$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: kURQNZEIfwhl1U7aBeJos6wVT8Xv2pWb97z7y7j0e1U= Subject key identifier: 76:05:BE:A1:4E:F1:40:58:E0:74:08:61:B8:7B:F2:CC:47:D5:F2:3D Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 3587 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 3527 Signing time: Tue 12 Aug 2025 14:50:28 +0000 Manifest this update: Tue 12 Aug 2025 14:50:28 +0000 Manifest next update: Tue 19 Aug 2025 14:50:28 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: JxGJA7SOzZgTId4x6anUkaKZPNCEmka1aZ8a7uFbo/w=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: K9GG+06i99foR/2RXGf0/I8Kvx2roZu5heq1VZdQ+OI=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: IyDQYJrM5fIKR+ASJpDKeAtN9Kfn9iiroq8ekuZROvU=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: JsgxM7O87UBNAKRhO7z2ipB7o5ZRGqkbp9Qr0swNUZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 14:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13703 (0x3587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Aug 12 14:50:28 2025 GMT Not After : Aug 19 14:50:28 2025 GMT Subject: CN=689b54b4-0f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7c:71:7d:71:6a:79:35:66:66:13:6e:37:1a: 06:11:31:9b:ca:1e:a4:c0:e9:ad:bf:ad:44:b8:56: db:cd:b1:73:1a:cb:34:91:de:9e:cf:f6:b0:32:0a: b7:57:5a:8f:26:e2:fe:8e:e1:f6:00:fc:9a:67:63: 2e:78:40:bd:fc:b3:5e:1d:65:ed:df:2a:5c:45:b7: b2:be:f8:41:9c:af:52:67:01:70:51:61:11:9b:49: db:92:45:e1:40:bc:7f:ca:8b:9c:30:9b:03:5b:fe: c8:68:04:82:c9:37:1f:58:da:a3:73:4f:8b:70:aa: 4e:3a:4f:5c:1e:c4:48:6b:63:8b:de:30:9c:a6:00: a4:d6:0e:51:0b:3a:8d:44:28:17:64:fa:44:11:50: 72:1a:a1:ca:9c:ba:50:87:60:2f:b9:2d:0f:a9:ba: 2c:5f:a6:6c:30:9c:ae:81:90:e9:4e:b2:23:2a:b2: f5:dc:a0:33:53:fc:0d:39:91:25:99:d3:2a:8a:d4: f3:c1:78:22:1d:51:c5:81:3e:0a:c7:77:ba:c9:90: 5e:eb:65:aa:7e:86:bc:fb:e4:7f:cb:98:d8:d5:84: 93:1a:10:d0:72:dc:5c:50:79:0c:34:76:9d:bb:f2: 49:f4:23:e7:5a:d5:d0:a7:b8:55:18:d0:b2:91:81: 34:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:05:BE:A1:4E:F1:40:58:E0:74:08:61:B8:7B:F2:CC:47:D5:F2:3D X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:6b:0e:0d:6c:57:5b:fa:b6:d5:a9:13:f6:7b:b8:f7:00:c0: f6:63:34:86:df:25:73:fd:f6:44:e0:73:fe:e7:32:e4:9e:57: 1b:d8:82:8e:ae:24:e4:84:07:61:7d:2d:56:59:78:eb:05:76: cb:e6:2b:fc:b5:0d:71:19:f5:b4:ac:f3:c1:22:17:95:9e:44: 70:6c:da:69:0d:93:4d:41:20:2e:a4:13:c1:c6:dc:27:52:9f: 7b:a5:3c:af:12:9c:f2:e4:0c:1e:c5:80:23:e9:d1:8d:b7:8d: e3:ff:5d:86:d0:ae:66:fb:5e:05:ae:2d:09:05:e0:79:ae:10: 6d:0c:51:b5:06:a6:5c:38:ad:2e:4e:d9:40:c5:b7:47:c8:9d: 1b:e6:05:61:6d:82:b5:86:90:4d:8f:82:18:50:c4:7d:8d:a1: 6c:60:e1:13:51:ae:1a:2c:ab:30:7e:6b:81:11:9b:63:21:0a: f5:04:a6:0c:8f:0e:b8:19:dd:2c:6b:b5:22:05:f4:c4:ea:97: d3:f4:7b:69:e6:f4:96:75:1e:c0:b0:7e:35:7d:91:8a:a2:65: a7:49:d3:b0:9d:46:5d:29:c9:12:e0:4d:de:7b:a2:a0:a5:c6: e9:e9:c0:d5:b9:e2:85:cd:cf:da:13:66:29:70:10:7a:ad:59: b0:3b:aa:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUwODEyMTQ1MDI4WhcNMjUwODE5MTQ1MDI4WjAYMRYwFAYD VQQDEw02ODliNTRiNC0wZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznxxfXFqeTVmZhNuNxoGETGbyh6kwOmtv61EuFbbzbFzGss0kd6ez/awMgq3 V1qPJuL+juH2APyaZ2MueEC9/LNeHWXt3ypcRbeyvvhBnK9SZwFwUWERm0nbkkXh QLx/youcMJsDW/7IaASCyTcfWNqjc0+LcKpOOk9cHsRIa2OL3jCcpgCk1g5RCzqN RCgXZPpEEVByGqHKnLpQh2AvuS0PqbosX6ZsMJyugZDpTrIjKrL13KAzU/wNOZEl mdMqitTzwXgiHVHFgT4Kx3e6yZBe62Wqfoa8++R/y5jY1YSTGhDQctxcUHkMNHad u/JJ9CPnWtXQp7hVGNCykYE04wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYFvqFO 8UBY4HQIYbh78sxH1fI9MB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmaw4NbFdb+rbVqRP2e7j3AMD2YzSG3yVz/fZE4HP+5zLknlcb2IKO riTkhAdhfS1WWXjrBXbL5iv8tQ1xGfW0rPPBIheVnkRwbNppDZNNQSAupBPBxtwn Up97pTyvEpzy5AwexYAj6dGNt43j/12G0K5m+14Fri0JBeB5rhBtDFG1BqZcOK0u TtlAxbdHyJ0b5gVhbYK1hpBNj4IYUMR9jaFsYOETUa4aLKswfmuBEZtjIQr1BKYM jw64Gd0sa7UiBfTE6pfT9Htp5vSWdR7AsH41fZGKomWnSdOwnUZdKckS4E3ee6Kg pcbp6cDVueKFzc/aE2YpcBB6rVmwO6qs -----END CERTIFICATE-----Generated at Tue Aug 12 22:50:37 2025 by rpki-client