$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: DKtYL5ZqQrgImKMFxE/Q2OZ9GNhONJwAu4V7H7PSi7k= Subject key identifier: 43:FC:F1:20:05:A8:A9:DA:37:85:38:CC:D4:00:BB:6E:FB:E2:CF:23 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 21FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 21BA Signing time: Fri 08 Aug 2025 15:58:56 +0000 Manifest this update: Fri 08 Aug 2025 15:58:56 +0000 Manifest next update: Fri 15 Aug 2025 15:58:56 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: JP7vNk4EvGLKsjMBLz3Pf+nAusXWomgU18hqw9SZIls=) 2: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 1ES+epsnD/DNY/mamto14c9DZbko73ok/bvGYlpnZRA=) 3: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: RV1/DDfUdeMeAI1f60SGG8y1uSkd4aEtHJsKEOkYdXA=) 4: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: xubGUlPUlNCBLJe5+NADMrf4YV/wbfCmoqj7rhjCN20=) 5: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: ftobPRBcc8wlVTCOH3GxCPMFHQM9ebuoV2KFpLluNR4=) 6: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: RArCcLO/kSE5acBXMMlQcl8HS4RV4DSQfZAIgouxT+4=) 7: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 8McChURwVN9JYUVHRVTAHRcHa/Hxc6L3gNtxVyOyx0g=) 8: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 4gXXPKgdGkdsiTu4Fh+U84K4r4ojzbdg0Z4yEj+nXpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8700 (0x21fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Aug 8 15:58:56 2025 GMT Not After : Aug 15 15:58:56 2025 GMT Subject: CN=68961ec0-88ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a2:a5:87:13:fa:de:03:5a:a3:ca:ac:a4:b8: ec:74:db:9a:b7:9b:48:73:9d:e8:94:44:5a:82:9d: 0b:2d:e1:2e:74:39:22:af:b1:55:c2:be:d8:44:46: be:91:74:a0:fe:65:12:51:03:b0:a5:33:20:01:e8: 4e:f8:f1:7d:b9:9a:ae:af:c0:28:84:67:95:c1:f8: 84:18:1d:c8:f0:c4:ff:0d:dd:5e:26:69:2d:5e:a8: 7f:23:d5:a0:ef:1b:30:a7:1c:8d:ce:17:8f:37:a2: b9:1f:b3:91:02:86:6e:9b:d8:0c:9b:04:49:04:cc: fc:0a:34:63:e1:84:eb:0f:74:bc:19:78:11:64:45: 0e:bc:a3:c9:db:b0:2f:0b:1a:1a:b1:37:3a:fc:61: d6:dc:80:b1:8b:18:6d:62:93:f7:d5:f6:b3:8d:18: 0d:2f:54:c3:2b:94:15:d7:19:22:06:e3:1c:58:94: eb:88:92:6f:7c:48:88:d1:44:40:d1:52:b3:a5:d6: 35:5d:99:7e:be:3d:22:eb:4f:f0:d3:93:70:11:9e: 56:0f:c2:14:ec:8c:ed:75:7e:e9:ef:c0:77:a4:14: f4:4e:93:ea:2c:ae:1b:37:1f:22:28:4a:3c:d8:48: 87:91:92:0e:09:ca:e5:27:ee:2a:78:40:0f:7d:bc: a0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FC:F1:20:05:A8:A9:DA:37:85:38:CC:D4:00:BB:6E:FB:E2:CF:23 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:65:ab:af:9c:17:67:d2:51:cb:09:dc:ac:67:f9:0f:6f:ac: 00:15:4c:77:d7:2f:5a:8f:ba:d7:14:d3:8f:d5:63:74:e0:1e: 94:69:ce:b3:0f:2d:a3:71:3a:3f:3a:37:29:6e:8c:54:6f:6b: 94:81:39:bb:9e:85:32:11:d8:e1:b2:83:ab:e0:c1:ac:d2:d1: 4f:30:7f:09:1d:2e:fc:72:c0:8b:d4:a7:c5:f6:53:a8:ff:13: 2b:01:81:98:4d:e5:ab:23:ba:d5:58:27:11:72:1e:a1:d9:ba: fd:b6:a4:38:a9:03:02:e1:f2:4f:ce:92:d7:08:b1:53:62:a5: a3:99:96:70:e1:08:7e:59:16:84:5b:75:a2:82:c7:d4:fe:7b: d0:9c:6b:5b:6c:38:4c:bc:dd:91:cd:47:46:71:7c:6f:ed:ad: b9:4f:9d:45:d4:0a:22:b7:9c:13:95:93:e7:b1:7e:96:5a:81: a4:73:f6:49:18:14:83:25:26:8a:69:23:50:fc:86:65:01:a1: 16:ff:2a:c2:18:aa:47:99:e9:4d:ac:27:98:e6:b6:98:35:2f: d6:9d:fe:b2:ea:a4:e5:5a:5a:6c:8f:22:26:41:4f:3f:56:83: 16:10:3b:99:94:b9:87:31:de:b9:6b:a9:cb:33:22:82:7c:85: 18:78:70:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUwODA4MTU1ODU2WhcNMjUwODE1MTU1ODU2WjAYMRYwFAYD VQQDEw02ODk2MWVjMC04OGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KKlhxP63gNao8qspLjsdNuat5tIc53olERagp0LLeEudDkir7FVwr7YREa+ kXSg/mUSUQOwpTMgAehO+PF9uZqur8AohGeVwfiEGB3I8MT/Dd1eJmktXqh/I9Wg 7xswpxyNzhePN6K5H7ORAoZum9gMmwRJBMz8CjRj4YTrD3S8GXgRZEUOvKPJ27Av CxoasTc6/GHW3ICxixhtYpP31fazjRgNL1TDK5QV1xkiBuMcWJTriJJvfEiI0URA 0VKzpdY1XZl+vj0i60/w05NwEZ5WD8IU7IztdX7p78B3pBT0TpPqLK4bNx8iKEo8 2EiHkZIOCcrlJ+4qeEAPfbygJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEP88SAF qKnaN4U4zNQAu2774s8jMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoZauvnBdn0lHLCdysZ/kPb6wAFUx31y9aj7rXFNOP1WN04B6Uac6z Dy2jcTo/OjcpboxUb2uUgTm7noUyEdjhsoOr4MGs0tFPMH8JHS78csCL1KfF9lOo /xMrAYGYTeWrI7rVWCcRch6h2br9tqQ4qQMC4fJPzpLXCLFTYqWjmZZw4Qh+WRaE W3WigsfU/nvQnGtbbDhMvN2RzUdGcXxv7a25T51F1Aoit5wTlZPnsX6WWoGkc/ZJ GBSDJSaKaSNQ/IZlAaEW/yrCGKpHmelNrCeY5raYNS/Wnf6y6qTlWlpsjyImQU8/ VoMWEDuZlLmHMd65a6nLMyKCfIUYeHDk -----END CERTIFICATE-----Generated at Sat Aug 9 05:43:56 2025 by rpki-client