$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: MGWRe0ubGCqXlCP4oDjW8IflBLY3DwlKlRVDOzLGbvA= Subject key identifier: C7:ED:83:A3:27:90:B3:29:95:F2:B0:D3:57:84:4C:17:EC:38:2E:C0 Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 2E Signing time: Tue 05 Aug 2025 08:26:55 +0000 Manifest this update: Tue 05 Aug 2025 08:26:54 +0000 Manifest next update: Tue 12 Aug 2025 08:26:54 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: uIJ4lJxM6IaiZm9qQn4FxVghPywsf0XBEMobd0FeREE=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: UYhhmkQaI1q3+QjYEo/76mR50UYMRxm9p33lOpn/bSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Aug 5 08:26:54 2025 GMT Not After : Aug 12 08:26:54 2025 GMT Subject: CN=6891c04f-3971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c6:29:54:e4:06:77:0a:82:92:2f:d2:e7:ae: 1a:07:0a:ad:d2:60:3e:ec:16:79:76:e2:4e:72:77: 02:11:57:f2:a3:dd:f8:d5:df:f0:87:a9:b6:0d:6d: ab:c1:a6:0c:ed:35:a7:c6:26:e3:78:12:19:8e:4d: 2a:a3:44:24:48:18:b8:48:02:da:f0:3e:a6:0b:61: ec:59:84:99:ff:98:2d:77:2b:37:41:a0:44:e0:ce: fb:8d:5e:fd:d9:99:9b:35:5f:05:1e:a8:e3:c9:02: 67:e5:64:d0:1e:99:dd:40:02:c9:bd:15:2b:fb:8b: 6e:48:16:b3:b8:eb:b5:62:11:1b:0a:3b:8d:b1:a5: 3f:70:88:34:8e:69:f3:6e:aa:f0:83:6c:3b:50:2e: 2d:ce:e6:5b:e7:56:ef:3d:41:87:e5:dc:e6:40:69: e7:1f:e5:1a:e2:2b:a3:1a:6a:90:f9:cb:6c:00:cc: 6f:d8:06:d4:8e:26:d7:7e:e1:b7:b6:da:86:18:cf: 7b:1e:79:a9:77:bc:aa:b5:f8:5e:36:8e:79:08:c5: ba:71:76:3d:16:69:1a:4b:d7:e7:5a:a7:e1:ab:27: d1:a4:ed:fb:2c:a0:6c:db:c8:15:a6:67:f6:74:a0: 2d:fc:4a:e5:e6:9c:b3:e6:76:e9:c9:80:e7:5c:c5: ce:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:ED:83:A3:27:90:B3:29:95:F2:B0:D3:57:84:4C:17:EC:38:2E:C0 X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:c8:d0:bb:d9:95:89:82:1f:2e:81:aa:7a:15:f4:41:25:f7: df:2f:d7:9c:00:ec:08:88:e2:e6:02:8b:63:18:48:7c:36:9c: 75:cd:08:fc:5d:62:20:75:0d:bc:40:1d:14:05:4c:39:42:b6: 03:f3:ed:64:0b:35:e7:e4:62:47:9d:f7:b9:ad:0f:52:cc:5c: 5d:cf:8f:52:88:0b:3b:4c:cf:c3:7b:5b:a9:11:9b:43:c5:43: de:cd:a0:67:30:9e:b1:e9:23:db:b9:b5:5b:c7:11:90:c2:70: 38:e3:26:58:95:b3:f8:35:b4:01:cc:59:59:18:3e:83:ba:b1: 7d:29:d1:e5:c8:39:96:47:05:c8:b2:ce:2b:e5:74:4a:b7:d2: ca:aa:db:d6:d4:9e:86:4b:21:e4:45:d0:0f:68:b8:20:8b:35: 3a:75:26:c5:39:0a:e1:7a:d6:05:12:ec:2f:42:03:2c:94:88: b5:3e:92:b4:d4:28:a0:4c:00:9a:71:87:70:a3:80:14:7a:67: f2:99:06:40:1e:4d:fa:d6:51:83:67:cb:25:eb:1a:5d:7d:ff: 5d:fe:fd:4c:ab:1b:cc:f8:72:a6:28:c2:94:19:ca:73:52:d7: b3:32:3e:11:6f:c5:96:3a:60:1b:83:4b:48:db:a3:15:37:cb: d6:75:13:3e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUMwMzExMC8GA1UEBRMoQTI0RDk2MzgzMzU5Q0I0OTY2QTE1QjlBOTA2OTEzRUI1 NDU2NjU3QjAeFw0yNTA4MDUwODI2NTRaFw0yNTA4MTIwODI2NTRaMBgxFjAUBgNV BAMTDTY4OTFjMDRmLTM5NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7xilU5AZ3CoKSL9LnrhoHCq3SYD7sFnl24k5ydwIRV/Kj3fjV3/CHqbYNbavB pgztNafGJuN4EhmOTSqjRCRIGLhIAtrwPqYLYexZhJn/mC13KzdBoETgzvuNXv3Z mZs1XwUeqOPJAmflZNAemd1AAsm9FSv7i25IFrO467ViERsKO42xpT9wiDSOafNu qvCDbDtQLi3O5lvnVu89QYfl3OZAaecf5RriK6MaapD5y2wAzG/YBtSOJtd+4be2 2oYYz3seeal3vKq1+F42jnkIxbpxdj0WaRpL1+dap+GrJ9Gk7fssoGzbyBWmZ/Z0 oC38SuXmnLPmdunJgOdcxc49AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUx+2DoyeQ symV8rDTV4RMF+w4LsAwHwYDVR0jBBgwFoAUok2WODNZy0lmoVuakGkT61RWZXsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QzAzLzM3RDE4QTE2MzlB MzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pY cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2syV09ETlp5MGxtb1Z1YWtHa1Q2MVJXWlhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QzAzLzM3RDE4QTE2MzlBMzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBs bW9WdWFrR2tUNjFSV1pYcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACbI0LvZlYmCHy6BqnoV9EEl998v15wA7AiI4uYCi2MYSHw2nHXNCPxd YiB1DbxAHRQFTDlCtgPz7WQLNefkYked97mtD1LMXF3Pj1KICztMz8N7W6kRm0PF Q97NoGcwnrHpI9u5tVvHEZDCcDjjJliVs/g1tAHMWVkYPoO6sX0p0eXIOZZHBciy zivldEq30sqq29bUnoZLIeRF0A9ouCCLNTp1JsU5CuF61gUS7C9CAyyUiLU+krTU KKBMAJpxh3CjgBR6Z/KZBkAeTfrWUYNnyyXrGl19/13+/UyrG8z4cqYowpQZynNS 17MyPhFvxZY6YBuDS0jboxU3y9Z1Ez4= -----END CERTIFICATE-----Generated at Thu Aug 7 04:31:45 2025 by rpki-client