$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft File: O9MC-nouhmpnmxtglttnRToDq4Y.mft (raw, json) Hash identifier: /Yk+91O4ZiQ6jgQtcahhUoVos5lqymaG+AWw4eJqXS8= Subject key identifier: A6:1E:D0:FB:68:BB:84:FF:C5:8B:58:5D:75:76:C0:1B:E9:B6:2C:2E Authority key identifier: 3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 Certificate issuer: /CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Certificate serial: 0A52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft Manifest number: 0A3C Signing time: Fri 08 Aug 2025 20:03:40 +0000 Manifest this update: Fri 08 Aug 2025 20:03:39 +0000 Manifest next update: Fri 15 Aug 2025 20:03:39 +0000 Files and hashes: 1: O9MC-nouhmpnmxtglttnRToDq4Y.crl (hash: lG/SbSsbzUHUgPINNswnfGJCawKhd3NsiVoR2uTcPBM=) 2: 0791DE6034A511ED9D82D13BC4F9AE02.roa (hash: juMQ71UzLGU0NVMfjPJ2FFyOOWRBZEQJenhZ2xiR7QE=) 3: 62512E2C73D311EABC99D63AC4F9AE02.roa (hash: DFYge5dHCEqKdjq6qJwiRBDOxqQ6gIZRO7JP5sPeXVk=) 4: 27323072FF0E11EFB014CB3CC4F9AE02.roa (hash: Fcw453Ezb9efQnwUieSmXg5daSqXlucP3XjYZWFxjYQ=) 5: 855AECF29B3A11EB9B73EB7BC4F9AE02.roa (hash: R3iQDjS1xmyA/Ti9pGMuv3ByraTjewOpXnxZ6reYInQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DCD, serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Validity Not Before: Aug 8 20:03:39 2025 GMT Not After : Aug 15 20:03:39 2025 GMT Subject: CN=6896581b-b99c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4f:a5:55:67:07:f6:0d:03:e7:08:fc:87:f6: d4:10:a2:6e:6d:2b:76:f6:8b:26:5b:96:1f:9a:4b: a3:41:f5:50:f5:f6:2b:57:2c:80:4d:c4:20:72:67: 13:71:63:96:77:e2:25:9c:f7:87:fc:98:bf:5f:df: d2:0a:4d:91:bd:12:f7:2b:ef:a8:af:3c:b2:f9:a6: ae:7b:fc:a9:dd:bc:ff:9f:6d:dc:7b:74:30:a9:5f: 7a:3b:fc:ab:ca:a1:a5:08:26:5d:af:7e:bf:51:c2: 41:96:a3:3f:8d:4d:06:8f:62:a5:f1:22:5c:58:ee: 91:7e:cf:f4:89:1e:ce:97:6f:5b:df:6d:01:dd:c4: 36:a7:a6:e1:a1:3b:d4:53:3a:6e:01:80:fe:61:56: 78:d1:85:52:cf:51:85:fe:e8:97:bc:a9:9d:d8:9e: c8:48:3a:e0:f8:fc:aa:16:f1:67:cc:07:3d:f9:14: a2:74:17:90:48:e2:97:b3:d3:d7:ed:fb:79:87:2f: 7d:b8:b7:c2:17:93:6a:2a:95:46:ec:5a:98:54:0d: 4b:c4:69:5b:03:3d:be:3a:bf:d5:82:f5:a4:31:fc: 5c:11:d2:c7:85:03:b5:3c:be:3b:6f:ab:dc:ea:cb: b8:5d:ba:f9:b0:87:0c:f8:64:7f:a9:7a:14:b2:67: 36:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1E:D0:FB:68:BB:84:FF:C5:8B:58:5D:75:76:C0:1B:E9:B6:2C:2E X509v3 Authority Key Identifier: keyid:3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:9e:2a:ee:64:29:61:8f:7a:62:fe:93:d5:1c:1b:3e:5a:91: 1a:b8:34:09:57:ad:13:67:d6:0b:c5:52:c1:7a:d1:4b:e2:4d: cb:e9:98:32:a4:dd:39:e3:1a:e9:cb:83:f5:0f:1b:a7:e3:a6: b4:82:b2:77:23:58:ff:a9:a5:14:86:34:91:9d:f5:46:ae:05: 94:67:25:46:de:b9:f4:33:2f:70:8d:25:36:95:40:9f:5b:6b: b4:5b:e6:04:79:4d:fd:ac:e0:96:46:a6:2e:6d:da:ab:2e:de: 29:25:0f:b4:b2:4f:10:ca:89:9f:96:28:d3:ba:4a:0b:3f:66: a5:1d:a9:5d:75:79:2a:bd:2c:b6:3c:d3:a7:c5:a3:df:15:09: 53:26:ae:4c:be:90:07:f4:d6:33:eb:ab:69:5d:b3:27:21:6b: 35:0d:6d:d7:48:00:9d:6d:82:4c:89:d9:85:0a:cf:0c:5b:16: f0:03:7b:a2:87:19:b7:8f:b0:17:97:e0:b8:59:7f:a9:dd:0a: 75:8e:1f:bf:b4:82:6a:c1:46:b4:28:56:e9:0d:f5:9a:55:36: 25:dc:18:9b:30:4d:43:2d:30:52:af:aa:e7:ca:f1:fa:ef:0f: 2f:02:98:1b:5c:df:c2:83:7f:60:2a:d5:19:2c:9a:81:85:08: 21:2d:4f:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQ0QxMTAvBgNVBAUTKDNCRDMwMkZBN0EyRTg2NkE2NzlCMUI2MDk2REI2NzQ1 M0EwM0FCODYwHhcNMjUwODA4MjAwMzM5WhcNMjUwODE1MjAwMzM5WjAYMRYwFAYD VQQDEw02ODk2NTgxYi1iOTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0+lVWcH9g0D5wj8h/bUEKJubSt29osmW5YfmkujQfVQ9fYrVyyATcQgcmcT cWOWd+IlnPeH/Ji/X9/SCk2RvRL3K++orzyy+aaue/yp3bz/n23ce3QwqV96O/yr yqGlCCZdr36/UcJBlqM/jU0Gj2Kl8SJcWO6Rfs/0iR7Ol29b320B3cQ2p6bhoTvU UzpuAYD+YVZ40YVSz1GF/uiXvKmd2J7ISDrg+PyqFvFnzAc9+RSidBeQSOKXs9PX 7ft5hy99uLfCF5NqKpVG7FqYVA1LxGlbAz2+Or/VgvWkMfxcEdLHhQO1PL47b6vc 6su4Xbr5sIcM+GR/qXoUsmc2wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYe0Pto u4T/xYtYXXV2wBvptiwuMB8GA1UdIwQYMBaAFDvTAvp6LoZqZ5sbYJbbZ0U6A6uG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RDRC84NDQyOEIwRTcz RDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWhtcG5teHRnbHR0blJUb0Rx NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL085TUMtbm91aG1wbm14dGdsdHRuUlRvRHE0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RDRC84NDQyOEIwRTczRDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWht cG5teHRnbHR0blJUb0RxNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmniruZClhj3pi/pPVHBs+WpEauDQJV60TZ9YLxVLBetFL4k3L6Zgy pN054xrpy4P1Dxun46a0grJ3I1j/qaUUhjSRnfVGrgWUZyVG3rn0My9wjSU2lUCf W2u0W+YEeU39rOCWRqYubdqrLt4pJQ+0sk8QyomflijTukoLP2alHalddXkqvSy2 PNOnxaPfFQlTJq5MvpAH9NYz66tpXbMnIWs1DW3XSACdbYJMidmFCs8MWxbwA3ui hxm3j7AXl+C4WX+p3Qp1jh+/tIJqwUa0KFbpDfWaVTYl3BibME1DLTBSr6rnyvH6 7w8vApgbXN/Cg39gKtUZLJqBhQghLU/G -----END CERTIFICATE-----Generated at Sun Aug 10 13:49:41 2025 by rpki-client