$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft File: oPojd21UTId5RsrHxId0ZRmTfbg.mft (raw, json) Hash identifier: aGfkFOH7B5qn5IP9EUYfdmPzHLtCZDfiJsKvzIsvEMM= Subject key identifier: 75:72:D3:AC:A2:92:08:E8:35:36:BA:93:1D:D4:DF:B1:5D:37:C7:11 Authority key identifier: A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 Certificate issuer: /CN=A91DD584/serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft Manifest number: 92 Signing time: Mon 11 Aug 2025 06:42:44 +0000 Manifest this update: Mon 11 Aug 2025 06:42:43 +0000 Manifest next update: Mon 18 Aug 2025 06:42:43 +0000 Files and hashes: 1: oPojd21UTId5RsrHxId0ZRmTfbg.crl (hash: R9Rrik0gfc0DOjGYQQ4G3DYgK8fpZVTKQtkt6h9wZfU=) 2: B4C685B09CB111EFA6F8E627C4F9AE02.roa (hash: GuNo7IUV7Thwoh9B3txt8mnx9fY3g5B8M+APQokJxqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD584, serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Validity Not Before: Aug 11 06:42:43 2025 GMT Not After : Aug 18 06:42:43 2025 GMT Subject: CN=689990e3-7bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:73:7f:de:6e:58:af:13:29:3b:19:8f:d4:80: ba:04:70:02:15:fb:f2:ff:d6:66:54:a1:95:40:e1: 85:f5:fb:8e:ea:7a:98:9a:07:7c:df:db:3e:f1:f0: 40:88:22:1b:de:9e:f2:c4:39:a4:39:df:57:b9:61: 58:f9:b6:5e:0e:fb:94:e8:29:00:76:31:da:44:76: ce:ac:02:af:16:58:f8:54:f4:42:52:3b:1e:0d:35: e0:94:88:17:1f:96:20:dc:05:a2:9b:db:45:88:4c: 7c:67:4a:d0:28:64:26:75:e6:29:8a:74:10:04:0a: f5:8a:ff:f6:1e:18:d7:f0:4b:29:63:3b:80:43:a3: 0d:eb:e0:6c:da:59:75:a2:b4:a4:b5:90:7b:e9:bd: f5:f1:b5:ff:ab:5c:ea:57:ee:eb:84:42:b6:a6:9c: 2e:06:1b:c8:cd:4a:f3:b7:53:19:14:98:74:f2:e6: dd:ba:bc:1b:d0:2b:10:30:0d:b1:a7:4d:c8:d2:20: 62:11:0e:41:31:62:94:60:15:28:fa:d6:1f:33:00: 63:d3:c7:6a:b1:47:9b:38:42:58:4a:88:e9:35:ac: f0:d3:8b:13:54:b5:5b:68:de:fb:bd:e2:de:6d:52: 14:b1:96:e8:93:47:de:7f:9d:d9:47:94:a5:2c:8d: 58:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:72:D3:AC:A2:92:08:E8:35:36:BA:93:1D:D4:DF:B1:5D:37:C7:11 X509v3 Authority Key Identifier: keyid:A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:f4:f7:ae:3a:37:0b:ef:d6:e6:85:f2:37:c1:68:dc:5e:fe: d6:38:16:c5:dc:5d:b4:68:94:93:4d:7d:f2:f2:ff:95:4b:5a: c3:dd:d5:d0:5e:c3:3e:4b:ff:09:ef:8f:8c:73:2a:1a:5c:05: b6:a7:5e:22:5e:fd:d3:3d:b1:23:25:9d:2c:9b:c3:b1:ee:ef: 9f:49:26:b9:ae:19:1c:cc:30:9a:f1:de:a7:7b:18:cf:5c:ec: 95:c5:56:5f:88:2f:b9:f5:f6:b6:78:26:e5:b8:3e:dc:7c:82: 9a:dc:27:e8:a4:33:5f:b5:2a:e5:29:7c:d2:87:3b:26:82:ff: 30:81:e4:b4:11:5f:c0:e8:78:b3:a0:6d:a0:c9:56:a9:83:08: 95:d6:3d:df:c8:99:d0:82:12:6e:10:77:e3:30:a8:72:5e:70: 57:66:25:61:bd:5c:d5:c0:9e:a2:b5:82:c4:32:fd:41:4a:86: 5f:c0:6a:01:bb:8e:ab:9a:42:8a:3f:c3:3a:7a:2f:f3:68:64: 28:f7:6e:47:b6:e8:66:ee:d3:8a:27:04:c5:ac:3d:64:30:39: 78:e9:c8:5d:50:ff:ec:de:5b:8c:80:6a:ed:f9:70:0f:08:83: d5:34:9c:0c:26:92:56:34:3a:d1:df:7d:52:14:90:f1:ad:cf: 6b:69:57:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1ODQxMTAvBgNVBAUTKEEwRkEyMzc3NkQ1NDRDODc3OTQ2Q0FDN0M0ODc3NDY1 MTk5MzdEQjgwHhcNMjUwODExMDY0MjQzWhcNMjUwODE4MDY0MjQzWjAYMRYwFAYD VQQDEw02ODk5OTBlMy03YmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3N/3m5YrxMpOxmP1IC6BHACFfvy/9ZmVKGVQOGF9fuO6nqYmgd839s+8fBA iCIb3p7yxDmkOd9XuWFY+bZeDvuU6CkAdjHaRHbOrAKvFlj4VPRCUjseDTXglIgX H5Yg3AWim9tFiEx8Z0rQKGQmdeYpinQQBAr1iv/2HhjX8EspYzuAQ6MN6+Bs2ll1 orSktZB76b318bX/q1zqV+7rhEK2ppwuBhvIzUrzt1MZFJh08ubdurwb0CsQMA2x p03I0iBiEQ5BMWKUYBUo+tYfMwBj08dqsUebOEJYSojpNazw04sTVLVbaN77veLe bVIUsZbok0fef53ZR5SlLI1YhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVy06yi kgjoNTa6kx3U37FdN8cRMB8GA1UdIwQYMBaAFKD6I3dtVEyHeUbKx8SHdGUZk324 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDU4NC8zMjcwNzM4MjlD QjExMUVGQUVBMDBEMjVDNEY5QUUwMi9vUG9qZDIxVVRJZDVSc3JIeElkMFpSbVRm YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Qb2pkMjFVVElkNVJzckh4SWQwWlJtVGZiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDU4NC8zMjcwNzM4MjlDQjExMUVGQUVBMDBEMjVDNEY5QUUwMi9vUG9qZDIxVVRJ ZDVSc3JIeElkMFpSbVRmYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx9PeuOjcL79bmhfI3wWjcXv7WOBbF3F20aJSTTX3y8v+VS1rD3dXQ XsM+S/8J74+McyoaXAW2p14iXv3TPbEjJZ0sm8Ox7u+fSSa5rhkczDCa8d6nexjP XOyVxVZfiC+59fa2eCbluD7cfIKa3CfopDNftSrlKXzShzsmgv8wgeS0EV/A6Hiz oG2gyVapgwiV1j3fyJnQghJuEHfjMKhyXnBXZiVhvVzVwJ6itYLEMv1BSoZfwGoB u46rmkKKP8M6ei/zaGQo925Htuhm7tOKJwTFrD1kMDl46chdUP/s3luMgGrt+XAP CIPVNJwMJpJWNDrR331SFJDxrc9raVcM -----END CERTIFICATE-----Generated at Mon Aug 11 11:33:30 2025 by rpki-client