$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: KEgpNo10wZa7nGa9OKeLWPqXHZ586VwaI2UbyX7rYAI= Subject key identifier: 6C:D4:5D:FC:E4:2A:22:C4:CC:BA:5F:44:09:AD:73:E5:9C:84:CB:D7 Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 0199 Signing time: Thu 21 Aug 2025 03:28:15 +0000 Manifest this update: Thu 21 Aug 2025 03:28:14 +0000 Manifest next update: Thu 28 Aug 2025 03:28:14 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: oVL89aXRFXa/nDz9BZEeVpzrln+azIaVirtlM3iQano=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: Hgvy/rbsLEaWAnrB/PMoMX/RB2XdkdZAeykYpDBMbDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Aug 21 03:28:14 2025 GMT Not After : Aug 28 03:28:14 2025 GMT Subject: CN=68a6924f-6efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:48:13:b5:fa:98:eb:29:d9:f8:33:94:ac:92: ee:88:1c:7f:c3:c8:8c:a7:e7:f8:f8:53:f9:96:ff: 84:93:c7:0c:09:5c:62:5e:11:6c:95:78:3e:33:6e: 49:94:73:79:21:cf:93:62:82:ae:ef:da:c5:73:b1: 68:2e:44:b3:f7:42:65:b3:46:e0:92:94:a8:2d:4d: 49:ac:19:ba:bd:4d:59:4f:aa:df:43:8f:44:f1:9a: c7:f1:28:cd:29:5d:ab:98:a1:c3:0c:e9:57:f1:77: 8d:4c:3a:b1:b7:61:0d:38:54:d2:c5:67:3d:79:dd: 72:3f:c0:0b:3e:b1:0f:68:6e:d0:cd:78:94:c4:66: ac:77:2e:e4:f6:7a:e7:b7:35:21:c7:30:81:e9:bc: aa:fc:1a:59:b7:38:48:86:e9:f9:d8:8d:56:68:62: 67:53:39:4e:ea:0e:20:72:72:8d:92:45:17:51:6a: 59:e5:f5:a1:be:d9:e8:d2:d8:d2:57:ec:10:ef:c7: 56:10:4a:db:26:12:09:5a:14:63:b2:12:fd:f1:4d: 9a:b4:b7:b0:7e:74:f7:2e:18:b4:81:2e:3f:85:ec: 42:83:ee:7f:c4:a5:7c:1f:35:02:b4:cb:7f:2c:bf: 05:c4:61:f2:21:f6:8e:23:08:9e:71:d9:b4:62:cb: cd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D4:5D:FC:E4:2A:22:C4:CC:BA:5F:44:09:AD:73:E5:9C:84:CB:D7 X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:f9:2e:d1:6d:19:fb:7a:cb:ce:23:62:e1:58:a6:cc:aa:4e: a2:15:f0:64:27:4b:f7:b0:fe:6c:2b:5e:85:09:46:93:04:c4: 97:81:6f:31:61:50:a0:99:2a:8a:0a:8b:7a:40:2f:5c:9b:7b: 09:c7:97:b5:83:d4:59:a8:72:cd:3b:d8:f5:24:4d:54:25:ac: c8:f9:99:70:e7:62:26:0c:b8:53:48:33:cb:5e:7b:b6:9c:93: 86:7c:12:de:89:2a:ef:39:d1:2b:4b:77:aa:c9:f1:dc:8a:bb: 42:40:4b:ae:33:85:91:99:4a:2e:6c:54:85:7e:08:c8:50:29: 3d:0a:e4:ca:66:ed:91:c1:77:63:d0:b3:2e:b5:42:de:fa:53: 5f:4d:f7:ca:c3:ff:ec:d5:43:17:c3:f0:5e:99:bd:94:f1:03: 4c:6f:18:3f:f2:a8:17:6a:68:55:d3:66:f8:c4:26:35:df:4e: 26:8c:ce:93:d0:2c:49:81:2f:7d:ec:2e:9d:b1:0b:72:43:11: 25:e4:36:13:82:a1:6f:d1:44:2c:40:12:2a:3b:c8:32:55:9b: 07:2e:cd:01:b6:5d:85:48:7b:28:e6:b0:ac:50:af:36:98:40: 11:40:2f:bd:97:c4:7c:e5:d1:17:d9:e9:0f:b3:9b:dd:0b:54: 80:81:42:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjUwODIxMDMyODE0WhcNMjUwODI4MDMyODE0WjAYMRYwFAYD VQQDEw02OGE2OTI0Zi02ZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUgTtfqY6ynZ+DOUrJLuiBx/w8iMp+f4+FP5lv+Ek8cMCVxiXhFslXg+M25J lHN5Ic+TYoKu79rFc7FoLkSz90Jls0bgkpSoLU1JrBm6vU1ZT6rfQ49E8ZrH8SjN KV2rmKHDDOlX8XeNTDqxt2ENOFTSxWc9ed1yP8ALPrEPaG7QzXiUxGasdy7k9nrn tzUhxzCB6byq/BpZtzhIhun52I1WaGJnUzlO6g4gcnKNkkUXUWpZ5fWhvtno0tjS V+wQ78dWEErbJhIJWhRjshL98U2atLewfnT3Lhi0gS4/hexCg+5/xKV8HzUCtMt/ LL8FxGHyIfaOIwiecdm0YsvNpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzUXfzk KiLEzLpfRAmtc+WchMvXMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ+S7RbRn7esvOI2LhWKbMqk6iFfBkJ0v3sP5sK16FCUaTBMSXgW8x YVCgmSqKCot6QC9cm3sJx5e1g9RZqHLNO9j1JE1UJazI+Zlw52ImDLhTSDPLXnu2 nJOGfBLeiSrvOdErS3eqyfHcirtCQEuuM4WRmUoubFSFfgjIUCk9CuTKZu2RwXdj 0LMutULe+lNfTffKw//s1UMXw/Bemb2U8QNMbxg/8qgXamhV02b4xCY1304mjM6T 0CxJgS997C6dsQtyQxEl5DYTgqFv0UQsQBIqO8gyVZsHLs0Btl2FSHso5rCsUK82 mEARQC+9l8R85dEX2ekPs5vdC1SAgUKW -----END CERTIFICATE-----Generated at Thu Aug 21 10:32:50 2025 by rpki-client