39pRaQySnejjkCLwmmwnPhcWolL5zWwMASnhFAn+VQwn0BoZ6v mlT+W9FWHmS2+jq0cnVd4Z0nYcZVFVLgrhYtRZXI5Tg4VXJrhzi+UW+UM7AgJea7 19fMCgtZuJ0E2DYpIOwohg/fIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxR20pM yvrR5tdu9GG+vSr3jmBhMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg2tmnJ8IOOhuZLFMreySq1yN/2UZGqJ7xeImB+pDB+QIzn+0UFucR 9Z2ZnVNuS1nZ9nGikvOn3tx8QRLaQuEm4mrbocx3aZ328l0j9uIPbx9WaoePg32W lUL04xZxAgTUXS/c3JdcVmYqkQMwSRb7osOMym9s1TsS06M0mAYfZnFaV6BHQzrq DPt7Mg5X1j0rEA3cGpsm2J0fc5Vh7dWYVGiAQsPf0Qc0G4SplDa/wdS+ZfxhIcXR ZcI42cN70ZhTxU0ydgnyogslL0tWY/aWwMbAxRBGDmKpgMPENUTo0TcAkm8QYwod o15fV8SSKXgehjYW+OZzCHAlbaUPCE8Q -----END CERTIFICATE-----Generated at Fri Aug 8 00:50:33 2025 by rpki-client