$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: Ag25kZiJbQrwqa2c5RXFjjKdV5MsvQiFIkmnFxE5F/U= Subject key identifier: BE:5D:58:EB:C4:C1:73:D1:E0:79:7A:6F:57:78:9A:22:94:98:EA:6C Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 174B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 1736 Signing time: Mon 16 Jun 2025 16:40:45 +0000 Manifest this update: Mon 16 Jun 2025 16:40:44 +0000 Manifest next update: Mon 23 Jun 2025 16:40:44 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: O6ZsHJuxi7Q8YNy9YuKx7vPW9k6IIVG+jTtAQjhyZkw=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: XhkwHyloR+2rDxWbay2n/StJn5+0QtLglAfKwVMv/5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5963 (0x174b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Jun 16 16:40:44 2025 GMT Not After : Jun 23 16:40:44 2025 GMT Subject: CN=6850490d-ddcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:92:0e:7d:7b:59:5b:5a:20:73:7a:8b:04:1f: f9:ba:db:30:29:aa:93:21:f8:b7:0f:35:4c:37:aa: 12:4c:23:60:54:0a:8c:eb:b3:f9:94:73:51:2e:4c: a5:79:4a:64:ee:79:2d:b6:f8:5e:4a:2a:7b:fd:8c: 81:b6:99:75:6f:e7:1d:30:dc:03:81:12:74:e2:a2: c8:af:c5:a9:20:5d:14:29:fb:aa:ae:e0:1b:c4:2b: 28:13:84:dc:a4:f7:3b:40:84:61:9e:c8:83:b2:47: d1:8b:09:87:49:2f:4d:f7:87:6c:b8:7d:6e:e2:15: 9b:cb:d2:36:97:99:62:db:6b:e7:f3:f1:e7:8c:76: 92:2f:17:12:62:20:6f:2a:c1:b0:ad:4d:d2:2c:e7: 0c:8b:91:1c:4e:fe:36:f3:84:7f:fc:87:4f:a6:dc: 66:15:16:80:c3:2b:e6:87:4c:92:60:26:da:9d:db: 4e:c9:25:38:7c:7d:81:02:7d:93:26:a5:07:e9:e1: 1c:25:a6:1a:fe:a3:66:28:86:c8:18:47:3f:c5:7c: 00:8c:10:e0:1d:c8:23:a9:3d:37:d6:d4:ac:9b:7c: a7:6c:48:22:d0:ca:21:89:8f:31:34:71:75:96:56: 0a:b7:f2:84:8c:e0:07:a8:9f:0c:ad:39:5b:0b:5f: cc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5D:58:EB:C4:C1:73:D1:E0:79:7A:6F:57:78:9A:22:94:98:EA:6C X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:b3:74:47:42:dd:b7:d0:66:3b:96:e7:f6:73:e8:ef:1d:7b: c6:12:ba:9b:65:2d:a5:74:56:f8:9e:ee:c6:33:30:56:81:3f: 83:1b:2f:3f:eb:8f:69:e0:be:5b:b6:bf:a5:4f:2a:4a:c8:2e: 26:65:a7:cf:bf:7b:cc:0a:f4:eb:14:50:d6:08:f2:ab:a5:16: bf:dc:e7:47:ec:9f:95:fd:75:ab:80:70:62:af:96:aa:e8:c5: 88:fd:2c:29:7a:a0:4c:12:ab:4e:63:16:f3:e7:86:dd:01:9c: c6:96:6e:d2:d9:45:28:ed:72:b0:a1:dd:10:7e:74:56:e4:bc: d1:fb:48:98:2c:a5:7c:3a:41:17:88:49:50:4d:c8:99:fa:47: 48:2a:66:52:15:7b:5b:06:28:05:a4:85:54:27:57:02:a9:09: 9c:ad:bb:b4:20:29:08:96:2a:54:fc:3d:64:90:5c:25:d2:d4: 04:88:31:37:bd:08:a0:dd:67:b9:db:45:21:e3:64:4c:73:01: 07:99:99:1a:42:25:41:b4:47:0d:54:1d:74:b1:51:8d:4d:2b: 5a:2b:3a:23:36:cf:b6:80:a3:41:9d:b2:3a:05:b9:e4:a6:91: 6e:0d:ec:24:fd:c5:f2:6b:ef:9a:99:53:b1:f9:14:cf:fe:42: 11:f4:20:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUwNjE2MTY0MDQ0WhcNMjUwNjIzMTY0MDQ0WjAYMRYwFAYD VQQDEw02ODUwNDkwZC1kZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pIOfXtZW1ogc3qLBB/5utswKaqTIfi3DzVMN6oSTCNgVAqM67P5lHNRLkyl eUpk7nkttvheSip7/YyBtpl1b+cdMNwDgRJ04qLIr8WpIF0UKfuqruAbxCsoE4Tc pPc7QIRhnsiDskfRiwmHSS9N94dsuH1u4hWby9I2l5li22vn8/HnjHaSLxcSYiBv KsGwrU3SLOcMi5EcTv4284R//IdPptxmFRaAwyvmh0ySYCbandtOySU4fH2BAn2T JqUH6eEcJaYa/qNmKIbIGEc/xXwAjBDgHcgjqT031tSsm3ynbEgi0MohiY8xNHF1 llYKt/KEjOAHqJ8MrTlbC1/MVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5dWOvE wXPR4Hl6b1d4miKUmOpsMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxs3RHQt230GY7luf2c+jvHXvGErqbZS2ldFb4nu7GMzBWgT+DGy8/ 649p4L5btr+lTypKyC4mZafPv3vMCvTrFFDWCPKrpRa/3OdH7J+V/XWrgHBir5aq 6MWI/SwpeqBMEqtOYxbz54bdAZzGlm7S2UUo7XKwod0QfnRW5LzR+0iYLKV8OkEX iElQTciZ+kdIKmZSFXtbBigFpIVUJ1cCqQmcrbu0ICkIlipU/D1kkFwl0tQEiDE3 vQig3We520Uh42RMcwEHmZkaQiVBtEcNVB10sVGNTStaKzojNs+2gKNBnbI6Bbnk ppFuDewk/cXya++amVOx+RTP/kIR9CC0 -----END CERTIFICATE-----Generated at Mon Jun 16 19:53:36 2025 by rpki-client