$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft File: OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft (raw, json) Hash identifier: u10aCSPBwbBD4349wsmqn1gauYe4h2FWIKHXkBHZPKE= Subject key identifier: A8:41:A2:55:1B:82:F9:B5:22:6F:E4:80:CF:A9:8D:87:E2:96:A0:05 Authority key identifier: 3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC Certificate issuer: /CN=A91CAB4E/serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC Certificate serial: 13AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft Manifest number: 13A6 Signing time: Sun 10 Aug 2025 16:56:51 +0000 Manifest this update: Sun 10 Aug 2025 16:56:50 +0000 Manifest next update: Sun 17 Aug 2025 16:56:50 +0000 Files and hashes: 1: OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl (hash: 7TTx4xiZQFWbfwz6fRz2QivT/mVWKfP4YYomgP4UK88=) 2: 7F662C72997011E8B0FDEF57C4F9AE02.roa (hash: c+PuAbIml2jBjPavn1IEZDbXlxGsrH9yX4XnYZy8fpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5039 (0x13af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAB4E, serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC Validity Not Before: Aug 10 16:56:50 2025 GMT Not After : Aug 17 16:56:50 2025 GMT Subject: CN=6898cf52-9d69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cf:10:d1:79:03:29:3b:61:3b:9b:42:10:e2: a5:19:96:93:90:0b:ed:fa:c9:72:cc:4c:15:36:c1: 10:d0:0a:0f:be:9f:ed:65:78:4c:e5:bb:29:84:0d: a8:4a:fd:17:5e:d0:a9:67:4a:77:3c:73:c3:28:3d: 6e:b0:c4:48:f9:70:91:13:84:d9:0a:50:8a:8a:f9: f5:dd:66:09:9d:eb:11:57:f5:96:9a:25:91:8d:4b: 97:da:1d:26:cf:87:54:e5:74:5a:ad:7a:30:30:00: 5b:8f:fa:c1:5f:93:12:e4:21:96:3e:e6:ac:34:61: 43:fb:dd:b7:f9:d4:1d:39:8d:bf:ac:ca:ce:d3:de: 40:82:5b:dc:33:a8:be:b2:42:1d:9d:e6:ef:e4:9d: 85:3d:e3:0a:1f:32:a7:41:80:6b:39:da:29:9c:d8: 92:a1:db:ab:04:ae:62:9b:29:41:d5:e1:5e:d9:7a: e6:c2:76:cd:91:67:67:f5:22:54:50:08:3a:2d:95: 5d:7d:74:af:9d:81:a5:ad:06:b7:06:b0:1c:c4:40: 83:e1:03:51:2d:4e:ff:50:cd:72:4a:1b:d6:48:c1: b8:8d:f0:05:3b:d6:15:72:f8:d9:b8:33:e2:c1:f5: 9b:4f:60:17:44:aa:9e:33:c4:bf:2c:f4:02:ac:da: bb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:41:A2:55:1B:82:F9:B5:22:6F:E4:80:CF:A9:8D:87:E2:96:A0:05 X509v3 Authority Key Identifier: keyid:3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:8e:20:bd:6b:71:8d:2a:6b:6b:98:61:88:78:6c:79:8b:69: a4:bc:a7:60:a3:47:b0:ba:2f:76:36:14:cd:a3:4d:14:c8:f1: 79:ec:97:7e:67:6c:88:bc:19:fe:68:bf:89:f2:86:27:c3:29: 56:37:d8:de:51:aa:e8:1a:a0:81:70:28:34:27:da:35:f0:56: 84:7f:a5:21:de:e0:8a:d3:c7:be:b8:ab:7c:5b:59:75:b3:fb: 82:5b:f4:41:d3:bd:72:73:a2:c3:42:d5:cd:cc:ba:a8:9e:e9: 2d:c5:b1:ff:3b:06:31:28:17:25:e0:be:a2:28:e9:54:88:f1: 22:75:df:17:ca:b2:e7:9a:fe:e9:92:52:8d:bd:da:7d:1a:9f: 05:b9:bd:0e:98:da:2e:0b:8b:4c:4d:dd:ea:c8:b6:52:6a:ff: 18:89:9d:19:f3:20:d1:90:67:4c:6d:1d:7d:e9:69:60:0f:c1: 4b:f2:51:fd:3a:22:e8:ff:fe:b8:5d:17:a9:9f:44:4a:eb:5b: a5:5e:13:ff:9e:42:7b:6e:e8:bb:0b:c9:29:8d:a2:6c:67:4b: 77:4b:c3:d0:a8:10:ad:4e:7f:98:9c:fa:63:bc:9a:e3:0e:e4: 4a:29:ca:ac:a5:e8:f5:66:87:0a:00:c0:5d:64:b1:2e:80:97: 5f:f5:fd:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCNEUxMTAvBgNVBAUTKDNBMTQ5NDI1QkUzMjg1RDYxMTRCMDFGNkMyRkM4OEEx N0FGRjRCRUMwHhcNMjUwODEwMTY1NjUwWhcNMjUwODE3MTY1NjUwWjAYMRYwFAYD VQQDEw02ODk4Y2Y1Mi05ZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu88Q0XkDKTthO5tCEOKlGZaTkAvt+slyzEwVNsEQ0AoPvp/tZXhM5bsphA2o Sv0XXtCpZ0p3PHPDKD1usMRI+XCRE4TZClCKivn13WYJnesRV/WWmiWRjUuX2h0m z4dU5XRarXowMABbj/rBX5MS5CGWPuasNGFD+923+dQdOY2/rMrO095AglvcM6i+ skIdnebv5J2FPeMKHzKnQYBrOdopnNiSodurBK5imylB1eFe2XrmwnbNkWdn9SJU UAg6LZVdfXSvnYGlrQa3BrAcxECD4QNRLU7/UM1yShvWSMG4jfAFO9YVcvjZuDPi wfWbT2AXRKqeM8S/LPQCrNq7ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhBolUb gvm1Im/kgM+pjYfilqAFMB8GA1UdIwQYMBaAFDoUlCW+MoXWEUsB9sL8iKF6/0vs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUI0RS8yQ0E0NzA2Njk5 NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhkWVJTd0gyd3Z5SW9Ycl9T LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oU1VKYjR5aGRZUlN3SDJ3dnlJb1hyX1Mtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUI0RS8yQ0E0NzA2Njk5NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhk WVJTd0gyd3Z5SW9Ycl9TLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkjiC9a3GNKmtrmGGIeGx5i2mkvKdgo0ewui92NhTNo00UyPF57Jd+ Z2yIvBn+aL+J8oYnwylWN9jeUaroGqCBcCg0J9o18FaEf6Uh3uCK08e+uKt8W1l1 s/uCW/RB071yc6LDQtXNzLqonuktxbH/OwYxKBcl4L6iKOlUiPEidd8XyrLnmv7p klKNvdp9Gp8Fub0OmNouC4tMTd3qyLZSav8YiZ0Z8yDRkGdMbR196WlgD8FL8lH9 OiLo//64XRepn0RK61ulXhP/nkJ7bui7C8kpjaJsZ0t3S8PQqBCtTn+YnPpjvJrj DuRKKcqspej1ZocKAMBdZLEugJdf9f3E -----END CERTIFICATE-----Generated at Mon Aug 11 07:51:41 2025 by rpki-client