$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft File: wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft (raw, json) Hash identifier: 5Pg0kf7wWxbeXkj58YEHAZZxp7RY00PEXpoNaVce3M0= Subject key identifier: A9:E7:3E:C0:DA:6D:08:8B:F9:FD:0E:4A:EA:C5:F8:69:B6:CE:BD:66 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0F5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft Manifest number: 0EDA Signing time: Fri 18 Jul 2025 17:50:57 +0000 Manifest this update: Fri 18 Jul 2025 17:50:57 +0000 Manifest next update: Fri 25 Jul 2025 17:50:57 +0000 Files and hashes: 1: wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl (hash: pD0dOvdYlSF9eiU5nJDhkpKVYl/B93Onoyfe32gYVPA=) 2: 20AB43C81F9411F083A54B70C4F9AE02.roa (hash: VEZ7s8au88OcCIFniLaU9jr2DOkZYlGYw2X2o/OxHCE=) 3: 8BF4322E978211EF8ED65F7CC4F9AE02.roa (hash: L954B9Qgt6fx+kXJ7gmYs8Hjp/cbh5YATNVEXTvQSks=) 4: 21C5EC42C27411ED9C3E8009C4F9AE02.roa (hash: 10DFF7xCpxy47ECiljTuKfUMmTINmM368KgsuVpPV2A=) 5: 369A67D4B01B11EEBD075854C4F9AE02.roa (hash: MCZ4hWeiAmt9KhYesLRixKufRw6yQV6zNqKued4Xvos=) 6: 218CF3401F9411F083A54B70C4F9AE02.roa (hash: cemPgjS0vXzFUuNuxP49I9qr6l6Q8nACi0kNMGdPhuw=) 7: 3D6D075A0ED011F0850DFC18C4F9AE02.roa (hash: lL5sRXUJOtODihgeQbFyeji5XkkIg3eyOcjmlZC9+JA=) 8: E23B9C48F97D11EDB12DE418C4F9AE02.roa (hash: VDrbCYNYtFqcFlKyvIkkZzRygX1FJPBOcD8ru/NY4yA=) 9: 1A582DBABDCB11ED998A723DC4F9AE02.roa (hash: bHO35v2d+whGfLiFlwfh8bZ4eWQakv4BbylUUSLDomk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:50:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3932 (0xf5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF, serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Jul 18 17:50:57 2025 GMT Not After : Jul 25 17:50:57 2025 GMT Subject: CN=687a8981-3024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:da:43:8c:97:a6:ee:f6:e6:78:2d:c2:6f:25: 4a:8a:a9:b9:34:c1:ca:0a:ff:94:27:76:5f:8d:e1: 49:07:d6:7e:33:0a:25:0c:d6:c0:aa:aa:3f:9c:28: af:f6:23:2a:a1:d8:b7:7f:75:f2:ea:a8:08:91:58: b9:bc:5e:27:8c:d9:5c:61:15:da:63:8a:7f:a3:cb: a6:6a:00:61:bb:38:1c:ad:5f:b8:a3:53:b8:f7:12: 6c:17:9c:30:b9:fb:27:10:b0:8c:30:07:93:5e:33: 2b:1b:77:13:06:46:51:c4:a5:98:ac:fa:5b:26:43: 91:66:dc:49:71:df:d6:9b:5a:8a:99:10:9b:7d:2c: e7:f2:61:8a:d4:f3:78:2c:37:1b:e3:ea:94:4c:d5: 7b:9f:c1:cb:69:bb:1b:3f:bd:72:85:56:e3:66:21: 63:92:3c:62:8c:a0:69:6b:7e:0b:07:9e:31:e6:17: d2:08:eb:3e:ee:74:0a:c7:06:df:a5:b0:41:06:b4: c9:d7:07:0d:eb:07:c5:fd:db:dc:2c:51:f5:2d:44: f1:6d:cd:e7:34:57:90:ae:90:8d:63:12:0a:01:e5: 03:98:0f:ae:a1:da:fb:54:5d:da:ad:7c:e8:f6:e6: f2:5f:0b:b3:ad:5e:15:8f:7b:96:c9:f1:6e:e0:5d: 0a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E7:3E:C0:DA:6D:08:8B:F9:FD:0E:4A:EA:C5:F8:69:B6:CE:BD:66 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:56:2e:64:cb:7a:0b:2c:92:f5:61:58:ec:57:97:3a:4b:c2: f9:c8:da:ed:af:74:de:ae:8e:e3:8a:6c:23:fe:a2:a5:41:57: db:9d:38:00:f0:ab:33:f7:1d:a3:00:35:de:f7:58:bc:ab:09: 3a:51:9a:89:1a:30:69:93:5c:9a:c9:96:85:06:78:75:70:43: bf:20:6f:b3:03:87:7e:3f:a4:7c:94:de:82:90:76:1b:78:ff: de:59:b8:3a:72:6e:8a:80:d8:0b:b1:27:77:e8:86:ef:a8:76: 51:a0:8e:71:4b:b5:10:42:db:8d:28:74:37:7a:96:15:8d:32: 08:9a:b6:98:44:04:0d:f6:25:ba:c8:de:b1:31:00:f7:01:aa: 97:28:9c:a3:d0:7d:a6:37:8e:84:35:9a:5a:ac:99:60:64:56: cb:dd:90:64:f3:65:03:32:1a:33:78:91:1c:a5:2f:17:eb:5b: 4b:ce:8b:3a:a8:29:41:68:11:6d:bd:b9:af:3d:d0:d1:b0:b0: 25:f3:eb:3f:75:5d:75:a3:48:5b:de:f7:8f:ea:f6:29:99:a8: f9:b5:89:fe:b2:40:d8:b0:40:2e:b7:43:9f:f4:3f:9e:a7:c0: e9:86:d9:95:34:72:f6:85:80:d9:72:f1:c7:2c:9a:3f:cb:ea: 51:30:01:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjUwNzE4MTc1MDU3WhcNMjUwNzI1MTc1MDU3WjAYMRYwFAYD VQQDEw02ODdhODk4MS0zMDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9pDjJem7vbmeC3CbyVKiqm5NMHKCv+UJ3ZfjeFJB9Z+MwolDNbAqqo/nCiv 9iMqodi3f3Xy6qgIkVi5vF4njNlcYRXaY4p/o8umagBhuzgcrV+4o1O49xJsF5ww ufsnELCMMAeTXjMrG3cTBkZRxKWYrPpbJkORZtxJcd/Wm1qKmRCbfSzn8mGK1PN4 LDcb4+qUTNV7n8HLabsbP71yhVbjZiFjkjxijKBpa34LB54x5hfSCOs+7nQKxwbf pbBBBrTJ1wcN6wfF/dvcLFH1LUTxbc3nNFeQrpCNYxIKAeUDmA+uodr7VF3arXzo 9ubyXwuzrV4Vj3uWyfFu4F0KbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnnPsDa bQiL+f0OSurF+Gm2zr1mMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkJGRi9FNDJCRUFDMjkzRjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFB V2kxSVc2UVMydEsxSjNiM0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMVi5ky3oLLJL1YVjsV5c6S8L5yNrtr3Tero7jimwj/qKlQVfbnTgA 8Ksz9x2jADXe91i8qwk6UZqJGjBpk1yayZaFBnh1cEO/IG+zA4d+P6R8lN6CkHYb eP/eWbg6cm6KgNgLsSd36IbvqHZRoI5xS7UQQtuNKHQ3epYVjTIImraYRAQN9iW6 yN6xMQD3AaqXKJyj0H2mN46ENZparJlgZFbL3ZBk82UDMhozeJEcpS8X61tLzos6 qClBaBFtvbmvPdDRsLAl8+s/dV11o0hb3veP6vYpmaj5tYn+skDYsEAut0Of9D+e p8DphtmVNHL2hYDZcvHHLJo/y+pRMAHE -----END CERTIFICATE-----Generated at Sun Jul 20 06:47:44 2025 by rpki-client