$ rpki-client -vvf rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft File: oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft (raw, json) Hash identifier: 3ViJUqqtpNnHB6tjET2jt4+r0J+VGUmRcVE2kKAFQfo= Subject key identifier: 3A:07:C6:A3:C1:5F:62:AD:96:AF:1E:FF:2B:8B:4C:E0:9E:76:C6:CC Authority key identifier: A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 Certificate issuer: /CN=A9194040/serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Certificate serial: 03B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft Manifest number: 03AD Signing time: Mon 11 Aug 2025 00:56:15 +0000 Manifest this update: Mon 11 Aug 2025 00:56:15 +0000 Manifest next update: Mon 18 Aug 2025 00:56:15 +0000 Files and hashes: 1: oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl (hash: R1wCiGuYMbcOR5pv+Mmul9tvglazDyYvcD/KHKccO3A=) 2: D1E294C2A34411EC803D2585C4F9AE02.roa (hash: lJa/v3Ew27zEz3fGPQRNJii4SZZ7fJhhCVEdIkMKWNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 946 (0x3b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194040, serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Validity Not Before: Aug 11 00:56:15 2025 GMT Not After : Aug 18 00:56:15 2025 GMT Subject: CN=68993faf-9e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:15:1b:e3:05:3e:53:2d:12:75:d1:ed:cf:c0: 4f:94:d1:ae:ea:b7:77:e9:ed:cb:fa:27:69:43:3c: 2c:3a:3e:2e:dd:26:31:11:ad:4e:ab:c2:4c:30:19: 9c:5e:61:7a:0a:50:7c:88:c2:3c:7c:25:2f:ee:54: 0a:bb:e2:20:45:cb:18:e3:ca:d6:f9:bc:4b:6e:5e: e7:39:4a:68:1f:da:c8:4c:a9:3d:d2:b1:0e:a8:fe: 11:2f:32:fe:d9:fb:99:02:19:da:d5:37:6e:6f:65: e5:6e:2c:db:a3:9d:7c:a9:5a:df:2b:7b:ea:06:1c: 9a:7f:eb:d6:f0:a6:3d:38:87:c1:1a:08:e2:c5:35: 40:f3:f9:17:00:d9:32:3f:b9:03:62:34:33:d5:49: 3f:cf:c3:9e:e3:17:d7:77:53:30:6c:87:b6:13:08: fa:02:fb:fa:df:45:13:25:c1:b9:8b:a3:89:69:2d: 83:9b:70:88:6f:50:48:d9:48:8c:07:a6:78:cf:cf: 2a:9d:10:30:41:0d:18:54:38:b5:c4:c1:55:36:51: 7f:0b:2e:9a:d0:94:8d:4d:78:b3:ba:2d:ed:bd:1d: 90:c2:30:5d:94:8d:01:74:af:89:c0:05:90:e7:03: f2:92:12:bf:bf:60:74:dd:ab:ff:52:26:cb:dd:6b: b3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:07:C6:A3:C1:5F:62:AD:96:AF:1E:FF:2B:8B:4C:E0:9E:76:C6:CC X509v3 Authority Key Identifier: keyid:A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:3d:32:af:4c:5e:27:fc:43:ab:34:1d:63:5a:41:57:80:15: c8:54:c2:b1:23:66:b2:53:a1:ec:ce:ac:6d:6b:b7:99:43:40: f8:bb:0f:35:ee:18:ab:d8:9c:a5:44:e3:e8:ee:8b:e0:ce:4e: 29:b7:a5:90:e4:16:d0:11:ca:53:da:8d:9f:6f:3a:d2:f8:af: 82:34:c1:b9:68:95:ad:b3:36:59:8a:9a:98:55:c2:67:9c:c0: 50:10:ef:95:9e:b5:2c:d3:4c:72:0a:20:00:5f:5b:3a:ff:a7: 8a:49:45:bf:d5:f0:ff:36:8e:bd:65:90:35:07:c6:ef:3b:53: ca:2c:fe:99:e3:8c:cf:54:6f:64:20:98:d6:29:23:4a:35:c0: d9:97:45:75:35:79:9b:59:75:3a:d9:16:35:06:53:c4:0d:ce: 81:b8:c0:ea:3d:e3:55:a4:25:df:1a:c1:51:e7:ad:3c:9f:c6: 13:88:26:a4:2a:a4:0d:af:ab:8b:56:21:4c:30:94:e8:e8:84: b6:21:37:f2:a3:a7:58:39:7d:c2:74:03:3b:84:6b:31:5d:76: af:a5:81:fe:9c:db:5c:d4:31:23:3a:a9:24:58:e5:e9:7c:84: 86:63:0a:a7:ec:b5:09:29:84:ac:f1:50:a3:fd:22:b9:3e:fd: 37:f3:fc:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQwNDAxMTAvBgNVBAUTKEEwN0NEM0QxMDIxQTU4QzI0MEExMjEzNzQwMEI5N0Ix OEI3OTk4RDAwHhcNMjUwODExMDA1NjE1WhcNMjUwODE4MDA1NjE1WjAYMRYwFAYD VQQDEw02ODk5M2ZhZi05ZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4hUb4wU+Uy0SddHtz8BPlNGu6rd36e3L+idpQzwsOj4u3SYxEa1Oq8JMMBmc XmF6ClB8iMI8fCUv7lQKu+IgRcsY48rW+bxLbl7nOUpoH9rITKk90rEOqP4RLzL+ 2fuZAhna1Tdub2Xlbizbo518qVrfK3vqBhyaf+vW8KY9OIfBGgjixTVA8/kXANky P7kDYjQz1Uk/z8Oe4xfXd1MwbIe2Ewj6Avv630UTJcG5i6OJaS2Dm3CIb1BI2UiM B6Z4z88qnRAwQQ0YVDi1xMFVNlF/Cy6a0JSNTXizui3tvR2QwjBdlI0BdK+JwAWQ 5wPykhK/v2B03av/UibL3WuzLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoHxqPB X2Ktlq8e/yuLTOCedsbMMB8GA1UdIwQYMBaAFKB809ECGljCQKEhN0ALl7GLeZjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDA0MC85QjA0QTBGMkEz NDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdNSkFvU0UzUUF1WHNZdDVt TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29IelQwUUlhV01KQW9TRTNRQXVYc1l0NW1OQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDA0MC85QjA0QTBGMkEzNDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdN SkFvU0UzUUF1WHNZdDVtTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAPTKvTF4n/EOrNB1jWkFXgBXIVMKxI2ayU6Hszqxta7eZQ0D4uw81 7hir2JylROPo7ovgzk4pt6WQ5BbQEcpT2o2fbzrS+K+CNMG5aJWtszZZipqYVcJn nMBQEO+VnrUs00xyCiAAX1s6/6eKSUW/1fD/No69ZZA1B8bvO1PKLP6Z44zPVG9k IJjWKSNKNcDZl0V1NXmbWXU62RY1BlPEDc6BuMDqPeNVpCXfGsFR5608n8YTiCak KqQNr6uLViFMMJTo6IS2ITfyo6dYOX3CdAM7hGsxXXavpYH+nNtc1DEjOqkkWOXp fISGYwqn7LUJKYSs8VCj/SK5Pv038/yZ -----END CERTIFICATE-----Generated at Mon Aug 11 06:05:03 2025 by rpki-client