$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft File: O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json) Hash identifier: Km/lCbAzXMg2+ULC24Wog+UUZUPuuHbCuz+yk+7BDqI= Subject key identifier: 52:F5:D0:B2:72:43:28:24:41:40:D4:E5:13:0D:93:8E:4E:98:40:51 Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Certificate serial: 02D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft Manifest number: 02CC Signing time: Sat 09 Aug 2025 01:56:29 +0000 Manifest this update: Sat 09 Aug 2025 01:56:28 +0000 Manifest next update: Sat 16 Aug 2025 01:56:28 +0000 Files and hashes: 1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: n0IqJlFn7Yl8NCMokLyI9V/0iiielgBn0F0wmgZgeMA=) 2: C78C216A070211EDB5178252C4F9AE02.roa (hash: SRhZlpn7+MBKLxOuK/LxQ3OpeiTq/ZO5FLcjac1mcNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3873, serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Validity Not Before: Aug 9 01:56:28 2025 GMT Not After : Aug 16 01:56:28 2025 GMT Subject: CN=6896aacd-ef41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4e:38:4d:2c:58:16:49:83:8d:8d:31:72:b6: 32:47:60:db:5e:89:bd:ad:32:cd:f5:c0:45:9a:43: 79:d1:1f:d1:e3:65:e8:e1:20:7d:5e:01:3e:00:6e: 50:d4:a7:6e:35:bb:b4:a0:07:76:2c:ef:29:0d:f9: 74:d0:7c:c8:e3:c0:ab:cf:ab:6b:4b:a4:bb:79:cc: c0:5b:52:19:b0:e7:1d:b2:01:76:fb:8b:2c:6e:30: 2e:7b:6a:da:67:9a:04:84:d1:24:57:48:13:a1:c2: 4d:ce:50:ca:5c:28:fd:36:65:c2:36:de:f0:72:ef: 9f:f5:0a:ae:11:de:7d:15:0d:da:74:98:e1:de:24: d9:b8:ed:7a:32:ee:52:c2:a2:b6:9a:ec:c6:4b:30: ea:46:3b:2c:da:d5:0b:36:42:ae:3d:5e:c9:47:55: 70:2f:59:f9:e7:05:b1:bd:d5:dd:73:f7:df:c2:4f: 6d:7a:3f:57:e2:37:f7:28:57:94:a1:5f:43:ea:5c: ed:00:36:f3:67:09:43:8b:f1:5b:17:77:80:15:dd: 0d:ac:2d:f3:51:b4:0b:4e:5e:c6:79:4e:69:53:d9: 5a:6b:96:1b:a9:6b:5d:5c:8a:59:6e:cc:35:49:62: 0d:9a:e0:11:ac:0e:62:37:aa:70:90:f5:8a:ee:50: ea:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F5:D0:B2:72:43:28:24:41:40:D4:E5:13:0D:93:8E:4E:98:40:51 X509v3 Authority Key Identifier: keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:c9:8d:9f:ff:06:07:8b:62:da:24:00:e6:a5:82:31:0f:aa: 76:d7:4c:9e:cb:0a:e6:75:86:46:10:76:0c:ea:64:d6:a5:21: 01:21:70:77:bf:22:2c:a4:92:2a:7a:ef:e1:d0:29:42:54:a8: 50:e9:33:df:5b:b6:24:d5:c7:64:c3:c8:d8:9f:64:dd:f5:e7: bb:c7:7c:a9:ea:a8:bb:52:f1:ce:9e:67:39:33:d5:e0:9e:4a: 0e:22:57:03:3a:7d:41:2b:84:29:82:1e:04:85:f0:b3:b4:e3: 9a:13:6a:fd:cf:50:fc:04:77:cc:21:ba:c5:cb:41:2d:cb:95: b9:d6:45:d5:8c:8a:05:74:3e:90:fa:bb:01:36:a1:82:ef:cc: 9c:32:a4:d9:75:c6:ca:1b:07:9f:a7:c9:78:e0:24:4b:6b:60: 64:54:e6:32:39:3f:47:c2:cd:c2:08:b4:d5:b0:53:8d:81:cb: c6:13:cd:d6:ea:03:62:18:ca:a3:30:42:51:aa:e1:39:81:24: bd:7d:c9:06:72:95:11:77:58:39:62:44:e1:56:6d:11:11:68: fb:43:83:60:3a:e8:9e:21:e5:5b:3d:55:55:f3:79:71:ef:01: 25:b3:77:8a:de:81:bd:48:73:e2:31:98:c1:48:14:53:9a:05: 7f:17:27:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4NzMxMTAvBgNVBAUTKDNCNDdBQTBEMDMyMDkxOTVGMDU1NUM2MEFERTMyOTRG MkQzN0EyQTEwHhcNMjUwODA5MDE1NjI4WhcNMjUwODE2MDE1NjI4WjAYMRYwFAYD VQQDEw02ODk2YWFjZC1lZjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn044TSxYFkmDjY0xcrYyR2DbXom9rTLN9cBFmkN50R/R42Xo4SB9XgE+AG5Q 1KduNbu0oAd2LO8pDfl00HzI48Crz6trS6S7eczAW1IZsOcdsgF2+4ssbjAue2ra Z5oEhNEkV0gTocJNzlDKXCj9NmXCNt7wcu+f9QquEd59FQ3adJjh3iTZuO16Mu5S wqK2muzGSzDqRjss2tULNkKuPV7JR1VwL1n55wWxvdXdc/ffwk9tej9X4jf3KFeU oV9D6lztADbzZwlDi/FbF3eAFd0NrC3zUbQLTl7GeU5pU9laa5YbqWtdXIpZbsw1 SWINmuARrA5iN6pwkPWK7lDqVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFL10LJy QygkQUDU5RMNk45OmEBRMB8GA1UdIwQYMBaAFDtHqg0DIJGV8FVcYK3jKU8tN6Kh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzg3My8xMTJFQzE5NkZE QjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2taWHdWVnhncmVNcFR5MDNv cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08wZXFEUU1na1pYd1ZWeGdyZU1wVHkwM29xRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzg3My8xMTJFQzE5NkZEQjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2ta WHdWVnhncmVNcFR5MDNvcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+yY2f/wYHi2LaJADmpYIxD6p210yeywrmdYZGEHYM6mTWpSEBIXB3 vyIspJIqeu/h0ClCVKhQ6TPfW7Yk1cdkw8jYn2Td9ee7x3yp6qi7UvHOnmc5M9Xg nkoOIlcDOn1BK4Qpgh4EhfCztOOaE2r9z1D8BHfMIbrFy0Ety5W51kXVjIoFdD6Q +rsBNqGC78ycMqTZdcbKGwefp8l44CRLa2BkVOYyOT9Hws3CCLTVsFONgcvGE83W 6gNiGMqjMEJRquE5gSS9fckGcpURd1g5YkThVm0REWj7Q4NgOuieIeVbPVVV83lx 7wEls3eK3oG9SHPiMZjBSBRTmgV/Fycc -----END CERTIFICATE-----Generated at Sun Aug 10 21:12:49 2025 by rpki-client