$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.mft (raw, json) Hash identifier: 8UUFWvFDqRQHiD8ANJW+PCmOALnoCatS6i1NEcQPG3Y= Subject key identifier: AD:71:20:44:C2:1F:3E:32:17:FC:93:31:EE:CB:F4:C0:D0:F3:C7:DD Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 0751 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft Manifest number: 074A Signing time: Wed 10 Sep 2025 21:52:36 +0000 Manifest this update: Wed 10 Sep 2025 21:52:36 +0000 Manifest next update: Wed 17 Sep 2025 21:52:36 +0000 Files and hashes: 1: 1O0zil4gh9gu9ML2RZm0ERJy5eA.crl (hash: IXIt+8rtXnb+09AEPaUlEaQ0vicnbhIuOhO12hxWvAo=) 2: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (hash: P6M32s9N/Ait6pG90TBg5gFRqcz9Jw3z+OITkwygUn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 21:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1873 (0x751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4, serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Validity Not Before: Sep 10 21:52:36 2025 GMT Not After : Sep 17 21:52:36 2025 GMT Subject: CN=68c1f324-e43a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:60:e0:6b:44:21:0f:a3:47:81:97:43:9e:e6: 3c:12:7a:ed:4f:43:3e:83:f2:d1:6d:4e:86:90:c4: 76:89:6a:0b:a9:cd:9a:94:e3:8c:50:e0:8d:46:18: d3:27:5c:5e:24:77:7d:36:e0:d6:4f:49:ea:29:2d: 34:2b:3e:bf:56:a8:be:41:21:cc:a5:48:bc:fd:d8: 22:69:f7:9d:c7:81:34:19:dd:69:1b:4f:94:93:db: 42:07:0e:6c:84:02:31:e2:e9:c4:67:43:70:a1:fd: 46:a8:23:08:d6:17:6c:4a:77:71:01:ad:e7:12:2a: 9c:47:4b:28:be:b5:af:d4:cc:85:9f:b4:42:5c:7f: e9:c3:49:7d:e8:bd:77:67:9c:d6:66:15:c1:e7:9d: 1b:52:a3:ee:a8:0b:d7:73:4e:db:00:12:b8:76:d3: 03:c8:fb:fe:31:51:40:3a:f3:48:15:ac:e2:fd:7f: 57:54:60:1a:43:dd:23:54:c8:eb:7a:45:61:68:34: 33:77:8b:a6:1b:e4:32:52:7b:ba:be:5e:f3:cb:87: e7:b9:9a:0e:3c:13:f4:97:0b:18:cc:bb:68:71:66: df:36:84:46:8d:48:ba:3c:37:94:19:ec:9f:89:90: e6:9f:dd:4d:52:30:bf:b3:00:a6:63:3c:cc:5c:a6: 59:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:71:20:44:C2:1F:3E:32:17:FC:93:31:EE:CB:F4:C0:D0:F3:C7:DD X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:9c:c5:f3:de:1d:94:d2:4d:32:e6:af:94:da:31:a4:35:9b: 2d:c9:15:6d:29:0a:5c:b8:b5:8c:ae:e3:95:c1:7c:09:10:21: 93:63:96:3f:06:51:64:29:4e:7e:42:9a:1e:01:99:8f:5e:56: 8f:c4:0a:b5:c2:20:4f:f0:d2:4e:cd:bb:9a:1c:c1:86:09:ec: 3c:29:e5:6b:1f:34:ac:87:6a:b9:2c:6a:31:5e:20:0a:f1:79: b8:7b:1b:e9:f7:f7:9b:0f:ae:7c:24:30:fc:ee:5b:e2:88:32: 25:3a:dd:22:b1:d6:64:1b:ec:23:a0:b6:5b:bb:36:d8:9f:49: 3f:86:6e:24:ef:0b:c4:25:03:2c:b7:03:cd:c4:bf:68:9d:28: 9b:a1:75:01:b1:8a:7b:6c:f0:fd:d9:86:13:32:fd:5c:6b:3a: 8e:71:e4:d5:84:0c:50:01:2c:fe:b7:eb:47:a5:54:c7:66:c7: 74:06:8c:87:88:fb:1c:32:f2:5b:82:3d:32:b5:c5:3f:7a:8d: 08:bc:db:70:59:c4:39:a6:5f:83:38:48:eb:2b:3e:a5:c3:35: 4f:5d:27:69:92:22:68:71:d2:a3:8c:8a:43:f3:e8:39:e9:ae: 87:bd:07:88:b9:b5:a5:b8:f2:2a:f4:38:6b:d7:41:ac:5c:63: 59:1d:7e:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjUwOTEwMjE1MjM2WhcNMjUwOTE3MjE1MjM2WjAYMRYwFAYD VQQDEw02OGMxZjMyNC1lNDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2Dga0QhD6NHgZdDnuY8EnrtT0M+g/LRbU6GkMR2iWoLqc2alOOMUOCNRhjT J1xeJHd9NuDWT0nqKS00Kz6/Vqi+QSHMpUi8/dgiafedx4E0Gd1pG0+Uk9tCBw5s hAIx4unEZ0Nwof1GqCMI1hdsSndxAa3nEiqcR0sovrWv1MyFn7RCXH/pw0l96L13 Z5zWZhXB550bUqPuqAvXc07bABK4dtMDyPv+MVFAOvNIFazi/X9XVGAaQ90jVMjr ekVhaDQzd4umG+QyUnu6vl7zy4fnuZoOPBP0lwsYzLtocWbfNoRGjUi6PDeUGeyf iZDmn91NUjC/swCmYzzMXKZZbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1xIETC Hz4yF/yTMe7L9MDQ88fdMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNBNC83QUU5RkVENjNBN0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5 Z3U5TUwyUlptMEVSSnk1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1nMXz3h2U0k0y5q+U2jGkNZstyRVtKQpcuLWMruOVwXwJECGTY5Y/ BlFkKU5+QpoeAZmPXlaPxAq1wiBP8NJOzbuaHMGGCew8KeVrHzSsh2q5LGoxXiAK 8Xm4exvp9/ebD658JDD87lviiDIlOt0isdZkG+wjoLZbuzbYn0k/hm4k7wvEJQMs twPNxL9onSiboXUBsYp7bPD92YYTMv1cazqOceTVhAxQASz+t+tHpVTHZsd0BoyH iPscMvJbgj0ytcU/eo0IvNtwWcQ5pl+DOEjrKz6lwzVPXSdpkiJocdKjjIpD8+g5 6a6HvQeIubWluPIq9Dhr10GsXGNZHX7r -----END CERTIFICATE-----Generated at Thu Sep 11 16:33:39 2025 by rpki-client