$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: MMr839HJbeV4gxKiwDYV4OV9mfU3+D3q4Gs2aRKTjGA= Subject key identifier: BC:8F:62:16:94:EC:EF:EC:72:02:0A:C8:2C:70:B8:75:0A:F8:E0:27 Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 0150 Signing time: Wed 17 Sep 2025 04:47:08 +0000 Manifest this update: Wed 17 Sep 2025 04:47:07 +0000 Manifest next update: Wed 24 Sep 2025 04:47:07 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: jsY+h3HTRncA5DVPlB3iTq2N2jket6l+J7y+r1v1KXw=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: I77zej0g2IdMx6WMXQdInqyMmRTM3TktU3rYTAd3Uxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547, serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: Sep 17 04:47:07 2025 GMT Not After : Sep 24 04:47:07 2025 GMT Subject: CN=68ca3d4c-be52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:79:7b:28:bd:09:fa:7f:33:82:96:16:5f:c6: 35:99:5a:32:d3:06:fd:53:fa:db:b9:fb:40:44:a2: f7:ab:44:cf:68:b9:0e:c6:a7:8a:e9:b4:6c:c9:e0: c3:06:df:0b:de:e0:2d:4f:0b:a2:dd:ac:2d:e9:aa: 46:ff:1f:5f:26:21:90:df:85:a8:b7:f6:32:07:46: 62:ac:79:36:fd:6d:5f:87:e5:07:d9:3a:9f:cb:cb: f9:f8:ec:52:a5:a3:65:0f:00:a4:93:99:5f:48:66: 69:53:25:b7:88:20:8e:de:4b:00:1a:53:20:1c:cf: 43:e7:24:5b:34:26:f4:86:17:2b:05:77:6f:ea:36: 81:df:74:94:7a:66:8f:cf:34:56:b5:85:20:27:bc: b4:18:7c:71:24:54:0b:09:d1:73:5e:71:a5:55:30: 65:7f:1c:cd:5b:b8:c0:5c:59:ce:ed:6c:48:9f:2f: 19:a1:60:67:0c:db:4c:05:33:6a:0d:87:5d:57:ea: 94:92:4a:3b:e9:76:a1:50:19:5a:b0:7a:ef:d0:81: e4:35:a0:c2:be:54:03:da:4c:6b:69:b2:b5:64:36: 8c:ba:ef:04:0a:41:b9:2c:05:ed:a4:1c:4b:e4:7c: 4e:c5:91:17:4d:4c:bd:90:4e:a3:a3:77:04:9c:b0: 9a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:8F:62:16:94:EC:EF:EC:72:02:0A:C8:2C:70:B8:75:0A:F8:E0:27 X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:5e:8f:b3:80:41:20:97:28:fb:e5:79:98:8c:f2:74:11:1b: 68:0c:5f:5c:25:4a:97:53:ae:04:e2:47:d9:1a:7e:b6:37:f5: e2:8c:3c:54:1f:66:e5:41:f2:00:34:07:c5:f4:50:e1:c4:c3: 42:fd:99:09:56:79:af:e8:8a:ce:dd:e4:ef:8d:71:17:04:78: c8:ef:d3:ad:5e:36:08:9c:65:30:a0:9d:76:b0:5c:d5:7d:cd: 96:e0:c6:c1:6f:f2:5b:f4:06:a6:4e:74:b6:c6:bd:56:c3:55: 78:d4:bf:09:b3:6b:45:aa:f6:92:8d:7f:f0:4e:fd:2c:20:7c: a6:09:90:d0:a2:a0:59:49:89:ce:cf:08:7e:43:4b:5b:a6:15: 12:5c:3b:80:6f:b8:45:f0:c7:b7:62:f5:64:00:5e:c3:d6:77: d6:ac:44:9e:40:e2:32:16:77:c9:d1:e2:63:0b:82:0c:bd:ce: e5:4d:ca:d7:63:75:a4:8a:20:60:0b:16:0a:be:3c:83:af:e6: 86:80:89:16:ce:f5:29:11:b8:1b:b4:47:7b:37:35:df:c3:f6: 49:9c:24:6c:25:f1:15:a9:56:fc:f2:ea:82:73:67:5c:4d:1f: 64:58:b7:cf:69:a0:e9:ad:77:cf:e1:13:86:95:e6:52:2f:54: f3:f7:c8:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjUwOTE3MDQ0NzA3WhcNMjUwOTI0MDQ0NzA3WjAYMRYwFAYD VQQDEw02OGNhM2Q0Yy1iZTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnl7KL0J+n8zgpYWX8Y1mVoy0wb9U/rbuftARKL3q0TPaLkOxqeK6bRsyeDD Bt8L3uAtTwui3awt6apG/x9fJiGQ34Wot/YyB0ZirHk2/W1fh+UH2Tqfy8v5+OxS paNlDwCkk5lfSGZpUyW3iCCO3ksAGlMgHM9D5yRbNCb0hhcrBXdv6jaB33SUemaP zzRWtYUgJ7y0GHxxJFQLCdFzXnGlVTBlfxzNW7jAXFnO7WxIny8ZoWBnDNtMBTNq DYddV+qUkko76XahUBlasHrv0IHkNaDCvlQD2kxrabK1ZDaMuu8ECkG5LAXtpBxL 5HxOxZEXTUy9kE6jo3cEnLCarQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyPYhaU 7O/scgIKyCxwuHUK+OAnMB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU0Ny9CMzg2NjhFNDkyQTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9p T29VdWxSVUdYSVdqT2VjNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEXo+zgEEglyj75XmYjPJ0ERtoDF9cJUqXU64E4kfZGn62N/XijDxU H2blQfIANAfF9FDhxMNC/ZkJVnmv6IrO3eTvjXEXBHjI79OtXjYInGUwoJ12sFzV fc2W4MbBb/Jb9AamTnS2xr1Ww1V41L8Js2tFqvaSjX/wTv0sIHymCZDQoqBZSYnO zwh+Q0tbphUSXDuAb7hF8Me3YvVkAF7D1nfWrESeQOIyFnfJ0eJjC4IMvc7lTcrX Y3WkiiBgCxYKvjyDr+aGgIkWzvUpEbgbtEd7NzXfw/ZJnCRsJfEVqVb88uqCc2dc TR9kWLfPaaDprXfP4ROGleZSL1Tz98hM -----END CERTIFICATE-----Generated at Thu Sep 18 20:51:13 2025 by rpki-client