$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: 8nl3VnXggBnkGnjC6fnkz1zGT7yt+ZQtrNuOdMzmcvM= Subject key identifier: 08:92:D2:0D:F9:08:84:BB:62:51:61:37:31:A3:3F:15:E5:54:0F:61 Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 175C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 1747 Signing time: Sun 20 Jul 2025 16:38:29 +0000 Manifest this update: Sun 20 Jul 2025 16:38:29 +0000 Manifest next update: Sun 27 Jul 2025 16:38:29 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: MKmn8vQuQue9VAM9NvnJt7W2SQx8L5DBe1Z1Hec6Id8=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: XhkwHyloR+2rDxWbay2n/StJn5+0QtLglAfKwVMv/5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5980 (0x175c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Jul 20 16:38:29 2025 GMT Not After : Jul 27 16:38:29 2025 GMT Subject: CN=687d1b85-7a4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b5:ef:49:3d:97:30:1e:16:6b:b8:3a:83:5e: 5b:0a:69:c5:b1:93:7d:a8:a3:90:ca:6d:c6:15:eb: d4:72:a4:75:52:c7:d1:09:b5:17:8c:87:33:25:6c: 9b:a1:e1:6a:c6:35:13:89:5f:f2:cf:29:7a:88:ea: d5:4d:92:eb:9a:37:ba:0c:c1:1e:4c:77:d3:9a:0a: 5b:e9:a3:ce:ce:f6:4a:ed:a8:15:f7:73:79:4b:93: 8b:48:e5:28:2b:74:0d:21:95:09:14:c1:14:88:2f: f2:3e:8d:09:ae:51:18:6c:78:74:82:1f:99:33:db: 44:30:b6:9a:3e:75:d9:d9:dc:a5:dd:fe:a5:4d:68: 39:7c:cc:9a:32:bc:2e:3c:e6:31:93:38:91:33:8c: 2f:1c:ad:a7:d0:7e:93:70:0f:05:1e:7f:d3:bb:0c: 5b:e1:9d:a7:d7:2c:97:d2:70:dc:2c:b5:b7:c3:ee: 5f:f4:40:40:4a:32:4d:4a:12:32:66:3f:2f:21:ab: f7:e1:7f:54:13:1a:4b:bf:cc:1b:d4:db:e1:8e:df: e2:71:06:d8:8e:ef:6b:7b:53:d7:5d:02:36:78:b4: 73:f2:50:ea:a9:f4:39:8b:a2:f1:90:cb:67:a0:f1: dd:b5:93:94:3e:b8:3c:49:1f:ec:6d:21:52:20:21: 76:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:92:D2:0D:F9:08:84:BB:62:51:61:37:31:A3:3F:15:E5:54:0F:61 X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:13:51:ca:bb:f7:35:9d:fa:01:d6:06:9a:87:16:94:9d:a7: a2:a4:75:b1:de:5e:a0:e8:ff:4b:98:e0:24:73:51:df:9c:e6: ad:f2:87:1f:08:aa:e2:37:ae:9b:d4:94:13:83:8b:7d:c0:b4: 49:93:aa:2c:5c:31:80:f9:b6:ae:21:7b:e3:f3:bf:af:87:3c: 2d:48:5d:45:9a:d7:ce:25:04:13:a7:e5:c7:65:fe:2d:4f:4c: 11:d3:20:90:f9:d4:51:15:4e:05:98:16:93:15:b0:c7:16:d7: 8b:5d:db:a9:2c:c1:69:4b:4e:d6:30:e2:d8:12:f5:64:04:17: 95:0a:a2:e1:24:fe:ac:2d:15:0c:66:f2:b9:ea:4c:89:db:24: 5c:09:28:7f:99:33:21:b9:2a:45:c2:4d:7c:5b:61:9c:85:d1: f2:99:bd:f9:c9:ad:24:d2:f6:50:f0:95:e9:3e:55:dd:5d:64: 37:70:35:d0:8f:6b:85:3f:85:c9:b5:8f:f8:f5:ee:a5:70:79: 52:5d:74:c1:1a:a3:78:90:e8:e1:e9:54:d9:2a:1a:20:a5:8e: fd:36:8e:8d:48:66:e6:41:b4:55:94:63:cb:df:da:18:25:ea: ef:e0:8b:fa:be:56:1b:ca:9e:02:6a:87:bb:01:df:d2:29:20: 2f:25:7f:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUwNzIwMTYzODI5WhcNMjUwNzI3MTYzODI5WjAYMRYwFAYD VQQDEw02ODdkMWI4NS03YTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbXvST2XMB4Wa7g6g15bCmnFsZN9qKOQym3GFevUcqR1UsfRCbUXjIczJWyb oeFqxjUTiV/yzyl6iOrVTZLrmje6DMEeTHfTmgpb6aPOzvZK7agV93N5S5OLSOUo K3QNIZUJFMEUiC/yPo0JrlEYbHh0gh+ZM9tEMLaaPnXZ2dyl3f6lTWg5fMyaMrwu POYxkziRM4wvHK2n0H6TcA8FHn/Tuwxb4Z2n1yyX0nDcLLW3w+5f9EBASjJNShIy Zj8vIav34X9UExpLv8wb1Nvhjt/icQbYju9re1PXXQI2eLRz8lDqqfQ5i6LxkMtn oPHdtZOUPrg8SR/sbSFSICF2cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiS0g35 CIS7YlFhNzGjPxXlVA9hMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1E1HKu/c1nfoB1gaahxaUnaeipHWx3l6g6P9LmOAkc1HfnOat8ocf CKriN66b1JQTg4t9wLRJk6osXDGA+bauIXvj87+vhzwtSF1FmtfOJQQTp+XHZf4t T0wR0yCQ+dRRFU4FmBaTFbDHFteLXdupLMFpS07WMOLYEvVkBBeVCqLhJP6sLRUM ZvK56kyJ2yRcCSh/mTMhuSpFwk18W2GchdHymb35ya0k0vZQ8JXpPlXdXWQ3cDXQ j2uFP4XJtY/49e6lcHlSXXTBGqN4kOjh6VTZKhogpY79No6NSGbmQbRVlGPL39oY Jerv4Iv6vlYbyp4Caoe7Ad/SKSAvJX+q -----END CERTIFICATE-----Generated at Mon Jul 21 06:07:16 2025 by rpki-client