$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft File: ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft (raw, json) Hash identifier: bIHSaWyC9rK2m31SM1CUqcz6/3oIWt2OZCQAdJ3Kvvs= Subject key identifier: 2A:A0:23:40:2F:3A:72:4E:B5:31:B7:A5:61:F7:19:66:11:FB:B1:62 Authority key identifier: A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 Certificate issuer: /CN=A91E7656/serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Certificate serial: 0C37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft Manifest number: 0C36 Signing time: Sun 10 Aug 2025 18:36:22 +0000 Manifest this update: Sun 10 Aug 2025 18:36:22 +0000 Manifest next update: Sun 17 Aug 2025 18:36:22 +0000 Files and hashes: 1: ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl (hash: +7Y8uyQVx1Inzp6WwEvhNqa595HljG9GNGQOoA3Ohqw=) 2: AF73E1423D2011F0ACC34F2BC4F9AE02.roa (hash: 6z4IvdKelJy7fw7SK3RJpHNkKU/zaX8zdMWrochmqvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3127 (0xc37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7656, serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Validity Not Before: Aug 10 18:36:22 2025 GMT Not After : Aug 17 18:36:22 2025 GMT Subject: CN=6898e6a6-8900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:89:79:a0:6c:5a:54:b1:f9:81:24:c8:df:89: 79:0c:70:5b:52:2c:70:7a:47:d8:70:f1:3c:f6:2d: a3:9b:08:51:92:11:d5:11:78:0c:63:c2:a9:f6:74: b1:42:c6:be:3b:04:db:2f:ea:bf:57:cf:8e:c5:52: f3:af:43:53:c3:33:60:ef:e0:e5:ec:7f:37:1a:49: 9a:f5:f5:13:3a:77:db:3d:d2:2f:65:48:10:ec:c3: 70:a6:cd:f7:70:8d:dc:14:f1:5f:f4:cf:63:59:78: 4a:28:1c:ca:77:13:18:8a:2b:e1:fa:65:45:77:49: 06:1d:79:3d:58:13:72:3d:ae:32:4c:ef:e9:92:42: 73:6d:57:6c:f1:a7:14:72:14:b7:aa:2b:16:90:34: ac:a6:48:dd:da:af:90:43:34:ec:8b:e9:8f:7c:5d: db:56:d9:25:f4:b2:78:cf:71:08:8e:14:48:eb:65: 8d:4e:c0:3a:99:2c:a6:02:69:a7:ac:62:02:03:f3: d1:0e:dc:13:64:e0:77:b7:5c:5d:f2:22:62:92:f7: 01:20:01:3d:47:59:84:24:32:51:d9:cb:27:17:e9: 15:e2:ec:64:90:a2:bb:41:e7:1d:68:e4:96:83:99: cc:fb:5d:d7:ef:97:f4:a7:86:85:49:a0:3d:6f:91: 2f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A0:23:40:2F:3A:72:4E:B5:31:B7:A5:61:F7:19:66:11:FB:B1:62 X509v3 Authority Key Identifier: keyid:A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:d1:53:7b:b1:42:80:3f:af:24:a2:a1:01:00:1f:e8:1f:59: d6:b0:9c:61:cb:d5:7f:5a:b2:24:8b:1b:b0:14:d5:f0:d7:4e: ff:80:cd:32:b9:3e:be:90:95:07:1b:9b:25:76:cd:b5:6e:1c: 84:28:ac:ca:6c:f7:8b:2f:af:0f:b0:18:d0:b4:46:e4:8a:81: 76:dc:a0:da:90:6c:f4:45:8a:b9:1c:02:14:13:c9:0d:60:76: f9:95:6a:8b:5d:c9:3d:58:bc:67:4f:56:40:b5:d1:24:b5:18: 35:78:2c:d7:4e:8b:09:9c:4f:70:3b:72:d6:ba:05:33:3b:41: 50:a1:51:8a:6b:71:bd:f2:e4:78:21:9b:2d:9b:aa:ad:f3:c2: 2b:71:5f:f2:59:b4:30:9b:2d:02:6a:de:00:90:d2:7b:88:f4: b5:ff:71:f2:d2:1d:c6:43:be:fa:3c:60:5f:90:6a:aa:de:06: e6:18:a5:ad:50:0c:46:0e:b2:89:fa:87:fa:a4:e5:d0:91:10: b3:cf:de:07:c3:13:37:2a:a7:b4:2f:e6:99:ad:a0:cb:6b:b1: a3:20:c2:a9:f0:a3:e3:4f:f0:0d:6d:62:b2:b5:97:ee:3d:38: 37:0f:9e:a4:f3:e1:02:d1:b6:87:80:87:4c:22:72:e6:b7:4e: 4e:60:c4:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2NTYxMTAvBgNVBAUTKEEyMEM1N0Y1MkNFOThDODg0OEY2MzYyNTBFNEE0Njcw ODExQjUwNzYwHhcNMjUwODEwMTgzNjIyWhcNMjUwODE3MTgzNjIyWjAYMRYwFAYD VQQDEw02ODk4ZTZhNi04OTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzol5oGxaVLH5gSTI34l5DHBbUixwekfYcPE89i2jmwhRkhHVEXgMY8Kp9nSx Qsa+OwTbL+q/V8+OxVLzr0NTwzNg7+Dl7H83Gkma9fUTOnfbPdIvZUgQ7MNwps33 cI3cFPFf9M9jWXhKKBzKdxMYiivh+mVFd0kGHXk9WBNyPa4yTO/pkkJzbVds8acU chS3qisWkDSspkjd2q+QQzTsi+mPfF3bVtkl9LJ4z3EIjhRI62WNTsA6mSymAmmn rGICA/PRDtwTZOB3t1xd8iJikvcBIAE9R1mEJDJR2csnF+kV4uxkkKK7QecdaOSW g5nM+13X75f0p4aFSaA9b5EveQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqgI0Av OnJOtTG3pWH3GWYR+7FiMB8GA1UdIwQYMBaAFKIMV/Us6YyISPY2JQ5KRnCBG1B2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzY1Ni8wRUUzQTVCQzBD RDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJaEk5allsRGtwR2NJRWJV SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29neFg5U3pwakloSTlqWWxEa3BHY0lFYlVIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzY1Ni8wRUUzQTVCQzBDRDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJ aEk5allsRGtwR2NJRWJVSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg0VN7sUKAP68koqEBAB/oH1nWsJxhy9V/WrIkixuwFNXw107/gM0y uT6+kJUHG5slds21bhyEKKzKbPeLL68PsBjQtEbkioF23KDakGz0RYq5HAIUE8kN YHb5lWqLXck9WLxnT1ZAtdEktRg1eCzXTosJnE9wO3LWugUzO0FQoVGKa3G98uR4 IZstm6qt88IrcV/yWbQwmy0Cat4AkNJ7iPS1/3Hy0h3GQ776PGBfkGqq3gbmGKWt UAxGDrKJ+of6pOXQkRCzz94HwxM3Kqe0L+aZraDLa7GjIMKp8KPjT/ANbWKytZfu PTg3D56k8+EC0baHgIdMInLmt05OYMS3 -----END CERTIFICATE-----Generated at Mon Aug 11 04:18:12 2025 by rpki-client