$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: kJg4COoGgvz3hSJTumDBsUJojj+2YPMCz4gH848KjlY= Subject key identifier: 6D:95:D5:CC:9E:F4:4D:EB:58:F4:E2:CD:A5:4C:B7:EB:95:2C:C7:ED Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 138B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 137F Signing time: Sun 10 Aug 2025 16:58:31 +0000 Manifest this update: Sun 10 Aug 2025 16:58:30 +0000 Manifest next update: Sun 17 Aug 2025 16:58:30 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: MBDfvHSSpMOp2N9bhASrOb93UMVVOpAdr2KIYBiyb38=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5003 (0x138b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Aug 10 16:58:30 2025 GMT Not After : Aug 17 16:58:30 2025 GMT Subject: CN=6898cfb7-d11c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:50:e1:e5:dd:44:5b:09:8a:71:96:8b:fe:52: 10:63:c7:19:82:4e:0b:31:1d:d8:44:67:0b:83:6e: e4:cf:be:9a:ee:ca:9e:04:51:9c:cb:82:19:18:41: 9c:59:4f:d5:ba:95:b0:62:78:9d:0b:81:03:b8:95: b7:4f:ed:e4:c6:9e:26:91:59:3b:e3:fb:1a:8b:29: 39:0e:93:05:92:88:63:3e:33:26:0c:69:31:f0:d7: 79:46:5f:b8:ae:cb:5b:d8:fc:b8:b8:be:af:5f:72: 13:2c:b3:e8:d1:5e:25:f2:77:67:e6:5f:94:aa:cb: 46:de:9e:18:d8:0d:5b:08:64:64:c1:fd:f0:94:a4: 46:c5:a0:91:87:42:14:6e:2f:bb:10:25:f4:33:2c: c0:bf:a0:6c:fe:24:f2:7f:19:c7:e4:bf:60:ab:6a: a9:93:a6:ad:d9:45:f9:33:d0:5a:1c:fd:68:70:69: 27:5c:1c:12:ca:0c:e3:5c:bf:2b:da:ae:0c:4d:1f: e9:2c:d3:fc:5a:ad:0e:02:3c:08:d0:1e:46:ce:92: 69:45:37:26:b1:5a:fa:de:fc:a5:d6:18:a8:24:f5: 7f:46:2b:db:f5:56:12:6f:f7:a7:e0:b3:7d:6f:e8: fc:b0:a3:ee:e2:3d:dd:94:66:be:ec:c9:2c:8e:32: 6a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:95:D5:CC:9E:F4:4D:EB:58:F4:E2:CD:A5:4C:B7:EB:95:2C:C7:ED X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:6b:c0:e2:fa:e7:16:9f:91:a5:1e:22:2d:d2:9e:aa:09:3e: 3e:49:91:12:d2:5a:ae:aa:e4:98:03:1c:7d:1c:6e:d0:0d:ca: 48:d8:53:82:fe:fc:53:4e:71:14:c5:cd:20:d5:22:03:a7:86: b4:24:3e:2b:1d:3d:a7:ea:c0:27:a2:2a:28:77:ba:f8:0b:08: 86:57:c3:a5:bf:c0:a1:ef:1b:e6:5f:b7:45:86:2f:2e:41:44: f6:1d:12:ed:99:8c:91:30:cc:43:7d:bc:1c:55:55:7b:b9:85: 32:d9:28:d4:ea:2d:8b:5c:35:4f:5b:4b:34:44:d5:58:a3:6c: a9:ff:0b:55:91:5a:6a:ba:1d:ce:f0:10:5b:37:67:38:2b:9c: a8:50:44:9e:7f:c8:0d:fd:56:67:e2:ca:6e:e5:f4:a9:46:bb: 6a:e8:18:d1:a4:9d:90:c7:f3:ba:30:b1:6a:35:a6:d0:24:81: e2:6c:74:af:df:0f:3b:ce:14:3b:22:30:cc:54:1f:1c:ef:77: 13:7e:45:06:cb:26:1c:58:08:c9:69:7d:1c:be:db:42:fa:76: 89:a6:b7:31:20:b4:35:ce:0a:ae:b4:c0:59:ef:11:cf:16:c9: a9:f9:56:81:a2:44:82:15:e1:fc:45:38:5d:bb:dc:b9:3d:5b: 07:4a:64:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUwODEwMTY1ODMwWhcNMjUwODE3MTY1ODMwWjAYMRYwFAYD VQQDEw02ODk4Y2ZiNy1kMTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1Dh5d1EWwmKcZaL/lIQY8cZgk4LMR3YRGcLg27kz76a7sqeBFGcy4IZGEGc WU/VupWwYnidC4EDuJW3T+3kxp4mkVk74/saiyk5DpMFkohjPjMmDGkx8Nd5Rl+4 rstb2Py4uL6vX3ITLLPo0V4l8ndn5l+UqstG3p4Y2A1bCGRkwf3wlKRGxaCRh0IU bi+7ECX0MyzAv6Bs/iTyfxnH5L9gq2qpk6at2UX5M9BaHP1ocGknXBwSygzjXL8r 2q4MTR/pLNP8Wq0OAjwI0B5GzpJpRTcmsVr63vyl1hioJPV/Rivb9VYSb/en4LN9 b+j8sKPu4j3dlGa+7MksjjJq8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2V1cye 9E3rWPTizaVMt+uVLMftMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAa8Di+ucWn5GlHiIt0p6qCT4+SZES0lququSYAxx9HG7QDcpI2FOC /vxTTnEUxc0g1SIDp4a0JD4rHT2n6sAnoiood7r4CwiGV8Olv8Ch7xvmX7dFhi8u QUT2HRLtmYyRMMxDfbwcVVV7uYUy2SjU6i2LXDVPW0s0RNVYo2yp/wtVkVpquh3O 8BBbN2c4K5yoUESef8gN/VZn4spu5fSpRrtq6BjRpJ2Qx/O6MLFqNabQJIHibHSv 3w87zhQ7IjDMVB8c73cTfkUGyyYcWAjJaX0cvttC+naJprcxILQ1zgqutMBZ7xHP Fsmp+VaBokSCFeH8RThdu9y5PVsHSmSQ -----END CERTIFICATE-----Generated at Mon Aug 11 04:19:16 2025 by rpki-client