$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: H0epw9Ojwt07rVF4FOcWSstuztE2oVzurOQrFaqDGIY= Subject key identifier: 83:87:E9:25:A8:38:C5:14:89:89:6C:F5:A3:86:79:B2:9B:4A:BF:0E Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 038D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 0381 Signing time: Mon 11 Aug 2025 01:04:51 +0000 Manifest this update: Mon 11 Aug 2025 01:04:51 +0000 Manifest next update: Mon 18 Aug 2025 01:04:51 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: bjy1WkfG9Uq+npJJK193UCtKbGMXfpu30pCvVWDfq74=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 909 (0x38d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Aug 11 01:04:51 2025 GMT Not After : Aug 18 01:04:51 2025 GMT Subject: CN=689941b3-a673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:be:40:ab:54:6b:44:65:86:65:a4:70:c7:e2: 16:2d:5a:db:28:a2:9a:f2:fa:b3:45:ff:38:42:67: 69:03:aa:a2:b8:68:c4:5e:2a:01:e0:50:c4:70:d4: 2c:f9:52:aa:bb:13:8a:28:e4:78:53:ec:34:6f:27: cc:f3:5e:fc:22:24:98:e3:58:16:99:dd:4e:02:20: dc:f7:01:69:b4:cd:c9:e1:68:cf:ec:02:63:96:ac: 12:43:94:34:b9:78:95:db:46:01:fe:2a:70:70:0b: 5a:8a:0c:bd:73:37:ae:80:1e:0d:77:70:5a:28:06: 0a:1b:92:f7:41:92:4d:cc:16:cf:ec:68:f6:98:8f: 6e:4e:a8:81:93:e3:66:a2:62:4f:57:bb:15:5c:fd: 56:c7:cb:07:01:21:a1:7e:3d:71:4a:26:bb:b8:40: 84:08:f5:e1:1c:a0:7b:c2:5a:6e:e6:1a:4d:3c:e7: 99:0f:23:4d:9b:ce:8d:53:49:52:b6:77:0d:2e:47: 26:14:70:e3:b7:ad:58:86:fa:7e:00:df:a8:26:00: 01:ca:a7:4c:08:8f:b0:73:69:49:01:1a:c9:bf:a3: 02:d4:01:d7:40:da:f4:7b:ff:72:23:11:2d:1f:46: b8:95:1c:29:7b:20:e0:20:14:d6:6b:66:93:d1:d5: c3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:87:E9:25:A8:38:C5:14:89:89:6C:F5:A3:86:79:B2:9B:4A:BF:0E X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e9:b5:62:7f:17:4d:23:17:45:50:bf:d7:33:b9:ea:75:9a:9e: d4:b6:93:1e:ec:70:b6:09:ca:27:be:85:f2:93:c4:0a:1e:d2: 5c:87:56:8f:3b:e4:c7:94:d1:14:5d:62:8e:1a:01:f9:c7:c6: 60:82:58:8a:5d:a6:2b:fe:c3:f9:e9:c8:8d:14:36:31:ad:44: 2b:3d:43:0f:05:e2:16:d0:09:d6:8b:e8:09:c2:22:b1:61:5e: dc:8c:0d:a2:57:49:4c:39:a5:94:41:07:20:32:f0:f9:ea:1e: 60:9e:b9:88:6a:98:9c:60:78:c3:69:a3:6d:c7:75:9d:20:24: e4:83:f6:88:26:a7:a2:f5:0b:a1:d5:07:54:b2:f6:a2:58:b2: 0f:f9:ed:e5:ad:92:40:76:30:84:80:5f:e5:eb:d5:65:8d:bc: 52:86:77:b6:e8:b7:4a:c4:61:0a:42:e5:68:72:46:bb:74:be: c4:fa:a3:96:d0:0e:71:18:e6:b7:b1:9c:f5:dc:f7:22:ef:35: c1:21:c1:79:e4:fc:a9:29:6e:95:d3:86:2b:0d:65:ff:97:ec: 54:7e:f1:c1:80:2e:73:4a:00:78:c0:2f:d4:91:ad:2e:9f:1c: 7b:12:a3:f2:01:12:fe:90:6f:ac:c7:3c:86:6f:4f:85:c2:92: 10:f1:74:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwODExMDEwNDUxWhcNMjUwODE4MDEwNDUxWjAYMRYwFAYD VQQDEw02ODk5NDFiMy1hNjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzL5Aq1RrRGWGZaRwx+IWLVrbKKKa8vqzRf84QmdpA6qiuGjEXioB4FDEcNQs +VKquxOKKOR4U+w0byfM8178IiSY41gWmd1OAiDc9wFptM3J4WjP7AJjlqwSQ5Q0 uXiV20YB/ipwcAtaigy9czeugB4Nd3BaKAYKG5L3QZJNzBbP7Gj2mI9uTqiBk+Nm omJPV7sVXP1Wx8sHASGhfj1xSia7uECECPXhHKB7wlpu5hpNPOeZDyNNm86NU0lS tncNLkcmFHDjt61Yhvp+AN+oJgAByqdMCI+wc2lJARrJv6MC1AHXQNr0e/9yIxEt H0a4lRwpeyDgIBTWa2aT0dXDMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOH6SWo OMUUiYls9aOGebKbSr8OMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDptWJ/F00jF0VQv9czuep1mp7UtpMe7HC2CconvoXyk8QKHtJch1aP O+THlNEUXWKOGgH5x8ZggliKXaYr/sP56ciNFDYxrUQrPUMPBeIW0AnWi+gJwiKx YV7cjA2iV0lMOaWUQQcgMvD56h5gnrmIapicYHjDaaNtx3WdICTkg/aIJqei9Quh 1QdUsvaiWLIP+e3lrZJAdjCEgF/l69VljbxShne26LdKxGEKQuVocka7dL7E+qOW 0A5xGOa3sZz13Pci7zXBIcF55PypKW6V04YrDWX/l+xUfvHBgC5zSgB4wC/Uka0u nxx7EqPyARL+kG+sxzyGb0+FwpIQ8XST -----END CERTIFICATE-----Generated at Mon Aug 11 07:49:27 2025 by rpki-client