$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: VN1AiH+vOXlix48qfYPVSH4nltqkoi5Ho6weanNanns= Subject key identifier: 99:D8:AF:DF:EE:4F:AE:4B:95:9A:ED:4F:9F:88:D9:A8:2C:B0:36:79 Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 3341 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 32EB Signing time: Sun 10 Aug 2025 15:21:57 +0000 Manifest this update: Sun 10 Aug 2025 15:21:57 +0000 Manifest next update: Sun 17 Aug 2025 15:21:57 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: +9pefc2gVyAWEyprstq8+Il360PMoKh6lpsC2KdwzfA=) 2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=) 3: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=) 4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=) 5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13121 (0x3341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Aug 10 15:21:57 2025 GMT Not After : Aug 17 15:21:57 2025 GMT Subject: CN=6898b915-bcff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:02:b3:e6:ec:47:5c:ee:b1:cc:f1:bf:9a:58: 59:86:61:af:c7:1a:20:50:67:05:41:d3:e7:d3:ce: 2f:14:f5:cb:19:75:09:0a:2a:e5:f1:68:12:02:49: 4e:31:c1:88:cf:5d:19:1c:af:de:7d:c1:fa:cb:80: 4b:73:0e:41:bf:15:f0:3e:13:d1:d7:77:0b:45:20: 23:27:74:21:55:74:f4:85:2b:00:e5:39:f6:ad:40: 57:88:6f:1d:0f:79:e2:14:bc:84:bd:ed:1f:cc:a5: cc:61:ff:24:94:b5:50:f0:a3:07:0c:d4:2a:de:dd: 1a:00:08:a0:4a:95:11:5a:98:2f:4b:5d:8c:5a:7b: 9e:74:00:5a:6f:da:60:aa:50:75:52:ee:07:15:52: a1:d0:93:c8:f6:29:3e:cf:67:c8:6c:dc:9d:1c:6a: 90:06:aa:c0:8c:3c:5d:9d:2a:d6:01:86:21:e0:78: b5:ca:35:74:53:df:31:0e:2b:a3:af:bf:d9:d6:8b: aa:00:e8:aa:92:09:d1:4c:6e:39:5b:74:20:e1:73: 34:a7:3f:d3:56:6e:00:87:13:0c:e1:c1:cd:71:d7: 4b:1a:2b:bd:02:b6:93:f7:6a:3c:ea:b3:70:63:e6: 5f:75:cc:85:c7:3e:52:0f:a5:f7:3b:de:49:56:f9: 4b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D8:AF:DF:EE:4F:AE:4B:95:9A:ED:4F:9F:88:D9:A8:2C:B0:36:79 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:34:8d:69:1c:a4:0f:7d:db:7c:90:76:7b:7e:a1:15:fe:ab: 24:2f:6e:c2:af:61:4e:25:a0:ec:38:68:0e:1d:87:c2:4b:21: 67:62:10:f4:1f:1f:48:72:8d:5e:57:88:fe:65:dc:f4:6b:de: 91:3d:bc:d3:4c:c1:4f:1c:05:63:5c:64:8c:5e:48:c2:7b:f7: 45:21:fb:d6:71:70:49:4e:ba:37:33:ab:32:a7:a3:71:d9:3f: 34:10:9e:b2:93:de:f0:d9:b3:b6:eb:95:72:85:ea:d5:9f:74: 2c:d6:41:ae:6d:30:ac:20:25:8a:dd:d4:4a:b1:73:d4:3d:89: c5:a9:8d:8f:69:1c:5d:08:16:01:1b:e4:d3:80:79:41:7b:3c: c3:dc:7c:07:ff:7a:16:bf:49:be:b2:cb:7e:37:0c:5a:ca:77: 9c:ac:01:fc:b3:10:67:c2:f1:eb:81:e4:85:52:b2:32:83:71: 88:a9:7e:75:76:35:26:76:5d:b9:69:96:74:b1:37:55:85:cd: b6:91:b1:f6:0c:89:94:14:f4:71:9c:5e:48:20:8f:12:73:c7: db:fa:72:dd:1a:70:ae:c1:12:c8:35:5a:7d:e6:00:4d:84:5f: 78:96:e9:fb:dd:5c:36:0b:b9:8f:0d:0f:af:41:0f:4b:80:ae: 03:8f:69:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUwODEwMTUyMTU3WhcNMjUwODE3MTUyMTU3WjAYMRYwFAYD VQQDEw02ODk4YjkxNS1iY2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQKz5uxHXO6xzPG/mlhZhmGvxxogUGcFQdPn084vFPXLGXUJCirl8WgSAklO McGIz10ZHK/efcH6y4BLcw5BvxXwPhPR13cLRSAjJ3QhVXT0hSsA5Tn2rUBXiG8d D3niFLyEve0fzKXMYf8klLVQ8KMHDNQq3t0aAAigSpURWpgvS12MWnuedABab9pg qlB1Uu4HFVKh0JPI9ik+z2fIbNydHGqQBqrAjDxdnSrWAYYh4Hi1yjV0U98xDiuj r7/Z1ouqAOiqkgnRTG45W3Qg4XM0pz/TVm4AhxMM4cHNcddLGiu9AraT92o86rNw Y+ZfdcyFxz5SD6X3O95JVvlLAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnYr9/u T65LlZrtT5+I2agssDZ5MB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMNI1pHKQPfdt8kHZ7fqEV/qskL27Cr2FOJaDsOGgOHYfCSyFnYhD0 Hx9Ico1eV4j+Zdz0a96RPbzTTMFPHAVjXGSMXkjCe/dFIfvWcXBJTro3M6syp6Nx 2T80EJ6yk97w2bO265VyherVn3Qs1kGubTCsICWK3dRKsXPUPYnFqY2PaRxdCBYB G+TTgHlBezzD3HwH/3oWv0m+sst+NwxaynecrAH8sxBnwvHrgeSFUrIyg3GIqX51 djUmdl25aZZ0sTdVhc22kbH2DImUFPRxnF5III8Sc8fb+nLdGnCuwRLINVp95gBN hF94lun73Vw2C7mPDQ+vQQ9LgK4Dj2mo -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:00 2025 by rpki-client