$ rpki-client -vvf rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft File: ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft (raw, json) Hash identifier: Blnt+Q3dfwfm0MuN1OLsCW1RSPxhuQr/bPTvk7WtcFQ= Subject key identifier: B7:F6:4D:E6:95:B5:BB:3B:2B:97:DE:55:5D:94:13:70:31:A4:B5:BB Authority key identifier: A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD Certificate issuer: /CN=A914A139/serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Certificate serial: 0BF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft Manifest number: 0BE4 Signing time: Mon 08 Sep 2025 18:54:37 +0000 Manifest this update: Mon 08 Sep 2025 18:54:36 +0000 Manifest next update: Mon 15 Sep 2025 18:54:36 +0000 Files and hashes: 1: ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl (hash: mTTM2ckWRX1ngYwWYM8FG455eAD/jcZjH2yvSO5DIQI=) 2: 65BB2B42C0E311EEBEF3D409C4F9AE02.roa (hash: r+qQMJg9WeT3dBS1G2eddJkWAZzyHZW7YUPhUNiXmvc=) 3: 10CF1D82C0E311EE81F3E987C4F9AE02.roa (hash: 78NzvvcCG2D0+YLHvm0WI7AAwqsj2ir6ZRecAq/XKO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3063 (0xbf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A139, serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Validity Not Before: Sep 8 18:54:36 2025 GMT Not After : Sep 15 18:54:36 2025 GMT Subject: CN=68bf266c-7ceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1f:fe:ea:ef:38:a2:b1:da:1f:83:ba:80:f7: 96:eb:83:79:d9:93:7a:1a:5e:59:db:da:0f:6f:e4: 22:49:3e:83:99:6f:04:db:a4:2b:c6:7f:04:ec:3a: 76:ad:6a:df:b3:64:59:b8:d1:b0:03:d9:01:b2:ea: db:75:16:f5:bf:2a:b3:64:b0:8c:0a:ac:71:2c:36: ae:b0:e8:18:f1:49:aa:9b:75:b7:c3:f6:3d:64:ce: 26:b6:6c:40:ce:8e:c1:dd:02:23:78:63:ca:d9:0e: 84:07:8f:b6:90:71:34:5d:9c:92:e3:02:3c:ba:34: 22:ed:74:d7:38:13:e2:61:5c:12:d9:48:47:fd:f3: 57:1c:db:6d:47:59:fa:79:54:ef:f7:67:9f:7c:de: 34:e1:ca:78:ea:bb:f9:60:51:32:1a:04:a4:4f:dd: 44:06:61:f2:d7:52:5a:97:06:bf:45:7e:ab:1c:ef: 71:13:0d:ae:9f:8e:30:81:46:3c:ca:1a:6c:45:47: d7:3f:e7:b5:e1:c7:5e:1b:94:e7:8b:7e:8a:07:3e: b8:fc:cc:2d:dc:8f:fd:67:95:ee:30:1e:54:76:d9: 5e:da:90:1a:1e:c0:6c:50:06:2d:8e:b0:50:50:de: 9c:5e:27:b1:65:e9:5c:90:c8:e7:a9:d3:7e:e3:17: c1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F6:4D:E6:95:B5:BB:3B:2B:97:DE:55:5D:94:13:70:31:A4:B5:BB X509v3 Authority Key Identifier: keyid:A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c9:80:f9:26:af:9f:ef:70:24:70:87:f4:52:fc:73:c2:db: 93:46:68:ec:1c:e9:85:47:ea:d9:e7:f2:fd:60:41:6a:f6:6f: 05:b6:c8:4a:91:53:02:04:83:78:a5:1d:c6:46:ad:a7:4d:1d: 5c:d7:77:ec:0e:b2:9f:91:48:98:ac:12:6c:0d:5e:f6:2f:2d: b5:5c:64:69:08:e5:ef:0d:f0:75:6f:05:ab:be:9c:89:9d:6b: 89:47:7e:d5:a4:50:d7:dc:02:96:dd:77:32:56:fe:cc:61:90: 6c:22:03:d4:3e:ca:b7:77:4d:a0:3e:67:40:5b:33:f2:4b:bf: ea:24:f7:ef:dc:e5:80:79:c3:06:32:82:33:dd:f2:25:6c:b2: 70:c4:40:c7:87:af:c3:7e:78:37:d9:8d:bb:90:46:e0:34:50: 77:93:4c:bd:b9:13:20:98:61:47:47:40:7e:27:61:29:09:c8: 61:4e:44:37:7f:ea:e5:10:ec:95:6d:ff:88:d2:54:7a:bb:09: 8e:cb:e5:ec:8e:39:0b:2b:05:59:35:7f:c5:e7:bb:0d:c1:b9: 0f:e8:02:39:76:c1:a1:ce:48:47:66:6c:2d:ba:1e:eb:d1:83: 1b:32:9d:25:7c:41:5b:27:a2:80:a0:cd:28:9c:0b:67:ab:28: 17:04:a8:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExMzkxMTAvBgNVBAUTKEEyNUVEOEExNDI3QUU5M0IyNEQzMERDQ0RGQTgzMjUz OEI1MDA4QUQwHhcNMjUwOTA4MTg1NDM2WhcNMjUwOTE1MTg1NDM2WjAYMRYwFAYD VQQDEw02OGJmMjY2Yy03Y2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwB/+6u84orHaH4O6gPeW64N52ZN6Gl5Z29oPb+QiST6DmW8E26Qrxn8E7Dp2 rWrfs2RZuNGwA9kBsurbdRb1vyqzZLCMCqxxLDausOgY8Umqm3W3w/Y9ZM4mtmxA zo7B3QIjeGPK2Q6EB4+2kHE0XZyS4wI8ujQi7XTXOBPiYVwS2UhH/fNXHNttR1n6 eVTv92effN404cp46rv5YFEyGgSkT91EBmHy11Jalwa/RX6rHO9xEw2un44wgUY8 yhpsRUfXP+e14cdeG5Tni36KBz64/Mwt3I/9Z5XuMB5Udtle2pAaHsBsUAYtjrBQ UN6cXiexZelckMjnqdN+4xfBXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLf2TeaV tbs7K5feVV2UE3AxpLW7MB8GA1UdIwQYMBaAFKJe2KFCeuk7JNMNzN+oMlOLUAit MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTEzOS9FQkI5RUM2MDI0 Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZUc2swdzNNMzZneVU0dFFD SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29sN1lvVUo2NlRzazB3M00zNmd5VTR0UUNLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTEzOS9FQkI5RUM2MDI0Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZU c2swdzNNMzZneVU0dFFDSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKyYD5Jq+f73AkcIf0UvxzwtuTRmjsHOmFR+rZ5/L9YEFq9m8FtshK kVMCBIN4pR3GRq2nTR1c13fsDrKfkUiYrBJsDV72Ly21XGRpCOXvDfB1bwWrvpyJ nWuJR37VpFDX3AKW3XcyVv7MYZBsIgPUPsq3d02gPmdAWzPyS7/qJPfv3OWAecMG MoIz3fIlbLJwxEDHh6/Dfng32Y27kEbgNFB3k0y9uRMgmGFHR0B+J2EpCchhTkQ3 f+rlEOyVbf+I0lR6uwmOy+XsjjkLKwVZNX/F57sNwbkP6AI5dsGhzkhHZmwtuh7r 0YMbMp0lfEFbJ6KAoM0onAtnqygXBKjx -----END CERTIFICATE-----Generated at Wed Sep 10 13:35:12 2025 by rpki-client