$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: U8jotejgOzNQOTz3JJhtB4RZgs6FPPrVfVfdR5/ej18= Subject key identifier: F9:18:0F:41:5B:42:02:37:79:81:FD:2B:89:08:24:A4:27:DC:E1:C8 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 0803 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 07FB Signing time: Fri 08 Aug 2025 21:19:00 +0000 Manifest this update: Fri 08 Aug 2025 21:18:59 +0000 Manifest next update: Fri 15 Aug 2025 21:18:59 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: 8GoSMwf6R9b0S0YY1QWBg8XNHvZWkShS9Lbjs212aeM=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Aug 8 21:18:59 2025 GMT Not After : Aug 15 21:18:59 2025 GMT Subject: CN=689669c4-4de6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:84:5a:f5:a5:5c:6b:cc:5d:ec:b9:9f:5f:b2: e0:ca:74:69:4c:84:f0:d4:7e:ab:b1:40:64:17:b9: e1:b2:26:54:69:1e:1f:fc:d9:6c:20:a1:24:5a:ce: 6a:d7:c7:7d:9e:39:26:36:66:0f:76:0e:cc:c4:dd: 49:1a:96:6e:f8:19:e4:12:5f:6c:35:db:ab:0b:40: 16:44:06:4d:66:ab:3e:a9:2d:17:89:5c:4f:97:05: 36:17:1f:8e:fd:2a:63:f5:ea:b0:58:41:65:38:0f: 5f:83:2c:1d:b6:c5:9f:04:7a:a4:e2:92:92:14:fb: f7:3a:18:00:ec:4d:83:39:79:7a:0c:89:22:b2:51: 5e:e7:e5:2f:24:b3:a7:ad:3e:3f:70:f9:10:2c:85: 96:f1:67:35:d3:20:42:91:4b:d0:76:5c:94:ff:e5: 8b:23:bd:23:b6:57:a1:5c:86:e0:c0:f0:bb:0b:37: 0f:98:3e:96:04:ca:99:a3:bf:2e:d0:b3:1a:60:fb: 95:9d:17:e5:be:4e:39:24:05:cb:83:82:f8:ae:81: 63:f3:37:d8:9a:89:52:e7:89:6a:6a:62:bb:d4:01: 5e:25:3d:79:74:c2:3c:73:ab:47:7c:cb:61:84:b1: 8d:fa:06:9b:e2:0a:9c:63:db:2d:77:34:a6:aa:7c: 14:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:18:0F:41:5B:42:02:37:79:81:FD:2B:89:08:24:A4:27:DC:E1:C8 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:87:77:5e:e9:6d:3b:b4:cf:29:64:53:b1:a4:b3:a6:da:26: 4f:31:6e:46:58:28:c2:ae:58:fa:77:9d:88:4f:8c:40:fa:e8: 15:65:d8:cb:2f:c8:69:52:0c:09:9f:43:bb:c4:34:8e:a2:b9: c5:17:db:9b:b8:7c:d5:e9:57:34:e5:07:06:34:7b:d8:d5:ed: 75:22:fc:85:12:46:3c:17:bc:25:ba:3b:a3:ab:56:0f:2c:5f: 0e:10:3e:fe:92:20:78:9e:7e:02:e7:58:9e:8e:41:30:e7:32: be:ed:e5:cf:ec:02:f7:d6:7f:93:c3:48:ce:bd:51:dc:29:5e: d1:3f:ec:4a:c0:8d:b0:76:a9:25:6d:11:e4:24:7c:b9:10:5d: 02:c4:df:4d:4a:c3:68:fa:17:62:94:ea:0b:ab:c8:3c:ac:61: 79:c3:c8:f8:6f:42:f2:ca:8b:01:a9:9b:83:a0:54:c5:b5:41: 65:83:17:07:32:6c:5f:8b:09:4b:2a:0c:50:b3:e7:5e:48:90: 57:91:d9:e0:f3:92:c6:68:53:dc:82:e8:52:68:33:63:08:d0: 2c:93:00:5f:7d:57:c2:f7:b3:54:ff:06:cc:4c:93:a6:5b:fc: 04:83:d2:ba:ff:46:56:90:ba:84:fc:a1:0d:e5:7d:2b:87:70: 84:80:80:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUwODA4MjExODU5WhcNMjUwODE1MjExODU5WjAYMRYwFAYD VQQDEw02ODk2NjljNC00ZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlYRa9aVca8xd7LmfX7LgynRpTITw1H6rsUBkF7nhsiZUaR4f/NlsIKEkWs5q 18d9njkmNmYPdg7MxN1JGpZu+BnkEl9sNdurC0AWRAZNZqs+qS0XiVxPlwU2Fx+O /Spj9eqwWEFlOA9fgywdtsWfBHqk4pKSFPv3OhgA7E2DOXl6DIkislFe5+UvJLOn rT4/cPkQLIWW8Wc10yBCkUvQdlyU/+WLI70jtlehXIbgwPC7CzcPmD6WBMqZo78u 0LMaYPuVnRflvk45JAXLg4L4roFj8zfYmolS54lqamK71AFeJT15dMI8c6tHfMth hLGN+gab4gqcY9stdzSmqnwUYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkYD0Fb QgI3eYH9K4kIJKQn3OHIMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAh3de6W07tM8pZFOxpLOm2iZPMW5GWCjCrlj6d52IT4xA+ugVZdjL L8hpUgwJn0O7xDSOornFF9ubuHzV6Vc05QcGNHvY1e11IvyFEkY8F7wlujujq1YP LF8OED7+kiB4nn4C51iejkEw5zK+7eXP7AL31n+Tw0jOvVHcKV7RP+xKwI2wdqkl bRHkJHy5EF0CxN9NSsNo+hdilOoLq8g8rGF5w8j4b0LyyosBqZuDoFTFtUFlgxcH MmxfiwlLKgxQs+deSJBXkdng85LGaFPcguhSaDNjCNAskwBffVfC97NU/wbMTJOm W/wEg9K6/0ZWkLqE/KEN5X0rh3CEgIAd -----END CERTIFICATE-----Generated at Sun Aug 10 13:50:11 2025 by rpki-client