$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: zvBvnKx5K4W8ok6DtMJEhcTCQTjcN2f5D9qY7DtVJfs= Subject key identifier: F0:60:0E:79:DC:E8:95:BE:76:32:2D:E4:C6:3E:64:53:E9:C7:C2:54 Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 108B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 1082 Signing time: Tue 12 Aug 2025 17:28:45 +0000 Manifest this update: Tue 12 Aug 2025 17:28:45 +0000 Manifest next update: Tue 19 Aug 2025 17:28:45 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: x4LcQawj8HoA7veCkPv7nt6KRxh3wIW0oCwtn+JAWsA=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: zsPveXQ2Zd6a9Te4YhLc43ZEsJlTYYnv+fpeJR8IN2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4235 (0x108b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944, serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: Aug 12 17:28:45 2025 GMT Not After : Aug 19 17:28:45 2025 GMT Subject: CN=689b79cd-43ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:41:7d:1b:2c:69:06:16:93:5e:c3:d4:ba:c6: 33:41:06:95:0d:ec:f9:58:19:38:9f:7d:7f:39:7b: a3:b9:99:2a:78:33:5f:e8:c2:03:4f:ad:c6:1a:d8: e1:9f:6a:b1:58:b5:2e:55:0a:32:e7:74:e4:2b:af: 4f:8a:6c:30:74:8d:0e:a4:09:46:01:33:e9:21:be: 2b:1e:af:89:43:2e:09:7d:c1:59:9e:dd:10:94:0c: 2f:e4:0d:d5:ca:46:83:57:b0:c3:c5:27:ab:46:d9: 75:c9:f6:54:c8:71:61:2d:ea:d4:d6:b8:15:5b:e1: c6:9e:ed:3b:15:9c:e6:62:86:69:b1:19:b2:19:51: 3e:01:20:b1:e6:92:9a:a7:39:5a:2f:44:3b:f1:74: 72:00:cc:40:50:1e:11:d2:bc:a7:ac:bd:5f:1e:f8: 37:6d:8d:11:78:bc:6a:a5:f6:0c:1b:7a:54:2f:9a: 25:b0:00:8a:df:24:c4:ff:5a:bb:f4:94:a8:d6:9f: 5f:1d:23:5f:19:37:22:30:2b:b7:9d:b5:8a:ee:66: 41:ae:67:e4:5c:d5:3a:26:e6:87:91:ab:49:40:f9: 2b:62:e1:19:c7:f0:9c:da:30:29:1e:ea:e6:e9:49: b4:22:93:0b:ea:34:ba:c5:a7:26:8c:bf:37:11:c0: a7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:60:0E:79:DC:E8:95:BE:76:32:2D:E4:C6:3E:64:53:E9:C7:C2:54 X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:2a:7c:6f:d0:8c:31:43:c5:0a:ff:c1:7a:11:2d:0d:86:12: 2a:2d:ba:8e:64:dc:71:6f:d8:61:86:60:3b:a8:73:20:11:3c: 61:23:01:62:3a:3a:b8:24:3f:73:ee:4a:8d:03:7e:9e:9b:e4: 52:d8:56:29:d1:f6:42:54:cd:76:ea:c2:7d:a4:09:9e:7d:bc: 7b:69:98:57:19:8b:bb:1c:1c:64:b5:ce:19:be:4b:83:82:b2: 5d:93:0c:74:a7:df:2a:dd:e7:ab:c7:6f:15:7c:9e:ca:18:b4: 71:23:76:03:6c:19:af:36:bf:74:7f:bc:0d:e4:91:35:d2:b3: d2:65:37:51:93:83:74:2f:eb:4b:0d:32:fb:18:81:e0:50:52: c2:c9:eb:62:1d:9c:71:d2:3c:4c:38:bf:2f:eb:85:e9:e6:89: 9a:e5:f5:3f:09:a8:3a:3d:b7:b9:5f:79:c2:e6:86:05:e4:0e: a6:6f:62:c6:eb:9d:26:b0:b3:0d:6f:59:37:f2:6f:37:71:27: d4:fd:27:9d:30:f6:17:09:25:56:16:db:a5:97:8b:f2:c7:a7: d2:6b:1e:8b:e0:4c:97:66:50:cc:c2:08:40:ee:4a:e7:43:2c: 03:5c:bb:55:50:c3:86:c0:b0:bd:97:e9:03:20:2e:2d:e5:17: 38:d0:0f:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjUwODEyMTcyODQ1WhcNMjUwODE5MTcyODQ1WjAYMRYwFAYD VQQDEw02ODliNzljZC00M2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kF9GyxpBhaTXsPUusYzQQaVDez5WBk4n31/OXujuZkqeDNf6MIDT63GGtjh n2qxWLUuVQoy53TkK69PimwwdI0OpAlGATPpIb4rHq+JQy4JfcFZnt0QlAwv5A3V ykaDV7DDxSerRtl1yfZUyHFhLerU1rgVW+HGnu07FZzmYoZpsRmyGVE+ASCx5pKa pzlaL0Q78XRyAMxAUB4R0rynrL1fHvg3bY0ReLxqpfYMG3pUL5olsACK3yTE/1q7 9JSo1p9fHSNfGTciMCu3nbWK7mZBrmfkXNU6JuaHkatJQPkrYuEZx/Cc2jApHurm 6Um0IpML6jS6xacmjL83EcCnBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBgDnnc 6JW+djIt5MY+ZFPpx8JUMB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEKnxv0IwxQ8UK/8F6ES0NhhIqLbqOZNxxb9hhhmA7qHMgETxhIwFi Ojq4JD9z7kqNA36em+RS2FYp0fZCVM126sJ9pAmefbx7aZhXGYu7HBxktc4ZvkuD grJdkwx0p98q3eerx28VfJ7KGLRxI3YDbBmvNr90f7wN5JE10rPSZTdRk4N0L+tL DTL7GIHgUFLCyetiHZxx0jxMOL8v64Xp5oma5fU/Cag6Pbe5X3nC5oYF5A6mb2LG 650msLMNb1k38m83cSfU/SedMPYXCSVWFtull4vyx6fSax6L4EyXZlDMwghA7krn QywDXLtVUMOGwLC9l+kDIC4t5Rc40A/P -----END CERTIFICATE-----Generated at Wed Aug 13 04:30:04 2025 by rpki-client