$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: 93Z9FiwITvvyEJohTyqZVJvovdV92ef2aVe/IMpfkWY= Subject key identifier: 20:96:BC:62:A9:1F:61:7D:5C:CC:BA:D2:78:A8:28:BB:0A:15:9F:D5 Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: 01B6 Signing time: Sat 09 Aug 2025 03:47:47 +0000 Manifest this update: Sat 09 Aug 2025 03:47:47 +0000 Manifest next update: Sat 16 Aug 2025 03:47:47 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: 2sZfUv+7NIKAYozDdIFwk+rXrqGxImL4vuTTPLE7I+I=) 2: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: 1SKbx2XsDMYzA80POo6zzafuauDwKbPNh6n7Ob5AjVA=) 3: D0103496FD6611EE9188C568C4F9AE02.roa (hash: PxpNeamT7nJAO8ypf86mF4tTFHjbBgphhBI0WaQ2K6I=) 4: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: 8ceZRP/XUhaUyTjeioD/K4mCivFkQCLXcH6cjJ7JFq0=) 5: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: e/dOTjn5zjRzl7VVF4lYBqEjUR3aP4ajbLKyVpxXtqo=) 6: 1D9A36F40C6B11EF95ACFA13C4F9AE02.roa (hash: NJPr7OZom8PgcjW18JJjDNXMEozgSB9WGNPuyE4apbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: Aug 9 03:47:47 2025 GMT Not After : Aug 16 03:47:47 2025 GMT Subject: CN=6896c4e3-f6e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:83:27:f0:37:05:bb:78:cb:96:6b:5e:c3:a5: b4:99:22:48:62:4c:ec:11:da:00:e1:13:32:da:25: cc:c2:66:41:53:14:32:06:c6:eb:0d:e7:81:77:3b: b9:71:77:45:ae:0c:83:50:57:85:50:b6:f7:ce:94: 15:4a:fe:ab:53:60:79:9e:24:a7:de:6d:cc:aa:40: 22:46:7a:37:87:a6:ea:d3:c6:3a:09:53:60:00:db: 12:d2:56:3d:78:de:aa:f5:07:1e:a4:c6:76:65:5f: 52:ce:2c:05:5f:10:54:f4:ce:34:c8:7b:2b:7d:63: 3f:83:72:5a:d7:ee:6a:f7:a1:20:10:6f:e4:ae:dd: 7d:66:d7:c5:91:26:73:dd:ab:2e:be:b2:03:e1:e3: c9:90:c5:83:40:00:61:05:fc:6f:6b:17:c8:24:14: 3a:4b:68:c2:56:1f:ca:af:53:da:f3:06:e9:66:fb: 4d:86:6c:ab:10:fa:4a:18:19:da:b6:7a:8f:8f:1d: 54:c5:2d:38:7f:9f:e5:e4:53:36:04:45:4f:dc:89: 2b:8a:91:94:47:fa:ab:8f:29:6c:37:7c:b1:26:fb: 87:13:40:62:78:2b:4a:48:38:b4:a4:eb:6e:77:72: c7:12:ea:33:ba:bc:9a:81:7d:f0:2b:74:fc:88:00: 21:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:96:BC:62:A9:1F:61:7D:5C:CC:BA:D2:78:A8:28:BB:0A:15:9F:D5 X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5c:14:d9:74:ca:a1:a1:85:22:a3:90:30:80:65:01:b9:88: f8:c7:ed:af:65:6c:32:8d:80:97:ce:68:24:4c:5c:37:b0:a4: b3:d6:a7:bf:9a:25:fb:6b:14:d6:d8:8d:28:00:ed:28:90:b3: 8e:1d:40:77:32:27:e8:03:ae:35:d5:86:72:22:66:58:33:70: 2a:5b:f6:75:01:62:e6:ba:06:fe:19:b9:b1:a5:87:58:2e:aa: c1:03:dc:bb:dd:82:40:20:90:9c:21:d8:e2:26:3d:c2:49:0f: c1:f3:e4:60:8a:82:68:aa:e1:5a:0a:7e:6b:33:3e:5f:6c:7e: f1:7b:10:4e:c7:60:4c:7c:a3:b2:14:7c:eb:77:70:34:82:92: 3d:ea:a8:0d:9c:ff:32:30:60:e4:a8:69:46:fd:92:31:04:8d: 1f:e7:03:6b:31:6a:5b:42:f3:3a:b6:29:0d:ab:13:90:b7:22: dc:3b:5c:b2:af:ca:3f:cb:5f:d5:3c:de:23:d4:97:33:a6:7d: aa:8c:31:8e:c1:cd:fe:74:14:c7:f4:58:b3:75:bd:5d:18:c3: 9a:f2:ed:1a:43:c1:ba:e6:f6:15:11:c8:f5:05:a4:6e:14:c8: bf:b2:a5:be:74:b4:d1:27:75:1e:b3:c8:8a:18:97:79:04:c8: 11:1a:69:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjUwODA5MDM0NzQ3WhcNMjUwODE2MDM0NzQ3WjAYMRYwFAYD VQQDEw02ODk2YzRlMy1mNmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYMn8DcFu3jLlmtew6W0mSJIYkzsEdoA4RMy2iXMwmZBUxQyBsbrDeeBdzu5 cXdFrgyDUFeFULb3zpQVSv6rU2B5niSn3m3MqkAiRno3h6bq08Y6CVNgANsS0lY9 eN6q9QcepMZ2ZV9SziwFXxBU9M40yHsrfWM/g3Ja1+5q96EgEG/krt19ZtfFkSZz 3asuvrID4ePJkMWDQABhBfxvaxfIJBQ6S2jCVh/Kr1Pa8wbpZvtNhmyrEPpKGBna tnqPjx1UxS04f5/l5FM2BEVP3IkripGUR/qrjylsN3yxJvuHE0BieCtKSDi0pOtu d3LHEuozuryagX3wK3T8iAAhLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCWvGKp H2F9XMy60nioKLsKFZ/VMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPXBTZdMqhoYUio5AwgGUBuYj4x+2vZWwyjYCXzmgkTFw3sKSz1qe/ miX7axTW2I0oAO0okLOOHUB3MifoA6411YZyImZYM3AqW/Z1AWLmugb+GbmxpYdY LqrBA9y73YJAIJCcIdjiJj3CSQ/B8+RgioJoquFaCn5rMz5fbH7xexBOx2BMfKOy FHzrd3A0gpI96qgNnP8yMGDkqGlG/ZIxBI0f5wNrMWpbQvM6tikNqxOQtyLcO1yy r8o/y1/VPN4j1Jczpn2qjDGOwc3+dBTH9Fizdb1dGMOa8u0aQ8G65vYVEcj1BaRu FMi/sqW+dLTRJ3Ues8iKGJd5BMgRGml3 -----END CERTIFICATE-----Generated at Mon Aug 11 04:23:45 2025 by rpki-client