$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft File: OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft (raw, json) Hash identifier: zATRk5pDMOIOSjyM/0dviwIcJT3uxfLyLn6zmviQE/k= Subject key identifier: 3F:1F:4A:DE:AA:68:BF:19:A6:ED:3B:DA:83:91:C0:12:FA:33:81:A7 Authority key identifier: 3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 Certificate issuer: /CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft Manifest number: 0141 Signing time: Sun 03 Aug 2025 04:43:03 +0000 Manifest this update: Sun 03 Aug 2025 04:43:02 +0000 Manifest next update: Sun 10 Aug 2025 04:43:02 +0000 Files and hashes: 1: OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl (hash: 374OlLLDLI2RO3mNsbmqvXvUDhHjVHswnYb6NuanvU4=) 2: 67CB8C7287E711EEAC6C0B48C4F9AE02.roa (hash: F1mmz33PgwMDoRRZC6GtV9seLtgQSAErXHweDotrVWA=) 3: C1BECCFC68ED11EF85713047C4F9AE02.roa (hash: Sezt6J9wGq2uA81TOBF7C4CUuNihzkNfNyFAuKq+xQc=) 4: 675EE9DC87E711EEAC6C0B48C4F9AE02.roa (hash: drw42sYp0Yh/VWP9xaFHuMDcqO3Tii4R1NV32pLiPSM=) 5: 08310D28339011EFA4FD915FC4F9AE02.roa (hash: SpJu5nU/KENpOPLXjRvExSZV1G2bbDwfeZ2+Dj1X+E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 04:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Validity Not Before: Aug 3 04:43:02 2025 GMT Not After : Aug 10 04:43:02 2025 GMT Subject: CN=688ee8d7-334c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:bc:ad:3c:8c:d0:c7:5c:bd:ad:03:aa:04:0b: f6:54:1b:7f:0f:1b:a8:4d:50:17:96:0d:fc:63:15: c9:47:8d:67:1a:98:a2:ec:62:b4:58:85:23:79:13: 37:92:43:e6:ca:30:ab:22:77:fc:e3:4d:b3:0d:ad: 6c:b8:48:5c:ef:e0:8f:c0:48:1a:f1:bd:1e:c8:46: 7b:27:4a:ed:ef:e1:5d:c3:0c:29:c5:02:6d:17:48: b1:3b:7c:bf:5b:3e:b3:a4:95:83:3e:73:18:90:a8: 35:8d:02:46:d6:bd:71:c4:e7:95:99:d7:e2:de:95: 24:e5:10:09:70:b3:87:d9:c7:ea:86:3a:ee:f7:f9: 29:25:c4:ad:ca:dc:bc:17:7b:a5:26:bd:c1:85:7e: e5:ca:76:ca:aa:77:67:0b:ee:31:9f:b8:df:e0:c1: 69:39:fc:be:c2:17:f7:3a:2c:42:1d:85:2a:2f:ed: 2d:5e:ba:05:d4:72:36:28:92:ea:de:93:15:3e:84: cd:39:bb:a3:f4:dc:cd:03:3f:20:12:bf:6c:13:78: e1:8e:5e:f9:3a:b0:12:c3:7c:81:72:8e:e7:67:66: 5a:bf:5d:37:40:a9:f9:69:dd:a1:08:df:18:0e:d5: a8:29:ce:cb:4b:8d:17:73:4e:24:5d:82:d6:b4:8b: 68:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:1F:4A:DE:AA:68:BF:19:A6:ED:3B:DA:83:91:C0:12:FA:33:81:A7 X509v3 Authority Key Identifier: keyid:3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:10:2c:5e:34:89:6a:4c:41:04:04:a2:d0:1a:b5:94:06:d3: a2:ed:9e:5e:de:64:30:d2:7d:29:50:32:8d:b4:5d:95:17:8d: c8:b2:d7:72:c6:31:21:a6:5e:cf:f3:bc:ff:c9:fa:74:01:cd: 8a:19:33:d8:9b:7c:36:0f:2f:02:93:63:54:12:b5:09:e8:31: 29:e5:47:ec:21:d3:60:1c:12:39:e8:a1:e6:1b:c3:09:76:2b: c9:09:76:68:f4:c3:7d:3f:79:7e:31:86:fc:c9:e7:46:8b:0f: cc:6f:19:5e:3d:7d:a8:fa:5b:e2:79:c1:5f:0d:52:40:c3:02: fb:bc:92:64:3a:2b:ef:64:b7:5d:27:ff:89:54:72:48:cd:89: c3:62:b6:3f:7a:78:b2:62:28:3a:c9:a1:b0:65:d8:be:97:fa: dd:98:ec:b3:69:95:82:51:db:70:82:46:cc:a6:bb:b4:5a:d4: 33:65:f6:cc:a0:0e:14:3d:6e:94:ed:57:3e:c5:ab:6b:f5:28: 8a:5b:0a:1f:b3:f7:6f:2d:4e:86:7d:62:36:00:c0:d6:62:d0: 31:69:65:46:57:43:94:4d:c4:42:64:7b:78:9e:78:ad:99:09: 77:58:20:75:ad:b9:dc:ef:0a:a5:3c:e9:1a:57:c2:17:5e:ae: bf:2f:48:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDNBMTU0M0JERjM3NzJBOThEMjk0RUI5MDAyMzgwM0RE RERGMTFFNjIwHhcNMjUwODAzMDQ0MzAyWhcNMjUwODEwMDQ0MzAyWjAYMRYwFAYD VQQDEw02ODhlZThkNy0zMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27ytPIzQx1y9rQOqBAv2VBt/DxuoTVAXlg38YxXJR41nGpii7GK0WIUjeRM3 kkPmyjCrInf8402zDa1suEhc7+CPwEga8b0eyEZ7J0rt7+FdwwwpxQJtF0ixO3y/ Wz6zpJWDPnMYkKg1jQJG1r1xxOeVmdfi3pUk5RAJcLOH2cfqhjru9/kpJcStyty8 F3ulJr3BhX7lynbKqndnC+4xn7jf4MFpOfy+whf3OixCHYUqL+0tXroF1HI2KJLq 3pMVPoTNObuj9NzNAz8gEr9sE3jhjl75OrASw3yBco7nZ2Zav103QKn5ad2hCN8Y DtWoKc7LS40Xc04kXYLWtItonwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8fSt6q aL8Zpu072oORwBL6M4GnMB8GA1UdIwQYMBaAFDoVQ73zdyqY0pTrkAI4A93d8R5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9FQ0ZGMkFGODg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0twalNsT3VRQWpnRDNkM3hI bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09oVkR2Zk4zS3BqU2xPdVFBamdEM2QzeEhtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9FQ0ZGMkFGODg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0tw alNsT3VRQWpnRDNkM3hIbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFECxeNIlqTEEEBKLQGrWUBtOi7Z5e3mQw0n0pUDKNtF2VF43Istdy xjEhpl7P87z/yfp0Ac2KGTPYm3w2Dy8Ck2NUErUJ6DEp5UfsIdNgHBI56KHmG8MJ divJCXZo9MN9P3l+MYb8yedGiw/MbxlePX2o+lviecFfDVJAwwL7vJJkOivvZLdd J/+JVHJIzYnDYrY/eniyYig6yaGwZdi+l/rdmOyzaZWCUdtwgkbMpru0WtQzZfbM oA4UPW6U7Vc+xatr9SiKWwofs/dvLU6GfWI2AMDWYtAxaWVGV0OUTcRCZHt4nnit mQl3WCB1rbnc7wqlPOkaV8IXXq6/L0ga -----END CERTIFICATE-----Generated at Mon Aug 4 11:19:19 2025 by rpki-client