$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: FOWzrV8EVC268sFxDitW9FNnbvFEM9oqfeISA4wRyLo= Subject key identifier: 83:C3:66:17:C1:06:44:AD:85:C9:19:01:52:CE:21:DA:CE:B7:C5:37 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: 82 Signing time: Sat 09 Aug 2025 07:08:47 +0000 Manifest this update: Sat 09 Aug 2025 07:08:47 +0000 Manifest next update: Sat 16 Aug 2025 07:08:47 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: Q3huofjuYCVVgZ3SPyKAgkpzxFNKhrO1s1qCUx2/WzA=) 2: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 7A02Qe5tU1BaVkRNS6N9PAYKa4qN0Lgazu0at/u/nBw=) 3: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: ELgn79sVAW9E3JP6Gcqdp6NoM1aGV5NXuDSvgrgOR0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Aug 9 07:08:47 2025 GMT Not After : Aug 16 07:08:47 2025 GMT Subject: CN=6896f3ff-2815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:6e:9c:95:a4:d7:b7:a8:ac:f7:0b:57:39:d4: 08:69:d8:82:e8:60:48:93:50:0d:c6:06:08:7d:4b: 50:a3:3f:72:38:e8:a0:2d:25:f4:54:96:a7:e2:d7: 6c:22:bc:48:c8:b0:11:2e:27:20:64:9f:b2:cb:5b: 69:97:7d:5b:38:93:51:4a:5f:73:8f:92:0d:03:12: c8:79:87:b6:ee:ff:44:25:5e:ae:7c:ff:03:fe:08: c2:4b:78:c2:3a:d7:c9:63:e3:7c:6c:7b:ba:b0:28: 6f:34:6c:39:3a:f0:14:bc:34:e3:5d:f5:d8:e1:70: 30:b5:d3:c2:f4:b9:56:85:a5:2d:22:20:94:c9:d9: f3:28:a2:de:63:be:83:b3:8b:f6:2c:53:17:07:3c: d5:ce:c8:5a:a1:26:1b:8c:39:35:c9:ab:d1:ec:f9: 38:57:8f:19:71:4e:b1:27:77:b1:78:6b:83:73:50: d5:a5:90:ba:87:2d:29:8f:97:2a:f2:60:9e:1f:d3: 47:67:6b:77:a9:df:0d:98:bc:db:6a:c3:0c:1c:8c: 38:af:18:ab:5e:f8:e1:2a:d5:98:49:c7:6f:e0:97: 08:18:05:5c:c7:9f:0d:66:02:d1:47:eb:3d:5b:7d: 5a:bc:f4:c6:dd:3c:64:24:ab:59:13:e3:3a:3e:cf: c9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C3:66:17:C1:06:44:AD:85:C9:19:01:52:CE:21:DA:CE:B7:C5:37 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:21:1c:24:5d:92:4a:7a:a2:1a:ff:1e:01:72:02:de:9a:f3: b9:c5:aa:d1:2d:f9:f6:14:1b:55:2d:bc:2c:38:9b:e3:7e:39: d0:65:88:e8:75:16:36:ce:9b:58:d6:fa:d2:98:ca:87:9d:80: 50:6b:f5:c3:c5:29:ca:73:1b:31:15:22:16:81:89:49:82:17: 59:86:c2:d4:14:c7:4c:57:62:ab:44:b7:8c:b1:88:5b:72:09: 35:1a:bc:ae:ba:19:02:84:18:b9:25:db:82:cd:47:51:10:12: 70:04:1e:dd:5d:7b:08:2e:83:e7:e1:24:bd:04:fe:78:0a:44: 15:62:fe:fc:bf:dd:9a:6d:93:0f:da:6c:2e:08:1f:c6:f6:98: 35:16:f1:84:39:3b:2f:94:eb:2c:2a:21:28:43:65:97:87:6c: 25:00:63:2d:f7:50:1e:ae:c8:f1:50:2a:aa:24:47:b6:83:89: 53:e7:d7:3c:87:1b:93:29:02:3c:9e:f8:bf:d1:68:2c:26:d0: 2e:6a:1c:04:29:c2:70:e3:47:15:f7:5a:eb:b9:3b:d4:18:c5: 7e:03:c5:8c:b0:a1:34:a7:7a:2c:4f:c1:a3:6c:53:80:7b:73: 87:c0:fd:17:f9:4f:bf:20:24:d4:f3:b9:9d:a0:d1:36:c2:8b: 3e:d5:14:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU1RTUxMTAvBgNVBAUTKEEwMEUwMkRDNzgzRjkwODQwMjFERjk0Rjc1ODYyNjRF QzQ3RDM0MzgwHhcNMjUwODA5MDcwODQ3WhcNMjUwODE2MDcwODQ3WjAYMRYwFAYD VQQDEw02ODk2ZjNmZi0yODE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9W6claTXt6is9wtXOdQIadiC6GBIk1ANxgYIfUtQoz9yOOigLSX0VJan4tds IrxIyLARLicgZJ+yy1tpl31bOJNRSl9zj5INAxLIeYe27v9EJV6ufP8D/gjCS3jC OtfJY+N8bHu6sChvNGw5OvAUvDTjXfXY4XAwtdPC9LlWhaUtIiCUydnzKKLeY76D s4v2LFMXBzzVzshaoSYbjDk1yavR7Pk4V48ZcU6xJ3exeGuDc1DVpZC6hy0pj5cq 8mCeH9NHZ2t3qd8NmLzbasMMHIw4rxirXvjhKtWYScdv4JcIGAVcx58NZgLRR+s9 W31avPTG3TxkJKtZE+M6Ps/JsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPDZhfB BkSthckZAVLOIdrOt8U3MB8GA1UdIwQYMBaAFKAOAtx4P5CEAh35T3WGJk7EfTQ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTVFNS9GOTdCQzMwMkFG QkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJUUNIZmxQZFlZbVRzUjlO RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GOTdCQzMwMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJ UUNIZmxQZFlZbVRzUjlORGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7IRwkXZJKeqIa/x4BcgLemvO5xarRLfn2FBtVLbwsOJvjfjnQZYjo dRY2zptY1vrSmMqHnYBQa/XDxSnKcxsxFSIWgYlJghdZhsLUFMdMV2KrRLeMsYhb cgk1GryuuhkChBi5JduCzUdREBJwBB7dXXsILoPn4SS9BP54CkQVYv78v92abZMP 2mwuCB/G9pg1FvGEOTsvlOssKiEoQ2WXh2wlAGMt91AersjxUCqqJEe2g4lT59c8 hxuTKQI8nvi/0WgsJtAuahwEKcJw40cV91rruTvUGMV+A8WMsKE0p3osT8GjbFOA e3OHwP0X+U+/ICTU87mdoNE2wos+1RTk -----END CERTIFICATE-----Generated at Sat Aug 9 20:42:16 2025 by rpki-client