$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: 3mZxoS/2lsTs8NrttiyGmT1iilMdydVZ6VUFBilMorU= Subject key identifier: F5:07:9B:9F:B7:04:94:72:E2:E0:44:84:21:42:4D:37:25:51:44:FB Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: 0179 Signing time: Fri 05 Sep 2025 04:02:32 +0000 Manifest this update: Fri 05 Sep 2025 04:02:31 +0000 Manifest next update: Fri 12 Sep 2025 04:02:31 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: jrv3ZxM3wszbQq+1643rjxe8tfiB1v1FyCWFza62z/E=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: 5JFgGi1zcqLdr4l1Ei+0uqRhphNnP2rP0bMb+qfmJXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1, serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: Sep 5 04:02:31 2025 GMT Not After : Sep 12 04:02:31 2025 GMT Subject: CN=68ba60d7-a2ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:16:d7:41:80:5d:84:6e:db:3d:67:7a:ef:69: 7d:9b:e9:c2:d6:d6:28:86:b3:c8:09:37:27:66:30: fb:2d:63:c3:8f:38:a2:03:e6:59:1c:f4:6c:41:c3: c8:eb:1e:73:a6:85:de:b9:3a:f8:1c:f9:7b:a4:d5: c1:a7:f7:9a:c8:a3:9d:85:a5:7f:11:10:7b:a7:c9: 72:2f:43:40:81:9a:1c:98:42:12:15:80:57:54:2b: 08:30:80:10:22:8c:f3:d2:5e:be:e8:d2:f7:f5:1d: a9:4a:58:29:44:de:c8:af:85:7a:84:10:d8:1e:93: 90:09:33:b5:f5:2e:5a:93:76:fc:d4:85:8b:61:87: e8:c7:e6:16:05:16:5e:21:f2:6c:a4:30:3e:d2:f5: a1:2e:8f:5b:3f:2a:b3:87:28:7c:f2:26:d0:0b:0e: 2d:51:a3:95:12:2e:6a:9e:48:f9:74:d6:9e:b9:d2: 0a:b9:b8:19:05:f9:9d:3a:2e:b3:b6:40:a7:c7:27: c3:94:6f:ce:98:52:48:e5:3c:59:18:97:27:4e:c8: 32:4c:29:55:25:7a:3a:07:42:2b:c2:ac:10:4a:bc: 52:27:1c:b6:7d:50:5a:ac:cb:9b:a7:27:cc:68:e3: 99:6f:f3:a5:2a:63:63:8d:78:fd:9b:a2:51:83:5e: f0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:07:9B:9F:B7:04:94:72:E2:E0:44:84:21:42:4D:37:25:51:44:FB X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ea:e1:f8:1c:0d:22:f7:9e:a3:0e:f6:6e:ab:c8:3a:c9:15: e8:58:e0:22:b0:85:39:8f:fa:39:7d:5b:0d:b1:92:7c:49:f0: 8e:36:38:aa:1d:a7:33:e4:4e:42:d3:a5:4e:cc:14:15:5b:f0: 2e:d4:96:40:0f:28:4a:b7:75:6a:4a:4c:9a:e6:d5:80:b7:75: a4:1a:ab:e3:7d:c8:3a:af:e8:e3:a9:df:bd:8b:78:44:6a:0a: 80:77:17:35:70:83:47:cd:29:89:cc:98:f9:bc:fc:cc:ac:26: db:9b:76:f0:b2:48:5e:41:8c:95:1c:9f:67:05:d1:13:10:10: 10:f1:6f:3e:ef:16:c5:7d:ac:f8:7a:30:07:c5:1f:24:e2:b2: d3:51:87:a8:70:68:56:76:2c:0a:cd:08:11:2e:99:5e:03:ac: d1:64:7d:55:73:69:5a:fd:43:ed:51:f8:37:e1:8e:05:96:c9: 22:64:19:aa:88:99:a5:94:c4:69:75:54:66:16:46:f3:8e:10: 0d:20:06:8a:3e:12:b5:40:46:d4:83:02:74:91:18:15:80:59: 95:57:cd:1e:7a:b0:d8:e2:44:66:32:e1:04:82:42:83:82:aa: d4:6c:7f:53:0c:28:4b:0a:73:d2:4a:6c:ca:40:69:82:06:31: b9:66:3f:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjUwOTA1MDQwMjMxWhcNMjUwOTEyMDQwMjMxWjAYMRYwFAYD VQQDEw02OGJhNjBkNy1hMmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBbXQYBdhG7bPWd672l9m+nC1tYohrPICTcnZjD7LWPDjziiA+ZZHPRsQcPI 6x5zpoXeuTr4HPl7pNXBp/eayKOdhaV/ERB7p8lyL0NAgZocmEISFYBXVCsIMIAQ Iozz0l6+6NL39R2pSlgpRN7Ir4V6hBDYHpOQCTO19S5ak3b81IWLYYfox+YWBRZe IfJspDA+0vWhLo9bPyqzhyh88ibQCw4tUaOVEi5qnkj5dNaeudIKubgZBfmdOi6z tkCnxyfDlG/OmFJI5TxZGJcnTsgyTClVJXo6B0IrwqwQSrxSJxy2fVBarMubpyfM aOOZb/OlKmNjjXj9m6JRg17wQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUHm5+3 BJRy4uBEhCFCTTclUUT7MB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU6uH4HA0i956jDvZuq8g6yRXoWOAisIU5j/o5fVsNsZJ8SfCONjiq Hacz5E5C06VOzBQVW/Au1JZADyhKt3VqSkya5tWAt3WkGqvjfcg6r+jjqd+9i3hE agqAdxc1cINHzSmJzJj5vPzMrCbbm3bwskheQYyVHJ9nBdETEBAQ8W8+7xbFfaz4 ejAHxR8k4rLTUYeocGhWdiwKzQgRLpleA6zRZH1Vc2la/UPtUfg34Y4FlskiZBmq iJmllMRpdVRmFkbzjhANIAaKPhK1QEbUgwJ0kRgVgFmVV80eerDY4kRmMuEEgkKD gqrUbH9TDChLCnPSSmzKQGmCBjG5Zj8P -----END CERTIFICATE-----Generated at Sat Sep 6 13:48:18 2025 by rpki-client