$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft File: OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft (raw, json) Hash identifier: +fmJaIZPOTTtPVBuRi9ZdlU5XbCoesmzZh59gY/NxaE= Subject key identifier: E5:91:A7:68:E4:4D:1C:42:7F:0E:01:5A:8F:80:67:E3:ED:18:31:4E Authority key identifier: 39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 Certificate issuer: /CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Certificate serial: 1ECA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft Manifest number: 1EBE Signing time: Wed 20 Aug 2025 16:06:22 +0000 Manifest this update: Wed 20 Aug 2025 16:06:21 +0000 Manifest next update: Wed 27 Aug 2025 16:06:21 +0000 Files and hashes: 1: OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl (hash: 2A016CZV+vFW+ZH+eBnlNqhNUanSm0idGpg/VXNxFtw=) 2: BFF7726E6EF711E69FBC340BC4F9AE02.roa (hash: W0ZWmGkhW06fRZVPw8jscLCIBobXeY3y+SwBDvJ1Z0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 16:06:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7882 (0x1eca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C7C, serialNumber=39D1D595541891353094583618D6CC079C830CE1 Validity Not Before: Aug 20 16:06:21 2025 GMT Not After : Aug 27 16:06:21 2025 GMT Subject: CN=68a5f27d-71ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2e:c4:90:ad:81:41:7f:80:d2:b8:de:80:2d: b0:46:42:3f:71:74:7a:84:3f:8f:16:a3:08:52:3d: 9a:fb:91:25:f5:59:5d:3d:c4:78:db:ed:06:d4:c6: 4d:81:dc:0f:fd:e9:df:bf:eb:04:f7:04:85:c0:82: ea:f3:8f:e7:4d:e7:a7:74:c1:0f:9c:b0:4c:5e:af: 9a:e3:da:05:ac:a1:a4:bb:5c:6c:af:f6:30:72:a2: 75:f1:8e:14:77:6c:2c:93:85:68:45:b1:03:d4:e4: 6f:0d:93:84:ee:a0:61:6f:af:14:3b:ae:57:e3:6a: 23:78:84:bf:e2:aa:27:72:70:ad:ae:b3:1e:3e:73: 02:67:dc:7e:d4:33:44:d3:5d:19:f9:25:16:27:94: a6:29:34:42:74:0e:e6:af:bf:d4:a6:ae:d4:55:69: 63:f5:cb:a8:51:2f:e6:34:c9:08:e6:de:1a:be:31: 70:45:7c:c3:9b:ec:6b:fd:65:4d:59:64:fc:e7:93: c8:95:b4:e8:e8:bc:b5:a1:ba:fc:01:55:48:cb:19: c1:4a:61:09:9f:2f:3e:7d:80:8e:28:ae:7e:85:c6: f2:b9:d1:9d:9e:24:e9:d6:48:25:96:20:5d:ca:97: bc:92:f3:e7:c1:10:31:af:b4:f9:45:79:f5:75:f0: 7f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:91:A7:68:E4:4D:1C:42:7F:0E:01:5A:8F:80:67:E3:ED:18:31:4E X509v3 Authority Key Identifier: keyid:39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:72:d8:8e:d3:a3:ca:79:71:44:a4:94:2d:60:c3:b9:f1:1f: 70:15:a9:f1:2b:43:93:55:76:1d:dd:0d:e2:b9:50:d3:cd:0f: ef:7b:81:5a:19:31:03:6c:c3:7e:b5:79:b3:97:22:47:5a:69: c4:d7:b4:fe:0a:5b:74:a6:4c:a9:4a:fb:16:bd:c7:15:a3:95: 71:2e:cf:5e:55:44:f1:19:b0:06:bb:f3:02:12:13:1a:41:c4: 0c:c2:d2:5b:7c:ee:79:07:97:76:14:37:65:99:27:35:df:89: e1:81:95:0b:f6:12:f7:fd:42:fa:7c:c4:8f:dc:49:da:f6:1c: fd:73:75:85:d3:f8:32:40:b0:59:a8:66:50:6b:3e:23:d1:b7: 43:fb:fe:12:10:ff:44:d2:cf:8d:7d:34:3f:38:60:26:c2:5b: 5f:a4:c4:50:ad:50:a4:2e:af:17:ed:8c:b0:81:9d:4e:a2:62: 40:92:6a:13:80:47:77:b8:97:af:52:98:b8:bd:e0:3f:56:02: bf:6d:2b:f9:d8:50:e1:c0:45:e4:a9:2d:76:2a:83:b7:2f:80: 49:de:52:f9:9e:10:4b:cb:22:4a:a9:12:82:88:fb:7c:64:ca: e8:a3:c5:8b:c7:2d:69:2d:b1:09:dd:7b:e2:60:18:21:6f:d3: 4f:c7:9a:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDN0MxMTAvBgNVBAUTKDM5RDFENTk1NTQxODkxMzUzMDk0NTgzNjE4RDZDQzA3 OUM4MzBDRTEwHhcNMjUwODIwMTYwNjIxWhcNMjUwODI3MTYwNjIxWjAYMRYwFAYD VQQDEw02OGE1ZjI3ZC03MWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0y7EkK2BQX+A0rjegC2wRkI/cXR6hD+PFqMIUj2a+5El9VldPcR42+0G1MZN gdwP/enfv+sE9wSFwILq84/nTeendMEPnLBMXq+a49oFrKGku1xsr/YwcqJ18Y4U d2wsk4VoRbED1ORvDZOE7qBhb68UO65X42ojeIS/4qoncnCtrrMePnMCZ9x+1DNE 010Z+SUWJ5SmKTRCdA7mr7/Upq7UVWlj9cuoUS/mNMkI5t4avjFwRXzDm+xr/WVN WWT855PIlbTo6Ly1obr8AVVIyxnBSmEJny8+fYCOKK5+hcbyudGdniTp1kglliBd ype8kvPnwRAxr7T5RXn1dfB/pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWRp2jk TRxCfw4BWo+AZ+PtGDFOMB8GA1UdIwQYMBaAFDnR1ZVUGJE1MJRYNhjWzAecgwzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM3Qy8yOUY3QTA0MDZF RjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtUVXdsRmcyR05iTUI1eURE T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kSFZsVlFZa1RVd2xGZzJHTmJNQjV5RERPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEM3Qy8yOUY3QTA0MDZFRjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtU VXdsRmcyR05iTUI1eURET0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdctiO06PKeXFEpJQtYMO58R9wFanxK0OTVXYd3Q3iuVDTzQ/ve4Fa GTEDbMN+tXmzlyJHWmnE17T+Clt0pkypSvsWvccVo5VxLs9eVUTxGbAGu/MCEhMa QcQMwtJbfO55B5d2FDdlmSc134nhgZUL9hL3/UL6fMSP3Ena9hz9c3WF0/gyQLBZ qGZQaz4j0bdD+/4SEP9E0s+NfTQ/OGAmwltfpMRQrVCkLq8X7YywgZ1OomJAkmoT gEd3uJevUpi4veA/VgK/bSv52FDhwEXkqS12KoO3L4BJ3lL5nhBLyyJKqRKCiPt8 ZMroo8WLxy1pLbEJ3XviYBghb9NPx5qG -----END CERTIFICATE-----Generated at Fri Aug 22 16:18:18 2025 by rpki-client