$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: 2AiL2rRonH0G+/T2infh6lhqfzudSmRo3TwK1WapEII= Subject key identifier: F4:8D:C2:D7:68:8C:F6:BB:75:0E:21:6F:19:BF:13:B3:B8:44:D9:66 Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 0163 Signing time: Sun 07 Sep 2025 04:22:29 +0000 Manifest this update: Sun 07 Sep 2025 04:22:28 +0000 Manifest next update: Sun 14 Sep 2025 04:22:28 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: 5wSFeyhf/Ucv4ugCIah+H2h9VTQwxNKGNg2iuA/GvFc=) 2: 2D7DCF98BA1411EFBD0C393DC4F9AE02.roa (hash: fg42UFyy2LFjnZK3Qasj9lnWcNe6AFnhvIhyePUvpAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 04:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B, serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: Sep 7 04:22:28 2025 GMT Not After : Sep 14 04:22:28 2025 GMT Subject: CN=68bd0884-342c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:34:70:93:43:3e:62:75:7c:1a:e1:b6:3e:cd: 2b:8b:e8:3f:16:df:46:82:7a:56:13:9a:3e:90:73: 96:90:52:8d:8c:58:e8:46:79:d4:db:90:36:9f:ed: 2f:e5:95:db:4b:9d:0d:ee:48:77:94:c1:3a:d5:3d: d5:6e:5d:ed:f4:1b:50:8b:d8:77:e7:2f:40:17:5f: d9:37:57:91:ab:4a:18:c3:ca:31:1d:b0:20:78:ad: bf:e6:10:5e:71:38:5c:5d:b8:6b:08:a7:12:bd:82: 1c:bc:ed:a8:bf:4d:53:b8:42:5f:92:83:46:59:5c: 16:db:e6:18:34:e1:6f:b4:fd:09:9b:03:ce:08:09: 8a:1e:df:3e:e9:17:d2:b6:18:aa:f2:ee:33:8f:d1: 8c:e7:d6:68:3c:32:53:4a:13:87:ca:1b:c9:cb:89: 92:ec:c3:a7:ee:bf:3f:f7:d5:6e:88:45:af:cb:6b: db:00:b1:c6:e0:30:9f:0d:ef:6f:10:7c:63:a2:9d: a1:03:66:b0:c0:4e:83:71:0a:e2:28:26:d8:50:60: 5f:29:a6:40:43:da:ba:8a:81:07:50:42:03:21:89: a1:ae:3a:58:82:fa:06:f9:83:40:ee:9c:65:d7:b9: 38:19:30:c6:64:4f:46:f6:93:a2:b8:13:9f:11:4c: 8c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:8D:C2:D7:68:8C:F6:BB:75:0E:21:6F:19:BF:13:B3:B8:44:D9:66 X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:a0:60:16:8d:0f:53:a2:6d:6a:93:1e:93:35:3a:1a:98:78: 0c:ae:b2:3d:2c:6f:65:12:06:57:c2:a0:2a:ab:2d:2c:07:a4: e6:82:b7:a0:c1:59:c2:93:f0:83:0b:91:b2:c2:9c:36:be:6a: ca:19:87:bc:d6:97:7f:33:45:84:9d:1b:8c:42:b8:f9:01:15: 16:d4:0b:df:0c:68:91:68:71:02:35:53:c9:56:65:ca:28:e2: 2c:fc:76:30:d7:20:28:55:1d:94:b9:8a:e1:9b:a2:61:01:11: 40:63:a4:d3:99:60:b4:72:99:e0:c7:25:71:4c:71:f6:fc:aa: 00:59:38:96:8b:fc:5c:53:14:31:d1:ee:f7:3d:1e:b5:89:87: 49:1f:36:4e:11:34:e2:32:cf:54:4c:ff:ed:16:16:20:bf:e2: c0:58:79:43:95:cb:ae:b3:71:51:ed:30:87:41:bf:46:03:e9: c0:a8:8a:b7:0e:bf:3b:05:f3:11:17:1e:ee:95:cf:2c:01:87: 50:db:35:ec:31:f7:73:93:99:d9:cb:6d:4d:9e:68:37:e3:8a: 1e:5f:92:fe:a0:97:fa:ec:b6:8f:14:8a:33:63:df:48:6d:6b: d6:e8:92:78:a6:80:e4:50:46:f0:9c:e8:5e:7f:12:a9:d9:67: b9:5f:8b:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjUwOTA3MDQyMjI4WhcNMjUwOTE0MDQyMjI4WjAYMRYwFAYD VQQDEw02OGJkMDg4NC0zNDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjRwk0M+YnV8GuG2Ps0ri+g/Ft9GgnpWE5o+kHOWkFKNjFjoRnnU25A2n+0v 5ZXbS50N7kh3lME61T3Vbl3t9BtQi9h35y9AF1/ZN1eRq0oYw8oxHbAgeK2/5hBe cThcXbhrCKcSvYIcvO2ov01TuEJfkoNGWVwW2+YYNOFvtP0JmwPOCAmKHt8+6RfS thiq8u4zj9GM59ZoPDJTShOHyhvJy4mS7MOn7r8/99VuiEWvy2vbALHG4DCfDe9v EHxjop2hA2awwE6DcQriKCbYUGBfKaZAQ9q6ioEHUEIDIYmhrjpYgvoG+YNA7pxl 17k4GTDGZE9G9pOiuBOfEUyMCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSNwtdo jPa7dQ4hbxm/E7O4RNlmMB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBq WjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADoGAWjQ9Tom1qkx6TNToamHgMrrI9LG9lEgZXwqAqqy0sB6Tmgreg wVnCk/CDC5Gywpw2vmrKGYe81pd/M0WEnRuMQrj5ARUW1AvfDGiRaHECNVPJVmXK KOIs/HYw1yAoVR2UuYrhm6JhARFAY6TTmWC0cpngxyVxTHH2/KoAWTiWi/xcUxQx 0e73PR61iYdJHzZOETTiMs9UTP/tFhYgv+LAWHlDlcuus3FR7TCHQb9GA+nAqIq3 Dr87BfMRFx7ulc8sAYdQ2zXsMfdzk5nZy21Nnmg344oeX5L+oJf67LaPFIozY99I bWvW6JJ4poDkUEbwnOhefxKp2We5X4sd -----END CERTIFICATE-----Generated at Sun Sep 7 15:33:42 2025 by rpki-client