$ rpki-client -vvf rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft File: oBoPBuMQs4EwEx14gpcL8WLdDWY.mft (raw, json) Hash identifier: clwtEO0d7pZ79m5v+luebIZcNNMi/odBmc/93x23MoY= Subject key identifier: C0:DA:A3:93:E5:91:60:A9:3B:44:00:CF:19:E9:95:C5:7A:AD:35:90 Authority key identifier: A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 Certificate issuer: /CN=A9150E55/serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Certificate serial: 0369 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft Manifest number: 0363 Signing time: Tue 09 Sep 2025 01:00:52 +0000 Manifest this update: Tue 09 Sep 2025 01:00:52 +0000 Manifest next update: Tue 16 Sep 2025 01:00:52 +0000 Files and hashes: 1: oBoPBuMQs4EwEx14gpcL8WLdDWY.crl (hash: FA1tCg5LqOxj99nCdDZdyOfsLJUseR+mEA8ngT9edVw=) 2: 2DC3DC54D54E11EF8C5B1651C4F9AE02.roa (hash: jj/VEZFojNzwFut6xQ2ddbaM/ffKwcFrBgOFEnS8TYI=) 3: 39952E50C6CB11ECB185E43EC4F9AE02.roa (hash: UriRXIOaFvm5u1qncQTi3IERwvU0QHA/1gyCNIPeCng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E55, serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Validity Not Before: Sep 9 01:00:52 2025 GMT Not After : Sep 16 01:00:52 2025 GMT Subject: CN=68bf7c44-7b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:15:00:84:0e:2f:bf:88:6a:fc:79:af:6c:fb: 34:a1:76:95:61:c3:46:cd:19:37:0c:7c:4c:16:13: df:5c:ba:b9:20:32:bd:11:f2:aa:3b:9f:14:4d:2a: 48:73:e0:00:6c:6e:19:ed:46:f7:93:d2:43:ff:b8: 72:04:4a:a3:22:af:f0:0d:57:90:ac:46:42:a5:63: 5d:d8:cd:ae:a5:27:f3:0f:88:f1:56:41:d7:3e:f1: 51:0f:cc:54:2b:58:53:d7:7e:4e:1e:56:4e:21:9f: 9c:05:46:e1:bb:16:f6:77:dc:e2:42:c9:4c:b4:15: c6:c1:28:fe:54:31:f3:67:26:54:66:fe:41:6f:96: a9:d2:a1:96:df:fd:4f:0e:d0:24:9f:f5:d2:40:8f: 1c:48:63:c3:aa:a1:68:4e:88:db:df:42:41:80:e5: 21:60:4d:5d:c2:57:7e:36:2e:e6:9d:9f:ca:10:8f: f9:5b:6c:e3:d3:3d:cc:14:90:37:2e:19:a8:e0:f7: 23:ee:48:10:38:b7:96:c7:3c:e2:e6:a3:e3:65:8c: 85:ef:d9:c0:c8:89:2c:aa:ed:8a:3a:e6:b5:64:95: 9e:47:d4:de:89:33:fd:af:44:de:60:96:80:f4:31: 9c:e2:8a:09:5c:f2:e1:a6:4d:c4:e8:c1:ce:81:74: 99:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:DA:A3:93:E5:91:60:A9:3B:44:00:CF:19:E9:95:C5:7A:AD:35:90 X509v3 Authority Key Identifier: keyid:A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:5c:9f:3a:05:de:02:8b:78:b5:30:98:5c:5a:07:1b:67:3d: 6f:89:b8:e9:a7:9b:15:0b:f4:92:3d:aa:63:f8:df:8d:39:29: 58:ee:e2:b2:6a:92:d7:08:dc:c9:12:df:32:f5:55:cd:4c:2f: 90:c0:35:a6:a9:4b:1b:0b:00:26:4d:9e:d1:95:3a:74:24:08: c8:35:bf:89:b9:c2:94:93:19:6b:8c:0b:0d:53:cf:e3:40:0f: fe:55:0f:5c:b6:76:08:97:2b:7c:05:87:db:2d:cb:16:b4:5a: 57:4b:ee:a6:56:51:08:78:e0:d9:9f:d5:06:dc:5d:0a:38:77: a7:1b:e0:f5:32:03:27:ec:4a:16:3e:e3:29:d3:af:ae:15:0b: 8c:8f:1a:61:b7:c1:de:b6:b6:57:1d:14:b6:bd:bc:f3:77:69: 47:64:d4:a6:bf:a3:ec:95:57:61:d9:ea:15:11:46:90:b3:f5: 9d:d0:59:8c:c3:13:eb:9d:4c:06:ad:a5:7a:6f:9c:37:14:49: 2c:64:1c:e8:3e:0d:41:8c:90:18:4e:5b:1c:21:a7:05:d2:9b: 80:4a:ef:2e:a9:62:93:fa:2b:fa:fa:03:60:0c:82:18:52:dd: ce:49:46:90:6a:16:27:81:27:bf:65:1a:f8:56:d1:7e:0a:5a: 43:0f:97:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFNTUxMTAvBgNVBAUTKEEwMUEwRjA2RTMxMEIzODEzMDEzMUQ3ODgyOTcwQkYx NjJERDBENjYwHhcNMjUwOTA5MDEwMDUyWhcNMjUwOTE2MDEwMDUyWjAYMRYwFAYD VQQDEw02OGJmN2M0NC03YjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhUAhA4vv4hq/HmvbPs0oXaVYcNGzRk3DHxMFhPfXLq5IDK9EfKqO58UTSpI c+AAbG4Z7Ub3k9JD/7hyBEqjIq/wDVeQrEZCpWNd2M2upSfzD4jxVkHXPvFRD8xU K1hT135OHlZOIZ+cBUbhuxb2d9ziQslMtBXGwSj+VDHzZyZUZv5Bb5ap0qGW3/1P DtAkn/XSQI8cSGPDqqFoTojb30JBgOUhYE1dwld+Ni7mnZ/KEI/5W2zj0z3MFJA3 Lhmo4Pcj7kgQOLeWxzzi5qPjZYyF79nAyIksqu2KOua1ZJWeR9TeiTP9r0TeYJaA 9DGc4ooJXPLhpk3E6MHOgXSZ7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDao5Pl kWCpO0QAzxnplcV6rTWQMB8GA1UdIwQYMBaAFKAaDwbjELOBMBMdeIKXC/Fi3Q1m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEU1NS83RDMyQTc0RUM2 MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0RXdFeDE0Z3BjTDhXTGRE V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Cb1BCdU1RczRFd0V4MTRncGNMOFdMZERXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEU1NS83RDMyQTc0RUM2MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0 RXdFeDE0Z3BjTDhXTGREV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqXJ86Bd4Ci3i1MJhcWgcbZz1vibjpp5sVC/SSPapj+N+NOSlY7uKy apLXCNzJEt8y9VXNTC+QwDWmqUsbCwAmTZ7RlTp0JAjINb+JucKUkxlrjAsNU8/j QA/+VQ9ctnYIlyt8BYfbLcsWtFpXS+6mVlEIeODZn9UG3F0KOHenG+D1MgMn7EoW PuMp06+uFQuMjxpht8HetrZXHRS2vbzzd2lHZNSmv6PslVdh2eoVEUaQs/Wd0FmM wxPrnUwGraV6b5w3FEksZBzoPg1BjJAYTlscIacF0puASu8uqWKT+iv6+gNgDIIY Ut3OSUaQahYngSe/ZRr4VtF+ClpDD5eZ -----END CERTIFICATE-----Generated at Tue Sep 9 18:24:40 2025 by rpki-client