$ rpki-client -vvf rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft File: VwO1XNjigCKWBKELyM9bOAERY_o.mft (raw, json) Hash identifier: tAg5PZvg/PrOJw0B7ugGtSb/Gyfu+awB1FmkgQ/TR0s= Subject key identifier: 24:81:D9:CD:6E:56:FE:1F:1D:43:FB:5D:68:EA:E8:F5:41:EB:1C:B6 Authority key identifier: 57:03:B5:5C:D8:E2:80:22:96:04:A1:0B:C8:CF:5B:38:01:11:63:FA Certificate issuer: /CN=A9183EB3/serialNumber=5703B55CD8E280229604A10BC8CF5B38011163FA Certificate serial: 0A93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwO1XNjigCKWBKELyM9bOAERY_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft Manifest number: 0A8C Signing time: Sun 24 Aug 2025 19:34:08 +0000 Manifest this update: Sun 24 Aug 2025 19:34:07 +0000 Manifest next update: Sun 31 Aug 2025 19:34:07 +0000 Files and hashes: 1: VwO1XNjigCKWBKELyM9bOAERY_o.crl (hash: Pto+PMhodVaiEXzTD4xih0HkivqUbEk0/EcfPnd+VAw=) 2: D67C31E8637511EA8A698E0BC4F9AE02.roa (hash: 0G9HtTLZBqQUwE8UGiq72iqUjTtI4Gz6+fEdMQN9vkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.crl rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwO1XNjigCKWBKELyM9bOAERY_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2707 (0xa93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183EB3, serialNumber=5703B55CD8E280229604A10BC8CF5B38011163FA Validity Not Before: Aug 24 19:34:07 2025 GMT Not After : Aug 31 19:34:07 2025 GMT Subject: CN=68ab6930-848e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:77:fc:04:d3:07:1b:b4:ba:e8:ab:2e:5c:36: c8:a3:d9:96:d2:14:02:fc:86:78:c3:96:73:98:31: 58:1f:84:79:9e:e2:88:d1:c8:2e:a2:86:24:e0:c3: 71:31:b1:7c:89:fb:a1:52:a0:32:49:7a:e9:fb:ce: 1d:d6:ec:4d:25:de:37:ca:5d:e6:82:44:7c:09:b1: 97:36:0e:74:af:b4:bd:d1:c6:a1:fa:a1:dc:37:22: ab:14:ef:f4:e0:51:92:eb:76:79:66:26:20:f8:9d: 13:78:c4:5d:8c:27:d9:aa:38:01:ce:0b:2a:8c:6e: ae:bd:ae:84:f3:21:fa:18:80:89:92:32:b5:af:2f: 6d:c0:f6:21:26:12:49:32:5c:0b:d0:26:5c:06:61: e1:bf:99:29:34:22:e9:a1:f5:6d:e0:82:73:a5:10: 9a:15:f1:f2:c4:68:3e:85:b2:eb:9e:96:a5:8f:ed: eb:13:12:f6:06:ae:39:43:e7:44:8e:e6:a5:10:f9: 9c:90:1c:35:dd:12:7a:fb:c3:27:d4:b4:fc:74:86: 79:69:b5:a7:18:82:95:d8:47:fe:88:fc:01:9d:2a: 10:17:4b:19:fe:28:99:c4:75:d3:85:bf:09:4c:bb: 94:c1:1d:c0:a4:3f:c7:d9:d3:dc:5c:94:d9:cc:3e: d4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:81:D9:CD:6E:56:FE:1F:1D:43:FB:5D:68:EA:E8:F5:41:EB:1C:B6 X509v3 Authority Key Identifier: keyid:57:03:B5:5C:D8:E2:80:22:96:04:A1:0B:C8:CF:5B:38:01:11:63:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwO1XNjigCKWBKELyM9bOAERY_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:d4:f1:1b:7c:01:3b:8d:59:e7:a6:83:f9:aa:09:72:fd:35: e1:1e:01:da:64:2c:a9:e3:01:f1:af:4f:e7:e9:de:f6:e6:f2: c9:cb:ae:81:de:c6:48:75:7e:6d:e9:d4:6a:d3:0d:26:2e:c7: 74:7b:9c:b0:9a:12:37:7e:c7:68:01:84:ee:32:21:2b:92:7a: e4:39:6a:93:24:52:27:84:3c:19:43:e3:eb:5c:1c:e9:b6:20: b4:50:de:69:88:df:0f:15:06:25:37:e3:84:29:ac:20:ec:16: d6:11:18:fb:04:e0:d9:c5:9a:be:ef:03:22:70:d0:89:d3:4e: 14:a6:08:2f:6e:2b:b2:d7:4a:f3:0e:5a:00:ca:b1:27:d4:1b: 02:96:4e:73:be:6e:17:50:cf:47:8e:af:bf:cf:58:c9:a1:f9: 90:2e:cf:da:39:35:28:31:92:c9:a0:1d:d6:ae:9e:bc:96:cf: 2f:8d:d4:a4:3f:da:67:7a:ba:aa:f5:8c:be:30:5b:9f:7d:21: ad:ce:7b:54:b3:75:69:db:90:62:c2:50:70:95:76:39:18:a4: 42:87:fc:a5:88:81:63:93:f3:6b:4a:9b:15:6a:87:15:04:64: 75:e8:4e:10:82:34:15:1d:b0:2c:26:1f:68:99:63:4a:94:a2: a7:26:ae:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNFQjMxMTAvBgNVBAUTKDU3MDNCNTVDRDhFMjgwMjI5NjA0QTEwQkM4Q0Y1QjM4 MDExMTYzRkEwHhcNMjUwODI0MTkzNDA3WhcNMjUwODMxMTkzNDA3WjAYMRYwFAYD VQQDEw02OGFiNjkzMC04NDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXf8BNMHG7S66KsuXDbIo9mW0hQC/IZ4w5ZzmDFYH4R5nuKI0cguooYk4MNx MbF8ifuhUqAySXrp+84d1uxNJd43yl3mgkR8CbGXNg50r7S90cah+qHcNyKrFO/0 4FGS63Z5ZiYg+J0TeMRdjCfZqjgBzgsqjG6uva6E8yH6GICJkjK1ry9twPYhJhJJ MlwL0CZcBmHhv5kpNCLpofVt4IJzpRCaFfHyxGg+hbLrnpalj+3rExL2Bq45Q+dE jualEPmckBw13RJ6+8Mn1LT8dIZ5abWnGIKV2Ef+iPwBnSoQF0sZ/iiZxHXThb8J TLuUwR3ApD/H2dPcXJTZzD7UlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSB2c1u Vv4fHUP7XWjq6PVB6xy2MB8GA1UdIwQYMBaAFFcDtVzY4oAilgShC8jPWzgBEWP6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0VCMy8zREI2QTM2MjYz NzUxMUVBQjlDMzY4MEJDNEY5QUUwMi9Wd08xWE5qaWdDS1dCS0VMeU05Yk9BRVJZ X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z3TzFYTmppZ0NLV0JLRUx5TTliT0FFUllfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0VCMy8zREI2QTM2MjYzNzUxMUVBQjlDMzY4MEJDNEY5QUUwMi9Wd08xWE5qaWdD S1dCS0VMeU05Yk9BRVJZX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX1PEbfAE7jVnnpoP5qgly/TXhHgHaZCyp4wHxr0/n6d725vLJy66B 3sZIdX5t6dRq0w0mLsd0e5ywmhI3fsdoAYTuMiErknrkOWqTJFInhDwZQ+PrXBzp tiC0UN5piN8PFQYlN+OEKawg7BbWERj7BODZxZq+7wMicNCJ004Upggvbiuy10rz DloAyrEn1BsClk5zvm4XUM9Hjq+/z1jJofmQLs/aOTUoMZLJoB3Wrp68ls8vjdSk P9pnerqq9Yy+MFuffSGtzntUs3Vp25BiwlBwlXY5GKRCh/yliIFjk/NrSpsVaocV BGR16E4QgjQVHbAsJh9omWNKlKKnJq4p -----END CERTIFICATE-----Generated at Sun Aug 24 21:33:14 2025 by rpki-client