$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: AmOC9uCTlpCYWWqazMFTUMkoYnR/uk9B53YO0bX3n4M= Subject key identifier: 96:F1:DB:C7:B1:5E:07:87:BD:7F:FB:21:C9:B9:F6:20:74:E3:9E:5C Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: 0126 Signing time: Fri 05 Sep 2025 05:02:57 +0000 Manifest this update: Fri 05 Sep 2025 05:02:56 +0000 Manifest next update: Fri 12 Sep 2025 05:02:56 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: bM76P9dK2FeCAhLqZBJUKQppf2yPElhu8Hg2V0EJUqU=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: Emtdf6B32dUyriQRU+z92VLtRvSD7HNe+9gqK+EmXtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1, serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Sep 5 05:02:56 2025 GMT Not After : Sep 12 05:02:56 2025 GMT Subject: CN=68ba6f01-2f53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:07:03:a3:7f:c4:40:a6:8d:84:05:dc:15:59: e1:af:18:c8:ac:da:8d:af:14:ea:93:32:21:d1:cb: 0d:ef:4a:2f:e5:35:90:2b:bc:2d:96:49:ef:4b:a6: 40:6d:7d:c8:4e:45:e0:15:bb:e1:e9:47:f4:45:af: eb:58:b6:19:33:8a:cc:11:4a:8a:dd:e8:d0:db:a4: 3d:64:c1:e5:f9:eb:fa:d0:12:9d:ef:81:0b:2b:22: 38:4b:7a:6d:bf:2e:51:3a:1b:f9:71:cc:71:65:01: 09:74:14:5b:e8:2c:2a:24:b2:7e:d7:ac:38:32:ab: d0:f5:58:16:a0:ea:4a:08:8f:1e:8c:a1:06:c8:d2: 6f:c6:a3:8f:cc:57:1f:e4:0a:21:80:b2:34:20:96: f5:f9:35:53:40:2a:df:6b:87:ab:f2:98:26:37:84: 77:95:fc:8f:dd:5a:73:78:4a:2c:2b:6a:47:89:39: 58:e6:da:d8:67:95:13:69:2f:50:83:9f:fa:8c:f3: bc:7c:8b:2d:69:c3:f9:f6:c3:e0:f2:f5:d1:3e:b7: 49:81:08:2b:01:3f:b7:54:5c:9b:a0:e4:66:9e:0e: 36:1a:1b:66:0d:c0:11:1b:23:d0:6a:3f:fc:db:b4: 14:31:9d:8a:97:b9:96:c2:02:c0:89:3d:ac:f1:9c: 4b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F1:DB:C7:B1:5E:07:87:BD:7F:FB:21:C9:B9:F6:20:74:E3:9E:5C X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:2f:88:bb:0d:b3:f2:67:27:d5:72:cb:03:4f:63:df:f0:dc: b6:6a:96:09:05:d7:cd:9c:46:3a:b8:d0:71:7e:53:4b:98:a1: 35:ab:7a:34:e7:94:ac:97:24:86:53:33:21:41:cf:ee:4e:19: 0c:6d:5b:2a:22:df:59:b4:6f:db:f5:83:62:ee:9a:3a:be:2b: e9:74:30:02:06:4b:7a:d5:ea:5e:59:69:aa:b7:c1:33:e8:e0: 43:2a:3e:d6:ac:3c:93:5c:00:3c:4e:79:2b:05:e6:e6:cc:ef: 90:53:23:ef:0b:e1:39:14:e0:e2:bd:e0:16:20:e7:3f:16:75: e4:45:1a:d5:15:d3:b0:51:bf:15:c0:f3:33:28:ca:b2:4a:50: 57:44:f4:53:23:81:16:b8:d0:05:e0:fb:9c:9f:16:bb:b5:0f: 45:3f:b4:20:8d:e2:8c:42:d5:45:0b:55:3f:40:f5:e8:ac:4d: dc:73:c7:91:72:ae:72:d9:d8:c3:90:1c:5e:9e:ad:6f:bb:bd: e6:fa:09:b4:9f:8f:aa:79:5d:ae:25:54:ce:24:2d:c7:f1:62: 8d:43:b0:8e:04:e8:07:98:78:cf:38:83:8a:50:21:4f:54:07: 67:db:44:ab:77:a4:9b:94:99:8c:18:0d:4e:c3:33:82:f9:56: 32:6f:37:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjUwOTA1MDUwMjU2WhcNMjUwOTEyMDUwMjU2WjAYMRYwFAYD VQQDEw02OGJhNmYwMS0yZjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gcDo3/EQKaNhAXcFVnhrxjIrNqNrxTqkzIh0csN70ov5TWQK7wtlknvS6ZA bX3ITkXgFbvh6Uf0Ra/rWLYZM4rMEUqK3ejQ26Q9ZMHl+ev60BKd74ELKyI4S3pt vy5ROhv5ccxxZQEJdBRb6CwqJLJ+16w4MqvQ9VgWoOpKCI8ejKEGyNJvxqOPzFcf 5AohgLI0IJb1+TVTQCrfa4er8pgmN4R3lfyP3VpzeEosK2pHiTlY5trYZ5UTaS9Q g5/6jPO8fIstacP59sPg8vXRPrdJgQgrAT+3VFyboORmng42GhtmDcARGyPQaj/8 27QUMZ2Kl7mWwgLAiT2s8ZxLIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbx28ex XgeHvX/7Icm59iB0455cMB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdz bXdiczladVBLS2R3T21PQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWL4i7DbPyZyfVcssDT2Pf8Ny2apYJBdfNnEY6uNBxflNLmKE1q3o0 55SslySGUzMhQc/uThkMbVsqIt9ZtG/b9YNi7po6vivpdDACBkt61epeWWmqt8Ez 6OBDKj7WrDyTXAA8TnkrBebmzO+QUyPvC+E5FODiveAWIOc/FnXkRRrVFdOwUb8V wPMzKMqySlBXRPRTI4EWuNAF4Pucnxa7tQ9FP7QgjeKMQtVFC1U/QPXorE3cc8eR cq5y2djDkBxenq1vu73m+gm0n4+qeV2uJVTOJC3H8WKNQ7COBOgHmHjPOIOKUCFP VAdn20Srd6SblJmMGA1OwzOC+VYybzcP -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:27 2025 by rpki-client