$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft File: onKsr-j6pPKpcApvwRQlkIx0PUs.mft (raw, json) Hash identifier: x/YCNZ57d9IB2sfG1nwOCLTErfUmdzRRyWDRQZwd2M8= Subject key identifier: 36:14:53:2E:DF:45:7D:86:2E:D0:A7:99:04:61:A7:68:C6:E2:4B:F2 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0AD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft Manifest number: 0A85 Signing time: Fri 08 Aug 2025 20:01:34 +0000 Manifest this update: Fri 08 Aug 2025 20:01:33 +0000 Manifest next update: Fri 15 Aug 2025 20:01:33 +0000 Files and hashes: 1: onKsr-j6pPKpcApvwRQlkIx0PUs.crl (hash: BEZrU3rEJ0sp56rifv7FmS5oTBtmWj+Xhy6yTqrmzcY=) 2: 879C6CC6BC0A11EF8387A57BC4F9AE02.roa (hash: GD8TE1iM2Ym7f93p/1VYDkqCG50V4KFtJCkioUpH7AI=) 3: B379B0346F4711EA81200366C4F9AE02.roa (hash: 34aVw5Rt72hNPVd0d/UxB/shSl9fnFPWjJTO5/uz5ZU=) 4: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (hash: 5hsatirdoTAMt8sVP/32NV6rGnCIOasP2d6dKTsMLr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2774 (0xad6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Aug 8 20:01:33 2025 GMT Not After : Aug 15 20:01:33 2025 GMT Subject: CN=6896579e-3b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b7:19:9a:22:fe:94:be:21:ff:fe:b2:62:2f: 85:69:72:04:08:7e:8e:d0:b0:cf:2f:c3:6b:c9:75: 1b:af:ef:cd:1a:d9:a8:23:7b:91:0e:3b:43:b5:aa: 71:14:2b:20:14:95:c5:94:5b:a1:d5:c2:73:11:5a: b0:c3:ef:34:36:1d:e7:ba:ab:51:d0:22:a1:40:a0: a2:1f:b8:5b:f5:85:c8:0b:62:0b:e5:64:95:73:8b: 07:95:c5:cc:e4:01:8a:78:b6:12:58:01:8a:16:fb: 6c:31:60:13:16:d3:02:3d:29:26:57:c6:dc:b4:52: c8:8f:2b:87:2c:a6:91:31:e5:ed:e2:94:4e:ec:43: 91:ba:5a:22:2b:04:6f:79:0e:5a:a7:5f:ca:0b:11: 4e:09:22:66:42:74:35:48:d9:4f:bb:b3:c4:f3:57: dc:38:e2:2d:4b:e0:75:d0:05:22:af:94:78:e9:1e: 75:22:c5:2e:c2:d5:f5:93:0f:bb:cf:79:53:53:eb: 8d:19:94:cf:6d:25:11:18:a2:46:93:f1:81:93:4a: 10:38:9b:19:d7:f8:0c:2d:37:5e:ac:c3:64:cb:6b: 0e:f8:b6:01:74:cf:8b:c7:69:a9:e1:67:1a:83:93: 02:15:78:20:b1:85:bd:58:e1:80:61:f3:a8:ab:96: 00:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:14:53:2E:DF:45:7D:86:2E:D0:A7:99:04:61:A7:68:C6:E2:4B:F2 X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:5c:d4:a2:e7:28:13:d8:49:fb:87:67:ab:23:53:a5:3c:86: 8d:67:87:c8:95:a0:83:06:b2:7c:cf:fc:ad:78:47:42:88:56: fb:8f:3b:fb:40:84:ce:b0:11:37:f3:a1:22:4d:7a:42:ba:6b: a7:7b:b2:96:de:a9:fe:7d:a1:da:93:ad:6d:a9:bd:7b:2a:2c: 49:18:3f:bb:a5:a4:09:6f:27:51:a7:8b:fe:58:da:bf:a0:b3: 00:ca:84:68:99:a2:42:d3:25:01:5a:89:11:6f:76:af:f8:43: d4:31:c0:16:1d:e6:5e:64:ab:e0:3c:28:4c:c1:fe:2f:36:28: 2b:1b:86:b1:99:44:f7:ce:1c:9d:42:73:dc:d6:dd:b6:a6:9b: b6:83:67:b0:4e:58:5e:58:7c:da:2e:bf:e6:d1:ad:ca:aa:73: 1d:a6:e7:60:ed:46:32:d3:c0:60:09:65:8f:8d:a7:da:00:8a: c0:74:2b:84:ee:f3:0f:1c:5c:e7:cd:32:53:f5:99:ac:b6:4f: ee:1e:e2:0b:7c:0a:a1:6d:9a:75:dd:62:7c:c6:40:c8:38:37: 43:75:2b:52:0a:15:3c:ef:0a:3e:7c:3f:79:e2:9e:59:f2:7b: 07:56:d3:a4:3a:bb:0a:cd:ee:ae:72:04:c0:3f:72:75:96:8e: 22:3f:48:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjUwODA4MjAwMTMzWhcNMjUwODE1MjAwMTMzWjAYMRYwFAYD VQQDEw02ODk2NTc5ZS0zYjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rcZmiL+lL4h//6yYi+FaXIECH6O0LDPL8NryXUbr+/NGtmoI3uRDjtDtapx FCsgFJXFlFuh1cJzEVqww+80Nh3nuqtR0CKhQKCiH7hb9YXIC2IL5WSVc4sHlcXM 5AGKeLYSWAGKFvtsMWATFtMCPSkmV8bctFLIjyuHLKaRMeXt4pRO7EORuloiKwRv eQ5ap1/KCxFOCSJmQnQ1SNlPu7PE81fcOOItS+B10AUir5R46R51IsUuwtX1kw+7 z3lTU+uNGZTPbSURGKJGk/GBk0oQOJsZ1/gMLTderMNky2sO+LYBdM+Lx2mp4Wca g5MCFXggsYW9WOGAYfOoq5YAYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYUUy7f RX2GLtCnmQRhp2jG4kvyMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UyNy9GMzg4ODc2NjZGM0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQ S3BjQXB2d1JRbGtJeDBQVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBXNSi5ygT2En7h2erI1OlPIaNZ4fIlaCDBrJ8z/yteEdCiFb7jzv7 QITOsBE386EiTXpCumune7KW3qn+faHak61tqb17KixJGD+7paQJbydRp4v+WNq/ oLMAyoRomaJC0yUBWokRb3av+EPUMcAWHeZeZKvgPChMwf4vNigrG4axmUT3zhyd QnPc1t22ppu2g2ewTlheWHzaLr/m0a3KqnMdpudg7UYy08BgCWWPjafaAIrAdCuE 7vMPHFznzTJT9Zmstk/uHuILfAqhbZp13WJ8xkDIODdDdStSChU87wo+fD954p5Z 8nsHVtOkOrsKze6ucgTAP3J1lo4iP0gz -----END CERTIFICATE-----Generated at Sat Aug 9 22:47:22 2025 by rpki-client