$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: OANKKvWIHwJ9vL1UBQFYTYStIVjyu9YgYzR4jhQusOw= Subject key identifier: F2:23:8E:E1:14:3B:35:EA:62:E1:53:37:C0:9F:97:CA:B6:56:5E:DB Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 05DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 05D3 Signing time: Tue 12 Aug 2025 23:27:24 +0000 Manifest this update: Tue 12 Aug 2025 23:27:23 +0000 Manifest next update: Tue 19 Aug 2025 23:27:23 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: ETuiI3U3I1GpLfJV0E9JX8oVLN00efaMHmVMLUBYFsY=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: Ews4xG+BhGr1YKU7wFoc4NdQF1qugSkJAZpv3+K1VQA=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: ixAKLgsVNfo1Pz8i7g4aRb3j68KYgsQlay7em4iJOQg=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1502 (0x5de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Aug 12 23:27:23 2025 GMT Not After : Aug 19 23:27:23 2025 GMT Subject: CN=689bcddc-9a19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d7:84:75:3a:b7:cb:a2:c9:c2:c4:79:cc:ee: 13:11:58:18:f5:e3:4a:6f:81:20:63:ff:0c:10:9b: af:3e:be:4b:5f:55:3d:78:65:02:ca:19:96:49:e2: 27:6a:f0:fe:ce:de:fc:d0:17:69:90:c0:5a:c1:a4: 84:c5:ac:e0:2a:6a:fc:c4:63:89:ba:9e:ca:14:b6: bc:73:ff:b5:75:08:0a:d6:d1:eb:c3:80:a8:c8:a3: 34:af:41:28:da:c7:cd:69:9d:89:df:83:a1:be:00: f7:25:e0:51:08:24:2b:08:ca:8a:70:9f:dd:df:c3: b2:81:ac:6f:7c:4d:8a:6d:93:8f:dd:c5:86:a6:82: 7f:1e:6c:13:93:e7:33:26:48:8c:ec:ce:bd:ee:49: 7e:be:cc:5d:4e:50:d1:be:ff:76:e7:fa:41:cd:64: 19:59:9b:10:61:e0:23:29:ab:9e:e2:d3:10:ff:73: c4:47:9e:79:fd:15:17:e3:5c:76:08:0f:6f:26:2f: ef:fd:fc:2a:0f:ad:39:4f:89:2c:0e:3c:72:94:b1: 57:e3:b0:65:d6:f7:86:b0:ac:8d:8b:cc:4b:15:96: 9f:63:e0:79:89:58:07:58:f1:2a:24:d9:76:c8:b7: 4a:aa:0b:cb:2e:f8:6a:24:15:84:ee:81:b9:40:fc: e5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:23:8E:E1:14:3B:35:EA:62:E1:53:37:C0:9F:97:CA:B6:56:5E:DB X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:5b:d5:7f:2e:a4:f3:02:f3:c6:7f:97:2c:c1:c7:e1:5f:a1: 91:db:2b:d4:75:96:ba:04:7d:44:43:7e:3f:aa:20:a4:49:3d: d5:82:ee:22:9f:c3:8b:83:9d:fc:3b:fc:6f:90:8e:6f:e3:f6: a5:9f:c5:f9:73:ac:7b:a8:7a:28:44:55:d7:5f:76:91:e2:ae: ec:b8:51:aa:5c:67:14:be:48:9f:c2:58:a6:d1:25:c6:e8:ef: 81:cd:07:08:a9:52:85:fc:44:f0:31:64:c2:1c:0f:df:d8:b0: 08:86:b7:ee:ad:86:a7:a0:6f:a1:dd:10:ab:3e:73:68:83:9d: 4d:91:c3:0f:a5:c6:fa:e2:b6:68:57:a8:44:8f:57:ba:76:d7: 1b:09:16:c9:7f:48:1e:65:03:c6:7a:cd:4c:54:5b:5b:2e:56: fb:30:15:21:2c:68:59:6a:b1:61:00:8b:0f:88:34:52:8e:9a: f0:02:13:9a:91:8f:a5:0b:5f:07:7a:b4:1a:ef:ef:26:1a:07: c3:99:c8:a7:60:db:55:4b:6e:73:1d:00:c3:14:6c:43:8a:31: e9:ed:3f:c1:d7:1d:db:7e:bb:df:ee:70:6b:ab:67:e8:a3:81: 87:f9:ef:35:a7:c3:cd:29:cd:4a:29:2d:05:e4:48:06:27:0c: 4a:29:d2:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUwODEyMjMyNzIzWhcNMjUwODE5MjMyNzIzWjAYMRYwFAYD VQQDEw02ODliY2RkYy05YTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNeEdTq3y6LJwsR5zO4TEVgY9eNKb4EgY/8MEJuvPr5LX1U9eGUCyhmWSeIn avD+zt780BdpkMBawaSExazgKmr8xGOJup7KFLa8c/+1dQgK1tHrw4CoyKM0r0Eo 2sfNaZ2J34OhvgD3JeBRCCQrCMqKcJ/d38OygaxvfE2KbZOP3cWGpoJ/HmwTk+cz JkiM7M697kl+vsxdTlDRvv925/pBzWQZWZsQYeAjKaue4tMQ/3PER555/RUX41x2 CA9vJi/v/fwqD605T4ksDjxylLFX47Bl1veGsKyNi8xLFZafY+B5iVgHWPEqJNl2 yLdKqgvLLvhqJBWE7oG5QPzl3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIjjuEU OzXqYuFTN8Cfl8q2Vl7bMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATW9V/LqTzAvPGf5cswcfhX6GR2yvUdZa6BH1EQ34/qiCkST3Vgu4i n8OLg538O/xvkI5v4/aln8X5c6x7qHooRFXXX3aR4q7suFGqXGcUvkifwlim0SXG 6O+BzQcIqVKF/ETwMWTCHA/f2LAIhrfurYanoG+h3RCrPnNog51NkcMPpcb64rZo V6hEj1e6dtcbCRbJf0geZQPGes1MVFtbLlb7MBUhLGhZarFhAIsPiDRSjprwAhOa kY+lC18HerQa7+8mGgfDmcinYNtVS25zHQDDFGxDijHp7T/B1x3bfrvf7nBrq2fo o4GH+e81p8PNKc1KKS0F5EgGJwxKKdIw -----END CERTIFICATE-----Generated at Wed Aug 13 04:27:52 2025 by rpki-client