$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: a8kooJkgYMJYAWNozNCnCh4EDL6An6aNBYgBicZVKeY= Subject key identifier: E6:DB:DB:50:97:1D:6B:F0:A3:EE:BC:8C:16:5D:9D:48:95:3D:61:1B Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 126B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 1253 Signing time: Fri 08 Aug 2025 17:18:01 +0000 Manifest this update: Fri 08 Aug 2025 17:18:01 +0000 Manifest next update: Fri 15 Aug 2025 17:18:01 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: 3xHK+ag4tjkViK4XPQL/+MgJhteI5lIearBzd5qzXCY=) 2: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: u2n7hXJfpPkswx+8ZUw3IUUcjyPvy2JG1QnFE+FNubg=) 3: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: EhJYlBjQzArjJUepcPMKlhW0SwABK8otVcs5MS+goNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4715 (0x126b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Aug 8 17:18:01 2025 GMT Not After : Aug 15 17:18:01 2025 GMT Subject: CN=68963149-b489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:98:f5:4c:3d:a2:d5:53:1b:79:d6:36:b5:d1: 49:9f:36:e4:94:c5:c1:cb:c5:36:9f:6b:60:5d:07: 66:10:62:ad:90:2a:1a:db:d7:cd:6d:bc:cb:fb:26: 4a:fc:69:95:32:10:8d:3e:24:18:fe:40:2b:25:d9: 21:98:28:ef:87:b1:af:96:dd:61:2b:47:3d:b1:ab: 2a:1b:b6:db:c3:6f:65:20:5e:b7:07:1e:a8:0c:a3: f0:bc:99:bc:2b:b5:f7:6a:e5:a7:d4:55:33:cb:d0: 53:a2:c3:75:28:8c:08:62:07:95:a6:28:c6:67:8a: 08:97:43:52:80:49:87:a0:5b:57:68:42:48:a9:f9: f0:83:3c:4c:55:57:d6:75:4e:6c:19:db:4d:d6:f0: 95:b2:25:cd:72:80:44:a2:68:49:62:0c:2e:93:66: 0a:b7:5b:23:a6:b0:26:8e:d2:61:b7:b7:df:20:81: d0:0a:90:3c:09:6c:18:19:8c:40:00:df:2d:a2:46: 22:7b:c4:d0:ec:5b:02:04:75:3c:81:a6:21:55:94: 8a:22:85:f7:66:ea:8f:ad:f0:44:35:7f:8e:59:40: a6:3e:e1:d9:3e:78:66:0b:e2:80:8d:bd:ad:66:e4: d4:7b:c2:f3:c6:0e:71:04:75:b0:2d:27:33:eb:ef: b4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DB:DB:50:97:1D:6B:F0:A3:EE:BC:8C:16:5D:9D:48:95:3D:61:1B X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:66:c5:5d:c1:d1:e6:75:53:9c:0f:27:68:76:e2:f8:d0:e0: de:2a:e0:a4:6d:cf:dc:f6:ab:95:39:ff:d5:be:f2:a8:82:0b: 7d:cc:ae:30:98:6a:ad:32:cd:30:e3:40:ab:74:f6:f4:98:d0: 40:c9:f8:9e:95:fa:dc:75:a6:93:b4:8a:ed:55:58:d8:cd:a9: 38:fb:d3:a6:4d:27:89:73:79:ba:96:81:b8:77:f8:ab:20:37: 07:de:08:fb:1b:39:f4:4e:37:e0:f8:8b:2b:3c:58:2f:04:3a: 9f:80:df:8b:4a:15:f6:6b:65:1d:e4:74:62:40:a1:97:cd:bc: 47:5b:37:f8:21:0a:58:43:bd:6e:ab:11:59:24:0d:6c:05:7d: 4c:ba:fa:09:a3:03:29:62:94:ea:8e:59:0c:c7:90:37:33:03: 84:df:54:a3:03:9b:b7:fa:c2:c3:0e:f5:af:7f:68:a1:f0:80: e4:94:49:3c:d1:0e:68:5e:74:d1:d8:6a:ae:b3:bd:d9:a4:d9: 9d:52:f8:74:ee:2a:6d:16:a8:e2:2d:13:a8:fb:66:72:50:46: 73:49:42:0b:47:52:9e:97:40:e9:99:39:18:04:c1:d0:1a:f3: fa:1e:a6:bd:95:c4:8f:95:8d:dc:3c:a6:6f:e4:93:d8:24:b0: a6:e7:f5:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjUwODA4MTcxODAxWhcNMjUwODE1MTcxODAxWjAYMRYwFAYD VQQDEw02ODk2MzE0OS1iNDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppj1TD2i1VMbedY2tdFJnzbklMXBy8U2n2tgXQdmEGKtkCoa29fNbbzL+yZK /GmVMhCNPiQY/kArJdkhmCjvh7Gvlt1hK0c9sasqG7bbw29lIF63Bx6oDKPwvJm8 K7X3auWn1FUzy9BTosN1KIwIYgeVpijGZ4oIl0NSgEmHoFtXaEJIqfnwgzxMVVfW dU5sGdtN1vCVsiXNcoBEomhJYgwuk2YKt1sjprAmjtJht7ffIIHQCpA8CWwYGYxA AN8tokYie8TQ7FsCBHU8gaYhVZSKIoX3ZuqPrfBENX+OWUCmPuHZPnhmC+KAjb2t ZuTUe8Lzxg5xBHWwLScz6++0zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObb21CX HWvwo+68jBZdnUiVPWEbMB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIZsVdwdHmdVOcDydoduL40ODeKuCkbc/c9quVOf/VvvKoggt9zK4w mGqtMs0w40CrdPb0mNBAyfielfrcdaaTtIrtVVjYzak4+9OmTSeJc3m6loG4d/ir IDcH3gj7Gzn0Tjfg+IsrPFgvBDqfgN+LShX2a2Ud5HRiQKGXzbxHWzf4IQpYQ71u qxFZJA1sBX1MuvoJowMpYpTqjlkMx5A3MwOE31SjA5u3+sLDDvWvf2ih8IDklEk8 0Q5oXnTR2Gqus73ZpNmdUvh07iptFqjiLROo+2ZyUEZzSUILR1Kel0DpmTkYBMHQ GvP6Hqa9lcSPlY3cPKZv5JPYJLCm5/Xx -----END CERTIFICATE-----Generated at Sat Aug 9 20:50:51 2025 by rpki-client