$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: 2a98lCiXTgFKcptBSoUAdjQnmlg1Yu6jTJ64Me5BgtE= Subject key identifier: 49:0C:EA:DA:B9:42:73:1E:C8:8E:F0:D7:F7:B9:76:EE:BC:25:AB:CC Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 01F5 Signing time: Sat 09 Aug 2025 02:47:31 +0000 Manifest this update: Sat 09 Aug 2025 02:47:31 +0000 Manifest next update: Sat 16 Aug 2025 02:47:31 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: 3DokODlUAyJ+o4HAejm4iAJNy6dAgRDWXrLFLQIpTHY=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Aug 9 02:47:31 2025 GMT Not After : Aug 16 02:47:31 2025 GMT Subject: CN=6896b6c3-dee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bd:a9:2a:00:94:98:59:fd:75:e1:36:2c:5e: d8:3c:12:b8:f1:c2:dd:8b:15:0a:d5:f4:d0:99:58: 7d:80:76:9e:54:89:c5:51:dd:1b:12:ed:36:42:d9: ae:75:83:f3:cd:5a:d4:99:a6:14:38:e4:cd:ba:57: 33:17:b1:e6:2d:05:bd:9e:5b:70:5c:3c:c6:18:94: 02:7f:f3:21:6f:7d:6b:72:ec:47:e7:00:74:9f:d1: 08:7b:5a:ea:a2:05:c8:d3:85:96:b4:ab:d9:d6:f8: 3f:fd:39:d5:44:18:6b:65:f1:7b:f1:c0:42:62:ed: 67:f2:e7:24:90:31:47:5a:24:5c:99:68:de:dd:01: 5f:79:f7:5d:8e:56:31:18:1d:8d:f5:f1:a6:cc:bc: b5:e7:fa:52:49:85:08:62:55:72:e6:7d:9c:72:da: b8:85:42:72:51:28:69:2f:f2:7e:34:03:ac:55:87: 16:d6:a1:57:49:6c:19:53:c9:b5:62:a6:db:c5:2b: 7b:08:ee:9f:8d:9f:70:ed:f6:4b:ce:50:1a:ee:6b: 3e:ea:0e:49:66:4c:d5:0c:b1:23:41:95:a8:fd:cc: 75:c6:0a:10:83:e2:7d:eb:f9:19:2c:d7:48:9a:02: 76:13:5b:70:c7:6e:83:b9:f5:63:e2:88:19:79:1f: ae:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:0C:EA:DA:B9:42:73:1E:C8:8E:F0:D7:F7:B9:76:EE:BC:25:AB:CC X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:24:01:d6:13:f8:b3:7a:ad:85:06:1a:9e:3d:52:f8:d5:89: 96:49:2a:1f:03:7a:01:4d:6a:77:b3:12:9d:6a:53:cc:33:57: d5:ca:6b:b8:2f:ff:de:05:60:a9:1a:38:9d:c1:54:13:0a:db: 65:16:0d:7b:95:01:fd:fb:cc:45:7b:1b:e6:84:c3:81:b3:94: 04:1e:13:64:3e:8c:96:fe:82:f4:cd:e5:2a:52:5f:9f:a6:20: 38:9c:1d:0a:2a:fa:0d:fe:d5:9e:79:f3:59:cf:6a:bc:fc:05: 34:a1:7b:b6:c3:95:8e:bf:49:b9:b8:4c:fd:2b:49:82:0d:bb: 28:4f:b1:e5:0d:84:c3:81:36:2e:28:c4:09:cb:22:04:72:47: 25:a7:60:59:55:f7:34:59:38:e6:7e:85:e6:a2:94:f0:83:be: 97:16:65:9b:67:af:e5:6b:f2:42:e5:40:62:35:e7:db:e1:8e: 73:a9:dc:b2:5e:89:ae:f8:8a:12:d7:14:3f:87:24:85:12:8f: 3a:12:50:bf:34:55:4a:dd:0e:5b:45:51:9d:60:3d:d0:8b:5c: b7:57:68:e9:4f:5b:7e:47:cc:ea:1d:bf:70:8b:6b:5e:96:90: 08:ea:1e:8a:20:f2:dc:1e:1c:ff:77:40:1b:11:91:f3:af:40: ac:8b:b6:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwODA5MDI0NzMxWhcNMjUwODE2MDI0NzMxWjAYMRYwFAYD VQQDEw02ODk2YjZjMy1kZWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3b2pKgCUmFn9deE2LF7YPBK48cLdixUK1fTQmVh9gHaeVInFUd0bEu02Qtmu dYPzzVrUmaYUOOTNulczF7HmLQW9nltwXDzGGJQCf/Mhb31rcuxH5wB0n9EIe1rq ogXI04WWtKvZ1vg//TnVRBhrZfF78cBCYu1n8uckkDFHWiRcmWje3QFfefddjlYx GB2N9fGmzLy15/pSSYUIYlVy5n2cctq4hUJyUShpL/J+NAOsVYcW1qFXSWwZU8m1 YqbbxSt7CO6fjZ9w7fZLzlAa7ms+6g5JZkzVDLEjQZWo/cx1xgoQg+J96/kZLNdI mgJ2E1twx26DufVj4ogZeR+u8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkM6tq5 QnMeyI7w1/e5du68JavMMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJJAHWE/izeq2FBhqePVL41YmWSSofA3oBTWp3sxKdalPMM1fVymu4 L//eBWCpGjidwVQTCttlFg17lQH9+8xFexvmhMOBs5QEHhNkPoyW/oL0zeUqUl+f piA4nB0KKvoN/tWeefNZz2q8/AU0oXu2w5WOv0m5uEz9K0mCDbsoT7HlDYTDgTYu KMQJyyIEckclp2BZVfc0WTjmfoXmopTwg76XFmWbZ6/la/JC5UBiNefb4Y5zqdyy Xomu+IoS1xQ/hySFEo86ElC/NFVK3Q5bRVGdYD3Qi1y3V2jpT1t+R8zqHb9wi2te lpAI6h6KIPLcHhz/d0AbEZHzr0Csi7b1 -----END CERTIFICATE-----Generated at Sun Aug 10 03:56:19 2025 by rpki-client