$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: vvlODd9U34JmqGyphc3ud0IIXzUof3VuaViSEQeRqKk= Subject key identifier: 23:FB:25:8C:0F:2A:EF:6F:38:DA:6C:FA:71:79:45:8F:ED:4A:6F:0D Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 0154 Signing time: Sat 09 Aug 2025 04:31:55 +0000 Manifest this update: Sat 09 Aug 2025 04:31:55 +0000 Manifest next update: Sat 16 Aug 2025 04:31:55 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: cyCXB3QxPQI5sTCpsOBdN1CQYfdoPwJ98ycfGdjyxzY=) 2: 2D7DCF98BA1411EFBD0C393DC4F9AE02.roa (hash: fg42UFyy2LFjnZK3Qasj9lnWcNe6AFnhvIhyePUvpAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B, serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: Aug 9 04:31:55 2025 GMT Not After : Aug 16 04:31:55 2025 GMT Subject: CN=6896cf3b-e455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:25:1c:43:67:db:3f:00:0e:9e:52:49:e2:80: 75:5e:21:90:12:fd:1f:c9:a3:30:2a:92:4a:17:04: 71:d0:9b:30:44:60:4a:6f:e0:8e:76:79:99:5e:a1: 34:2b:aa:ce:0d:bd:7e:58:29:46:7c:cc:8c:de:74: 9b:75:7e:c3:24:83:a9:85:61:5e:52:05:1e:c7:09: cd:b7:b3:0d:92:4f:bc:56:91:2c:f1:23:82:92:fe: e7:cc:04:6e:1f:e2:3e:4b:10:52:86:4e:c1:de:a0: 1d:e6:a4:a5:9c:b2:fc:5f:eb:d6:a3:9b:96:66:f8: cb:dd:b6:8b:78:90:fe:4f:11:e7:45:c1:73:16:a0: 9c:41:84:ff:25:ba:74:98:30:ac:ae:a3:4d:ed:2f: ef:73:bd:e9:ed:6e:a3:11:19:8f:7e:d2:b8:1b:3e: a0:d2:80:b6:b1:f3:8c:f5:e4:b7:ff:e2:b8:1e:56: 4d:90:aa:4d:02:2d:b5:b2:36:e7:f0:c0:10:8c:c6: c6:bc:3e:dc:f3:34:28:bf:e1:15:f5:4a:c8:ac:3b: d7:36:b3:78:3d:97:bc:c3:2a:97:84:9f:43:3b:6b: 4f:00:44:ca:3d:3f:87:2b:0d:b7:5f:06:6d:fd:34: 5e:51:0b:09:94:5a:ee:db:ea:c1:cb:6b:6a:93:b7: ed:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:FB:25:8C:0F:2A:EF:6F:38:DA:6C:FA:71:79:45:8F:ED:4A:6F:0D X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:cf:f2:1e:eb:13:73:69:4b:40:fc:69:28:68:49:c8:1e:07: f7:29:ef:58:85:cd:1c:37:81:b7:84:5f:e5:40:18:98:32:32: 83:5c:b9:42:d5:ef:be:76:5a:0b:ca:2a:ee:e1:b2:21:e4:9d: 40:c6:4a:9e:ee:34:19:07:1b:41:4f:e7:11:0d:8a:2a:fb:3c: d7:5f:c7:e1:16:8b:a5:a4:77:f3:22:76:30:d0:e0:89:3f:8e: e8:f5:97:12:85:0d:09:a1:0f:f3:48:8e:89:68:07:f9:67:82: 07:1c:57:54:ca:8e:4c:d2:79:b2:bc:2c:6c:72:62:1f:87:6b: ad:f1:a8:6f:36:27:cf:6a:31:d9:46:91:27:53:f9:e0:83:94: d6:4b:88:82:a0:8c:68:e3:c7:41:d1:41:06:99:3f:38:90:33: b7:89:53:06:77:be:b6:15:14:d1:3f:11:5e:8f:c9:4e:5d:75: e9:ee:3e:c8:6d:b8:6e:0e:a7:cf:31:31:1f:b1:96:b5:d2:d4: eb:d5:57:28:0f:3d:9c:84:35:10:07:d9:a5:0b:64:ef:18:c7: 3f:e9:bb:dd:47:33:39:b2:19:87:dd:11:af:ad:c4:cf:df:16: 4c:93:6a:95:2d:6d:23:24:e7:77:0f:f1:10:6d:21:49:95:aa: b9:c4:04:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjUwODA5MDQzMTU1WhcNMjUwODE2MDQzMTU1WjAYMRYwFAYD VQQDEw02ODk2Y2YzYi1lNDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CUcQ2fbPwAOnlJJ4oB1XiGQEv0fyaMwKpJKFwRx0JswRGBKb+COdnmZXqE0 K6rODb1+WClGfMyM3nSbdX7DJIOphWFeUgUexwnNt7MNkk+8VpEs8SOCkv7nzARu H+I+SxBShk7B3qAd5qSlnLL8X+vWo5uWZvjL3baLeJD+TxHnRcFzFqCcQYT/Jbp0 mDCsrqNN7S/vc73p7W6jERmPftK4Gz6g0oC2sfOM9eS3/+K4HlZNkKpNAi21sjbn 8MAQjMbGvD7c8zQov+EV9UrIrDvXNrN4PZe8wyqXhJ9DO2tPAETKPT+HKw23XwZt /TReUQsJlFru2+rBy2tqk7ft0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCP7JYwP Ku9vONps+nF5RY/tSm8NMB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBq WjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqz/Ie6xNzaUtA/GkoaEnIHgf3Ke9Yhc0cN4G3hF/lQBiYMjKDXLlC 1e++dloLyiru4bIh5J1Axkqe7jQZBxtBT+cRDYoq+zzXX8fhFoulpHfzInYw0OCJ P47o9ZcShQ0JoQ/zSI6JaAf5Z4IHHFdUyo5M0nmyvCxscmIfh2ut8ahvNifPajHZ RpEnU/ngg5TWS4iCoIxo48dB0UEGmT84kDO3iVMGd762FRTRPxFej8lOXXXp7j7I bbhuDqfPMTEfsZa10tTr1VcoDz2chDUQB9mlC2TvGMc/6bvdRzM5shmH3RGvrcTP 3xZMk2qVLW0jJOd3D/EQbSFJlaq5xARi -----END CERTIFICATE-----Generated at Sun Aug 10 21:05:55 2025 by rpki-client