$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: UxShDPDSUHR9QJDs9F1VFi6QBO2aWRwqkaGDM6tx7hQ= Subject key identifier: 87:DE:32:78:AA:96:29:12:B9:09:9A:3A:78:11:72:76:58:1B:EA:33 Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 084E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 0839 Signing time: Sun 20 Jul 2025 20:52:59 +0000 Manifest this update: Sun 20 Jul 2025 20:52:59 +0000 Manifest next update: Sun 27 Jul 2025 20:52:59 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: BLUVX6wueVQz2i5znXDrutqpLWsSmSDpYDdf1ice4BY=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: ZWM4HJUjC3JgAEYknxCATq6PGI5BXk42LHpdEZQRJ0I=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: oVaIkIIp594wdZKn2XCmHgy069EyuIaCAvG8B279YGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2126 (0x84e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Jul 20 20:52:59 2025 GMT Not After : Jul 27 20:52:59 2025 GMT Subject: CN=687d572b-f7d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:67:91:b2:06:a0:a3:bc:10:cb:6a:eb:20:87: 48:c0:74:b8:31:f3:02:9e:fd:9e:5d:13:ab:8d:e9: 7b:eb:f8:79:c6:b4:19:a0:2a:d8:ce:0f:98:57:db: ad:d6:93:21:cb:35:df:25:d6:7d:eb:20:ca:97:56: 1d:cb:fe:0b:93:5c:f0:05:c7:31:e4:4a:2d:4c:4d: 59:ff:80:71:bd:00:7a:42:1c:52:9f:4e:88:f3:31: 05:c5:5b:91:21:cf:44:9c:af:e4:3a:4b:a9:92:21: f0:ab:31:a6:b8:ec:27:37:df:8f:2c:93:ae:f4:b4: 05:7b:6e:22:7b:1c:77:45:0b:da:ce:33:e4:58:82: 57:07:bb:50:96:f4:f5:8b:2f:94:16:b1:31:e8:62: 07:63:75:43:59:a9:14:17:ff:df:80:01:c4:d9:30: ae:63:42:7f:92:d9:49:95:a2:30:c9:72:52:62:ff: a6:5a:04:8f:7c:f5:17:cd:7e:3b:2f:3c:e0:25:d8: 9b:d7:c2:a9:25:39:2e:cc:f8:d2:c9:55:94:52:28: bb:ec:db:2c:22:8a:55:af:6d:29:e5:18:3b:04:23: 27:34:72:05:f3:26:f1:c1:62:7b:08:79:13:87:c3: 1c:44:af:81:64:f9:7a:7d:ed:e2:1a:66:1b:6c:f0: ca:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DE:32:78:AA:96:29:12:B9:09:9A:3A:78:11:72:76:58:1B:EA:33 X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:f2:77:89:d7:d3:7b:c5:9d:6e:ea:93:37:8c:f6:d3:a0:3a: 8c:3f:8e:42:2c:1b:17:95:21:24:3f:4b:f6:66:71:12:85:b2: c6:dc:01:e1:74:97:7a:2d:a9:df:28:64:c6:84:ea:25:f2:1b: e3:3e:42:6b:43:aa:fa:33:33:fa:a4:56:6b:96:1f:13:7e:57: 3c:f5:22:13:96:0b:83:c4:6d:6f:e5:15:16:da:eb:50:16:17: 20:38:41:9d:35:e1:4d:ba:4c:76:3b:d5:45:43:2d:cd:b8:c2: 3d:24:11:76:39:3e:89:7d:12:1e:5f:9b:66:df:ad:68:04:a2: b5:a5:6c:cf:b9:9a:dc:54:2c:50:5d:36:6c:df:fb:34:76:4d: 0a:49:55:c7:4b:b2:b1:fc:81:9c:72:31:5f:c6:76:1e:e7:a2: fb:ee:ee:fe:15:74:8b:fc:68:d0:f5:ba:2a:e5:d2:3a:93:e9: 7d:2b:cf:ae:f7:f0:4c:bc:c3:f1:ec:69:54:38:ea:d8:14:86: 00:22:11:20:bc:ad:1c:12:fb:45:6a:1b:c5:c4:eb:5a:af:a6: e9:cd:b9:11:96:70:39:af:80:41:88:6b:59:4f:d0:39:06:24: ea:18:b0:8a:8a:65:81:84:e3:56:0f:62:0b:69:57:7f:4b:15: ed:25:04:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjUwNzIwMjA1MjU5WhcNMjUwNzI3MjA1MjU5WjAYMRYwFAYD VQQDEw02ODdkNTcyYi1mN2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGeRsgago7wQy2rrIIdIwHS4MfMCnv2eXROrjel76/h5xrQZoCrYzg+YV9ut 1pMhyzXfJdZ96yDKl1Ydy/4Lk1zwBccx5EotTE1Z/4BxvQB6QhxSn06I8zEFxVuR Ic9EnK/kOkupkiHwqzGmuOwnN9+PLJOu9LQFe24iexx3RQvazjPkWIJXB7tQlvT1 iy+UFrEx6GIHY3VDWakUF//fgAHE2TCuY0J/ktlJlaIwyXJSYv+mWgSPfPUXzX47 LzzgJdib18KpJTkuzPjSyVWUUii77NssIopVr20p5Rg7BCMnNHIF8ybxwWJ7CHkT h8McRK+BZPl6fe3iGmYbbPDK4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfeMniq likSuQmaOngRcnZYG+ozMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz8neJ19N7xZ1u6pM3jPbToDqMP45CLBsXlSEkP0v2ZnEShbLG3AHh dJd6LanfKGTGhOol8hvjPkJrQ6r6MzP6pFZrlh8Tflc89SITlguDxG1v5RUW2utQ FhcgOEGdNeFNukx2O9VFQy3NuMI9JBF2OT6JfRIeX5tm361oBKK1pWzPuZrcVCxQ XTZs3/s0dk0KSVXHS7Kx/IGccjFfxnYe56L77u7+FXSL/GjQ9boq5dI6k+l9K8+u 9/BMvMPx7GlUOOrYFIYAIhEgvK0cEvtFahvFxOtar6bpzbkRlnA5r4BBiGtZT9A5 BiTqGLCKimWBhONWD2ILaVd/SxXtJQTb -----END CERTIFICATE-----Generated at Mon Jul 21 13:22:20 2025 by rpki-client