$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: TU9XTBJak1y+J7DvaMSPkMnMV5i+Lb+h1IP6rM/4kPA= Subject key identifier: EC:2E:F5:54:67:52:36:86:E7:75:BE:2B:F2:C8:87:36:84:76:C3:82 Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 0918 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 090B Signing time: Fri 08 Aug 2025 20:40:49 +0000 Manifest this update: Fri 08 Aug 2025 20:40:48 +0000 Manifest next update: Fri 15 Aug 2025 20:40:48 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: Ns6piI1xCyba5rd9OtqeJWG48v5Hdu9hNCFhy7bKCD8=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: jBS/1Hlfhun69e6e4ZHEVPi7ipp4H+jsjI8X7M9ZNQw=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: /W7jNuOZe0YfOd8yIagbqgnCN+PhgeGc0tSQIMsMPPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2328 (0x918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Aug 8 20:40:48 2025 GMT Not After : Aug 15 20:40:48 2025 GMT Subject: CN=689660d1-44ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:af:e8:c5:78:23:1a:99:b3:90:07:4a:73:1a: 69:af:cf:a0:c6:40:f2:9e:1d:63:d7:90:36:9f:1a: e4:2d:67:8e:5e:91:92:77:54:a4:f8:de:89:2d:d3: ba:70:90:5e:33:02:72:1a:04:76:aa:f4:95:6b:5d: 12:2c:8d:18:be:3c:e5:c9:b3:ec:37:25:81:59:f4: e6:c5:22:e4:31:86:c3:82:7d:6d:25:ea:61:3a:04: 2b:35:72:75:eb:fb:15:31:c2:f0:7d:27:c6:64:90: 95:d1:3c:28:81:32:3a:32:b8:71:f1:9f:50:78:08: ef:3f:62:f8:76:15:05:93:09:e6:68:93:3c:bd:07: ec:e1:dc:92:e2:11:37:f6:01:dd:48:92:d6:bf:1a: 9a:ad:6e:ed:d3:15:0a:e4:f3:2c:eb:b4:ec:38:2c: 1d:18:c4:60:89:bc:52:a2:b0:5d:ca:58:1e:68:4f: 50:12:ab:e5:3d:bd:2e:c6:4b:b1:c3:be:2b:1e:10: 08:15:61:69:34:8b:c5:8c:66:1b:b2:9b:0b:23:9e: 0c:8d:fc:ac:54:24:b0:fe:82:93:7a:c8:cf:8d:cf: 15:c7:ec:e1:1b:51:e0:89:07:ad:cb:16:69:38:5b: 5d:ff:5c:cd:67:39:ae:18:65:ba:04:9e:82:12:f6: 70:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:2E:F5:54:67:52:36:86:E7:75:BE:2B:F2:C8:87:36:84:76:C3:82 X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:65:a0:c2:2f:85:50:4f:77:b8:59:87:94:87:2e:9d:92:ed: 6c:4e:65:96:71:bd:12:f6:43:8c:83:d5:52:bd:6d:be:5a:5b: 02:7a:48:c0:0b:c5:79:0c:34:6b:fb:d0:9b:8c:7b:26:8c:5b: c5:27:65:67:78:67:e4:7b:4b:17:9b:6e:88:90:a2:bb:9c:5d: 06:49:1d:d1:34:ac:9f:5e:c6:55:40:c0:e4:d4:18:55:fd:cd: e4:5f:06:fa:62:17:c3:b2:7a:56:da:f6:64:2e:0b:c0:25:5a: e9:ac:fa:c3:83:4b:ff:a1:e7:42:16:67:fe:da:0e:69:e0:13: de:e2:c1:fe:c7:6b:e9:25:81:0e:5e:7b:d1:b6:1e:26:ba:94: 9c:00:68:55:6c:09:5b:c8:a9:83:22:a3:d2:5b:13:45:c1:df: 11:97:fb:54:23:22:6e:33:07:0b:fb:0b:34:46:79:6d:b0:87: b4:a2:5b:e5:65:43:f7:c4:14:1f:6a:a2:63:d7:48:4c:03:3d: 32:2f:fd:77:98:dd:f4:b8:53:35:41:c9:f4:1a:41:95:69:cc: 9e:6e:0b:4c:57:6e:6b:f7:ba:48:fc:b4:31:f0:ef:20:e2:70: d5:4e:a6:d7:f2:aa:a0:7b:cf:37:cd:92:17:9a:e2:55:40:2b: 95:0c:e9:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjUwODA4MjA0MDQ4WhcNMjUwODE1MjA0MDQ4WjAYMRYwFAYD VQQDEw02ODk2NjBkMS00NGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa/oxXgjGpmzkAdKcxppr8+gxkDynh1j15A2nxrkLWeOXpGSd1Sk+N6JLdO6 cJBeMwJyGgR2qvSVa10SLI0YvjzlybPsNyWBWfTmxSLkMYbDgn1tJephOgQrNXJ1 6/sVMcLwfSfGZJCV0TwogTI6Mrhx8Z9QeAjvP2L4dhUFkwnmaJM8vQfs4dyS4hE3 9gHdSJLWvxqarW7t0xUK5PMs67TsOCwdGMRgibxSorBdylgeaE9QEqvlPb0uxkux w74rHhAIFWFpNIvFjGYbspsLI54MjfysVCSw/oKTesjPjc8Vx+zhG1HgiQetyxZp OFtd/1zNZzmuGGW6BJ6CEvZw6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwu9VRn UjaG53W+K/LIhzaEdsOCMB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCZaDCL4VQT3e4WYeUhy6dku1sTmWWcb0S9kOMg9VSvW2+WlsCekjA C8V5DDRr+9CbjHsmjFvFJ2VneGfke0sXm26IkKK7nF0GSR3RNKyfXsZVQMDk1BhV /c3kXwb6YhfDsnpW2vZkLgvAJVrprPrDg0v/oedCFmf+2g5p4BPe4sH+x2vpJYEO XnvRth4mupScAGhVbAlbyKmDIqPSWxNFwd8Rl/tUIyJuMwcL+ws0RnltsIe0olvl ZUP3xBQfaqJj10hMAz0yL/13mN30uFM1Qcn0GkGVacyebgtMV25r97pI/LQx8O8g 4nDVTqbX8qqge883zZIXmuJVQCuVDOle -----END CERTIFICATE-----Generated at Sun Aug 10 04:24:34 2025 by rpki-client