$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: 8vvdll8QUkHBOW2etESq+Y+yWnyWhnmDhLuSJt/XgWk= Subject key identifier: B2:D3:FC:8C:A9:CE:8C:7E:FA:1C:22:DC:92:39:64:3F:A8:01:80:57 Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 01EF Signing time: Sat 09 Aug 2025 02:55:13 +0000 Manifest this update: Sat 09 Aug 2025 02:55:13 +0000 Manifest next update: Sat 16 Aug 2025 02:55:13 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: auo8t0dyJMkkdwfzLtxi4m55vm3/eS1E6fwBhfxOxbI=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: KfdVVRr1UwfhsTtUMM0Ph6w9qtVR9qcrLdXdVzGndCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Aug 9 02:55:13 2025 GMT Not After : Aug 16 02:55:13 2025 GMT Subject: CN=6896b891-d62c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e5:42:ab:09:6c:83:68:b2:3e:dd:41:33:20: 82:c9:47:79:00:b4:ee:6b:f5:0a:38:e7:ab:76:95: a8:dc:1f:aa:68:57:c2:11:8c:15:e2:2b:89:12:1c: eb:78:d4:77:81:97:4f:a1:29:a9:31:ad:29:a0:1c: 1b:c8:f2:16:58:a4:46:5e:0a:8d:bb:18:b5:52:b4: 7b:00:f6:4a:7d:cf:e1:da:90:ce:63:77:e2:5d:b2: fb:b6:bb:7c:fe:6f:96:1a:66:82:10:7d:15:da:42: c8:92:40:f2:c9:af:49:14:0a:49:11:8c:d4:2f:b8: d8:6d:51:51:29:05:65:d9:5a:27:a2:55:05:5c:47: 50:2f:10:4a:77:0a:cc:69:00:90:ff:8a:da:f5:57: de:79:64:a0:ee:b6:d4:5b:0b:fc:5c:de:86:0b:6c: c6:dd:78:ed:f7:cf:0e:80:d8:85:38:5e:9d:c3:5d: 23:94:f2:ca:f8:e2:b5:4d:d0:0f:76:74:16:49:e1: 09:c9:9c:53:e1:5c:ac:3f:cc:c3:c8:49:6b:4b:34: 8d:07:0f:ca:7c:ba:0f:91:fb:17:04:a9:d1:25:b7: 52:9d:16:3a:72:e7:70:ea:91:c4:0e:d6:1b:73:4d: 19:d3:48:d0:09:22:11:01:e0:5d:8f:81:a7:1e:16: ce:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D3:FC:8C:A9:CE:8C:7E:FA:1C:22:DC:92:39:64:3F:A8:01:80:57 X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:2c:ff:6f:56:a3:74:e6:fc:f2:76:b9:44:71:a7:ec:12:61: 8e:2d:de:02:df:55:8a:b4:42:0d:32:b8:a7:e5:b5:97:e2:20: d8:b7:0e:3e:4b:cf:e6:f5:3f:5a:55:03:20:6d:e2:82:93:19: 29:53:7d:71:08:60:b9:22:39:32:94:cc:2b:7d:1b:7f:3e:1a: 30:99:3d:64:3a:e2:19:dc:d0:2d:71:b0:ec:2c:2e:f1:f5:ac: 43:83:01:12:73:3f:0f:82:ae:49:c1:04:3a:35:cd:ba:c0:79: 7e:05:66:49:5c:58:ee:66:8b:45:9b:fa:26:75:5d:fd:ba:db: 99:bd:e8:c0:82:65:fb:45:ce:65:5e:4c:11:15:33:96:c7:0f: 78:1e:8f:0b:a2:d5:6c:61:cb:49:f3:c7:58:68:44:89:ca:43: b4:1a:08:2f:cb:8b:83:c1:6c:56:c7:a1:0b:5e:db:56:7a:8c: 94:06:d2:23:ab:a7:a2:ad:92:0c:2a:1c:cd:37:3d:5e:d7:44: 26:82:52:23:86:40:ef:b3:35:f8:c4:d2:70:0b:e1:83:97:b5: 63:b9:f9:a1:5b:93:81:6d:b1:cc:ab:1d:d3:5f:4d:0c:88:d2: 89:fc:ce:3c:1e:d1:c9:a0:79:a3:96:de:e6:de:e1:17:d0:59: 89:2f:c0:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUwODA5MDI1NTEzWhcNMjUwODE2MDI1NTEzWjAYMRYwFAYD VQQDEw02ODk2Yjg5MS1kNjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOVCqwlsg2iyPt1BMyCCyUd5ALTua/UKOOerdpWo3B+qaFfCEYwV4iuJEhzr eNR3gZdPoSmpMa0poBwbyPIWWKRGXgqNuxi1UrR7APZKfc/h2pDOY3fiXbL7trt8 /m+WGmaCEH0V2kLIkkDyya9JFApJEYzUL7jYbVFRKQVl2VonolUFXEdQLxBKdwrM aQCQ/4ra9VfeeWSg7rbUWwv8XN6GC2zG3Xjt988OgNiFOF6dw10jlPLK+OK1TdAP dnQWSeEJyZxT4VysP8zDyElrSzSNBw/KfLoPkfsXBKnRJbdSnRY6cudw6pHEDtYb c00Z00jQCSIRAeBdj4GnHhbOWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLT/Iyp zox++hwi3JI5ZD+oAYBXMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLLP9vVqN05vzydrlEcafsEmGOLd4C31WKtEINMrin5bWX4iDYtw4+ S8/m9T9aVQMgbeKCkxkpU31xCGC5IjkylMwrfRt/PhowmT1kOuIZ3NAtcbDsLC7x 9axDgwEScz8Pgq5JwQQ6Nc26wHl+BWZJXFjuZotFm/omdV39utuZvejAgmX7Rc5l XkwRFTOWxw94Ho8LotVsYctJ88dYaESJykO0Gggvy4uDwWxWx6ELXttWeoyUBtIj q6eirZIMKhzNNz1e10QmglIjhkDvszX4xNJwC+GDl7VjufmhW5OBbbHMqx3TX00M iNKJ/M48HtHJoHmjlt7m3uEX0FmJL8Cb -----END CERTIFICATE-----Generated at Sun Aug 10 10:44:40 2025 by rpki-client