$ rpki-client -vvf rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft File: o8s5jsc5UXR2LZMDPnBgnWD03bI.mft (raw, json) Hash identifier: k+/HDHemJIiOTHcdVOnHNHCdcB5zvD64m2GWhtkz5XE= Subject key identifier: 59:CF:28:EF:CF:BC:03:ED:00:8E:65:88:F0:43:47:37:73:E7:11:5F Authority key identifier: A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 Certificate issuer: /CN=A911606A/serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft Manifest number: 0132 Signing time: Fri 05 Sep 2025 04:57:27 +0000 Manifest this update: Fri 05 Sep 2025 04:57:26 +0000 Manifest next update: Fri 12 Sep 2025 04:57:26 +0000 Files and hashes: 1: o8s5jsc5UXR2LZMDPnBgnWD03bI.crl (hash: jBu3Y9pHLmd1+4A3NYY/MjBi8mumqSrfvyBO1lC0D4Y=) 2: EEEC4B6ABD9D11EE9839661CC4F9AE02.roa (hash: MV1F0Q4UL7J+dtgMeHTJ35pvzsiuBXHWMmcfd9HjqkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911606A, serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2 Validity Not Before: Sep 5 04:57:26 2025 GMT Not After : Sep 12 04:57:26 2025 GMT Subject: CN=68ba6db6-5a52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:42:dd:a0:99:60:d1:b1:9d:20:0e:d7:93:b4: d0:4d:c2:9c:79:2b:0f:93:e7:5a:2d:a1:07:49:4b: d8:ac:a4:fb:c6:54:29:63:9a:40:cf:11:5b:90:56: 72:3a:75:4c:a4:d5:33:b9:c2:f2:cc:e0:ca:35:88: f7:0a:9c:fd:c3:50:a0:eb:7f:26:a4:e6:6a:96:55: 13:a7:7f:20:21:0b:67:69:87:59:f1:0a:8a:3e:32: 30:3a:a0:11:0d:49:e0:52:76:f0:3d:dc:53:0a:57: a2:84:64:be:4b:fd:da:78:85:c1:2a:eb:20:5f:96: b1:29:be:ed:ef:90:fc:c8:d1:e5:77:b7:a5:61:51: e3:7c:c9:a8:c5:38:79:bc:45:cd:80:13:e4:28:49: 25:fb:75:de:63:45:53:66:e8:56:7f:24:73:41:2f: 37:29:fd:4c:02:f8:cb:2e:39:bb:a1:6d:d5:b9:20: eb:d4:b2:35:15:df:4b:65:70:51:41:f5:ef:8f:dc: 30:0f:03:b8:fb:9d:c6:be:c3:bf:c0:ba:cf:4c:b8: e6:51:0b:e3:48:16:87:11:db:63:41:39:93:72:da: 35:87:11:5b:3b:8b:14:72:89:51:7a:e3:30:e6:5b: 80:cd:0f:2e:a9:05:c6:af:ed:10:6f:af:ed:29:85: ea:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:CF:28:EF:CF:BC:03:ED:00:8E:65:88:F0:43:47:37:73:E7:11:5F X509v3 Authority Key Identifier: keyid:A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:e7:4c:cb:dd:a9:69:1f:f4:3a:f8:2a:24:2e:30:29:25:71: 40:c1:84:6c:2f:c9:44:6a:95:37:1d:5b:07:13:2f:99:69:ed: b3:91:01:95:ce:bb:41:b9:dd:7f:34:f2:4e:b7:01:b5:54:d7: 1b:b6:00:6b:a7:ed:01:1b:5b:20:26:3a:86:14:28:67:be:d0: ea:20:b2:8b:d0:55:0c:14:cb:2d:39:77:f4:e4:fb:4b:35:00: 29:e9:24:bd:71:5b:c7:3a:f5:4a:f4:ef:6a:74:84:0a:f3:46: 22:ab:d3:f6:a7:1a:a6:a2:a1:db:af:27:ae:2d:2d:d7:7e:7e: ec:9b:cf:ea:b0:31:eb:7a:23:df:c5:87:6b:19:f2:23:38:7a: 4b:53:9d:87:04:bf:51:fb:5d:dd:ca:86:b1:d1:dd:31:dd:b7: 52:fe:32:87:29:99:33:f9:60:7c:20:25:7c:60:b6:d5:ef:78: 61:f9:2b:08:9c:7d:a0:85:a4:94:9e:4a:fb:a4:df:03:63:b9: 94:74:dd:0f:43:f7:5b:16:38:7b:d3:ea:ea:ce:e5:82:ae:d8: 55:d4:1c:b7:5c:4f:30:91:d9:9b:f5:92:76:21:81:c1:00:36: 1e:73:c3:0f:96:e1:f1:ac:e1:5b:af:de:47:98:83:64:ed:d2: 49:dc:4b:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYwNkExMTAvBgNVBAUTKEEzQ0IzOThFQzczOTUxNzQ3NjJEOTMwMzNFNzA2MDlE NjBGNEREQjIwHhcNMjUwOTA1MDQ1NzI2WhcNMjUwOTEyMDQ1NzI2WjAYMRYwFAYD VQQDEw02OGJhNmRiNi01YTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0LdoJlg0bGdIA7Xk7TQTcKceSsPk+daLaEHSUvYrKT7xlQpY5pAzxFbkFZy OnVMpNUzucLyzODKNYj3Cpz9w1Cg638mpOZqllUTp38gIQtnaYdZ8QqKPjIwOqAR DUngUnbwPdxTCleihGS+S/3aeIXBKusgX5axKb7t75D8yNHld7elYVHjfMmoxTh5 vEXNgBPkKEkl+3XeY0VTZuhWfyRzQS83Kf1MAvjLLjm7oW3VuSDr1LI1Fd9LZXBR QfXvj9wwDwO4+53GvsO/wLrPTLjmUQvjSBaHEdtjQTmTcto1hxFbO4sUcolReuMw 5luAzQ8uqQXGr+0Qb6/tKYXqQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnPKO/P vAPtAI5liPBDRzdz5xFfMB8GA1UdIwQYMBaAFKPLOY7HOVF0di2TAz5wYJ1g9N2y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjA2QS80RjI1ODhFNEJC NDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVYUjJMWk1EUG5CZ25XRDAz YkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL284czVqc2M1VVhSMkxaTURQbkJnbldEMDNiSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjA2QS80RjI1ODhFNEJCNDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVY UjJMWk1EUG5CZ25XRDAzYkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO50zL3alpH/Q6+CokLjApJXFAwYRsL8lEapU3HVsHEy+Zae2zkQGV zrtBud1/NPJOtwG1VNcbtgBrp+0BG1sgJjqGFChnvtDqILKL0FUMFMstOXf05PtL NQAp6SS9cVvHOvVK9O9qdIQK80Yiq9P2pxqmoqHbryeuLS3Xfn7sm8/qsDHreiPf xYdrGfIjOHpLU52HBL9R+13dyoax0d0x3bdS/jKHKZkz+WB8ICV8YLbV73hh+SsI nH2ghaSUnkr7pN8DY7mUdN0PQ/dbFjh70+rqzuWCrthV1By3XE8wkdmb9ZJ2IYHB ADYec8MPluHxrOFbr95HmINk7dJJ3Etm -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:54 2025 by rpki-client