$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft File: oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft (raw, json) Hash identifier: UUXgBIO07fPZlMP2FpMtP4hqMSTg0ZhT5gu4a7GtX58= Subject key identifier: 12:62:BF:EB:FE:4A:17:6E:34:EE:74:3E:6A:5A:58:0E:58:3F:AD:BE Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft Manifest number: 018C Signing time: Mon 21 Jul 2025 03:55:10 +0000 Manifest this update: Mon 21 Jul 2025 03:55:10 +0000 Manifest next update: Mon 28 Jul 2025 03:55:10 +0000 Files and hashes: 1: oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl (hash: 9rtW+HcIuA3Rbr9Y8TqFoDVbtdHS6VTRXw602PD8CjE=) 2: A1C2C588366311EEB376DC3AC4F9AE02.roa (hash: hs4pbkMdAj+D2UuqPGCvCOhNIxOm0iHH3n26RgqYzp4=) 3: A14DCC1A366311EEB376DC3AC4F9AE02.roa (hash: 2oxGf1eF2vMP7e/KYqIXBpkCvgOIzwtv4aEoBWiSHEE=) 4: FAC35354610611EFB6324A30C4F9AE02.roa (hash: 4eY2s8Kl/roYRAvSuHuq1ezQDh2MWHLHPTeUX63R6yM=) 5: 9EBF44EC366311EEB376DC3AC4F9AE02.roa (hash: idXeV/vJmvr27TLb+qveG/iLmKPYdgqQIbqbNOCFSf4=) 6: AEC0C8428C5811EFA0E8E859C4F9AE02.roa (hash: E0/fmo1zRhNUo9QRAW44/yJchxGo4nB0rPZ+W1mU3F0=) 7: A08711E2366311EEB376DC3AC4F9AE02.roa (hash: GBGetP5iCb9tsjZGfvDrYFe7zLDfSNoHPSI0qO5wZUo=) 8: A309A0BA366311EEB376DC3AC4F9AE02.roa (hash: kP45XXDunbMIfdqYzPQTlFvypMXpadnSedx4GT1Iwgc=) 9: AA36D97EFC7511EE9C9CD67CC4F9AE02.roa (hash: pk4iRSrrvtFGqra4UOtTwUERBl9wGLn18X+I8xUeZuo=) 10: A22F20AC366311EEB376DC3AC4F9AE02.roa (hash: 9VTaK6okqIJvF9II2cb927AcLgrTqA9SlI29NpkDXFQ=) 11: 9DC673EE366311EEB376DC3AC4F9AE02.roa (hash: jnn+3+ad82Cn/wKtacQrT2BVd7Rq7+SYdgr+JJUl5yM=) 12: 9D563A7A366311EEB376DC3AC4F9AE02.roa (hash: Hll2+0qOoXsNfkp2NoMaxMw6B+0BSvaptL4oOoM252E=) 13: 5B76DF12820611EE8A06123AC4F9AE02.roa (hash: czjAqWQeWsyu/4wi/BZHeovzI0scnOJ//P4FWGc4nUs=) 14: 544F13A6B78111EF84611770C4F9AE02.roa (hash: n2ZNps1Q9cQsfWAtJjRE5AUYafhco8sajICleXYU/Io=) 15: 9FE1BE90366311EEB376DC3AC4F9AE02.roa (hash: oVqk1V6SMsFEFFypJZwBJY7tdrNrtjHmcrmlxHpAog8=) 16: A37A198A366311EEB376DC3AC4F9AE02.roa (hash: wpnmGkguzd61ngA1alk/0gWu0+VGdOnX4QN2iRz/PDY=) 17: CF415DDA520111EEBD942A6FC4F9AE02.roa (hash: UClI42Nc4TAFt2EH/zfcSweF10PqmL7CvHfiL9lPAxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:55:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Jul 21 03:55:10 2025 GMT Not After : Jul 28 03:55:10 2025 GMT Subject: CN=687dba1e-3cb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:09:e5:c7:f4:36:90:b1:9e:7a:e5:21:5c:29: 49:5d:df:c4:cb:51:f2:6b:bd:ad:aa:1e:6c:76:b8: 5b:ea:7c:86:43:a5:16:9c:f1:bd:5c:5e:95:0c:82: b8:55:f8:d6:91:3f:ba:78:20:87:a3:aa:71:dd:c2: 16:fa:cc:1b:78:2c:27:7a:a6:d2:b5:2e:89:fd:c7: fa:58:44:65:12:81:43:e3:a3:b6:ac:09:a3:26:7c: 57:b6:30:da:72:69:a8:d1:60:0f:87:bb:eb:17:d6: 1d:b8:cb:23:93:b3:bb:2c:a4:12:ca:35:f9:58:3a: ac:35:8a:5a:21:79:4b:79:1e:8a:ef:4e:a2:9b:07: 74:f5:b3:31:73:e0:28:5a:c4:d0:2e:b1:e4:2d:6c: 2a:bb:e8:95:9a:e0:f4:4f:db:08:36:7f:25:e1:67: fe:0b:dd:e6:31:c4:b2:29:2d:28:c4:ba:3f:16:44: 1a:6b:b8:38:48:96:db:f5:ea:62:fa:54:1b:d0:5b: d8:c4:66:31:96:d9:21:7c:fe:5f:9f:24:3d:b5:d5: 4a:c2:85:1a:d7:9c:bf:9a:d6:05:34:45:a7:52:08: e2:bf:9c:78:0b:7b:b3:d0:8d:7b:e0:dc:c4:86:66: 0f:63:66:da:68:08:05:6b:67:ff:c8:e0:9b:91:1c: 46:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:62:BF:EB:FE:4A:17:6E:34:EE:74:3E:6A:5A:58:0E:58:3F:AD:BE X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:64:af:cc:68:4d:ef:21:cf:18:34:da:c9:5d:47:f7:92:86: 67:7a:00:67:d2:8a:01:c8:c8:ab:e3:9b:70:63:86:d6:4b:4f: f7:91:38:be:17:11:6b:db:3c:46:c0:26:bf:ed:de:15:9e:bf: b0:93:1c:72:f1:67:67:7f:0a:70:d4:40:fc:2b:94:58:47:f1: 19:0f:90:87:86:4e:aa:d4:82:f6:24:f9:91:2c:fe:a6:72:62: 94:9d:39:b7:88:9e:95:d9:3b:7f:68:e9:e1:68:25:58:75:bc: ce:b9:20:f1:86:64:87:e9:ee:49:77:ef:0d:41:61:54:d8:b8: 78:88:2c:31:f5:03:60:7c:74:1f:c8:85:21:2c:bd:dc:99:25: 97:5f:30:b3:8f:62:4a:05:de:29:5b:7c:19:46:3e:8d:d7:a4: a9:66:93:bf:f0:31:8d:fb:bc:e0:19:13:c2:91:98:88:2d:a4: 31:41:f2:f7:61:4b:bb:f2:de:43:8d:9a:7b:d8:fc:dc:8f:81: b3:0e:cd:71:69:45:1d:75:2a:5a:50:82:ad:f4:50:39:20:fd: c8:0a:ea:a4:e9:ad:57:e8:cd:d8:06:40:1f:71:ca:2e:28:16: 66:33:5f:46:a5:b0:7b:79:c7:96:22:a9:21:cd:2a:31:41:d4: 5e:a2:1c:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjUwNzIxMDM1NTEwWhcNMjUwNzI4MDM1NTEwWjAYMRYwFAYD VQQDEw02ODdkYmExZS0zY2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAnlx/Q2kLGeeuUhXClJXd/Ey1Hya72tqh5sdrhb6nyGQ6UWnPG9XF6VDIK4 VfjWkT+6eCCHo6px3cIW+swbeCwneqbStS6J/cf6WERlEoFD46O2rAmjJnxXtjDa cmmo0WAPh7vrF9YduMsjk7O7LKQSyjX5WDqsNYpaIXlLeR6K706imwd09bMxc+Ao WsTQLrHkLWwqu+iVmuD0T9sINn8l4Wf+C93mMcSyKS0oxLo/FkQaa7g4SJbb9epi +lQb0FvYxGYxltkhfP5fnyQ9tdVKwoUa15y/mtYFNEWnUgjiv5x4C3uz0I174NzE hmYPY2baaAgFa2f/yOCbkRxGTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJiv+v+ ShduNO50PmpaWA5YP62+MB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM2Qy83NUI5OEJGMDM2NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVm TDl6dTFCT3ZKNngxajJyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/ZK/MaE3vIc8YNNrJXUf3koZnegBn0ooByMir45twY4bWS0/3kTi+ FxFr2zxGwCa/7d4Vnr+wkxxy8Wdnfwpw1ED8K5RYR/EZD5CHhk6q1IL2JPmRLP6m cmKUnTm3iJ6V2Tt/aOnhaCVYdbzOuSDxhmSH6e5Jd+8NQWFU2Lh4iCwx9QNgfHQf yIUhLL3cmSWXXzCzj2JKBd4pW3wZRj6N16SpZpO/8DGN+7zgGRPCkZiILaQxQfL3 YUu78t5DjZp72Pzcj4GzDs1xaUUddSpaUIKt9FA5IP3ICuqk6a1X6M3YBkAfccou KBZmM19GpbB7eceWIqkhzSoxQdReohxl -----END CERTIFICATE-----Generated at Mon Jul 21 12:53:54 2025 by rpki-client