$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft File: O6JVjKXxoDfZaW9WeugTZ8buNeY.mft (raw, json) Hash identifier: hpYVIaLeLFgGWzkC7dj6/YQeI9i9VY/T1mkUsZRyTgA= Subject key identifier: 66:B6:48:96:04:09:19:67:D6:E1:32:A6:77:A9:A8:4F:5E:1A:41:78 Authority key identifier: 3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 Certificate issuer: /CN=A91C022C/serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft Manifest number: 69 Signing time: Sat 09 Aug 2025 07:27:27 +0000 Manifest this update: Sat 09 Aug 2025 07:27:26 +0000 Manifest next update: Sat 16 Aug 2025 07:27:26 +0000 Files and hashes: 1: O6JVjKXxoDfZaW9WeugTZ8buNeY.crl (hash: HuJGYAoCwdtSXz2eClrE/8ibZRpbFM4EoUXuf0Z8i3s=) 2: 372B21F6D4BA11EFA5BAA345C4F9AE02.roa (hash: 0VQHEL6AI7GrKoKG052X6QJW7qwnCtlNzYdHLuxNwGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C022C, serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Validity Not Before: Aug 9 07:27:26 2025 GMT Not After : Aug 16 07:27:26 2025 GMT Subject: CN=6896f85f-8b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:82:bd:5b:8c:5b:b7:7a:9b:f2:56:86:0e:6c: f5:fc:3f:e6:e9:ce:ad:11:88:eb:08:c1:2f:51:81: fd:77:30:e0:28:8f:d3:43:bf:12:29:6a:a4:ba:8d: 15:01:24:8b:eb:38:fc:a7:db:99:7a:4f:02:4c:7a: 42:a4:58:77:00:e5:6f:22:a1:f2:6b:85:2e:77:dc: 6c:ab:b6:d0:34:dc:98:88:ea:57:f6:28:a5:44:81: 38:34:5e:b7:3a:49:32:28:60:1a:f0:6b:9b:17:d7: 51:4e:b9:86:a3:a2:f7:39:57:7f:08:05:3b:9f:26: 5f:8e:ee:3d:84:fe:02:9c:59:36:e3:37:bc:02:b7: 34:5b:85:3d:fd:e3:3e:e2:cb:09:93:73:41:79:d6: f8:d1:41:3b:51:a2:41:6b:88:f4:ab:38:04:65:a0: 55:3c:49:92:14:58:84:2b:18:44:2a:4d:b3:3b:bb: 21:dd:3d:1c:5f:96:5a:64:b0:dd:02:5a:61:be:0c: 13:13:82:03:f3:53:f0:a7:1d:ea:ea:15:2c:3b:96: 3e:3e:c3:9a:29:fc:23:07:0e:4b:d5:5d:46:8b:a4: c4:ab:5d:36:64:00:83:b1:99:93:b1:0a:7b:6f:b1: 46:83:d5:96:94:22:75:0c:ed:87:ce:ce:e9:5f:86: 07:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B6:48:96:04:09:19:67:D6:E1:32:A6:77:A9:A8:4F:5E:1A:41:78 X509v3 Authority Key Identifier: keyid:3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:27:2f:d1:23:65:b5:9a:cb:fb:3a:c3:4b:e8:57:77:32:1c: dc:ee:ae:44:af:47:60:cc:55:e5:50:a0:0b:69:ed:74:bc:5a: b2:29:2b:fc:57:5d:2d:60:09:90:ef:eb:cb:7d:1b:67:5c:8b: f9:04:b2:17:05:85:10:a4:06:80:78:ed:d4:a0:78:0e:cd:96: 45:26:25:5a:de:41:b5:47:49:cd:85:e4:6e:47:97:50:b6:fa: 8b:2e:2c:36:21:07:ed:6a:03:ce:2b:94:0e:50:56:81:f6:a3: 36:1d:5d:21:b8:f2:2a:a8:8e:c5:60:97:a6:12:be:e7:80:fd: ca:bf:c9:4e:ff:94:fb:c3:6e:63:47:41:bf:d4:15:81:1f:48: 6d:aa:89:9b:ea:48:74:0f:d6:3e:ad:f4:b1:77:a5:65:5c:92: 94:f8:46:a7:84:b4:d7:56:70:b6:48:1d:66:d3:ec:57:e5:e3: 10:e6:8f:dd:9d:2c:fe:49:02:07:3e:92:f9:d6:61:bc:59:59: d4:63:f7:2f:f4:08:d5:ad:64:c2:e9:e6:c9:68:f6:79:73:d1: 67:6c:2a:ec:af:0d:14:12:d4:14:ea:20:ab:42:1e:de:7c:da: 4e:74:8d:d1:b9:29:3f:02:02:4d:06:4f:37:a7:6a:65:79:2e: c9:c6:d9:f5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDIyQzExMC8GA1UEBRMoM0JBMjU1OENBNUYxQTAzN0Q5Njk2RjU2N0FFODEzNjdD NkVFMzVFNjAeFw0yNTA4MDkwNzI3MjZaFw0yNTA4MTYwNzI3MjZaMBgxFjAUBgNV BAMTDTY4OTZmODVmLThiMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrgr1bjFu3epvyVoYObPX8P+bpzq0RiOsIwS9Rgf13MOAoj9NDvxIpaqS6jRUB JIvrOPyn25l6TwJMekKkWHcA5W8iofJrhS533GyrttA03JiI6lf2KKVEgTg0Xrc6 STIoYBrwa5sX11FOuYajovc5V38IBTufJl+O7j2E/gKcWTbjN7wCtzRbhT394z7i ywmTc0F51vjRQTtRokFriPSrOARloFU8SZIUWIQrGEQqTbM7uyHdPRxfllpksN0C WmG+DBMTggPzU/CnHerqFSw7lj4+w5op/CMHDkvVXUaLpMSrXTZkAIOxmZOxCntv sUaD1ZaUInUM7YfOzulfhgd1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZrZIlgQJ GWfW4TKmd6moT14aQXgwHwYDVR0jBBgwFoAUO6JVjKXxoDfZaW9WeugTZ8buNeYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwMjJDL0IxQzE4MjMwRDRC OTExRUY5RkE4RTI0RkM0RjlBRTAyL082SlZqS1h4b0RmWmFXOVdldWdUWjhidU5l WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTzZKVmpLWHhvRGZaYVc5V2V1Z1RaOGJ1TmVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMw MjJDL0IxQzE4MjMwRDRCOTExRUY5RkE4RTI0RkM0RjlBRTAyL082SlZqS1h4b0Rm WmFXOVdldWdUWjhidU5lWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALcnL9EjZbWay/s6w0voV3cyHNzurkSvR2DMVeVQoAtp7XS8WrIpK/xX XS1gCZDv68t9G2dci/kEshcFhRCkBoB47dSgeA7NlkUmJVreQbVHSc2F5G5Hl1C2 +osuLDYhB+1qA84rlA5QVoH2ozYdXSG48iqojsVgl6YSvueA/cq/yU7/lPvDbmNH Qb/UFYEfSG2qiZvqSHQP1j6t9LF3pWVckpT4RqeEtNdWcLZIHWbT7Ffl4xDmj92d LP5JAgc+kvnWYbxZWdRj9y/0CNWtZMLp5slo9nlz0WdsKuyvDRQS1BTqIKtCHt58 2k50jdG5KT8CAk0GTzenamV5LsnG2fU= -----END CERTIFICATE-----Generated at Mon Aug 11 04:18:07 2025 by rpki-client