$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: FkLcJYOF6TROZBIcZAzjR/cWsSKoFFRAmp+l/6XbgAo= Subject key identifier: 56:5F:6D:85:FB:DC:DE:DA:6A:64:E3:6F:12:FF:E1:2C:31:5A:47:7E Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0B72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 09B5 Signing time: Wed 06 Aug 2025 22:11:07 +0000 Manifest this update: Wed 06 Aug 2025 22:11:07 +0000 Manifest next update: Wed 13 Aug 2025 22:11:07 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: 1YX8qVRHNnm/p75VQkvdQWOoBRPH6SoFYzAKjaTKzZo=) 2: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: vQWuHkxNO3W+64VKIpJFVWJTeNRMIc+wKzNHsAhde4Q=) 3: 59DBAE3E318311F09059AF40C4F9AE02.roa (hash: aVl556fzOpXZhCAQS6RzMi60L/5QSS92vYE3e8gw1zM=) 4: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: tUqKc58G4NP/ZiNhEE4m52A3vGMH09GTzhVMgnnCe/8=) 5: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: uy/Ya9Uphz8yk5gzFrvw8K92wA25vKbiFTbIY5cp56U=) 6: D69762C65D6E11F0BB109139C4F9AE02.roa (hash: JeZvCBnCCE3Ugc/Ne1GhJAz21sP9a46J0ctdBqxtR84=) 7: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: KHmIhJVDnUN/JIAGOGyBUT9fEQNuIGqQSzduAjkMS7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2930 (0xb72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Aug 6 22:11:07 2025 GMT Not After : Aug 13 22:11:07 2025 GMT Subject: CN=6893d2fb-e2b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:63:dd:64:ef:95:16:52:a1:67:ac:6f:f2:2a: 22:be:1f:ad:37:50:50:eb:fc:9d:de:5f:5f:dd:51: 3e:e1:50:7d:89:9f:43:42:41:be:ce:5a:e0:01:fc: c3:3c:68:a1:b2:53:69:49:e1:d0:d9:6a:30:e4:30: 84:1a:cd:aa:4e:c5:30:47:81:bc:76:71:90:f3:65: 4a:be:87:81:d0:64:da:82:38:0b:73:7f:9c:30:75: 66:29:56:b9:68:cd:3a:6f:ce:1e:e0:d0:5e:15:e0: 0d:9d:48:22:77:a3:e3:09:84:26:fa:cd:02:af:54: 47:4e:56:cc:2e:1b:c9:68:f6:94:b2:63:73:1e:a4: c4:1d:a8:76:7b:ed:38:a6:51:f2:7d:da:7a:2f:ea: ef:e6:cd:82:4d:34:b3:87:c4:a7:85:d5:ec:2b:be: 82:b9:63:ab:c9:28:08:3d:8e:ff:7c:ac:ff:42:e0: 5a:76:42:3e:e2:3e:0c:0f:e5:ab:2a:73:98:60:ff: 85:ec:b3:44:4a:cf:f0:57:0c:83:5f:cd:e7:e0:b5: ef:60:e1:01:48:36:8e:5a:47:8e:9d:dc:b5:cc:e2: dd:e1:68:a5:d4:5e:a5:55:b5:46:71:9e:9c:39:3f: 2b:9f:c6:3b:12:6e:35:42:d9:8b:82:0b:61:39:c8: e3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:5F:6D:85:FB:DC:DE:DA:6A:64:E3:6F:12:FF:E1:2C:31:5A:47:7E X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c5:54:b9:8c:b6:07:8c:b8:48:52:5e:e0:a8:1f:6b:c0:1b: 5e:9c:ec:1b:d1:1b:c3:81:b6:e1:fe:c4:f7:26:26:c6:22:15: 96:b5:e8:ff:82:36:bc:f2:3c:36:d5:26:ce:cf:f4:5c:65:b8: 6d:03:19:4d:dc:8a:6b:4b:d7:0d:c0:71:35:f7:10:50:10:44: 87:a7:a6:65:06:15:b7:3c:b8:00:63:c3:81:7c:8b:4f:2b:53: 43:81:da:ae:34:0c:35:66:3d:9d:49:d6:7e:f9:6c:31:d0:dc: 4f:b8:37:6e:a5:27:18:f0:52:53:d6:5b:3b:37:01:7f:fc:46: 95:11:59:d4:ed:07:52:15:65:61:2e:d5:90:0a:4d:44:f1:f0: a1:f6:01:29:52:b3:0d:a1:34:9d:f9:0c:42:90:01:d1:a3:43: f5:31:89:74:c4:4b:98:e7:f6:96:8a:c4:73:b8:a4:15:f9:3f: eb:dc:0c:a7:bd:04:a0:93:64:53:ce:ad:a5:14:ee:10:ed:65: 8f:d8:44:1b:22:ad:38:ee:c0:a0:2f:83:92:fb:b0:38:b7:6f: 6e:26:79:14:92:11:64:6d:42:c7:e0:bc:76:be:43:6e:0a:fb: 51:ff:1f:be:d4:26:61:31:e8:3d:f8:94:0a:b0:aa:5f:23:a8: 73:c3:34:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjUwODA2MjIxMTA3WhcNMjUwODEzMjIxMTA3WjAYMRYwFAYD VQQDEw02ODkzZDJmYi1lMmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WPdZO+VFlKhZ6xv8ioivh+tN1BQ6/yd3l9f3VE+4VB9iZ9DQkG+zlrgAfzD PGihslNpSeHQ2Wow5DCEGs2qTsUwR4G8dnGQ82VKvoeB0GTagjgLc3+cMHVmKVa5 aM06b84e4NBeFeANnUgid6PjCYQm+s0Cr1RHTlbMLhvJaPaUsmNzHqTEHah2e+04 plHyfdp6L+rv5s2CTTSzh8SnhdXsK76CuWOrySgIPY7/fKz/QuBadkI+4j4MD+Wr KnOYYP+F7LNESs/wVwyDX83n4LXvYOEBSDaOWkeOndy1zOLd4Wil1F6lVbVGcZ6c OT8rn8Y7Em41QtmLggthOcjjAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZfbYX7 3N7aamTjbxL/4SwxWkd+MB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaxVS5jLYHjLhIUl7gqB9rwBtenOwb0RvDgbbh/sT3JibGIhWWtej/ gja88jw21SbOz/RcZbhtAxlN3IprS9cNwHE19xBQEESHp6ZlBhW3PLgAY8OBfItP K1NDgdquNAw1Zj2dSdZ++Wwx0NxPuDdupScY8FJT1ls7NwF//EaVEVnU7QdSFWVh LtWQCk1E8fCh9gEpUrMNoTSd+QxCkAHRo0P1MYl0xEuY5/aWisRzuKQV+T/r3Ayn vQSgk2RTzq2lFO4Q7WWP2EQbIq047sCgL4OS+7A4t29uJnkUkhFkbULH4Lx2vkNu CvtR/x++1CZhMeg9+JQKsKpfI6hzwzTK -----END CERTIFICATE-----Generated at Thu Aug 7 04:41:04 2025 by rpki-client