$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: cG+E6LEEdzIkvsnZPjVm4S80RsaIFvBrOYfMbkeICnE= Subject key identifier: EE:AE:84:12:92:73:2C:FB:6E:BE:5A:E7:39:85:9C:84:BD:ED:6F:D4 Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 073F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2D4F Signing time: Sun 10 Aug 2025 15:39:17 +0000 Manifest this update: Sun 10 Aug 2025 15:39:16 +0000 Manifest next update: Sun 17 Aug 2025 15:39:16 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: QS+p7QQ8PTuWPsfrq7wxLdXL+T58mRk72dW8ef9rFBQ=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: ekyxreCpgMcKP34usIZn12GGqR3mbNPPXZzJX4hQpac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 15:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Aug 10 15:39:16 2025 GMT Not After : Aug 17 15:39:16 2025 GMT Subject: CN=6898bd25-376c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:04:18:e8:10:d5:f0:71:d8:94:39:49:d7:13: 5c:ea:fb:eb:30:65:e2:9a:ac:ff:fd:e5:0f:ce:75: 8f:72:9a:57:40:d0:09:a0:a5:07:41:a8:2c:c0:37: 64:d2:5a:59:8f:46:28:b3:ee:e2:5b:6c:ab:0b:db: c5:6a:c6:39:8d:a1:47:47:a9:47:d7:bb:26:72:1f: 2c:52:62:88:00:d3:41:20:b7:c1:05:2b:97:81:48: ff:8e:38:27:be:8c:ae:90:33:4b:b2:df:5d:5c:6f: 17:d3:7a:be:00:d4:7c:8c:0a:ab:bc:a4:92:ed:31: e1:6c:be:64:2a:2a:b1:36:2d:87:8b:90:da:bf:0d: a7:c4:93:2d:96:f8:9a:64:2a:65:cd:64:67:c9:4c: 92:a5:4b:60:8e:63:67:f1:d2:30:44:dd:aa:d1:ed: b6:e9:54:ae:40:c9:3e:26:51:c1:15:71:a0:bb:22: f0:e1:e0:3f:6d:a2:cb:32:f1:51:d2:ba:c4:36:de: a9:67:5a:6a:ea:2d:35:40:50:0a:d5:60:d2:65:99: c9:54:2b:d7:ab:cf:1c:a7:37:45:e7:f6:54:a6:ca: 19:b6:92:62:4d:37:71:e7:23:aa:29:db:03:9f:35: 3a:47:26:35:ec:d4:ea:33:42:31:cb:ac:74:bd:c6: d9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AE:84:12:92:73:2C:FB:6E:BE:5A:E7:39:85:9C:84:BD:ED:6F:D4 X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:85:d2:d5:3b:f2:e6:c1:c5:22:94:6d:80:85:81:15:2e:f2: 23:b5:f5:df:b8:f2:a7:c7:c8:a6:65:6c:22:0e:19:92:44:0e: ac:a7:73:9c:20:0f:77:6e:2b:17:a0:9b:1a:b5:28:08:8a:5f: e4:e2:14:1d:77:fd:80:36:f8:11:7d:c6:43:aa:1e:cf:82:8d: 86:39:37:ac:11:29:98:bb:17:60:ff:4b:81:6b:fd:a7:9f:93: 7b:15:35:ee:bf:05:3a:0e:8d:5b:f7:b6:2b:07:fd:1a:c2:90: a6:4c:2f:0f:4e:1f:ee:10:53:68:14:1a:b2:ba:d3:2c:bc:ac: c5:f0:05:4c:bc:2a:9d:b8:cc:47:be:f3:7a:09:29:b8:33:db: 02:d2:1d:15:e8:79:61:0b:0d:dd:53:da:cb:20:80:4d:9a:8b: 38:fe:f8:b9:d9:64:e4:d4:71:bd:7e:af:bc:39:19:21:11:d3: 05:2a:44:92:36:bd:13:3c:e7:76:e4:f2:08:51:7f:71:53:5c: 57:32:73:08:c9:9d:45:b7:86:2c:4e:08:94:1b:db:e0:42:4a: b2:52:de:70:5f:b3:11:cf:d0:79:09:87:23:0a:33:b7:de:01: bb:fb:34:58:e5:c0:6c:ff:b2:a2:4b:be:e9:dd:bf:93:36:a7: 76:6a:35:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjUwODEwMTUzOTE2WhcNMjUwODE3MTUzOTE2WjAYMRYwFAYD VQQDEw02ODk4YmQyNS0zNzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9gQY6BDV8HHYlDlJ1xNc6vvrMGXimqz//eUPznWPcppXQNAJoKUHQagswDdk 0lpZj0Yos+7iW2yrC9vFasY5jaFHR6lH17smch8sUmKIANNBILfBBSuXgUj/jjgn voyukDNLst9dXG8X03q+ANR8jAqrvKSS7THhbL5kKiqxNi2Hi5Davw2nxJMtlvia ZCplzWRnyUySpUtgjmNn8dIwRN2q0e226VSuQMk+JlHBFXGguyLw4eA/baLLMvFR 0rrENt6pZ1pq6i01QFAK1WDSZZnJVCvXq88cpzdF5/ZUpsoZtpJiTTdx5yOqKdsD nzU6RyY17NTqM0Ixy6x0vcbZVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6uhBKS cyz7br5a5zmFnIS97W/UMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVhdLVO/LmwcUilG2AhYEVLvIjtfXfuPKnx8imZWwiDhmSRA6sp3Oc IA93bisXoJsatSgIil/k4hQdd/2ANvgRfcZDqh7Pgo2GOTesESmYuxdg/0uBa/2n n5N7FTXuvwU6Do1b97YrB/0awpCmTC8PTh/uEFNoFBqyutMsvKzF8AVMvCqduMxH vvN6CSm4M9sC0h0V6HlhCw3dU9rLIIBNmos4/vi52WTk1HG9fq+8ORkhEdMFKkSS Nr0TPOd25PIIUX9xU1xXMnMIyZ1Ft4YsTgiUG9vgQkqyUt5wX7MRz9B5CYcjCjO3 3gG7+zRY5cBs/7KiS77p3b+TNqd2ajUM -----END CERTIFICATE-----Generated at Tue Aug 12 14:37:03 2025 by rpki-client