$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: QwS6cqV0vtxg426UGJi7YafV6rSnUi8yb6wS73Bk6y4= Subject key identifier: 9E:0C:23:EA:CA:62:A9:8A:70:A6:05:21:18:50:5A:CB:A4:40:65:5C Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 019A Signing time: Mon 11 Aug 2025 03:53:16 +0000 Manifest this update: Mon 11 Aug 2025 03:53:15 +0000 Manifest next update: Mon 18 Aug 2025 03:53:15 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: /gUX80lkLcEQmsoAuQ/r8OKfZUu18pClxzq7U3zh++4=) 2: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: F8BQEsLxz2XO34zN3GNH3AuMPZU87rOGItPVHiqWabQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390, serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: Aug 11 03:53:15 2025 GMT Not After : Aug 18 03:53:15 2025 GMT Subject: CN=6899692b-ad58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f2:30:76:f4:27:f0:a2:19:35:1b:7f:e0:2e: f0:09:11:ca:2a:07:4b:06:8c:28:07:a4:16:75:11: cd:49:65:9f:7e:db:34:d5:4a:99:94:6a:10:2a:74: dc:82:61:99:ab:96:e6:a2:7c:79:74:d4:e7:6a:73: 15:59:61:c3:da:b2:47:8f:60:db:fd:df:a4:70:a8: 67:e3:a6:18:06:82:be:05:35:b4:7c:b0:c8:d2:88: de:b9:dc:25:32:c6:24:fc:16:f8:96:fc:58:9b:10: ad:5f:83:84:cd:23:e7:8e:39:64:64:ef:3f:3d:56: 05:dd:76:fa:f0:be:1a:30:03:e4:75:8e:b9:fe:64: e0:05:ee:b7:33:dc:71:6f:ad:7b:81:c7:a9:16:29: 3d:7e:03:2e:a6:cf:ab:36:33:2a:32:bb:0e:cb:bb: 28:a8:1e:76:18:47:dc:d4:eb:6f:11:49:c4:3f:c9: 14:71:31:23:5f:36:4b:7f:17:db:52:6b:c8:68:f4: 72:57:95:82:7c:bc:24:a3:92:7b:fc:08:08:be:5c: 13:21:85:20:86:0b:82:2a:5a:98:9f:05:ba:37:95: 1b:42:f7:d2:57:80:c8:d4:d8:a8:30:5e:d7:99:03: 4e:74:df:76:10:11:97:83:24:bf:68:fb:e9:e7:b1: 13:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0C:23:EA:CA:62:A9:8A:70:A6:05:21:18:50:5A:CB:A4:40:65:5C X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:8c:81:18:d6:8e:7a:52:3c:71:cd:49:ea:d9:2a:91:d3:9f: 80:76:da:89:46:54:28:bd:41:6f:25:a7:20:48:40:8e:d9:78: 75:5a:d5:3e:44:9a:cf:7c:ba:32:16:7a:11:98:07:df:4a:db: 77:e6:78:19:61:a3:cf:92:be:c0:dc:c5:d4:02:e4:1b:5c:ce: c0:84:b6:58:db:7b:9e:3b:c4:d0:18:03:88:6b:f8:49:b8:19: 5c:d0:a9:6f:c7:16:71:95:61:68:21:2c:e9:5a:de:b4:50:e8: 22:20:07:ac:29:8a:e1:61:5c:bf:ed:3e:f1:b7:2d:32:54:e3: bb:23:d6:d2:88:fb:d1:bd:5d:e3:50:b7:1f:cf:bc:7d:88:0b: 3a:b2:d0:dc:de:c0:ed:2d:04:83:ef:e8:b3:5f:10:15:92:50: 3d:6f:e9:42:5e:39:0b:41:53:be:90:32:b4:91:a5:ac:fd:98: 4b:94:c7:f2:91:84:e8:4f:53:6f:c4:f5:b3:71:74:b1:44:fb: 33:37:eb:91:0d:a0:79:2a:c9:2e:e8:67:a7:90:e8:98:99:b6: 80:59:a3:97:a4:e9:f0:4f:cb:f1:56:27:5d:dd:8b:cb:a1:6f: 7d:5d:2f:d8:fb:9e:a5:f7:f6:87:9c:4b:76:01:80:52:04:06: fd:61:19:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjUwODExMDM1MzE1WhcNMjUwODE4MDM1MzE1WjAYMRYwFAYD VQQDEw02ODk5NjkyYi1hZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfIwdvQn8KIZNRt/4C7wCRHKKgdLBowoB6QWdRHNSWWffts01UqZlGoQKnTc gmGZq5bmonx5dNTnanMVWWHD2rJHj2Db/d+kcKhn46YYBoK+BTW0fLDI0ojeudwl MsYk/Bb4lvxYmxCtX4OEzSPnjjlkZO8/PVYF3Xb68L4aMAPkdY65/mTgBe63M9xx b617gcepFik9fgMups+rNjMqMrsOy7soqB52GEfc1OtvEUnEP8kUcTEjXzZLfxfb UmvIaPRyV5WCfLwko5J7/AgIvlwTIYUghguCKlqYnwW6N5UbQvfSV4DI1NioMF7X mQNOdN92EBGXgyS/aPvp57ET/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4MI+rK YqmKcKYFIRhQWsukQGVcMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmjIEY1o56UjxxzUnq2SqR05+AdtqJRlQovUFvJacgSECO2Xh1WtU+ RJrPfLoyFnoRmAffStt35ngZYaPPkr7A3MXUAuQbXM7AhLZY23ueO8TQGAOIa/hJ uBlc0KlvxxZxlWFoISzpWt60UOgiIAesKYrhYVy/7T7xty0yVOO7I9bSiPvRvV3j ULcfz7x9iAs6stDc3sDtLQSD7+izXxAVklA9b+lCXjkLQVO+kDK0kaWs/ZhLlMfy kYToT1NvxPWzcXSxRPszN+uRDaB5Ksku6GenkOiYmbaAWaOXpOnwT8vxVidd3YvL oW99XS/Y+56l9/aHnEt2AYBSBAb9YRlN -----END CERTIFICATE-----Generated at Tue Aug 12 18:57:39 2025 by rpki-client