$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft File: 4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft (raw, json) Hash identifier: 0rqRzPWn4ttwEPLV9mVaXOtXpAUegecJWWpIko07vYc= Subject key identifier: 93:A9:10:93:85:3A:35:D4:12:56:EC:89:97:91:41:8A:0C:5D:F1:81 Authority key identifier: E0:E8:08:30:65:95:FE:68:D5:F2:81:A9:62:AF:6D:F5:1E:86:F9:32 Certificate issuer: /CN=A914D0E3/serialNumber=E0E808306595FE68D5F281A962AF6DF51E86F932 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft Manifest number: 9A Signing time: Mon 11 Aug 2025 06:34:41 +0000 Manifest this update: Mon 11 Aug 2025 06:34:41 +0000 Manifest next update: Mon 18 Aug 2025 06:34:41 +0000 Files and hashes: 1: 4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl (hash: 8Gsogn6304tWqdpUe6+uL+cGyjJ+C/T0YtW8Ijj6V7s=) 2: 793E79A68D1811EF92E90C51C4F9AE02.roa (hash: zVqTt6tzc+Il4GxP87PklggXFLaDGzjtaeUtoZhSM8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=E0E808306595FE68D5F281A962AF6DF51E86F932 Validity Not Before: Aug 11 06:34:41 2025 GMT Not After : Aug 18 06:34:41 2025 GMT Subject: CN=68998f01-bf85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:54:1b:15:7f:57:77:f1:e2:9c:07:e6:a7: bd:e9:c5:ff:67:cb:ef:4c:8f:fc:9d:ea:9b:db:7b: 57:b3:69:21:9b:2c:97:c8:f2:13:bc:95:4c:5c:76: 3d:09:b2:db:47:78:92:c0:cb:0e:77:00:b6:d4:62: 9d:8d:b1:77:5d:d3:5b:89:b8:63:06:56:fe:a5:77: d4:a1:97:36:ea:81:14:23:08:f3:48:a7:48:84:d4: 3d:54:d8:19:04:b0:b2:30:10:ef:ce:78:e0:dd:71: d1:e5:48:65:38:a4:ea:c3:13:dc:6c:94:82:3f:5b: c8:ef:bf:af:2b:48:f7:cc:33:a7:3b:8d:40:2c:70: dc:dd:09:03:5e:fd:c0:de:a8:73:d4:2a:93:0b:89: 65:76:fa:64:21:07:61:7d:e3:64:b5:9a:2e:c9:94: 15:98:57:27:08:86:98:08:06:96:3d:5b:80:eb:31: 73:7e:c3:be:83:4e:12:ca:fd:51:ad:c4:11:9c:7e: e4:52:98:94:6b:02:c4:ff:a3:42:16:2f:b9:5c:9a: 29:ce:03:e2:73:fa:db:c9:59:7e:67:8d:d5:24:2f: ee:f8:61:cb:3b:5b:fa:71:8b:05:49:16:50:ae:1f: 21:49:cb:b2:d9:e7:95:04:3c:b8:47:ea:72:bc:fc: d8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:A9:10:93:85:3A:35:D4:12:56:EC:89:97:91:41:8A:0C:5D:F1:81 X509v3 Authority Key Identifier: keyid:E0:E8:08:30:65:95:FE:68:D5:F2:81:A9:62:AF:6D:F5:1E:86:F9:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:8a:05:0a:34:66:d7:17:c0:d5:3b:5b:f6:b1:98:b8:91:2e: fe:d7:96:89:06:bf:8b:8a:ac:27:b2:d5:e8:e0:87:81:0a:9f: 67:9e:89:a2:3d:9d:7b:75:ef:3a:65:6b:70:cc:04:8f:ea:97: 2d:de:38:60:af:47:7c:ef:4d:85:21:27:4d:ef:a0:33:0a:36: 6a:59:bf:f7:98:f7:88:ed:98:48:06:b6:16:c7:3f:c3:17:8a: a5:19:63:4b:47:b1:43:c4:76:ea:31:e7:28:51:ed:10:ed:e4: ac:b7:76:31:91:13:b9:57:32:e7:ca:d0:df:51:75:7f:d5:02: 00:90:f5:cb:7f:5c:10:c4:66:e6:bf:85:d4:72:48:da:05:40: 18:c8:25:f5:9f:e2:ec:67:7e:02:64:57:58:20:48:b1:04:57: 85:a5:ff:5d:96:70:ac:92:aa:34:48:d5:04:a5:62:da:97:90: ee:12:ef:2c:3e:16:2a:e2:f5:87:50:e3:ce:0d:4b:58:60:f6: b8:95:e1:6c:b3:5b:5c:17:b3:90:1c:cc:7e:82:47:ca:14:84: 50:03:ca:79:2f:45:aa:8c:da:e3:89:b8:7e:48:8f:fa:f7:92: 5c:26:b3:15:ac:c9:56:cb:de:a9:ba:e7:2f:c0:a8:ff:72:38: 6f:5d:a1:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwRTMxMTAvBgNVBAUTKEUwRTgwODMwNjU5NUZFNjhENUYyODFBOTYyQUY2REY1 MUU4NkY5MzIwHhcNMjUwODExMDYzNDQxWhcNMjUwODE4MDYzNDQxWjAYMRYwFAYD VQQDEw02ODk5OGYwMS1iZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIdUGxV/V3fx4pwH5qe96cX/Z8vvTI/8neqb23tXs2khmyyXyPITvJVMXHY9 CbLbR3iSwMsOdwC21GKdjbF3XdNbibhjBlb+pXfUoZc26oEUIwjzSKdIhNQ9VNgZ BLCyMBDvznjg3XHR5UhlOKTqwxPcbJSCP1vI77+vK0j3zDOnO41ALHDc3QkDXv3A 3qhz1CqTC4lldvpkIQdhfeNktZouyZQVmFcnCIaYCAaWPVuA6zFzfsO+g04Syv1R rcQRnH7kUpiUawLE/6NCFi+5XJopzgPic/rbyVl+Z43VJC/u+GHLO1v6cYsFSRZQ rh8hScuy2eeVBDy4R+pyvPzYYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOpEJOF OjXUElbsiZeRQYoMXfGBMB8GA1UdIwQYMBaAFODoCDBllf5o1fKBqWKvbfUehvky MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBFMy9BQTk4NTlGODhD N0UxMUVGOEU5MkU3MUJDNEY5QUUwMi80T2dJTUdXVl9talY4b0dwWXE5dDlSNkct VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRPZ0lNR1dWX21qVjhvR3BZcTl0OVI2Ry1USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBFMy9BQTk4NTlGODhDN0UxMUVGOEU5MkU3MUJDNEY5QUUwMi80T2dJTUdXVl9t alY4b0dwWXE5dDlSNkctVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrigUKNGbXF8DVO1v2sZi4kS7+15aJBr+LiqwnstXo4IeBCp9nnomi PZ17de86ZWtwzASP6pct3jhgr0d8702FISdN76AzCjZqWb/3mPeI7ZhIBrYWxz/D F4qlGWNLR7FDxHbqMecoUe0Q7eSst3YxkRO5VzLnytDfUXV/1QIAkPXLf1wQxGbm v4XUckjaBUAYyCX1n+LsZ34CZFdYIEixBFeFpf9dlnCskqo0SNUEpWLal5DuEu8s PhYq4vWHUOPODUtYYPa4leFss1tcF7OQHMx+gkfKFIRQA8p5L0WqjNrjibh+SI/6 95JcJrMVrMlWy96puucvwKj/cjhvXaG9 -----END CERTIFICATE-----Generated at Wed Aug 13 02:15:31 2025 by rpki-client