$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft File: wOMbX0XP5SusXO243MahoyL0cF0.mft (raw, json) Hash identifier: +uXssyPP8gLg6c28P75NySox7l4lYDT6KINHUpQfOtg= Subject key identifier: E8:5D:CE:5A:A7:77:78:8A:E5:8D:8D:EC:E1:3D:7D:7C:2F:CE:A5:9F Authority key identifier: C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D Certificate issuer: /CN=A9196F7C/serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft Manifest number: FE Signing time: Mon 21 Jul 2025 05:28:57 +0000 Manifest this update: Mon 21 Jul 2025 05:28:57 +0000 Manifest next update: Mon 28 Jul 2025 05:28:57 +0000 Files and hashes: 1: wOMbX0XP5SusXO243MahoyL0cF0.crl (hash: Ps1rzgijAN9FOCPTT6ula4VSMBVyF5bMPz5UjILSJ8c=) 2: E37CCF70718911EFA0C30257C4F9AE02.roa (hash: /gAZLPIK5N+oUjrTM1zm3bFOQvpgh0r/tqZUpI/jzmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F7C, serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D Validity Not Before: Jul 21 05:28:57 2025 GMT Not After : Jul 28 05:28:57 2025 GMT Subject: CN=687dd019-8079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f7:7a:c8:45:d3:79:48:9a:d1:98:dd:4a:16: 9c:3b:da:c5:20:06:59:38:cc:56:6d:5c:c2:06:00: 02:24:d3:a3:5b:2c:af:d5:2a:42:c7:2f:c5:66:6c: 86:32:da:1c:ce:d9:5e:2a:8f:43:3d:3d:2e:9d:39: d8:69:a1:7a:43:3a:1a:c2:2b:5c:bb:73:b9:f2:f2: b2:ce:19:da:7f:e4:29:df:b9:ae:b1:9b:12:22:c1: e0:10:09:8d:63:61:77:39:c7:d3:53:4c:77:e7:47: f2:e5:c5:e1:88:9d:20:92:54:38:a5:19:bf:5f:e7: b1:1e:6f:26:40:ba:77:61:4e:3e:36:01:29:98:ab: 45:e0:87:a6:ae:9d:d9:80:06:a7:53:8f:3f:9e:7f: 76:1b:86:dc:eb:56:ce:d3:a9:90:d9:31:d7:ba:74: 07:98:18:62:b6:58:c5:4f:2f:d0:5b:8b:2b:07:bf: 34:af:e5:cf:95:6d:4b:82:73:67:59:b2:87:93:2d: a0:29:a8:ad:08:c4:18:25:62:29:9e:7c:9e:79:0a: 52:9f:cc:b3:cb:b3:b5:c6:09:15:aa:3d:e0:60:7e: f9:d7:69:70:36:dc:62:93:21:15:f4:e2:5d:31:bc: ad:13:f8:c0:6d:61:ab:84:79:81:e4:71:9b:82:92: 19:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5D:CE:5A:A7:77:78:8A:E5:8D:8D:EC:E1:3D:7D:7C:2F:CE:A5:9F X509v3 Authority Key Identifier: keyid:C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:62:1f:fc:5b:a5:32:10:63:00:8c:93:2a:62:ff:20:cc:f8: 66:49:4a:be:1e:0f:39:aa:55:37:01:8e:eb:c1:f9:73:1f:06: 19:4a:96:c2:a9:97:e9:94:ef:df:4b:25:ce:a0:06:fb:6a:0a: 5d:75:84:e4:ea:22:0d:a4:a7:dc:66:9d:a6:90:1b:3b:75:42: eb:a9:86:30:98:35:59:33:9a:0d:66:b4:16:22:08:0b:76:75: 3d:23:62:0b:43:5f:de:b8:66:0c:2e:39:de:3f:5f:0a:26:a4: e4:5d:c6:7d:c9:33:8e:9a:f5:b9:80:ca:98:eb:cf:1c:ae:af: 69:72:b3:7d:53:26:d9:7d:3b:3a:9e:cf:0e:ab:93:52:a9:60: 42:b0:5a:45:2c:1f:86:5e:61:19:a4:ef:3b:47:cb:3b:76:98: 3a:3c:8f:6b:46:63:6c:5b:23:f9:67:5e:b7:53:e6:bb:1a:a0: 32:aa:ee:91:97:2a:06:a7:d6:c5:67:74:cb:fa:5e:e0:9c:3a: 6f:6d:b2:b8:3e:56:45:a8:dc:03:d0:ab:29:7d:b9:f4:2e:61: c5:02:96:66:13:e3:1d:2a:0b:04:0f:05:51:22:b4:f3:74:00: 63:9c:64:31:77:6e:ce:1e:e2:c6:3f:f3:9b:5c:6e:30:23:57: c7:09:61:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZGN0MxMTAvBgNVBAUTKEMwRTMxQjVGNDVDRkU1MkJBQzVDRURCOERDQzZBMUEz MjJGNDcwNUQwHhcNMjUwNzIxMDUyODU3WhcNMjUwNzI4MDUyODU3WjAYMRYwFAYD VQQDEw02ODdkZDAxOS04MDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/d6yEXTeUia0ZjdShacO9rFIAZZOMxWbVzCBgACJNOjWyyv1SpCxy/FZmyG MtocztleKo9DPT0unTnYaaF6Qzoawitcu3O58vKyzhnaf+Qp37musZsSIsHgEAmN Y2F3OcfTU0x350fy5cXhiJ0gklQ4pRm/X+exHm8mQLp3YU4+NgEpmKtF4Iemrp3Z gAanU48/nn92G4bc61bO06mQ2THXunQHmBhitljFTy/QW4srB780r+XPlW1LgnNn WbKHky2gKaitCMQYJWIpnnyeeQpSn8yzy7O1xgkVqj3gYH7512lwNtxikyEV9OJd MbytE/jAbWGrhHmB5HGbgpIZOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhdzlqn d3iK5Y2N7OE9fXwvzqWfMB8GA1UdIwQYMBaAFMDjG19Fz+UrrFztuNzGoaMi9HBd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkY3Qy84NkY5MTYxQ0ZD NUIxMUVFQTNGRjlENDdDNEY5QUUwMi93T01iWDBYUDVTdXNYTzI0M01haG95TDBj RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dPTWJYMFhQNVN1c1hPMjQzTWFob3lMMGNGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkY3Qy84NkY5MTYxQ0ZDNUIxMUVFQTNGRjlENDdDNEY5QUUwMi93T01iWDBYUDVT dXNYTzI0M01haG95TDBjRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANYh/8W6UyEGMAjJMqYv8gzPhmSUq+Hg85qlU3AY7rwflzHwYZSpbC qZfplO/fSyXOoAb7agpddYTk6iINpKfcZp2mkBs7dULrqYYwmDVZM5oNZrQWIggL dnU9I2ILQ1/euGYMLjneP18KJqTkXcZ9yTOOmvW5gMqY688crq9pcrN9UybZfTs6 ns8Oq5NSqWBCsFpFLB+GXmEZpO87R8s7dpg6PI9rRmNsWyP5Z163U+a7GqAyqu6R lyoGp9bFZ3TL+l7gnDpvbbK4PlZFqNwD0Kspfbn0LmHFApZmE+MdKgsEDwVRIrTz dABjnGQxd27OHuLGP/ObXG4wI1fHCWGf -----END CERTIFICATE-----Generated at Wed Jul 23 02:34:45 2025 by rpki-client