$ rpki-client -vvf rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft File: oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft (raw, json) Hash identifier: 23xJQv+4R+CBguvuF6kYgEVMp9BmSYe3px34Ep7UbMk= Subject key identifier: 2C:88:EB:02:09:E0:A4:B5:56:9C:E9:BA:FC:EC:D5:EE:E1:7F:98:9E Authority key identifier: A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 Certificate issuer: /CN=A9194040/serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Certificate serial: 0398 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft Manifest number: 0393 Signing time: Sat 21 Jun 2025 00:32:29 +0000 Manifest this update: Sat 21 Jun 2025 00:32:28 +0000 Manifest next update: Sat 28 Jun 2025 00:32:28 +0000 Files and hashes: 1: oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl (hash: FiDymYrdXLyxMkX9Kwugf73ukES98PerInw2Wt2hWE0=) 2: D1E294C2A34411EC803D2585C4F9AE02.roa (hash: lJa/v3Ew27zEz3fGPQRNJii4SZZ7fJhhCVEdIkMKWNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 00:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194040, serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Validity Not Before: Jun 21 00:32:28 2025 GMT Not After : Jun 28 00:32:28 2025 GMT Subject: CN=6855fd9d-4cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5c:73:4c:ad:86:96:89:e7:17:63:6d:0b:3a: 74:b3:7d:91:66:e4:1c:47:6b:7d:c3:0f:5c:c8:6a: 1a:b0:d8:87:04:68:14:b9:54:cb:07:41:f3:2f:3b: 10:c3:26:2f:e1:df:da:b6:6a:ed:b3:d3:a6:de:99: 41:bc:ff:2a:b2:40:82:d0:63:34:e3:2e:9e:a9:11: 84:a8:2f:69:e2:6b:e1:3e:44:c4:20:3d:d6:4b:fb: 9a:33:25:22:50:17:f0:60:cc:b9:ee:f1:b7:a3:8d: 89:f4:12:1e:05:bf:49:02:b0:99:c8:59:98:bc:44: 1d:e4:03:ce:ba:b3:af:8c:80:d3:ac:12:04:0a:13: 3d:f7:5e:7f:80:9d:23:fe:a1:6f:e6:fc:c5:9e:51: 13:1f:23:ea:e8:e5:33:83:17:35:9f:99:c3:e0:55: e4:11:7f:f0:6c:22:ee:3c:33:19:c6:b0:02:81:50: 48:a6:ac:f1:86:60:2e:fa:11:b6:b7:2c:6b:4c:c5: 70:81:85:0d:08:2b:3b:46:5d:09:96:c5:aa:d5:ea: b5:cf:6c:e2:ff:ab:af:8a:47:c4:94:41:3e:1f:4f: d5:de:98:45:1d:cb:27:59:d0:7a:c7:0c:9d:25:de: 72:1f:9d:f2:9f:12:55:f1:cb:2c:61:ab:b0:0c:c5: ef:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:88:EB:02:09:E0:A4:B5:56:9C:E9:BA:FC:EC:D5:EE:E1:7F:98:9E X509v3 Authority Key Identifier: keyid:A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:db:90:9b:6a:85:2a:9a:0e:09:82:24:12:e4:dd:c1:8f:55: a5:40:7e:d2:55:f9:ae:fc:63:88:93:4d:06:96:51:23:f4:4d: bf:a6:87:3e:54:d6:1e:cb:1a:59:6d:20:dc:da:68:72:a8:b4: f6:42:6f:19:26:8e:19:5d:39:0c:97:c7:25:1c:f8:85:97:56: 30:56:24:aa:54:74:ec:b7:83:e6:0f:6b:17:c5:5b:39:1a:f1: 58:72:32:81:9f:fa:4c:0a:67:89:f9:77:0a:9c:dc:ef:0e:77: 7c:9e:85:89:88:bb:86:12:ee:8c:21:02:ba:1f:14:75:58:55: 5f:1d:4c:45:0b:27:48:4f:c8:8a:d1:48:0a:eb:ac:b9:c2:98: 25:4b:29:ed:fc:5b:be:74:ca:1e:1a:2a:cd:6e:f3:bc:c2:3d: 88:9d:2a:a0:f6:8d:e7:52:9c:67:78:c3:4f:6b:2f:18:43:16: 89:84:90:d4:89:f7:74:02:f7:67:dc:85:c3:da:95:8d:14:58: f2:fe:57:ab:3e:18:97:a7:24:43:4f:8f:41:35:7a:49:2f:fa: a8:11:7b:e2:61:3a:58:cf:4f:1e:ea:2c:0e:b5:4a:a5:6a:b2: ae:c4:00:4e:08:9a:9b:15:d5:e5:91:ad:8d:9c:e3:8a:b1:cb: 91:ac:a3:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQwNDAxMTAvBgNVBAUTKEEwN0NEM0QxMDIxQTU4QzI0MEExMjEzNzQwMEI5N0Ix OEI3OTk4RDAwHhcNMjUwNjIxMDAzMjI4WhcNMjUwNjI4MDAzMjI4WjAYMRYwFAYD VQQDEw02ODU1ZmQ5ZC00Y2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VxzTK2GlonnF2NtCzp0s32RZuQcR2t9ww9cyGoasNiHBGgUuVTLB0HzLzsQ wyYv4d/atmrts9Om3plBvP8qskCC0GM04y6eqRGEqC9p4mvhPkTEID3WS/uaMyUi UBfwYMy57vG3o42J9BIeBb9JArCZyFmYvEQd5APOurOvjIDTrBIEChM9915/gJ0j /qFv5vzFnlETHyPq6OUzgxc1n5nD4FXkEX/wbCLuPDMZxrACgVBIpqzxhmAu+hG2 tyxrTMVwgYUNCCs7Rl0JlsWq1eq1z2zi/6uvikfElEE+H0/V3phFHcsnWdB6xwyd Jd5yH53ynxJV8cssYauwDMXvsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyI6wIJ 4KS1Vpzpuvzs1e7hf5ieMB8GA1UdIwQYMBaAFKB809ECGljCQKEhN0ALl7GLeZjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDA0MC85QjA0QTBGMkEz NDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdNSkFvU0UzUUF1WHNZdDVt TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29IelQwUUlhV01KQW9TRTNRQXVYc1l0NW1OQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDA0MC85QjA0QTBGMkEzNDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdN SkFvU0UzUUF1WHNZdDVtTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa25CbaoUqmg4JgiQS5N3Bj1WlQH7SVfmu/GOIk00GllEj9E2/poc+ VNYeyxpZbSDc2mhyqLT2Qm8ZJo4ZXTkMl8clHPiFl1YwViSqVHTst4PmD2sXxVs5 GvFYcjKBn/pMCmeJ+XcKnNzvDnd8noWJiLuGEu6MIQK6HxR1WFVfHUxFCydIT8iK 0UgK66y5wpglSynt/Fu+dMoeGirNbvO8wj2InSqg9o3nUpxneMNPay8YQxaJhJDU ifd0Avdn3IXD2pWNFFjy/lerPhiXpyRDT49BNXpJL/qoEXviYTpYz08e6iwOtUql arKuxABOCJqbFdXlka2NnOOKscuRrKPo -----END CERTIFICATE-----Generated at Sat Jun 21 21:19:29 2025 by rpki-client