$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: ECfxAmCqC8COTKDRbR09CrVNSuzIcKB9vTVAnCdfaFs= Subject key identifier: 03:83:AB:92:8E:43:02:7A:4B:CA:21:E1:AB:D8:7E:34:F5:4A:3D:64 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0CD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0C8F Signing time: Fri 08 Aug 2025 18:39:15 +0000 Manifest this update: Fri 08 Aug 2025 18:39:15 +0000 Manifest next update: Fri 15 Aug 2025 18:39:15 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: xqACeMIFHqRqiLfJUxtH1CsRIxAH98nceUG6Hf/sfUA=) 2: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 3: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 4: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 5: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) 6: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 8: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 9: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3280 (0xcd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Aug 8 18:39:15 2025 GMT Not After : Aug 15 18:39:15 2025 GMT Subject: CN=68964453-7029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d4:02:bc:2d:e1:c8:91:a7:00:28:01:08:3c: 39:68:18:94:39:7d:b8:dd:c8:e1:35:c8:fc:42:e2: ea:9d:37:2d:56:c0:95:fc:26:e2:1a:9c:76:06:cc: f8:13:99:6a:21:c3:d4:c7:03:8e:4c:54:33:0d:df: ab:c4:8b:c2:54:5a:a4:51:f8:c9:02:12:13:ca:c8: ad:bd:61:0f:92:09:4e:7a:52:48:7d:63:5c:9b:4c: 07:ef:20:45:80:d2:4f:fb:d5:f8:6a:f2:76:81:66: f5:21:61:73:bc:08:a7:91:49:97:ff:71:e9:23:83: 61:e5:c4:c0:7d:d3:7f:db:04:b6:d6:cf:fe:a5:93: e4:f4:46:b4:92:71:1a:a6:8a:26:23:8a:3f:61:66: e8:10:37:e8:d2:7e:44:ff:5f:82:de:42:b1:f0:01: 10:e8:ee:f2:1a:2c:33:a2:60:fa:ee:28:e0:f6:35: bc:ac:37:82:cf:b0:40:f5:50:20:8d:04:99:55:72: 42:ab:59:bd:46:a6:f0:60:ae:65:d5:51:bb:bb:7e: 9e:c7:44:65:a7:77:99:70:ca:3b:4d:f6:ab:cb:dd: a7:98:9a:fe:5c:03:50:39:e4:68:11:66:ca:6a:24: 9a:f3:e5:2c:77:26:4d:44:a1:b7:ac:1c:c8:b2:ec: f6:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:83:AB:92:8E:43:02:7A:4B:CA:21:E1:AB:D8:7E:34:F5:4A:3D:64 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:3e:83:26:c3:8d:08:5e:11:11:45:32:be:fd:a3:95:fb:c0: 6c:3c:a9:05:a0:7a:73:ad:e7:1b:be:e3:45:e5:9b:19:cf:31: 56:7c:d3:9a:e1:59:47:6c:2a:2c:a8:55:08:1a:0e:36:fd:43: 6c:4b:21:3d:5a:e0:07:08:89:7a:20:1d:6b:f9:47:22:f9:d2: 25:26:80:a3:62:8a:da:57:f6:71:90:86:3d:a2:48:e4:38:8c: 46:33:d2:a8:60:24:7d:90:8a:bd:74:3c:31:24:23:ce:32:17: e1:ee:71:64:81:c8:1a:ad:7e:e7:62:97:28:f3:58:ff:28:62: 4a:be:6a:ae:f0:d9:3d:86:51:1e:65:c2:97:a1:22:ee:f0:92: a2:a3:93:d0:8f:11:b9:be:3b:cb:07:95:7d:84:bf:d4:5e:90: ed:4f:87:3f:80:f0:77:6e:8e:bd:86:83:0f:2d:ff:40:3e:8c: a3:57:08:e6:ba:b2:d3:96:ea:f4:57:c4:ab:4c:3f:0c:db:63: 11:54:0c:3e:4e:94:8a:48:9d:75:c1:02:02:51:83:21:c5:fa: 9e:50:54:75:e5:d4:93:e8:11:64:78:a4:b3:28:ad:5e:a0:30: d4:26:2a:61:43:85:77:54:fb:34:85:7a:11:ea:64:2a:95:6e: bf:95:6f:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUwODA4MTgzOTE1WhcNMjUwODE1MTgzOTE1WjAYMRYwFAYD VQQDEw02ODk2NDQ1My03MDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNQCvC3hyJGnACgBCDw5aBiUOX243cjhNcj8QuLqnTctVsCV/CbiGpx2Bsz4 E5lqIcPUxwOOTFQzDd+rxIvCVFqkUfjJAhITysitvWEPkglOelJIfWNcm0wH7yBF gNJP+9X4avJ2gWb1IWFzvAinkUmX/3HpI4Nh5cTAfdN/2wS21s/+pZPk9Ea0knEa poomI4o/YWboEDfo0n5E/1+C3kKx8AEQ6O7yGiwzomD67ijg9jW8rDeCz7BA9VAg jQSZVXJCq1m9RqbwYK5l1VG7u36ex0Rlp3eZcMo7Tfary92nmJr+XANQOeRoEWbK aiSa8+UsdyZNRKG3rBzIsuz2cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAODq5KO QwJ6S8oh4avYfjT1Sj1kMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzPoMmw40IXhERRTK+/aOV+8BsPKkFoHpzrecbvuNF5ZsZzzFWfNOa 4VlHbCosqFUIGg42/UNsSyE9WuAHCIl6IB1r+Uci+dIlJoCjYoraV/ZxkIY9okjk OIxGM9KoYCR9kIq9dDwxJCPOMhfh7nFkgcgarX7nYpco81j/KGJKvmqu8Nk9hlEe ZcKXoSLu8JKio5PQjxG5vjvLB5V9hL/UXpDtT4c/gPB3bo69hoMPLf9APoyjVwjm urLTlur0V8SrTD8M22MRVAw+TpSKSJ11wQICUYMhxfqeUFR15dST6BFkeKSzKK1e oDDUJiphQ4V3VPs0hXoR6mQqlW6/lW+y -----END CERTIFICATE-----Generated at Sat Aug 9 02:49:31 2025 by rpki-client