$ rpki-client -vvf rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft File: O0irhhZS-u7X4dElg_Frt_uyiRM.mft (raw, json) Hash identifier: vJbDQdtcFFZ4tappcSuRx8pxPEKubmoUn/U8VoTyiTc= Subject key identifier: C5:D2:C2:B1:12:8B:48:29:8E:0F:4A:5E:A7:29:E6:99:02:6E:32:A9 Authority key identifier: 3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 Certificate issuer: /CN=A9176909/serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft Manifest number: 0227 Signing time: Thu 21 Aug 2025 02:12:29 +0000 Manifest this update: Thu 21 Aug 2025 02:12:29 +0000 Manifest next update: Thu 28 Aug 2025 02:12:29 +0000 Files and hashes: 1: O0irhhZS-u7X4dElg_Frt_uyiRM.crl (hash: aiH6jp8mf5ySI4tS8PbdkelA2qTr3n0ohcrYNfofiIc=) 2: EDE89884DB1711EF8929832EC4F9AE02.roa (hash: tqa1Ixra7BMwCWoNM3olfzFpbEkXEWmJXa4eDjgnFBc=) 3: 8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa (hash: eVGJpjXfZuqnT2xF5gSdYG+4NURN3G12aXx32PS/6hU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:12:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176909, serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Validity Not Before: Aug 21 02:12:29 2025 GMT Not After : Aug 28 02:12:29 2025 GMT Subject: CN=68a6808d-eac6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b2:20:29:22:c5:4d:5d:a0:c5:0c:c3:b8:f5: c0:7b:3e:34:8a:ec:88:7b:2e:86:5d:2c:da:5d:68: 51:c8:33:59:b7:b6:24:5f:06:c8:b9:b0:33:e1:1f: 26:4c:1b:ac:18:74:0a:65:fe:b3:3d:76:98:2c:80: 6f:e0:36:d5:f2:90:4a:34:35:af:b8:63:11:f5:c5: 02:29:fd:c4:84:6d:b4:68:b6:4f:85:eb:f1:8b:b3: b1:c1:a4:76:ba:f3:e4:58:6b:4e:c3:a7:31:9b:be: 34:f3:aa:16:de:39:14:1f:63:db:6d:36:2c:95:11: 9c:b4:01:3d:df:db:68:26:13:70:c9:01:e5:2f:8f: 73:a4:ef:6b:c7:d8:a5:2c:e4:c2:04:9d:86:6b:fc: 02:0a:19:a4:6b:d3:39:aa:37:8a:ba:7a:84:df:07: f2:2e:a5:71:17:aa:dd:3a:2a:29:16:99:1e:5f:84: ae:09:b5:0e:8d:30:e8:7e:05:da:c1:69:cf:b8:bd: 8d:bc:5e:f5:91:f9:c3:2b:82:79:c6:05:58:22:bd: ab:63:6c:eb:24:09:10:37:fd:ef:eb:5f:68:77:9e: 60:19:9e:1a:8b:34:47:1c:9c:d9:26:ca:cc:fc:65: 2c:3e:82:d3:52:0a:6a:03:b7:73:9b:bb:6a:f5:c4: 20:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D2:C2:B1:12:8B:48:29:8E:0F:4A:5E:A7:29:E6:99:02:6E:32:A9 X509v3 Authority Key Identifier: keyid:3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:e9:44:63:c5:c8:b6:f4:39:4a:c3:51:45:51:05:dd:2b:4e: 4f:59:b7:be:8f:a4:07:2f:d6:71:ce:48:d8:50:dd:17:ba:75: 11:8e:9f:45:cb:49:35:7f:2f:b6:8a:b3:57:b6:71:cf:cf:34: 91:78:7d:78:90:51:c1:af:9e:e3:78:be:ef:48:b5:2a:e8:c9: 93:22:35:7a:64:0d:64:03:dc:8b:ac:f0:b1:d7:8c:46:a4:d5: 0c:9d:61:ed:09:d4:bf:99:89:f0:05:d4:2d:03:f4:9d:df:2e: 71:49:b2:87:8a:22:ee:fa:55:81:50:eb:4d:7f:32:40:96:b7: fb:9f:f4:af:06:94:ad:8d:5b:3e:35:c8:79:85:d9:d6:a8:b0: 3c:30:1c:16:1d:3e:b8:0e:ff:03:98:86:1d:52:36:7f:3e:a4: 11:91:b9:6a:4b:8e:b4:f6:1a:bf:9d:d9:ac:01:a8:99:66:05: 8c:d7:57:22:be:db:12:79:3c:9f:17:71:ee:55:38:5f:0b:4f: 37:31:0a:a2:bf:3c:80:da:62:71:cf:22:47:d0:a9:fd:49:d4: 48:97:31:d1:68:f4:aa:9a:39:6e:5e:38:0f:65:9a:0a:0d:f3: 27:27:50:dc:71:a2:a9:a4:46:db:91:25:7e:e3:4b:24:c4:a9: 35:f6:aa:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY5MDkxMTAvBgNVBAUTKDNCNDhBQjg2MTY1MkZBRUVEN0UxRDEyNTgzRjE2QkI3 RkJCMjg5MTMwHhcNMjUwODIxMDIxMjI5WhcNMjUwODI4MDIxMjI5WjAYMRYwFAYD VQQDEw02OGE2ODA4ZC1lYWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rIgKSLFTV2gxQzDuPXAez40iuyIey6GXSzaXWhRyDNZt7YkXwbIubAz4R8m TBusGHQKZf6zPXaYLIBv4DbV8pBKNDWvuGMR9cUCKf3EhG20aLZPhevxi7OxwaR2 uvPkWGtOw6cxm74086oW3jkUH2PbbTYslRGctAE939toJhNwyQHlL49zpO9rx9il LOTCBJ2Ga/wCChmka9M5qjeKunqE3wfyLqVxF6rdOiopFpkeX4SuCbUOjTDofgXa wWnPuL2NvF71kfnDK4J5xgVYIr2rY2zrJAkQN/3v619od55gGZ4aizRHHJzZJsrM /GUsPoLTUgpqA7dzm7tq9cQgUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXSwrES i0gpjg9KXqcp5pkCbjKpMB8GA1UdIwQYMBaAFDtIq4YWUvru1+HRJYPxa7f7sokT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjkwOS85QUJBQ0FDODRE Q0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11N1g0ZEVsZ19GcnRfdXlp Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08waXJoaFpTLXU3WDRkRWxnX0ZydF91eWlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjkwOS85QUJBQ0FDODREQ0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11 N1g0ZEVsZ19GcnRfdXlpUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp6URjxci29DlKw1FFUQXdK05PWbe+j6QHL9ZxzkjYUN0XunURjp9F y0k1fy+2irNXtnHPzzSReH14kFHBr57jeL7vSLUq6MmTIjV6ZA1kA9yLrPCx14xG pNUMnWHtCdS/mYnwBdQtA/Sd3y5xSbKHiiLu+lWBUOtNfzJAlrf7n/SvBpStjVs+ Nch5hdnWqLA8MBwWHT64Dv8DmIYdUjZ/PqQRkblqS4609hq/ndmsAaiZZgWM11ci vtsSeTyfF3HuVThfC083MQqivzyA2mJxzyJH0Kn9SdRIlzHRaPSqmjluXjgPZZoK DfMnJ1DccaKppEbbkSV+40skxKk19qpk -----END CERTIFICATE-----Generated at Fri Aug 22 16:18:18 2025 by rpki-client