$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: DQBi7hcH6RwMBmHQ8Irih6lKc9yX7Wj6PBjY/yrere0= Subject key identifier: 6B:60:76:3F:9B:0D:56:C2:2E:DE:7D:FA:F7:B3:66:EB:7C:CA:F6:91 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 020B Signing time: Sat 09 Aug 2025 02:38:15 +0000 Manifest this update: Sat 09 Aug 2025 02:38:15 +0000 Manifest next update: Sat 16 Aug 2025 02:38:15 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: wMb72gl9rPM39Dn+zA6zYvoQxXqur+rMQhyFf9lHvkI=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Aug 9 02:38:15 2025 GMT Not After : Aug 16 02:38:15 2025 GMT Subject: CN=6896b497-80b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:df:20:c5:cb:a6:ca:36:a0:4d:fd:f9:53:13: f9:70:5f:cd:af:7d:07:47:e7:56:e1:48:ec:b9:23: 13:f2:84:c2:18:e0:ed:39:7c:b4:38:5b:dc:d9:e1: ff:87:44:eb:39:57:86:1f:97:0a:bb:fd:4c:14:13: cd:f5:0c:0c:cf:6a:e4:09:59:a8:1c:7a:a9:3f:69: 79:cc:0d:46:b2:de:0f:60:d0:2e:34:de:d4:c2:9c: c8:31:0c:a6:d3:7c:04:5f:8d:5a:2d:87:65:de:fb: 24:4f:b3:94:2c:69:2f:7e:9c:7f:b2:67:29:53:f8: aa:17:72:ce:ae:0f:9b:b7:f6:7a:83:73:ca:e3:ec: e2:a4:de:51:f7:6c:79:11:11:f2:4d:2f:46:87:08: e8:7e:f6:7e:78:84:d7:5c:a8:90:b8:27:00:89:8a: e2:1d:5b:ef:2f:27:d6:58:6b:77:cd:6e:f7:b1:72: 4d:08:05:09:45:a0:b3:db:cb:51:e4:56:32:1d:b4: ba:df:3a:fe:65:41:b9:7e:03:31:ca:53:d6:b2:c3: 38:71:b6:e5:f2:53:7d:79:5b:fb:44:43:e5:c5:30: e8:8e:a9:56:b9:8e:2c:ec:1b:7a:94:be:07:14:32: 58:62:4b:70:76:ac:09:3e:9b:73:32:fb:6c:0f:62: 1e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:60:76:3F:9B:0D:56:C2:2E:DE:7D:FA:F7:B3:66:EB:7C:CA:F6:91 X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:38:fc:a5:23:3a:cb:b5:c4:d9:37:4a:26:c7:d4:f3:bd:b8: a2:05:22:b2:76:a4:07:fc:e3:60:e3:eb:c0:6c:a4:20:a7:ab: 6d:f3:29:1d:0f:5b:40:bf:34:6a:41:9a:63:c1:8e:70:13:f5: b1:29:8a:aa:7e:3a:b5:03:2e:72:7a:20:34:96:e0:f5:22:d2: 41:4d:30:d8:08:39:f8:28:e6:80:11:d4:38:78:e0:bc:4b:46: ab:b8:bd:5f:57:13:f9:d7:55:7c:f1:82:43:15:62:65:cf:de: 58:4a:2d:1a:50:45:9e:d0:b7:54:68:27:35:45:a1:c7:54:cf: c4:59:11:40:ba:9c:3d:2d:5f:05:ae:88:6c:55:2f:0b:80:07: 2b:7f:e9:6b:f9:d4:ab:7b:22:e7:a0:9e:47:44:eb:3a:a3:75: bd:df:ab:77:7c:58:07:cb:9b:99:d9:82:b3:8c:07:0c:f5:ad: f6:48:33:cf:54:45:96:ee:c4:12:72:d1:d2:97:07:a4:88:7d: 2e:93:92:39:52:5f:7a:62:41:61:eb:f1:f2:94:1c:c6:c0:93: 00:87:e5:04:d5:75:e8:c7:93:27:ef:4d:59:68:6c:c1:7b:af: 74:d0:1e:98:6f:87:e1:f9:87:bc:a7:3b:f2:f9:55:eb:05:3c: 94:70:51:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUwODA5MDIzODE1WhcNMjUwODE2MDIzODE1WjAYMRYwFAYD VQQDEw02ODk2YjQ5Ny04MGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyt8gxcumyjagTf35UxP5cF/Nr30HR+dW4UjsuSMT8oTCGODtOXy0OFvc2eH/ h0TrOVeGH5cKu/1MFBPN9QwMz2rkCVmoHHqpP2l5zA1Gst4PYNAuNN7UwpzIMQym 03wEX41aLYdl3vskT7OULGkvfpx/smcpU/iqF3LOrg+bt/Z6g3PK4+zipN5R92x5 ERHyTS9GhwjofvZ+eITXXKiQuCcAiYriHVvvLyfWWGt3zW73sXJNCAUJRaCz28tR 5FYyHbS63zr+ZUG5fgMxylPWssM4cbbl8lN9eVv7REPlxTDojqlWuY4s7Bt6lL4H FDJYYktwdqwJPptzMvtsD2IeawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtgdj+b DVbCLt59+vezZut8yvaRMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdOPylIzrLtcTZN0omx9TzvbiiBSKydqQH/ONg4+vAbKQgp6tt8ykd D1tAvzRqQZpjwY5wE/WxKYqqfjq1Ay5yeiA0luD1ItJBTTDYCDn4KOaAEdQ4eOC8 S0aruL1fVxP511V88YJDFWJlz95YSi0aUEWe0LdUaCc1RaHHVM/EWRFAupw9LV8F rohsVS8LgAcrf+lr+dSreyLnoJ5HROs6o3W936t3fFgHy5uZ2YKzjAcM9a32SDPP VEWW7sQSctHSlwekiH0uk5I5Ul96YkFh6/HylBzGwJMAh+UE1XXox5Mn701ZaGzB e6900B6Yb4fh+Ye8pzvy+VXrBTyUcFFv -----END CERTIFICATE-----Generated at Sat Aug 9 10:36:56 2025 by rpki-client