$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: 9IYNI08061HLvEUmugu1W0UYJGicncHepZNRYz9Pgk4= Subject key identifier: FC:1B:23:76:77:7A:6F:F6:16:2F:3C:63:6F:A3:58:53:58:53:20:60 Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 1765 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 1750 Signing time: Wed 06 Aug 2025 16:42:54 +0000 Manifest this update: Wed 06 Aug 2025 16:42:53 +0000 Manifest next update: Wed 13 Aug 2025 16:42:53 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: wk+Z60xx5ye03JXjQE0wa4lAUqypSm+Nhe11uzQd1Zo=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: XhkwHyloR+2rDxWbay2n/StJn5+0QtLglAfKwVMv/5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 16:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5989 (0x1765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Aug 6 16:42:53 2025 GMT Not After : Aug 13 16:42:53 2025 GMT Subject: CN=6893860e-5ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:5d:79:1b:d4:4b:8d:04:b8:69:ea:3e:d4: 18:7c:cb:8d:e2:5f:e6:5f:d7:13:02:32:23:02:9a: c0:f9:52:83:af:4d:fe:94:5a:9a:1b:41:34:df:75: ef:ec:8f:79:4f:9a:7f:76:f9:0a:ad:b9:bb:f0:17: 12:8b:2c:fd:8a:53:a7:e8:f5:9b:61:ce:cd:66:4f: 2e:fb:79:4e:55:9d:dc:f3:1d:80:8f:bb:83:bd:ae: 23:59:e9:36:ab:74:b7:3d:e5:a9:4b:db:c1:21:fe: 9e:6c:1f:6c:65:8a:82:58:1b:72:53:f0:7e:7a:86: cc:42:d2:cc:d5:79:8e:c9:62:10:61:e1:aa:79:90: b5:c6:ca:25:6f:fc:c6:28:2c:10:b9:66:c7:2f:87: 34:26:6c:f0:e4:19:4f:57:55:c2:fd:d3:b0:5a:3f: d2:4b:d1:d6:bb:77:96:63:7e:1b:7d:31:47:88:7c: ef:f4:f4:d9:d3:f0:46:42:14:bc:ac:a0:48:63:c5: c2:7d:93:89:54:de:83:48:00:08:e9:ec:5d:7d:cc: e4:f3:2d:7b:38:b2:dc:da:71:b7:29:4d:4d:e3:9d: 26:23:42:b2:01:48:9e:ca:ac:a6:5c:82:73:e6:4c: 2c:df:ee:c2:47:ae:e2:96:b6:ca:20:79:60:cb:3a: 2d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:1B:23:76:77:7A:6F:F6:16:2F:3C:63:6F:A3:58:53:58:53:20:60 X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:f4:c1:8b:97:c6:93:85:4a:5d:3d:fa:c3:30:c4:34:9c:85: 20:87:83:d3:f4:08:f2:01:3f:46:58:8b:cd:70:7d:f9:d2:13: a7:29:59:ad:24:a9:26:88:3c:30:3c:5a:ca:7a:a6:3d:f7:97: 31:fe:1d:9c:b3:21:b2:45:25:ab:f7:3b:33:9f:46:df:2f:a1: 39:48:b3:30:61:2a:a0:2d:9d:c6:8a:d7:44:8e:21:f1:e8:29: fa:62:36:68:7f:e6:77:a7:1f:95:61:fc:f4:ed:6e:c7:57:39: d5:d9:cf:c6:32:62:7a:44:43:2c:8c:b8:0d:68:d0:79:d7:c1: df:9b:10:db:11:2c:99:cb:b4:8c:40:c9:a8:a2:13:1f:c4:0c: 7f:41:28:55:64:77:7a:20:5d:02:df:ec:aa:d9:ad:e7:d9:4d: c4:1a:b0:e1:23:47:d2:93:ff:7a:cb:64:77:aa:fc:37:27:ce: 9d:69:ea:5c:5e:5f:64:48:6b:9b:50:10:3b:a8:d6:9c:c5:0c: 60:0f:0d:72:e0:ab:07:fd:f4:4a:87:c5:91:9d:3d:14:5f:8d: ce:13:d7:0b:da:b4:1b:5c:07:62:bc:32:32:94:c5:54:3d:0e: 57:f1:af:15:ff:f2:9b:10:5b:1e:e0:40:80:f5:de:39:fb:58: 52:fe:c7:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUwODA2MTY0MjUzWhcNMjUwODEzMTY0MjUzWjAYMRYwFAYD VQQDEw02ODkzODYwZS01YWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWpdeRvUS40EuGnqPtQYfMuN4l/mX9cTAjIjAprA+VKDr03+lFqaG0E033Xv 7I95T5p/dvkKrbm78BcSiyz9ilOn6PWbYc7NZk8u+3lOVZ3c8x2Aj7uDva4jWek2 q3S3PeWpS9vBIf6ebB9sZYqCWBtyU/B+eobMQtLM1XmOyWIQYeGqeZC1xsolb/zG KCwQuWbHL4c0Jmzw5BlPV1XC/dOwWj/SS9HWu3eWY34bfTFHiHzv9PTZ0/BGQhS8 rKBIY8XCfZOJVN6DSAAI6exdfczk8y17OLLc2nG3KU1N450mI0KyAUieyqymXIJz 5kws3+7CR67ilrbKIHlgyzotPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwbI3Z3 em/2Fi88Y2+jWFNYUyBgMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO9MGLl8aThUpdPfrDMMQ0nIUgh4PT9AjyAT9GWIvNcH350hOnKVmt JKkmiDwwPFrKeqY995cx/h2csyGyRSWr9zszn0bfL6E5SLMwYSqgLZ3GitdEjiHx 6Cn6YjZof+Z3px+VYfz07W7HVznV2c/GMmJ6REMsjLgNaNB518HfmxDbESyZy7SM QMmoohMfxAx/QShVZHd6IF0C3+yq2a3n2U3EGrDhI0fSk/96y2R3qvw3J86daepc Xl9kSGubUBA7qNacxQxgDw1y4KsH/fRKh8WRnT0UX43OE9cL2rQbXAdivDIylMVU PQ5X8a8V//KbEFse4ECA9d45+1hS/sfK -----END CERTIFICATE-----Generated at Thu Aug 7 03:52:16 2025 by rpki-client