$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: 46MfYtDVpUBi9v0kO38US9SIrPQB34F5EYubMpCsdxY= Subject key identifier: DA:E6:D0:23:10:F2:9A:57:1B:D5:9C:A3:A5:E6:FF:06:BD:42:41:AA Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 013A Signing time: Sat 09 Aug 2025 04:49:16 +0000 Manifest this update: Sat 09 Aug 2025 04:49:16 +0000 Manifest next update: Sat 16 Aug 2025 04:49:16 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: Ii/ZC6lMIEvLHNMVMUCfmSelotV6SHDYcQ9on+i4Sdk=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: nLAI2KpHv4yGG3LNJRHSRrSrOVvhwD5I70+pJLgB34A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547, serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: Aug 9 04:49:16 2025 GMT Not After : Aug 16 04:49:16 2025 GMT Subject: CN=6896d34c-639c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b7:b9:1f:df:9c:03:f4:76:e0:59:3f:e0:ee: 17:54:6b:49:ef:51:a0:cc:25:e0:0a:50:51:e5:23: b9:ab:cf:7e:c5:3a:49:5f:82:75:01:da:b1:8e:b5: ea:32:02:de:2c:55:15:c0:18:ad:a9:20:fb:a4:f9: 04:dc:16:b4:9d:38:3c:46:95:89:b5:0a:c7:5a:e1: 6d:89:5c:2e:6a:d7:57:ce:1d:e1:70:fa:99:03:5f: 11:87:07:da:ee:c4:1b:b2:ee:53:11:af:17:6f:cb: bf:ba:dd:48:01:b0:a1:7f:ca:0f:e8:42:1b:e5:c0: c9:8b:54:51:b8:81:95:5f:05:eb:b6:fe:0c:61:0c: 23:25:a9:ff:11:3e:ea:4c:45:e6:d4:1d:05:13:0c: 64:9a:6a:1f:23:74:7e:f0:4f:5e:4c:4c:a5:0b:b1: 4c:8a:03:7a:66:3e:90:fd:78:f6:29:dd:21:48:5f: 16:29:54:ac:fe:54:ca:2d:00:82:c8:2e:a7:3f:0b: 88:9d:7c:51:d7:f7:81:9e:a1:e6:a2:5c:78:d5:08: c9:73:39:fa:af:7e:93:a1:c7:05:ba:dc:74:c3:fc: e3:27:15:f4:7d:22:85:f0:96:e3:c7:5c:c7:b5:35: ba:56:f8:29:2c:eb:91:ed:23:07:11:97:b0:f2:9c: e4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:E6:D0:23:10:F2:9A:57:1B:D5:9C:A3:A5:E6:FF:06:BD:42:41:AA X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:63:ab:fd:c7:62:96:8b:68:c3:dd:d9:ab:b1:39:0e:da:e2: d4:16:0f:97:68:b4:d5:c2:7c:90:7b:ac:2e:c4:25:a8:ff:7d: ba:f4:dc:76:ed:05:d9:fe:07:a3:b0:9e:7d:1b:40:38:d6:09: 96:62:2b:f5:76:a6:50:5b:b5:53:bd:d5:a0:a3:2a:84:34:57: 47:ce:1b:42:87:2b:8e:18:ef:38:31:45:e9:a9:4c:d0:49:94: a6:68:89:fa:3f:d2:33:3f:4f:3c:49:3c:7a:5c:22:e7:8a:f0: b2:74:62:11:18:21:4a:a2:9f:4c:12:da:ce:c5:98:7e:1f:38: 08:c7:85:4b:91:8f:81:c9:21:a9:a4:e7:3b:92:5f:a1:52:45: 2d:31:5b:33:71:c2:39:0b:94:2f:d4:d2:99:49:20:de:60:38: 2f:b6:39:e9:fb:7c:4c:74:5f:02:6f:18:73:f9:4f:d7:51:fe: 1a:58:31:59:06:55:a6:26:ce:17:9e:76:8f:34:8e:ba:c7:26: 5d:da:8e:29:c4:95:3e:31:65:b4:90:b4:4b:0a:0c:3d:6d:04: f8:d3:13:cb:29:21:0f:b0:82:d5:f4:17:d0:f9:71:91:44:65: 47:2b:8b:c0:6b:50:75:b7:5a:3b:05:51:3d:4a:b4:15:df:25: 40:c1:dd:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjUwODA5MDQ0OTE2WhcNMjUwODE2MDQ0OTE2WjAYMRYwFAYD VQQDEw02ODk2ZDM0Yy02MzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07e5H9+cA/R24Fk/4O4XVGtJ71GgzCXgClBR5SO5q89+xTpJX4J1AdqxjrXq MgLeLFUVwBitqSD7pPkE3Ba0nTg8RpWJtQrHWuFtiVwuatdXzh3hcPqZA18Rhwfa 7sQbsu5TEa8Xb8u/ut1IAbChf8oP6EIb5cDJi1RRuIGVXwXrtv4MYQwjJan/ET7q TEXm1B0FEwxkmmofI3R+8E9eTEylC7FMigN6Zj6Q/Xj2Kd0hSF8WKVSs/lTKLQCC yC6nPwuInXxR1/eBnqHmolx41QjJczn6r36ToccFutx0w/zjJxX0fSKF8Jbjx1zH tTW6VvgpLOuR7SMHEZew8pzkJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrm0CMQ 8ppXG9Wco6Xm/wa9QkGqMB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU0Ny9CMzg2NjhFNDkyQTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9p T29VdWxSVUdYSVdqT2VjNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHY6v9x2KWi2jD3dmrsTkO2uLUFg+XaLTVwnyQe6wuxCWo/3269Nx2 7QXZ/gejsJ59G0A41gmWYiv1dqZQW7VTvdWgoyqENFdHzhtChyuOGO84MUXpqUzQ SZSmaIn6P9IzP088STx6XCLnivCydGIRGCFKop9MEtrOxZh+HzgIx4VLkY+BySGp pOc7kl+hUkUtMVszccI5C5Qv1NKZSSDeYDgvtjnp+3xMdF8Cbxhz+U/XUf4aWDFZ BlWmJs4XnnaPNI66xyZd2o4pxJU+MWW0kLRLCgw9bQT40xPLKSEPsILV9BfQ+XGR RGVHK4vAa1B1t1o7BVE9SrQV3yVAwd1G -----END CERTIFICATE-----Generated at Sun Aug 10 21:04:30 2025 by rpki-client