$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: NYDvx7Pp1vO635LsBION/BTX0qSKXiCApC1s5ba+LQY= Subject key identifier: B5:74:85:AB:CC:C8:AB:12:5D:59:10:A2:3E:4B:4C:4E:BD:D6:3A:93 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 0286 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 0282 Signing time: Tue 05 Aug 2025 02:18:06 +0000 Manifest this update: Tue 05 Aug 2025 02:18:05 +0000 Manifest next update: Tue 12 Aug 2025 02:18:05 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: pRMpJ8lpy6TfoJM9pwYs1Tx4YNCrKeYpWoP/FoVU8QY=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 00Bb5TLyF/J2CWzHDjxZA81Dz6rMiVp4bUBC6ncoYxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 02:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 646 (0x286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Aug 5 02:18:05 2025 GMT Not After : Aug 12 02:18:05 2025 GMT Subject: CN=689169de-0006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:88:77:0d:7c:07:33:03:af:3a:48:00:4f:72: 3e:e9:ea:61:56:a7:5c:ae:b3:ef:be:05:ac:d2:66: 1f:4a:f1:57:18:bd:dc:88:65:ec:5f:0a:f4:01:cf: 15:57:93:03:1f:8f:c3:87:25:30:96:15:d5:d1:eb: 22:ea:45:58:eb:f9:f5:17:99:c2:bc:97:74:d7:82: d9:50:22:5d:09:66:83:2d:18:75:03:a2:80:17:48: dd:f4:88:60:f1:c7:28:df:4b:73:65:e6:7d:fa:5c: 31:bb:e5:d3:c2:eb:3f:ba:9e:6b:00:c8:e4:66:a5: ec:14:52:a9:d5:68:97:32:36:a2:09:85:f8:73:7f: 6f:ff:77:f0:08:8e:1c:a1:68:34:7f:fe:3c:d2:20: 95:48:56:b1:fc:fb:21:2c:40:27:91:03:cd:eb:99: 5e:99:f6:ec:4a:21:36:06:2c:72:b7:f5:be:61:00: b6:81:76:97:4a:a3:54:25:2e:aa:10:88:3d:4b:54: b2:4c:a2:aa:77:d9:97:1c:85:e2:cd:da:3b:49:49: db:c8:07:5b:61:af:06:4e:4b:0b:61:76:e0:92:12: 4f:81:ff:bb:18:33:0e:a9:e4:39:81:ae:06:d4:ee: 8d:15:3f:c5:63:ab:da:a4:9e:48:05:cc:d9:06:f5: 32:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:74:85:AB:CC:C8:AB:12:5D:59:10:A2:3E:4B:4C:4E:BD:D6:3A:93 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:10:6d:f3:1f:78:99:3e:b5:dc:e9:7f:6f:ff:4a:c8:10:34: 02:53:f0:22:c6:e8:24:0f:b2:d7:dc:70:d4:3f:40:23:a3:1b: d7:a6:36:a4:e3:93:6e:2d:d2:39:91:65:fb:98:d4:e3:35:c5: 8f:89:2f:b3:6c:46:06:91:be:a5:5d:d0:e1:26:64:16:3d:5e: 12:4d:e3:7e:d4:01:26:3f:00:a8:35:a3:12:7f:60:79:c1:47: f3:13:b9:a7:aa:1a:38:a0:05:91:dd:af:81:8d:78:07:8c:eb: 30:67:37:12:8f:77:99:98:65:9d:a2:95:f3:0e:96:66:f5:f3: d3:84:4e:7c:a7:37:cb:54:ff:64:b1:4c:fb:f1:e1:d0:e9:ff: 45:13:a4:83:09:46:f2:b4:77:3a:17:de:bc:01:32:9d:40:b8: b4:63:1a:de:c7:b3:85:6a:1c:3c:52:ed:0a:ce:83:bc:a6:7a: 53:98:52:6d:cc:63:54:50:bb:bd:90:39:bb:84:fd:c9:28:b0: 33:f5:57:fc:2e:6a:07:3b:5f:4c:4c:32:68:3b:ad:80:5c:45: 12:e0:4c:24:58:d5:a4:ea:82:96:12:97:bc:9b:85:ad:b8:fb: a2:d0:47:83:e0:cb:b2:3a:0e:f6:7f:9b:da:d3:d9:93:eb:ae: 8a:90:cc:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUwODA1MDIxODA1WhcNMjUwODEyMDIxODA1WjAYMRYwFAYD VQQDEw02ODkxNjlkZS0wMDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIh3DXwHMwOvOkgAT3I+6ephVqdcrrPvvgWs0mYfSvFXGL3ciGXsXwr0Ac8V V5MDH4/DhyUwlhXV0esi6kVY6/n1F5nCvJd014LZUCJdCWaDLRh1A6KAF0jd9Ihg 8cco30tzZeZ9+lwxu+XTwus/up5rAMjkZqXsFFKp1WiXMjaiCYX4c39v/3fwCI4c oWg0f/480iCVSFax/PshLEAnkQPN65lemfbsSiE2Bixyt/W+YQC2gXaXSqNUJS6q EIg9S1SyTKKqd9mXHIXizdo7SUnbyAdbYa8GTksLYXbgkhJPgf+7GDMOqeQ5ga4G 1O6NFT/FY6vapJ5IBczZBvUydwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLV0havM yKsSXVkQoj5LTE691jqTMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGEG3zH3iZPrXc6X9v/0rIEDQCU/AixugkD7LX3HDUP0AjoxvXpjak 45NuLdI5kWX7mNTjNcWPiS+zbEYGkb6lXdDhJmQWPV4STeN+1AEmPwCoNaMSf2B5 wUfzE7mnqho4oAWR3a+BjXgHjOswZzcSj3eZmGWdopXzDpZm9fPThE58pzfLVP9k sUz78eHQ6f9FE6SDCUbytHc6F968ATKdQLi0Yxrex7OFahw8Uu0KzoO8pnpTmFJt zGNUULu9kDm7hP3JKLAz9Vf8LmoHO19MTDJoO62AXEUS4EwkWNWk6oKWEpe8m4Wt uPui0EeD4MuyOg72f5va09mT666KkMyz -----END CERTIFICATE-----Generated at Wed Aug 6 10:05:33 2025 by rpki-client