$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: E9eh3FUfuttQta91OF93rlsd3HBmZyqpBEZeW0jqjuA= Subject key identifier: C5:0D:62:DA:47:E5:68:F1:76:90:A1:62:20:2B:4D:37:15:F0:27:C0 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 013B Signing time: Mon 11 Aug 2025 04:33:42 +0000 Manifest this update: Mon 11 Aug 2025 04:33:41 +0000 Manifest next update: Mon 18 Aug 2025 04:33:41 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: hpfTiWuXrM0/Mw/bOVxymoZkBDkoiyCtjZ6OnL+d4oU=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Aug 11 04:33:41 2025 GMT Not After : Aug 18 04:33:41 2025 GMT Subject: CN=689972a6-c414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:23:c5:d3:f1:f8:2b:7b:98:02:eb:65:bc:15: e3:4f:fc:14:95:20:ae:38:50:e0:96:b4:33:7c:a8: f5:30:e0:9e:2c:5f:8c:bf:b3:3d:ca:07:12:4b:4f: e4:c7:07:e5:e3:6b:83:46:07:68:18:2a:fe:f7:0f: 3e:69:be:5d:51:ee:8e:dc:6c:08:01:da:54:89:5a: d0:1d:09:57:59:e0:22:da:c8:92:a9:7d:9d:4b:90: 91:a5:5e:c0:57:df:90:93:9c:0d:6f:2c:ad:dd:a1: 99:0a:b9:53:df:8e:ab:32:65:1b:96:6c:f3:d4:01: 03:01:f6:ac:71:5b:90:78:06:2a:87:cf:54:cd:ed: f8:77:56:dc:43:4e:6f:19:ee:4a:fc:b1:6b:1f:2f: 6d:42:e7:24:03:21:0b:d1:13:cd:68:af:96:31:0c: 65:fd:d4:33:ec:17:59:33:7d:de:64:95:78:c0:5c: 70:6d:d1:de:55:23:df:31:51:37:c0:16:7f:84:81: ab:c3:50:39:c8:cc:f5:f4:3e:80:59:65:c1:c9:ff: 48:d1:ca:18:f9:de:be:c9:21:8f:3e:8b:9e:9f:1b: fb:08:1c:47:2c:04:28:2b:7d:72:c2:32:c5:7f:61: 72:a0:75:cd:54:c1:fc:00:7c:58:d1:ec:13:c0:c4: fb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0D:62:DA:47:E5:68:F1:76:90:A1:62:20:2B:4D:37:15:F0:27:C0 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:69:07:50:90:fb:cf:bf:67:fd:83:df:03:3d:54:1e:34:4f: 19:05:ee:fb:fb:7f:ab:e9:a4:c8:d2:8f:eb:82:d1:b7:e6:5c: f9:2d:ae:d5:82:fe:73:64:95:df:a1:31:51:96:d7:ce:01:a8: 6b:7e:4e:9c:a1:db:aa:e3:b1:cf:b0:28:ce:77:00:c4:69:38: 9a:c9:05:36:05:e1:6c:30:ee:48:b8:07:45:a8:8e:b8:68:24: ae:d5:49:74:bf:a2:ef:f2:82:33:f8:b0:7b:96:25:99:f3:9b: be:13:75:fa:0f:dc:4a:96:2d:18:f1:39:f9:60:df:1f:9c:40: c6:74:7f:84:9a:72:10:ba:e6:b5:d1:47:9f:df:c1:b9:4c:9d: 34:3f:59:fb:09:02:56:b5:7d:86:5e:e7:54:b1:bb:72:d2:6a: 3d:48:c0:71:eb:26:aa:0b:ed:6e:11:f3:f8:f5:da:65:52:32: 9b:07:9c:13:63:53:ae:bf:44:d8:36:62:16:58:2e:db:81:dd: 95:dc:ff:c8:d0:fc:f8:67:94:56:24:79:7c:8a:08:a6:86:04: 1a:21:05:ec:20:20:7a:68:47:83:5f:24:34:7a:90:06:dc:e1: f6:26:7d:4e:42:2a:b2:50:76:91:1a:00:3c:e7:21:27:f6:1e: 05:3c:ff:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUwODExMDQzMzQxWhcNMjUwODE4MDQzMzQxWjAYMRYwFAYD VQQDEw02ODk5NzJhNi1jNDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviPF0/H4K3uYAutlvBXjT/wUlSCuOFDglrQzfKj1MOCeLF+Mv7M9ygcSS0/k xwfl42uDRgdoGCr+9w8+ab5dUe6O3GwIAdpUiVrQHQlXWeAi2siSqX2dS5CRpV7A V9+Qk5wNbyyt3aGZCrlT346rMmUblmzz1AEDAfascVuQeAYqh89Uze34d1bcQ05v Ge5K/LFrHy9tQuckAyEL0RPNaK+WMQxl/dQz7BdZM33eZJV4wFxwbdHeVSPfMVE3 wBZ/hIGrw1A5yMz19D6AWWXByf9I0coY+d6+ySGPPouenxv7CBxHLAQoK31ywjLF f2FyoHXNVMH8AHxY0ewTwMT7CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUNYtpH 5WjxdpChYiArTTcV8CfAMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwaQdQkPvPv2f9g98DPVQeNE8ZBe77+3+r6aTI0o/rgtG35lz5La7V gv5zZJXfoTFRltfOAahrfk6coduq47HPsCjOdwDEaTiayQU2BeFsMO5IuAdFqI64 aCSu1Ul0v6Lv8oIz+LB7liWZ85u+E3X6D9xKli0Y8Tn5YN8fnEDGdH+EmnIQuua1 0Uef38G5TJ00P1n7CQJWtX2GXudUsbty0mo9SMBx6yaqC+1uEfP49dplUjKbB5wT Y1Ouv0TYNmIWWC7bgd2V3P/I0Pz4Z5RWJHl8igimhgQaIQXsICB6aEeDXyQ0epAG 3OH2Jn1OQiqyUHaRGgA85yEn9h4FPP+O -----END CERTIFICATE-----Generated at Mon Aug 11 10:46:49 2025 by rpki-client