$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: UKcMFJVXVXisNXa8EQQ6zMdYqI3ujwuaDx2SZxlbgs8= Subject key identifier: 5B:52:8D:38:0D:8C:8A:EF:4A:33:57:77:16:F7:19:CB:F5:74:23:6B Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 010C Signing time: Sat 09 Aug 2025 05:25:54 +0000 Manifest this update: Sat 09 Aug 2025 05:25:54 +0000 Manifest next update: Sat 16 Aug 2025 05:25:54 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: JtEEx7n7R7EoM9JO7YNxnjPtsqmoD8jVSdXEpTgkCJY=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Aug 9 05:25:54 2025 GMT Not After : Aug 16 05:25:54 2025 GMT Subject: CN=6896dbe2-c0ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ac:b1:6b:d7:f3:f8:69:f0:62:f5:58:6e:d2: 77:7b:88:23:19:82:2a:2b:a3:31:89:b9:7d:d3:ac: 25:40:2d:d2:4d:e0:d0:80:7f:6e:78:b3:de:53:48: 23:48:06:09:12:d3:fb:08:31:0b:ce:34:15:5f:bc: ba:ea:b0:56:f0:58:ee:38:98:13:b0:af:49:fb:26: 0f:97:b8:87:ae:8c:56:24:be:09:82:6c:da:a1:56: 42:a8:2d:83:85:17:bf:98:f8:b1:24:d9:4e:f1:c4: 97:46:4e:31:3d:e7:0b:7c:9f:7f:69:0d:fe:4a:30: 08:c9:40:a4:2b:be:34:1a:f6:3e:fd:0c:70:d4:78: 74:a6:d1:6a:22:3f:33:b8:17:1a:f5:33:83:bb:2e: bf:1d:92:ea:29:13:55:ae:46:e0:e2:9d:cf:8f:00: 8f:d0:d5:3b:80:f9:e3:c6:f1:0f:43:7d:5e:ed:eb: cb:17:8c:95:63:ca:15:f0:26:cd:0d:b4:24:b3:ef: 94:96:7e:6d:d2:48:c8:bd:82:8c:aa:9b:21:c1:da: 89:e7:c8:f3:36:99:91:e7:10:9d:53:f1:b3:5f:34: 2f:b9:75:eb:c9:55:a6:38:18:22:e7:64:20:4a:32: b6:b6:9a:59:7e:0b:e5:c6:46:a9:94:7f:79:8e:d4: 58:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:52:8D:38:0D:8C:8A:EF:4A:33:57:77:16:F7:19:CB:F5:74:23:6B X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:86:21:20:2e:a2:ec:fb:f2:c5:c9:94:c1:b9:45:7e:91:72: be:bd:0f:e2:39:ce:ca:52:fc:8c:d2:5a:95:f1:9f:56:99:36: a1:52:0a:60:cf:59:ae:f2:33:5f:8e:01:c6:05:4c:c6:6e:40: dd:e7:5b:50:25:7a:c2:fd:ce:a6:7a:2c:eb:b0:6f:fd:39:f1: 19:82:51:aa:d4:5c:c4:56:db:70:e4:02:46:73:b6:0c:96:8b: 90:9a:d4:ed:43:43:78:74:6f:4b:8a:9e:ab:11:6a:0d:a2:4f: fe:a0:d2:4d:02:4d:41:81:05:89:1a:98:0e:e7:3e:54:f2:fa: 19:68:6c:21:ea:9e:69:20:4f:87:75:d0:88:39:62:48:7c:2a: 35:0d:05:76:ec:a6:99:83:46:56:0f:5b:33:09:31:60:6c:1c: 31:fc:74:db:9a:51:16:de:5b:c5:2b:e9:34:75:ca:0e:78:d3: ab:13:b0:a0:02:70:76:c7:8e:30:bb:fe:68:93:21:38:75:8c: 80:b1:e7:b1:a0:7e:d6:1b:ca:3b:2a:a0:76:41:b3:c1:a3:06: 92:0a:27:26:48:1f:63:6c:27:20:b4:da:54:5d:a1:1e:c6:70: e0:3f:4d:f4:1b:af:c2:b3:26:c7:24:f6:2a:5b:ba:fa:eb:11: 7b:46:99:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUwODA5MDUyNTU0WhcNMjUwODE2MDUyNTU0WjAYMRYwFAYD VQQDEw02ODk2ZGJlMi1jMGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqyxa9fz+GnwYvVYbtJ3e4gjGYIqK6Mxibl906wlQC3STeDQgH9ueLPeU0gj SAYJEtP7CDELzjQVX7y66rBW8FjuOJgTsK9J+yYPl7iHroxWJL4JgmzaoVZCqC2D hRe/mPixJNlO8cSXRk4xPecLfJ9/aQ3+SjAIyUCkK740GvY+/Qxw1Hh0ptFqIj8z uBca9TODuy6/HZLqKRNVrkbg4p3PjwCP0NU7gPnjxvEPQ31e7evLF4yVY8oV8CbN DbQks++Uln5t0kjIvYKMqpshwdqJ58jzNpmR5xCdU/GzXzQvuXXryVWmOBgi52Qg SjK2tppZfgvlxkaplH95jtRYmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtSjTgN jIrvSjNXdxb3Gcv1dCNrMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuhiEgLqLs+/LFyZTBuUV+kXK+vQ/iOc7KUvyM0lqV8Z9WmTahUgpg z1mu8jNfjgHGBUzGbkDd51tQJXrC/c6meizrsG/9OfEZglGq1FzEVttw5AJGc7YM louQmtTtQ0N4dG9Lip6rEWoNok/+oNJNAk1BgQWJGpgO5z5U8voZaGwh6p5pIE+H ddCIOWJIfCo1DQV27KaZg0ZWD1szCTFgbBwx/HTbmlEW3lvFK+k0dcoOeNOrE7Cg AnB2x44wu/5okyE4dYyAseexoH7WG8o7KqB2QbPBowaSCicmSB9jbCcgtNpUXaEe xnDgP030G6/CsybHJPYqW7r66xF7Rpln -----END CERTIFICATE-----Generated at Sun Aug 10 21:04:46 2025 by rpki-client