$ rpki-client -vvf rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft File: oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft (raw, json) Hash identifier: yZjwhFJKu2cK8vLv0TgEiwWmwQLAQWEdAZVnnchhUDQ= Subject key identifier: A2:91:8C:95:7C:1A:3D:4B:38:B9:48:81:49:64:D9:1B:82:69:44:B9 Authority key identifier: A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 Certificate issuer: /CN=A9138B72/serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Certificate serial: 0976 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft Manifest number: 096D Signing time: Fri 08 Aug 2025 20:29:06 +0000 Manifest this update: Fri 08 Aug 2025 20:29:05 +0000 Manifest next update: Fri 15 Aug 2025 20:29:05 +0000 Files and hashes: 1: oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl (hash: ciuqzd6SBmPxhYjOkQGOr4Vk0ocWnm3bdmkc3jnDQ7s=) 2: 311647C0896C11EBA85B0747C4F9AE02.roa (hash: MVtlwW2sU7CkBdehjteFY61IQnaVOAPQQ+etloBMPo4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2422 (0x976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138B72, serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Validity Not Before: Aug 8 20:29:05 2025 GMT Not After : Aug 15 20:29:05 2025 GMT Subject: CN=68965e11-5032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:50:55:31:ed:d6:8b:6f:21:2c:5f:e6:38:4f: 93:0a:93:cd:47:f9:9a:00:7b:b2:05:04:3f:ae:03: e1:7a:d7:74:99:ec:a7:9f:3b:c5:41:0e:83:77:93: 5d:b4:af:8c:93:ed:f7:63:33:8b:76:fa:46:c5:5b: e1:c1:de:15:c3:ca:58:5a:5e:22:c2:74:98:e3:d6: 75:33:c1:6d:c0:08:1e:8c:3f:a7:b6:36:03:b0:d2: ec:3f:ad:bc:7f:dc:f1:eb:86:8c:40:3a:e8:87:ee: 3c:6d:d1:28:a9:7f:9b:8d:1a:ef:22:6d:31:56:a3: 36:a1:c6:13:da:9a:f8:e2:19:6c:94:ae:cf:d1:c6: 47:0a:a5:c6:5c:29:eb:ac:70:d5:f8:f7:f8:ec:dd: 9a:09:c3:43:ef:50:b8:84:6a:cb:12:78:d6:ef:5e: fb:dd:9f:88:7d:06:57:ba:09:3c:bd:03:d2:bd:76: 27:1f:ff:05:bf:24:3f:65:d8:22:4b:45:44:44:f2: b2:e2:51:7b:80:b9:46:13:5a:7a:67:78:5f:fd:49: 99:07:93:66:01:3e:4f:e8:66:6e:36:d6:e2:a1:c1: 64:1a:67:f5:64:9b:e1:e8:a3:7c:d4:f3:cd:3f:ff: db:10:e5:90:24:e3:8f:7c:c9:e4:ed:a5:a0:aa:eb: 38:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:91:8C:95:7C:1A:3D:4B:38:B9:48:81:49:64:D9:1B:82:69:44:B9 X509v3 Authority Key Identifier: keyid:A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:95:bf:77:1e:64:ce:4e:46:63:24:8d:d2:d9:04:65:e4:07: 43:89:3e:38:cc:8e:3c:08:79:54:44:ba:27:c9:95:59:2c:61: 32:8c:d1:c7:bb:c6:fe:63:74:3b:fa:8c:fe:d4:1d:c5:ee:ed: 92:5f:9f:1b:5a:cf:26:3e:5f:d7:9d:d3:da:67:69:14:eb:96: 37:aa:c5:1f:02:a7:34:e4:48:c3:b5:29:c7:c5:8e:5f:5f:fe: 61:c4:f5:b6:c7:95:f5:23:f4:94:13:67:5d:ed:82:52:78:5a: b3:3d:b4:c9:40:d9:76:d7:f4:ec:20:74:f1:65:17:b4:2b:ca: f9:4f:e8:e2:51:64:20:2c:b8:98:99:70:54:a3:95:2d:cc:77: 89:11:b8:7e:f9:b1:6e:82:61:32:1b:89:c0:be:66:24:40:4e: 2e:d5:36:d9:38:51:e3:e6:d5:f3:bc:55:d2:76:8f:bd:ea:4a: 82:f4:cb:de:01:d3:94:08:08:2d:fb:0c:dc:b2:f9:34:cb:79: 42:0a:67:ac:bd:0a:df:e7:aa:18:fa:db:a2:75:77:fb:81:59: 09:d9:1e:2a:47:b3:ad:68:b7:96:28:c4:ec:94:0f:b3:69:d5: fd:69:02:f9:44:7b:82:25:92:82:5e:a0:30:32:85:bd:c6:5e: 44:7e:7b:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhCNzIxMTAvBgNVBAUTKEEwQ0JCMkNGN0FFRDgzQzIxOTczQzcwQjY0QzBBNDE1 NkM1QkY1RDIwHhcNMjUwODA4MjAyOTA1WhcNMjUwODE1MjAyOTA1WjAYMRYwFAYD VQQDEw02ODk2NWUxMS01MDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFBVMe3Wi28hLF/mOE+TCpPNR/maAHuyBQQ/rgPhetd0meynnzvFQQ6Dd5Nd tK+Mk+33YzOLdvpGxVvhwd4Vw8pYWl4iwnSY49Z1M8FtwAgejD+ntjYDsNLsP628 f9zx64aMQDroh+48bdEoqX+bjRrvIm0xVqM2ocYT2pr44hlslK7P0cZHCqXGXCnr rHDV+Pf47N2aCcND71C4hGrLEnjW71773Z+IfQZXugk8vQPSvXYnH/8FvyQ/Zdgi S0VERPKy4lF7gLlGE1p6Z3hf/UmZB5NmAT5P6GZuNtbiocFkGmf1ZJvh6KN81PPN P//bEOWQJOOPfMnk7aWgqus4BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKRjJV8 Gj1LOLlIgUlk2RuCaUS5MB8GA1UdIwQYMBaAFKDLss967YPCGXPHC2TApBVsW/XS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEI3Mi8xRTQwMEE5QTlB QjcxMUVBQUIyMkEzN0RDNEY5QUUwMi9vTXV5ejNydGc4SVpjOGNMWk1Da0ZXeGI5 ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NdXl6M3J0ZzhJWmM4Y0xaTUNrRld4YjlkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEI3Mi8xRTQwMEE5QTlBQjcxMUVBQUIyMkEzN0RDNEY5QUUwMi9vTXV5ejNydGc4 SVpjOGNMWk1Da0ZXeGI5ZEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANlb93HmTOTkZjJI3S2QRl5AdDiT44zI48CHlURLonyZVZLGEyjNHH u8b+Y3Q7+oz+1B3F7u2SX58bWs8mPl/XndPaZ2kU65Y3qsUfAqc05EjDtSnHxY5f X/5hxPW2x5X1I/SUE2dd7YJSeFqzPbTJQNl21/TsIHTxZRe0K8r5T+jiUWQgLLiY mXBUo5UtzHeJEbh++bFugmEyG4nAvmYkQE4u1TbZOFHj5tXzvFXSdo+96kqC9Mve AdOUCAgt+wzcsvk0y3lCCmesvQrf56oY+tuidXf7gVkJ2R4qR7OtaLeWKMTslA+z adX9aQL5RHuCJZKCXqAwMoW9xl5EfnuZ -----END CERTIFICATE-----Generated at Sun Aug 10 21:16:51 2025 by rpki-client