$ rpki-client -vvf rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft File: OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft (raw, json) Hash identifier: zKqEcJJ4fPOdHfVKXmpZt6w/AlDakEgMVQGCsL9idEQ= Subject key identifier: 75:87:2D:85:78:52:6A:B9:86:7E:C1:76:98:36:E8:5B:66:E7:A7:91 Authority key identifier: 38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 Certificate issuer: /CN=A9151638/serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Certificate serial: 04AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft Manifest number: 04A7 Signing time: Fri 05 Sep 2025 00:14:47 +0000 Manifest this update: Fri 05 Sep 2025 00:14:47 +0000 Manifest next update: Fri 12 Sep 2025 00:14:47 +0000 Files and hashes: 1: OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl (hash: 64jV26pAjm9V0tBJ8hiyy8IZGpa22EuFwigLuro/keA=) 2: 2404BA68477011EC8A31B762C4F9AE02.roa (hash: LZSDyQE8pTBtNGB8AYE8ckz2kTeKfiBGL7LhbO/Zt7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1197 (0x4ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151638, serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Validity Not Before: Sep 5 00:14:47 2025 GMT Not After : Sep 12 00:14:47 2025 GMT Subject: CN=68ba2b77-1688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:c9:59:04:e0:5d:1f:2c:a3:1b:9d:b8:95: 94:e6:1a:a6:ec:34:e9:01:08:02:b8:48:ff:6c:ed: ca:65:9a:0c:9f:7c:cc:1c:36:90:b2:a3:88:e3:58: 5f:b2:31:6d:8c:45:75:4c:0a:08:25:10:ed:e0:a9: 9c:60:05:05:d8:33:2d:c9:4e:e4:e2:ad:d7:20:2a: 0b:75:33:cd:89:4b:6f:cf:ab:8c:fc:2a:ed:42:6f: 30:26:c0:a5:73:95:51:73:09:56:56:d7:2f:62:87: 92:7f:50:c8:c6:c5:72:ad:a5:9b:ad:c1:11:89:0d: b2:6f:41:bd:71:aa:ed:6a:fd:0c:ee:ed:30:60:e7: 04:e4:12:0e:e7:26:87:44:b9:ee:5a:9c:5a:2f:51: 92:6a:db:97:ff:87:db:25:81:42:a7:a6:73:7a:e1: 50:31:e6:33:e6:a9:dd:80:9f:59:48:bd:91:44:20: 80:f8:63:24:ca:f5:75:93:5a:c0:e3:b0:fd:e3:1b: aa:3b:26:6f:29:56:72:4d:13:66:47:11:2b:16:13: b3:75:0f:f7:17:10:ae:2a:ad:36:4e:69:5d:8a:d9: 88:1a:52:f7:de:b1:39:01:40:e5:8e:12:55:b0:39: 7b:dc:11:fa:cc:0a:da:87:fc:89:e7:8d:9f:87:ef: 05:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:87:2D:85:78:52:6A:B9:86:7E:C1:76:98:36:E8:5B:66:E7:A7:91 X509v3 Authority Key Identifier: keyid:38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:ab:f1:ce:e5:0f:36:e1:ab:d5:73:4b:0f:e9:4f:a9:47:53: 58:d6:b8:5a:1a:1a:c9:6d:3a:0f:ad:df:1d:96:3b:aa:8a:04: 3a:b5:ea:31:42:fd:ed:cf:ce:11:84:a1:0f:a4:c0:29:7b:60: 84:b0:da:0c:f9:30:ff:96:34:e6:ed:11:58:fc:da:a4:1f:a8: 0d:80:b2:0b:7b:4b:65:d4:aa:fe:9d:c6:a5:95:19:58:c2:4a: 80:94:3d:3c:7d:0b:1b:4e:26:27:23:8a:48:72:07:31:eb:99: 0f:7b:a0:ac:3d:40:b6:4b:34:ec:15:ec:3d:40:0d:ed:e2:8e: 78:cb:3c:d8:aa:24:c8:14:b1:b7:0b:57:85:aa:24:34:7d:f7: 07:6e:94:6d:cf:02:22:84:de:64:b8:ca:a2:18:05:55:66:d3: d5:0f:af:fc:86:02:15:d9:20:f1:27:26:1f:fe:0a:37:59:24: 87:5b:9c:3b:6c:51:71:75:4b:5d:cb:7e:98:81:d2:a4:1f:75: e2:59:24:5f:6b:c6:fa:b1:7c:28:d2:b6:20:07:df:0f:83:97: 8f:d3:a6:41:71:ab:c9:31:65:c5:77:c4:c0:dc:73:96:dd:ea: 40:0b:10:d9:8e:dd:92:80:3e:35:dc:dd:e0:ac:45:07:97:fa: 59:9f:b4:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2MzgxMTAvBgNVBAUTKDM4NTkyRjA1NkY4M0NDRDQwQTYyQUUxMTYwMjkyNjk0 Mjg1QTJDRjQwHhcNMjUwOTA1MDAxNDQ3WhcNMjUwOTEyMDAxNDQ3WjAYMRYwFAYD VQQDEw02OGJhMmI3Ny0xNjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl/JWQTgXR8soxuduJWU5hqm7DTpAQgCuEj/bO3KZZoMn3zMHDaQsqOI41hf sjFtjEV1TAoIJRDt4KmcYAUF2DMtyU7k4q3XICoLdTPNiUtvz6uM/CrtQm8wJsCl c5VRcwlWVtcvYoeSf1DIxsVyraWbrcERiQ2yb0G9cartav0M7u0wYOcE5BIO5yaH RLnuWpxaL1GSatuX/4fbJYFCp6ZzeuFQMeYz5qndgJ9ZSL2RRCCA+GMkyvV1k1rA 47D94xuqOyZvKVZyTRNmRxErFhOzdQ/3FxCuKq02TmlditmIGlL33rE5AUDljhJV sDl73BH6zArah/yJ542fh+8F0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWHLYV4 Umq5hn7Bdpg26Ftm56eRMB8GA1UdIwQYMBaAFDhZLwVvg8zUCmKuEWApJpQoWiz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTYzOC8xMjcxMTczMjQ3 NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpOUUtZcTRSWUNrbWxDaGFM UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Ga3ZCVy1Eek5RS1lxNFJZQ2ttbENoYUxQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTYzOC8xMjcxMTczMjQ3NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpO UUtZcTRSWUNrbWxDaGFMUFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhq/HO5Q824avVc0sP6U+pR1NY1rhaGhrJbToPrd8dljuqigQ6teox Qv3tz84RhKEPpMApe2CEsNoM+TD/ljTm7RFY/NqkH6gNgLILe0tl1Kr+ncallRlY wkqAlD08fQsbTiYnI4pIcgcx65kPe6CsPUC2SzTsFew9QA3t4o54yzzYqiTIFLG3 C1eFqiQ0ffcHbpRtzwIihN5kuMqiGAVVZtPVD6/8hgIV2SDxJyYf/go3WSSHW5w7 bFFxdUtdy36YgdKkH3XiWSRfa8b6sXwo0rYgB98Pg5eP06ZBcavJMWXFd8TA3HOW 3epACxDZjt2SgD413N3grEUHl/pZn7TF -----END CERTIFICATE-----Generated at Sat Sep 6 13:25:05 2025 by rpki-client