$ rpki-client -vvf rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft File: oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft (raw, json) Hash identifier: PcJNUrl6ZHNrgPx5P9pSoPayVs7Eun8uHzlx4N4xOY0= Subject key identifier: 8A:D2:1F:5B:80:65:6B:13:52:79:70:B0:08:AA:6E:F8:84:D3:F6:5B Authority key identifier: A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 Certificate issuer: /CN=A9138B72/serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Certificate serial: 0956 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft Manifest number: 094E Signing time: Thu 12 Jun 2025 19:59:43 +0000 Manifest this update: Thu 12 Jun 2025 19:59:42 +0000 Manifest next update: Thu 19 Jun 2025 19:59:42 +0000 Files and hashes: 1: oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl (hash: HAEIX+9IZURUTYmwP1ANhKQdY+ENzYNMpWYGtSyT2f8=) 2: 311647C0896C11EBA85B0747C4F9AE02.roa (hash: X3WvsIakOYYYh6qQ/CNrPJ4rysF4m1jhkYS0mLUaZBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2390 (0x956) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138B72, serialNumber=A0CBB2CF7AED83C21973C70B64C0A4156C5BF5D2 Validity Not Before: Jun 12 19:59:42 2025 GMT Not After : Jun 19 19:59:42 2025 GMT Subject: CN=684b31ae-53dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:58:e2:ad:19:05:b9:95:1e:94:ec:69:87:c5: f5:29:53:5a:e7:44:40:ef:6b:88:ab:17:8d:c6:7e: 34:6d:bc:dd:fa:1e:4d:8e:6e:c9:20:a7:8f:5d:67: 30:75:a9:9b:21:a9:a0:ca:f7:f6:99:9e:d6:ff:a1: bc:ef:9b:d7:37:b9:ba:da:53:d5:5c:27:f4:9a:cc: 9c:ee:5e:5c:11:fb:11:ef:55:1c:0e:f7:26:db:cf: b9:14:0b:af:0d:84:45:39:17:41:00:53:fc:82:f3: 22:02:b6:ba:ba:ce:24:bc:2a:eb:6b:be:85:ec:d4: 8d:99:60:21:77:98:e5:4a:3c:9a:e1:7f:08:cc:de: 37:b4:c1:eb:35:bd:2a:be:8d:3a:f4:a2:67:a9:2c: 15:b2:63:42:39:e4:ab:ee:0e:7d:03:de:3b:6a:56: ca:13:7c:9a:26:ac:7a:dd:b1:05:6b:d5:49:09:21: 55:d9:eb:1e:ba:a9:3c:79:37:37:fc:7e:bd:5e:f8: 47:b6:53:e5:fc:c1:85:be:05:77:fd:97:a2:d1:3a: f9:17:6a:a5:14:a6:73:52:78:f8:eb:56:18:45:d6: 9e:cd:36:20:2a:cb:69:92:16:a8:77:83:aa:bd:ac: c1:4c:70:52:21:d0:65:d9:d4:48:a1:75:80:74:cc: 56:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D2:1F:5B:80:65:6B:13:52:79:70:B0:08:AA:6E:F8:84:D3:F6:5B X509v3 Authority Key Identifier: keyid:A0:CB:B2:CF:7A:ED:83:C2:19:73:C7:0B:64:C0:A4:15:6C:5B:F5:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMuyz3rtg8IZc8cLZMCkFWxb9dI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138B72/1E400A9A9AB711EAAB22A37DC4F9AE02/oMuyz3rtg8IZc8cLZMCkFWxb9dI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:6b:d8:37:e7:05:ae:69:af:85:29:a6:31:33:d1:84:f7:25: 35:55:1d:d1:ff:13:1d:3a:2c:a7:88:aa:1f:46:7a:31:dc:d9: fd:fe:4a:b0:b7:2f:5c:0c:f2:47:c6:c6:07:cf:60:1d:b9:29: 4c:f9:bc:23:d1:78:91:14:4f:16:e0:83:70:a6:12:b1:67:3d: 6d:7f:9f:7e:6e:b2:7a:e1:6f:9a:a1:6f:8d:10:f2:a5:45:a5: 92:9d:af:c2:25:5a:ba:3e:cf:c9:86:d0:d1:76:66:2d:3c:a8: 30:67:93:4b:2b:5a:f4:36:dd:27:49:d5:a6:ad:4b:cf:13:62: ae:93:28:ea:24:3e:26:4e:5d:54:38:61:31:12:35:38:ca:0f: 0f:0d:b5:d8:38:88:24:9c:b6:52:65:62:b5:26:af:cd:f8:88: 01:e5:b3:bd:81:de:24:f9:bc:9e:37:4c:fc:92:9e:4c:8d:bb: 17:5e:38:d7:bc:de:c0:bf:aa:15:dd:82:42:94:e2:7c:ad:9a: ce:8b:f2:8a:1e:bd:54:ed:59:38:55:98:b0:73:2b:9d:9d:22: 35:d0:54:37:56:a4:f1:97:3d:a2:da:78:0f:40:5b:df:9d:2c: da:19:66:7b:5a:e9:a9:40:75:cf:4b:f3:2c:8a:d8:da:1f:35: d6:59:06:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhCNzIxMTAvBgNVBAUTKEEwQ0JCMkNGN0FFRDgzQzIxOTczQzcwQjY0QzBBNDE1 NkM1QkY1RDIwHhcNMjUwNjEyMTk1OTQyWhcNMjUwNjE5MTk1OTQyWjAYMRYwFAYD VQQDEw02ODRiMzFhZS01M2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ljirRkFuZUelOxph8X1KVNa50RA72uIqxeNxn40bbzd+h5Njm7JIKePXWcw dambIamgyvf2mZ7W/6G875vXN7m62lPVXCf0msyc7l5cEfsR71UcDvcm28+5FAuv DYRFORdBAFP8gvMiAra6us4kvCrra76F7NSNmWAhd5jlSjya4X8IzN43tMHrNb0q vo069KJnqSwVsmNCOeSr7g59A947albKE3yaJqx63bEFa9VJCSFV2eseuqk8eTc3 /H69XvhHtlPl/MGFvgV3/Zei0Tr5F2qlFKZzUnj461YYRdaezTYgKstpkhaod4Oq vazBTHBSIdBl2dRIoXWAdMxWoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrSH1uA ZWsTUnlwsAiqbviE0/ZbMB8GA1UdIwQYMBaAFKDLss967YPCGXPHC2TApBVsW/XS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEI3Mi8xRTQwMEE5QTlB QjcxMUVBQUIyMkEzN0RDNEY5QUUwMi9vTXV5ejNydGc4SVpjOGNMWk1Da0ZXeGI5 ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NdXl6M3J0ZzhJWmM4Y0xaTUNrRld4YjlkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEI3Mi8xRTQwMEE5QTlBQjcxMUVBQUIyMkEzN0RDNEY5QUUwMi9vTXV5ejNydGc4 SVpjOGNMWk1Da0ZXeGI5ZEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+a9g35wWuaa+FKaYxM9GE9yU1VR3R/xMdOiyniKofRnox3Nn9/kqw ty9cDPJHxsYHz2AduSlM+bwj0XiRFE8W4INwphKxZz1tf59+brJ64W+aoW+NEPKl RaWSna/CJVq6Ps/JhtDRdmYtPKgwZ5NLK1r0Nt0nSdWmrUvPE2KukyjqJD4mTl1U OGExEjU4yg8PDbXYOIgknLZSZWK1Jq/N+IgB5bO9gd4k+byeN0z8kp5MjbsXXjjX vN7Av6oV3YJClOJ8rZrOi/KKHr1U7Vk4VZiwcyudnSI10FQ3VqTxlz2i2ngPQFvf nSzaGWZ7WumpQHXPS/MsitjaHzXWWQYl -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:16 2025 by rpki-client