$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: mbyMkVsCNqGJMKNcIbcj7OR8c/EfOzcaI8g5OS2yV1Q= Subject key identifier: 4C:47:2A:99:85:E8:AB:80:AD:9A:82:F7:C1:8B:FE:E6:80:8E:D4:FC Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 0880 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 086F Signing time: Fri 08 Aug 2025 21:01:22 +0000 Manifest this update: Fri 08 Aug 2025 21:01:22 +0000 Manifest next update: Fri 15 Aug 2025 21:01:22 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: GoTj9H8K//9C7dcjw116rP6DPY48WIgi3lPO7LoYgiI=) 2: C286BE40C4C711EDAFA9AF17C4F9AE02.roa (hash: wm0PciNiC4cbLFQcb4SHn/OMRIvkGpQeYyT8rS6bdpU=) 3: 032132A0E0D011ECAF88A30DC4F9AE02.roa (hash: Oqme3hgS+ErgCZrhOMJFY6E0bgLfBlO2jysH8V+HitY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2176 (0x880) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Aug 8 21:01:22 2025 GMT Not After : Aug 15 21:01:22 2025 GMT Subject: CN=689665a2-8477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3a:43:5a:02:bd:a9:fa:aa:96:aa:7e:e4:05: 97:23:cc:dc:f3:b4:79:4a:fd:77:9e:ac:f2:eb:30: 18:5d:a2:9a:8a:20:20:c3:29:0e:2c:5f:8b:53:cb: 34:fb:d4:f0:7f:9e:97:56:87:04:a4:40:1c:de:6e: c5:61:3e:2f:e4:b8:c2:26:8c:d2:78:a8:e5:3e:06: ec:8c:c8:79:57:5c:5a:3b:9c:22:3d:b6:ed:34:aa: 08:77:bf:8a:0e:85:9d:ea:dd:f0:8e:05:4e:04:56: 62:59:53:f7:e8:52:85:d3:a2:ad:3e:33:2a:6e:bd: d7:2a:31:87:d8:54:17:ab:50:2b:af:28:6a:66:f0: fa:c5:79:ce:10:c1:e4:ab:09:0e:c2:e4:be:be:c4: 07:91:7e:45:ec:cb:06:a0:de:90:6d:2f:b3:b4:12: c3:8c:29:1a:79:4e:62:3a:c3:63:e0:29:8d:87:ee: 04:84:ee:5a:a3:84:0c:52:c2:62:9b:88:cc:62:4f: 8e:d2:4d:80:4d:e3:32:b9:e7:e2:a0:32:de:72:3a: 35:e5:d1:08:f0:22:83:32:6e:c8:02:21:6b:d1:ba: 47:94:d2:9c:9f:6d:c6:f7:30:26:4d:03:ad:07:5a: 14:36:f8:04:be:c1:68:2f:e1:8d:85:aa:62:81:e9: fd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:47:2A:99:85:E8:AB:80:AD:9A:82:F7:C1:8B:FE:E6:80:8E:D4:FC X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:8c:e9:8a:cb:20:97:db:11:69:21:80:40:1e:37:71:10:4d: e7:b1:ca:61:0e:e8:7d:96:e6:11:88:c9:1d:68:bb:a3:b6:15: 8d:fd:a1:89:62:7b:00:ec:98:c1:60:3f:0d:23:4b:23:90:cf: 76:26:9a:87:10:4b:75:97:c7:ec:63:52:ca:e5:bf:77:16:ac: 3c:76:42:db:1e:c7:4f:6b:4b:e6:e5:12:19:19:21:33:40:db: ec:ed:ed:6b:c3:97:57:ae:df:c1:f1:52:dc:01:b8:54:8c:d9: bd:48:4d:14:70:48:b5:5a:09:a8:ba:17:29:47:03:56:d8:0d: cf:5e:30:55:4d:68:1a:53:98:68:43:5b:2d:13:a0:4b:58:cc: 75:fb:62:e7:bc:65:d6:95:80:8a:d9:f8:a7:d7:30:4f:97:69: 65:c6:f3:b1:a1:a1:0e:68:72:55:b5:c6:4c:d8:f5:72:04:4d: 8f:58:10:f1:0e:77:56:84:3e:31:b8:66:15:a3:9c:e1:48:e6: 62:5a:0d:13:e1:fc:71:68:2d:93:ff:f1:39:7b:55:5b:c3:b8: 3f:68:59:b0:d7:92:7b:5e:fd:26:90:49:f6:38:d8:82:75:20: 10:0e:ab:be:fc:40:6d:51:ef:35:7d:9f:ae:47:27:ff:26:93: 41:9e:7f:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUwODA4MjEwMTIyWhcNMjUwODE1MjEwMTIyWjAYMRYwFAYD VQQDEw02ODk2NjVhMi04NDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszpDWgK9qfqqlqp+5AWXI8zc87R5Sv13nqzy6zAYXaKaiiAgwykOLF+LU8s0 +9Twf56XVocEpEAc3m7FYT4v5LjCJozSeKjlPgbsjMh5V1xaO5wiPbbtNKoId7+K DoWd6t3wjgVOBFZiWVP36FKF06KtPjMqbr3XKjGH2FQXq1ArryhqZvD6xXnOEMHk qwkOwuS+vsQHkX5F7MsGoN6QbS+ztBLDjCkaeU5iOsNj4CmNh+4EhO5ao4QMUsJi m4jMYk+O0k2ATeMyuefioDLecjo15dEI8CKDMm7IAiFr0bpHlNKcn23G9zAmTQOt B1oUNvgEvsFoL+GNhapigen9mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExHKpmF 6KuArZqC98GL/uaAjtT8MB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAijOmKyyCX2xFpIYBAHjdxEE3nscphDuh9luYRiMkdaLujthWN/aGJ YnsA7JjBYD8NI0sjkM92JpqHEEt1l8fsY1LK5b93Fqw8dkLbHsdPa0vm5RIZGSEz QNvs7e1rw5dXrt/B8VLcAbhUjNm9SE0UcEi1WgmouhcpRwNW2A3PXjBVTWgaU5ho Q1stE6BLWMx1+2LnvGXWlYCK2fin1zBPl2llxvOxoaEOaHJVtcZM2PVyBE2PWBDx DndWhD4xuGYVo5zhSOZiWg0T4fxxaC2T//E5e1Vbw7g/aFmw15J7Xv0mkEn2ONiC dSAQDqu+/EBtUe81fZ+uRyf/JpNBnn+F -----END CERTIFICATE-----Generated at Sun Aug 10 18:24:17 2025 by rpki-client