$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: BZAiTF4N5Kb/8TU3smc6jbmT9iZtBqUJMCvs3YPsq30= Subject key identifier: 0B:4C:67:95:AB:56:70:66:87:32:04:7F:A5:1E:75:04:B9:3A:49:D9 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 05EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 05DF Signing time: Thu 04 Sep 2025 23:16:43 +0000 Manifest this update: Thu 04 Sep 2025 23:16:43 +0000 Manifest next update: Thu 11 Sep 2025 23:16:43 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: pV0G7jFQQuancEi/78c+4g76cGoUsgdtolxIhBHaIjM=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: Ews4xG+BhGr1YKU7wFoc4NdQF1qugSkJAZpv3+K1VQA=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: ixAKLgsVNfo1Pz8i7g4aRb3j68KYgsQlay7em4iJOQg=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1514 (0x5ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Sep 4 23:16:43 2025 GMT Not After : Sep 11 23:16:43 2025 GMT Subject: CN=68ba1ddb-654f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:06:f0:8c:fe:92:eb:45:2e:5e:cf:3a:25:09: 5c:03:85:e5:88:3a:90:e4:b1:47:49:d9:7f:cb:52: 41:5b:c5:0e:35:de:17:45:e6:7f:24:33:ea:c0:44: cf:b7:76:78:28:ea:25:7d:30:af:fb:af:90:e2:f5: fe:c7:b8:c3:01:1b:96:93:bc:e1:6f:76:1f:21:77: 1a:46:dd:ff:fc:b4:2f:74:43:fd:63:81:a2:8c:1c: 85:42:d0:b4:ff:21:7a:97:5c:4b:a3:1c:f8:4e:34: d4:c5:94:0f:6d:51:1c:d1:8a:dc:89:cc:c5:75:97: 89:04:55:02:79:c0:5a:ed:44:6f:eb:4c:01:22:0b: a5:36:4d:d0:6d:c7:5e:ab:4e:76:20:85:f3:1e:3b: 8e:90:0f:c6:ba:fa:4c:97:84:37:8c:c5:35:ae:54: f9:9c:da:48:b0:d8:b7:e1:59:72:76:91:f6:d4:2a: d5:23:df:10:3e:f2:fe:ce:75:7f:f8:d9:5c:27:10: 2b:ff:fe:42:97:a9:17:3f:65:bb:23:1d:07:84:c5: bc:c2:fd:2c:4e:4a:fc:89:87:ee:5f:32:e8:0f:3c: 6f:5b:c9:df:83:dd:85:20:9c:c2:6a:f0:b7:c2:30: 32:50:ac:7e:fb:d2:1e:77:fc:05:83:9f:fe:8e:97: bf:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:4C:67:95:AB:56:70:66:87:32:04:7F:A5:1E:75:04:B9:3A:49:D9 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:18:0b:e1:3c:1f:14:91:30:f3:b4:14:9e:57:56:a8:12:3a: 80:38:8e:23:3b:03:9a:5d:1f:a6:57:cc:a9:d7:89:a1:8e:bc: 48:b7:5e:66:3a:c8:15:ed:7e:ec:11:4d:1f:69:af:fe:8a:9a: 31:81:b3:69:30:99:ba:f1:3d:b4:78:0d:80:3f:60:43:1a:ac: 23:ee:36:40:67:05:99:a0:45:46:84:c9:3f:7f:c0:24:4d:5a: 64:96:03:82:66:99:bb:b1:aa:70:cf:79:4e:1e:a0:a9:1c:50: fa:57:09:07:32:56:00:d3:66:b0:84:51:da:60:d2:63:a8:ab: 46:b1:b1:b5:d2:51:ae:11:87:53:f2:53:77:32:41:c4:d6:eb: fc:37:2e:ee:bf:f6:11:c2:20:3c:92:d0:fd:9e:67:fd:23:83: 6d:65:9c:da:fc:45:01:1b:1f:f7:cc:c5:13:6a:c5:d0:32:9a: 91:31:56:6e:b7:d7:ac:dc:e8:50:b5:c6:38:33:58:d3:20:2b: 75:49:27:ad:ef:d5:cc:1a:68:d6:1f:8d:cb:a8:c8:ce:4e:e7: a1:14:8c:75:60:60:b0:6e:68:be:76:76:4a:70:ad:ab:84:91: 8a:16:4f:16:23:53:8c:e6:54:64:bd:63:0d:49:7d:9c:a8:40: fe:b4:a1:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUwOTA0MjMxNjQzWhcNMjUwOTExMjMxNjQzWjAYMRYwFAYD VQQDEw02OGJhMWRkYi02NTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAbwjP6S60UuXs86JQlcA4XliDqQ5LFHSdl/y1JBW8UONd4XReZ/JDPqwETP t3Z4KOolfTCv+6+Q4vX+x7jDARuWk7zhb3YfIXcaRt3//LQvdEP9Y4GijByFQtC0 /yF6l1xLoxz4TjTUxZQPbVEc0YrciczFdZeJBFUCecBa7URv60wBIgulNk3Qbcde q052IIXzHjuOkA/GuvpMl4Q3jMU1rlT5nNpIsNi34VlydpH21CrVI98QPvL+znV/ +NlcJxAr//5Cl6kXP2W7Ix0HhMW8wv0sTkr8iYfuXzLoDzxvW8nfg92FIJzCavC3 wjAyUKx++9Ied/wFg5/+jpe/3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtMZ5Wr VnBmhzIEf6UedQS5OknZMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpGAvhPB8UkTDztBSeV1aoEjqAOI4jOwOaXR+mV8yp14mhjrxIt15m OsgV7X7sEU0faa/+ipoxgbNpMJm68T20eA2AP2BDGqwj7jZAZwWZoEVGhMk/f8Ak TVpklgOCZpm7sapwz3lOHqCpHFD6VwkHMlYA02awhFHaYNJjqKtGsbG10lGuEYdT 8lN3MkHE1uv8Ny7uv/YRwiA8ktD9nmf9I4NtZZza/EUBGx/3zMUTasXQMpqRMVZu t9es3OhQtcY4M1jTICt1SSet79XMGmjWH43LqMjOTuehFIx1YGCwbmi+dnZKcK2r hJGKFk8WI1OM5lRkvWMNSX2cqED+tKEc -----END CERTIFICATE-----Generated at Sat Sep 6 11:51:07 2025 by rpki-client