$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft File: rOKNq-U2SWN_puTjId4bY0Y7g88.mft (raw, json) Hash identifier: Pv0RsK0cisAJXvOO5YZ+XcRTkYwWeAnnR7OGEm+jNxY= Subject key identifier: C5:40:38:B7:3A:7A:B1:83:B3:8F:D2:B0:90:63:8A:C8:B6:91:E7:B4 Authority key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF Certificate issuer: /CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft Manifest number: 0109 Signing time: Sat 19 Jul 2025 05:16:00 +0000 Manifest this update: Sat 19 Jul 2025 05:15:59 +0000 Manifest next update: Sat 26 Jul 2025 05:15:59 +0000 Files and hashes: 1: rOKNq-U2SWN_puTjId4bY0Y7g88.crl (hash: 5b7UpuAnF7Lo9z1QjgahhvuFNnnBg+hqt0IPQdBuj2c=) 2: E7F6D15AD17411EE87F7325DC4F9AE02.roa (hash: roB5hg8LbgyHBq3NzG2BxN4ORRxykj532WnJpDlGnj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Validity Not Before: Jul 19 05:15:59 2025 GMT Not After : Jul 26 05:15:59 2025 GMT Subject: CN=687b2a10-cd2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a9:8f:35:d0:29:d6:e9:2f:d0:a9:f9:a4:22: 3f:36:a6:2b:5d:14:28:f8:52:eb:29:bd:04:55:67: 13:6e:38:78:b0:d7:32:d6:c7:6b:74:ca:ae:42:c3: 87:9c:a2:eb:4e:55:56:cb:7b:46:f2:47:44:13:93: 52:c1:33:6a:8b:59:45:14:90:7f:a1:00:ea:eb:de: d7:5c:83:98:63:87:73:f9:ea:09:2b:7c:d6:4b:9a: c1:32:41:9d:2e:fa:dc:55:34:55:a3:0d:b0:44:12: 02:af:26:f3:5b:08:bd:86:4a:0d:52:6a:71:37:44: b1:bc:6e:d7:7a:d5:41:99:74:dd:66:6d:75:0f:43: ff:29:d1:ef:f4:df:47:30:44:29:8f:16:95:76:76: fb:ba:21:e8:fd:de:91:1b:55:c7:dd:5c:6b:49:db: 9a:de:d8:47:76:d6:39:58:83:60:82:7e:48:a4:44: 14:d9:25:37:37:2d:3f:6a:f2:4d:8d:dd:24:1f:33: 91:31:ee:a1:12:d1:4c:65:7a:f0:1c:ee:c5:81:1d: 19:92:a1:8c:a4:e0:fe:c0:8d:de:0d:73:86:58:13: d2:19:06:89:3d:61:c2:24:83:d9:ad:06:1e:f8:90: a4:de:23:1b:1c:ba:32:38:e5:de:94:03:a2:d9:01: 57:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:40:38:B7:3A:7A:B1:83:B3:8F:D2:B0:90:63:8A:C8:B6:91:E7:B4 X509v3 Authority Key Identifier: keyid:AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ad:33:2e:83:0c:61:bb:a2:c7:8e:b6:c0:d4:06:6f:79:61: f5:d2:bc:3f:fb:de:ae:72:0c:95:d8:a2:8a:0d:fb:36:9d:fb: 75:c9:12:54:61:02:74:49:e9:72:7d:24:3a:c1:4f:82:36:57: f8:bb:49:5d:6f:08:d1:c1:a5:56:67:6a:48:08:5e:32:86:d4: 3a:d4:db:8b:bd:b2:42:fd:c9:c1:64:ee:29:e8:d5:de:02:6c: 5d:49:30:12:b3:7b:54:59:75:65:98:18:02:25:2a:11:65:ba: 15:4c:23:85:70:63:95:e3:8c:a2:4b:ac:6b:ea:06:24:cb:c7: 7a:ba:96:f8:9c:5e:1c:cf:66:e0:e1:c9:79:74:3a:68:d7:4a: 31:74:31:8e:c6:c7:d2:cd:27:8c:1f:62:79:12:94:49:84:74: 27:57:e3:bb:f5:58:cb:04:d7:42:c9:35:a0:a7:fb:92:ca:a2: 84:a8:c6:40:51:8a:7e:7f:18:f5:2d:7b:c0:48:49:e2:bd:82: 13:80:02:79:b3:cb:cd:b8:a0:3b:fb:2d:33:dc:70:cd:1f:4f: 44:17:c2:18:68:86:76:e4:77:92:c1:5c:4e:96:fe:70:35:3d: 34:9f:92:ab:17:7d:2a:27:d8:ab:3d:8e:a7:70:c2:6c:5f:30: 27:c3:1f:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKEFDRTI4REFCRTUzNjQ5NjM3RkE2RTRFMzIxREUxQjYz NDYzQjgzQ0YwHhcNMjUwNzE5MDUxNTU5WhcNMjUwNzI2MDUxNTU5WjAYMRYwFAYD VQQDEw02ODdiMmExMC1jZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqmPNdAp1ukv0Kn5pCI/NqYrXRQo+FLrKb0EVWcTbjh4sNcy1sdrdMquQsOH nKLrTlVWy3tG8kdEE5NSwTNqi1lFFJB/oQDq697XXIOYY4dz+eoJK3zWS5rBMkGd LvrcVTRVow2wRBICrybzWwi9hkoNUmpxN0SxvG7XetVBmXTdZm11D0P/KdHv9N9H MEQpjxaVdnb7uiHo/d6RG1XH3VxrSdua3thHdtY5WINggn5IpEQU2SU3Ny0/avJN jd0kHzORMe6hEtFMZXrwHO7FgR0ZkqGMpOD+wI3eDXOGWBPSGQaJPWHCJIPZrQYe +JCk3iMbHLoyOOXelAOi2QFXbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVAOLc6 erGDs4/SsJBjisi2kee0MB8GA1UdIwQYMBaAFKzijavlNkljf6bk4yHeG2NGO4PP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS9BMUYyMzQzQ0Qx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNXTl9wdVRqSWQ0YlkwWTdn ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPS05xLVUyU1dOX3B1VGpJZDRiWTBZN2c4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS9BMUYyMzQzQ0QxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNX Tl9wdVRqSWQ0YlkwWTdnODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAerTMugwxhu6LHjrbA1AZveWH10rw/+96ucgyV2KKKDfs2nft1yRJU YQJ0SelyfSQ6wU+CNlf4u0ldbwjRwaVWZ2pICF4yhtQ61NuLvbJC/cnBZO4p6NXe AmxdSTASs3tUWXVlmBgCJSoRZboVTCOFcGOV44yiS6xr6gYky8d6upb4nF4cz2bg 4cl5dDpo10oxdDGOxsfSzSeMH2J5EpRJhHQnV+O79VjLBNdCyTWgp/uSyqKEqMZA UYp+fxj1LXvASEnivYITgAJ5s8vNuKA7+y0z3HDNH09EF8IYaIZ25HeSwVxOlv5w NT00n5KrF30qJ9irPY6ncMJsXzAnwx88 -----END CERTIFICATE-----Generated at Sun Jul 20 11:32:57 2025 by rpki-client