$ rpki-client -vvf rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft File: rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft (raw, json) Hash identifier: 2woV5Fi7pQNf0SOvBZMcwXQXuqh8tHNbDGVncvEbjFo= Subject key identifier: 60:64:B4:1A:15:8B:96:24:2E:A7:CF:D6:FA:CB:83:70:5C:58:23:C3 Authority key identifier: AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 Certificate issuer: /CN=A911A69A/serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft Manifest number: C0 Signing time: Sat 09 Aug 2025 06:17:31 +0000 Manifest this update: Sat 09 Aug 2025 06:17:30 +0000 Manifest next update: Sat 16 Aug 2025 06:17:30 +0000 Files and hashes: 1: rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl (hash: OwkbA9DpLAqRpud9ELNy5XYRoMujWtihE2a+UJB400s=) 2: 39E76DD0589311EF88BF4665C4F9AE02.roa (hash: t3nWUOarrxhEFD60ip2NaXslcMEcqGLVxqGfot6fF3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A69A, serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Validity Not Before: Aug 9 06:17:30 2025 GMT Not After : Aug 16 06:17:30 2025 GMT Subject: CN=6896e7fb-6557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:04:6d:14:ae:f7:e5:35:c5:f0:05:14:19:e9: 02:85:17:29:c3:ea:4e:4d:cf:c7:b3:52:ab:f3:77: bf:fb:6d:f7:f9:1b:c0:62:72:00:ec:b6:d9:34:a8: 0a:33:ff:3f:7f:f6:99:39:3b:34:f1:bf:8f:0d:ca: 92:6f:ca:f5:48:f7:62:41:dd:63:fd:94:24:0d:d8: ab:e9:18:d8:18:42:25:a6:01:16:e8:8a:d7:de:c3: 51:ca:48:ce:d3:87:cc:a8:eb:a0:93:e6:13:c5:ec: 5b:00:2e:4f:71:e4:07:34:52:89:26:62:93:b9:ea: 2f:c3:24:bb:71:e1:42:46:1b:e2:e6:5b:35:24:7d: ec:da:72:4e:d1:3a:ff:e7:5e:e8:a8:0b:f9:83:31: 08:60:36:58:29:41:38:b3:91:f4:11:ef:d0:40:ee: 33:78:db:89:07:65:50:b4:48:88:d3:37:54:71:00: 2b:25:da:d5:af:54:fb:f5:dc:df:9b:fa:dd:7a:c7: 3b:66:5c:18:3d:b3:9b:2d:f4:2c:f3:ec:f7:3a:0f: 7d:44:ff:e9:04:90:bf:cf:6b:35:2a:d8:e8:83:6f: ca:3c:e4:30:e9:03:16:e4:6d:82:6a:c5:5d:1e:fa: cb:56:2b:2c:90:2b:10:0e:d9:7b:8b:90:f0:83:71: 8c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:64:B4:1A:15:8B:96:24:2E:A7:CF:D6:FA:CB:83:70:5C:58:23:C3 X509v3 Authority Key Identifier: keyid:AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:15:40:8a:38:07:49:7d:db:67:c5:e1:4d:8e:fe:32:7b:1f: d6:b9:4a:35:9f:db:d8:05:51:48:ae:8e:eb:63:23:62:c5:79: a3:3c:46:64:63:9e:50:4f:d5:11:0e:8b:52:36:ac:11:bc:22: 21:af:6c:c9:74:5b:d6:86:5e:d5:7a:77:5f:cc:7d:75:f9:03: b4:47:d9:66:c0:ff:f9:ad:76:25:ed:fb:97:0a:d9:03:51:2a: 61:6b:fb:59:d4:56:cf:66:0f:d6:6f:11:cc:41:56:f4:09:e2: ca:92:51:99:f4:d2:a5:b6:6b:bb:b3:dd:ba:1a:75:7a:62:31: 2b:50:89:02:58:83:58:db:de:79:ad:0e:0e:fc:a0:9d:dc:3f: 1e:82:35:a2:51:8f:3e:91:73:08:c2:9b:9c:8e:a5:85:50:55: 9e:6f:3e:7d:7b:37:35:55:b7:d7:9e:7a:5a:77:b4:c4:35:01: 78:a1:50:1a:e3:02:af:4c:fc:b0:7c:de:2a:d6:5f:6b:9a:02: 64:18:d2:f1:b6:9b:82:85:ac:5f:be:8b:f1:d7:a6:af:03:65: 4b:d2:79:74:47:ef:c0:7f:62:4b:c3:b1:c1:e0:c0:62:c8:c1: b3:37:f1:34:63:3f:67:36:fe:5e:89:e8:20:01:13:b4:41:bd: 76:71:e1:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2OUExMTAvBgNVBAUTKEFFNjU4RUEzNzdFQTExODQwQjA4RUE2Qzg4RDkwOTBF OEI2QzUyMDQwHhcNMjUwODA5MDYxNzMwWhcNMjUwODE2MDYxNzMwWjAYMRYwFAYD VQQDEw02ODk2ZTdmYi02NTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQRtFK735TXF8AUUGekChRcpw+pOTc/Hs1Kr83e/+233+RvAYnIA7LbZNKgK M/8/f/aZOTs08b+PDcqSb8r1SPdiQd1j/ZQkDdir6RjYGEIlpgEW6IrX3sNRykjO 04fMqOugk+YTxexbAC5PceQHNFKJJmKTueovwyS7ceFCRhvi5ls1JH3s2nJO0Tr/ 517oqAv5gzEIYDZYKUE4s5H0Ee/QQO4zeNuJB2VQtEiI0zdUcQArJdrVr1T79dzf m/rdesc7ZlwYPbObLfQs8+z3Og99RP/pBJC/z2s1Ktjog2/KPOQw6QMW5G2CasVd HvrLVisskCsQDtl7i5Dwg3GMOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBktBoV i5YkLqfP1vrLg3BcWCPDMB8GA1UdIwQYMBaAFK5ljqN36hGECwjqbIjZCQ6LbFIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTY5QS84QjBFNzM4MDU4 OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZUUxDT3BzaU5rSkRvdHNV Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JtV09vM2ZxRVlRTENPcHNpTmtKRG90c1VnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTY5QS84QjBFNzM4MDU4OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZ UUxDT3BzaU5rSkRvdHNVZ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVFUCKOAdJfdtnxeFNjv4yex/WuUo1n9vYBVFIro7rYyNixXmjPEZk Y55QT9URDotSNqwRvCIhr2zJdFvWhl7VendfzH11+QO0R9lmwP/5rXYl7fuXCtkD USpha/tZ1FbPZg/WbxHMQVb0CeLKklGZ9NKltmu7s926GnV6YjErUIkCWINY2955 rQ4O/KCd3D8egjWiUY8+kXMIwpucjqWFUFWebz59ezc1VbfXnnpad7TENQF4oVAa 4wKvTPywfN4q1l9rmgJkGNLxtpuChaxfvovx16avA2VL0nl0R+/Af2JLw7HB4MBi yMGzN/E0Yz9nNv5eieggARO0Qb12ceFi -----END CERTIFICATE-----Generated at Sun Aug 10 16:08:41 2025 by rpki-client