$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft File: 4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft (raw, json) Hash identifier: /UyTVYCszStThep+uwH73xEFlK2mOayL9xU45GmM3tM= Subject key identifier: AA:94:A9:6C:B5:64:EF:D9:F9:39:01:D9:44:BB:61:21:2B:D3:B6:E1 Authority key identifier: E0:E8:08:30:65:95:FE:68:D5:F2:81:A9:62:AF:6D:F5:1E:86:F9:32 Certificate issuer: /CN=A914D0E3/serialNumber=E0E808306595FE68D5F281A962AF6DF51E86F932 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft Manifest number: A7 Signing time: Fri 05 Sep 2025 06:38:34 +0000 Manifest this update: Fri 05 Sep 2025 06:38:33 +0000 Manifest next update: Fri 12 Sep 2025 06:38:33 +0000 Files and hashes: 1: 4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl (hash: P25XFV0tHfghFHBiiT6LwZ1h+UmeqeV7QjfkGjzaV50=) 2: 793E79A68D1811EF92E90C51C4F9AE02.roa (hash: zVqTt6tzc+Il4GxP87PklggXFLaDGzjtaeUtoZhSM8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=E0E808306595FE68D5F281A962AF6DF51E86F932 Validity Not Before: Sep 5 06:38:33 2025 GMT Not After : Sep 12 06:38:33 2025 GMT Subject: CN=68ba8569-b9ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f3:17:5a:4d:6f:90:e2:fa:35:03:23:01:37: ec:7f:15:50:7d:ad:e0:ce:6f:ba:37:42:00:56:46: fb:2b:11:7b:4c:ae:15:97:49:00:fe:17:27:15:05: 71:70:72:39:05:d7:68:eb:a4:d9:14:b4:28:68:99: 62:97:cb:7f:86:a0:76:bd:27:69:ee:ad:96:30:18: 38:c7:08:22:c0:ef:bd:9c:bd:15:b3:c6:e0:37:db: 2f:84:bc:f0:7a:a4:04:5b:10:81:ea:f1:ca:47:e0: 07:a9:a3:17:41:f4:bb:9b:57:ab:4f:4c:fd:0f:6e: bc:64:c7:95:32:98:58:af:74:07:ca:42:45:c6:36: a6:f9:8d:3e:27:0d:cc:df:e0:78:9b:6d:41:a8:32: f3:12:54:7b:5b:80:65:f4:18:9c:42:b0:ff:ab:72: ac:03:2d:de:05:04:35:80:bc:96:e9:47:5b:3d:a9: 8c:27:e2:5c:c6:72:00:07:37:ae:cd:e9:2c:23:49: 95:04:b7:71:4a:ed:d3:6b:7d:56:b9:e3:4a:db:d1: 2c:6b:84:7b:06:10:cc:41:fa:7e:4e:9b:01:05:00: 1e:17:1c:7f:df:c9:fb:08:c1:1b:64:0b:fe:b7:e3: 6e:e1:fd:b5:30:1c:65:5e:1a:01:f7:ef:cc:64:75: 7a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:94:A9:6C:B5:64:EF:D9:F9:39:01:D9:44:BB:61:21:2B:D3:B6:E1 X509v3 Authority Key Identifier: keyid:E0:E8:08:30:65:95:FE:68:D5:F2:81:A9:62:AF:6D:F5:1E:86:F9:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:21:0c:f8:de:4d:04:43:ed:45:d1:d5:55:ee:4f:9d:fb:f1: be:92:22:ed:44:18:48:d0:37:0e:a5:b8:26:86:51:e2:1c:82: 6e:00:ad:d1:6b:ff:3c:38:04:08:92:22:45:50:e9:d7:93:da: 11:60:31:c8:b2:5b:cb:fd:be:0d:1d:93:69:85:f2:c0:dc:68: 5b:27:a2:95:f7:78:42:3d:bf:53:e5:28:47:eb:0e:29:9b:fd: 8f:a3:b5:d8:19:52:28:be:98:e5:49:4e:f1:09:bb:f9:f8:4a: f3:75:74:6b:41:7d:81:e5:f9:21:9c:ec:b5:6a:a6:ad:cf:a2: 2e:08:b0:02:57:da:33:0e:f9:73:84:ef:81:29:ed:3f:3e:00: 7d:9b:98:98:5c:df:f2:25:60:83:dc:dd:b0:39:33:f6:f8:2e: 09:c9:5c:f6:de:e2:4f:e5:2e:1e:18:7f:53:66:e2:51:53:e6: 2c:65:e4:8d:96:84:56:e8:3f:7d:f7:84:69:be:24:7e:63:4f: 35:06:40:36:55:7e:d8:00:d4:d5:05:53:a6:4b:6f:d8:a4:4f: 34:9e:b2:74:8b:81:e2:3f:fa:c3:11:f0:2a:ae:33:90:37:df: 46:3b:5b:42:11:f5:48:98:2d:fe:4a:a0:60:e7:9a:35:68:9a: 64:10:88:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwRTMxMTAvBgNVBAUTKEUwRTgwODMwNjU5NUZFNjhENUYyODFBOTYyQUY2REY1 MUU4NkY5MzIwHhcNMjUwOTA1MDYzODMzWhcNMjUwOTEyMDYzODMzWjAYMRYwFAYD VQQDEw02OGJhODU2OS1iOWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPMXWk1vkOL6NQMjATfsfxVQfa3gzm+6N0IAVkb7KxF7TK4Vl0kA/hcnFQVx cHI5Bddo66TZFLQoaJlil8t/hqB2vSdp7q2WMBg4xwgiwO+9nL0Vs8bgN9svhLzw eqQEWxCB6vHKR+AHqaMXQfS7m1erT0z9D268ZMeVMphYr3QHykJFxjam+Y0+Jw3M 3+B4m21BqDLzElR7W4Bl9BicQrD/q3KsAy3eBQQ1gLyW6UdbPamMJ+JcxnIABzeu zeksI0mVBLdxSu3Ta31WueNK29Esa4R7BhDMQfp+TpsBBQAeFxx/38n7CMEbZAv+ t+Nu4f21MBxlXhoB9+/MZHV6UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqUqWy1 ZO/Z+TkB2US7YSEr07bhMB8GA1UdIwQYMBaAFODoCDBllf5o1fKBqWKvbfUehvky MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBFMy9BQTk4NTlGODhD N0UxMUVGOEU5MkU3MUJDNEY5QUUwMi80T2dJTUdXVl9talY4b0dwWXE5dDlSNkct VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRPZ0lNR1dWX21qVjhvR3BZcTl0OVI2Ry1USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBFMy9BQTk4NTlGODhDN0UxMUVGOEU5MkU3MUJDNEY5QUUwMi80T2dJTUdXVl9t alY4b0dwWXE5dDlSNkctVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGIQz43k0EQ+1F0dVV7k+d+/G+kiLtRBhI0DcOpbgmhlHiHIJuAK3R a/88OAQIkiJFUOnXk9oRYDHIslvL/b4NHZNphfLA3GhbJ6KV93hCPb9T5ShH6w4p m/2Po7XYGVIovpjlSU7xCbv5+ErzdXRrQX2B5fkhnOy1aqatz6IuCLACV9ozDvlz hO+BKe0/PgB9m5iYXN/yJWCD3N2wOTP2+C4JyVz23uJP5S4eGH9TZuJRU+YsZeSN loRW6D9994RpviR+Y081BkA2VX7YANTVBVOmS2/YpE80nrJ0i4HiP/rDEfAqrjOQ N99GO1tCEfVImC3+SqBg55o1aJpkEIhh -----END CERTIFICATE-----Generated at Sat Sep 6 21:09:04 2025 by rpki-client