$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft File: oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft (raw, json) Hash identifier: xcGeiwNRwIJGzpN4H5MS6zRoirNkqjkzWUKiaJ6x8YI= Subject key identifier: 23:94:B0:C7:E2:59:01:15:E0:C8:82:55:29:5B:A5:02:CA:0A:FD:55 Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft Manifest number: 01A8 Signing time: Sun 07 Sep 2025 03:57:16 +0000 Manifest this update: Sun 07 Sep 2025 03:57:16 +0000 Manifest next update: Sun 14 Sep 2025 03:57:16 +0000 Files and hashes: 1: oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl (hash: UFibUhOckXYY2X6CqRmAQEqoXTLJI+D+tU509n1RAyE=) 2: A1C2C588366311EEB376DC3AC4F9AE02.roa (hash: hs4pbkMdAj+D2UuqPGCvCOhNIxOm0iHH3n26RgqYzp4=) 3: A14DCC1A366311EEB376DC3AC4F9AE02.roa (hash: 2oxGf1eF2vMP7e/KYqIXBpkCvgOIzwtv4aEoBWiSHEE=) 4: FAC35354610611EFB6324A30C4F9AE02.roa (hash: 4eY2s8Kl/roYRAvSuHuq1ezQDh2MWHLHPTeUX63R6yM=) 5: 9EBF44EC366311EEB376DC3AC4F9AE02.roa (hash: idXeV/vJmvr27TLb+qveG/iLmKPYdgqQIbqbNOCFSf4=) 6: AEC0C8428C5811EFA0E8E859C4F9AE02.roa (hash: E0/fmo1zRhNUo9QRAW44/yJchxGo4nB0rPZ+W1mU3F0=) 7: A08711E2366311EEB376DC3AC4F9AE02.roa (hash: GBGetP5iCb9tsjZGfvDrYFe7zLDfSNoHPSI0qO5wZUo=) 8: A309A0BA366311EEB376DC3AC4F9AE02.roa (hash: kP45XXDunbMIfdqYzPQTlFvypMXpadnSedx4GT1Iwgc=) 9: AA36D97EFC7511EE9C9CD67CC4F9AE02.roa (hash: pk4iRSrrvtFGqra4UOtTwUERBl9wGLn18X+I8xUeZuo=) 10: A22F20AC366311EEB376DC3AC4F9AE02.roa (hash: 9VTaK6okqIJvF9II2cb927AcLgrTqA9SlI29NpkDXFQ=) 11: 9DC673EE366311EEB376DC3AC4F9AE02.roa (hash: jnn+3+ad82Cn/wKtacQrT2BVd7Rq7+SYdgr+JJUl5yM=) 12: 9D563A7A366311EEB376DC3AC4F9AE02.roa (hash: Hll2+0qOoXsNfkp2NoMaxMw6B+0BSvaptL4oOoM252E=) 13: 5B76DF12820611EE8A06123AC4F9AE02.roa (hash: czjAqWQeWsyu/4wi/BZHeovzI0scnOJ//P4FWGc4nUs=) 14: 544F13A6B78111EF84611770C4F9AE02.roa (hash: n2ZNps1Q9cQsfWAtJjRE5AUYafhco8sajICleXYU/Io=) 15: 9FE1BE90366311EEB376DC3AC4F9AE02.roa (hash: oVqk1V6SMsFEFFypJZwBJY7tdrNrtjHmcrmlxHpAog8=) 16: A37A198A366311EEB376DC3AC4F9AE02.roa (hash: wpnmGkguzd61ngA1alk/0gWu0+VGdOnX4QN2iRz/PDY=) 17: CF415DDA520111EEBD942A6FC4F9AE02.roa (hash: UClI42Nc4TAFt2EH/zfcSweF10PqmL7CvHfiL9lPAxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Sep 7 03:57:16 2025 GMT Not After : Sep 14 03:57:16 2025 GMT Subject: CN=68bd029c-6ef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d2:0d:5f:73:ff:c9:43:79:6a:b8:74:a7:a4: 2f:ea:17:d3:6c:ef:16:89:fd:cb:68:1c:72:4c:76: 6e:a5:6c:6a:de:75:11:3b:43:e7:04:c6:9e:a0:4b: 2e:eb:c7:05:e9:2a:24:59:66:c6:56:25:de:26:ef: 35:f9:c5:6c:01:a0:51:48:46:b0:ba:6e:8a:f7:c7: 3d:4a:cf:f0:ea:fe:93:28:85:73:2a:64:5a:2f:b0: a8:61:9d:4f:20:04:94:9c:1d:44:22:5b:af:0d:fa: ca:89:c5:34:0a:aa:e0:bf:f8:8d:63:ea:5e:ca:fe: 5c:7d:69:6d:28:43:66:16:b5:a5:23:f1:49:05:ad: 51:72:ad:bf:41:ec:4d:b2:90:49:4b:d0:b7:57:da: 49:8d:60:55:e0:cf:7b:e2:c8:7c:af:a1:d6:ea:94: d0:66:9c:1b:59:04:64:86:cf:22:f8:f6:7a:99:c4: 4d:f9:98:32:c7:af:2b:47:4c:b0:f7:b8:06:34:03: fa:1e:f2:d8:bb:24:29:8e:d4:29:e6:17:4f:96:8c: 25:30:11:37:17:1d:83:ae:69:96:6f:a3:61:5f:db: ec:6d:dc:f2:06:54:31:de:fc:33:be:70:74:02:9c: ca:86:41:fe:8f:45:8a:35:50:a8:f6:e9:b0:af:58: f1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:94:B0:C7:E2:59:01:15:E0:C8:82:55:29:5B:A5:02:CA:0A:FD:55 X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:9a:4d:c8:ba:29:fe:c9:be:20:93:2f:21:84:a7:bb:03:ad: 16:0e:26:8e:82:b6:8a:14:04:b9:c5:37:33:92:b1:fd:31:cc: d5:6f:7c:31:0f:5b:b4:71:cb:4a:bd:f3:04:7b:e2:b9:51:50: ac:b6:8f:fc:7a:b5:79:f2:a1:7b:72:b0:ea:96:b8:8d:da:3d: 61:b9:cd:47:a7:67:f1:cb:4d:6c:24:02:73:a5:e0:5a:f7:6a: 82:49:62:e0:69:88:7e:34:4f:5d:11:b5:7f:b2:4f:3c:07:43: a6:8e:f7:0b:c5:30:4f:66:e1:9e:a7:41:0a:df:a2:52:75:f7: 13:e2:54:5d:41:54:fc:96:14:6b:80:ae:f8:4e:ac:8d:dd:f1: 27:b8:37:e0:e6:cc:14:a8:8f:33:fe:c9:13:46:f5:2f:ed:30: 82:d1:2b:f7:90:67:7b:48:b9:9c:52:67:39:2b:4f:8b:b9:c2: 05:f2:f9:62:84:7f:36:57:f9:30:9c:16:7b:cd:66:a5:be:4a: bf:55:b6:5c:51:b8:fc:6b:31:6d:1a:f4:a1:3b:11:23:6f:08: e8:56:dc:41:a1:6d:a6:f8:e2:2d:8b:d4:1a:a6:4c:bd:c0:01: 7e:9e:09:d4:d3:1c:64:41:50:05:8c:a0:57:30:b6:88:cc:0d: ec:2d:3c:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjUwOTA3MDM1NzE2WhcNMjUwOTE0MDM1NzE2WjAYMRYwFAYD VQQDEw02OGJkMDI5Yy02ZWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tINX3P/yUN5arh0p6Qv6hfTbO8Wif3LaBxyTHZupWxq3nURO0PnBMaeoEsu 68cF6SokWWbGViXeJu81+cVsAaBRSEawum6K98c9Ss/w6v6TKIVzKmRaL7CoYZ1P IASUnB1EIluvDfrKicU0Cqrgv/iNY+peyv5cfWltKENmFrWlI/FJBa1Rcq2/QexN spBJS9C3V9pJjWBV4M974sh8r6HW6pTQZpwbWQRkhs8i+PZ6mcRN+Zgyx68rR0yw 97gGNAP6HvLYuyQpjtQp5hdPlowlMBE3Fx2DrmmWb6NhX9vsbdzyBlQx3vwzvnB0 ApzKhkH+j0WKNVCo9umwr1jxowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOUsMfi WQEV4MiCVSlbpQLKCv1VMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM2Qy83NUI5OEJGMDM2NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVm TDl6dTFCT3ZKNngxajJyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxmk3Iuin+yb4gky8hhKe7A60WDiaOgraKFAS5xTczkrH9MczVb3wx D1u0cctKvfMEe+K5UVCsto/8erV58qF7crDqlriN2j1huc1Hp2fxy01sJAJzpeBa 92qCSWLgaYh+NE9dEbV/sk88B0OmjvcLxTBPZuGep0EK36JSdfcT4lRdQVT8lhRr gK74TqyN3fEnuDfg5swUqI8z/skTRvUv7TCC0Sv3kGd7SLmcUmc5K0+LucIF8vli hH82V/kwnBZ7zWalvkq/VbZcUbj8azFtGvShOxEjbwjoVtxBoW2m+OIti9Qapky9 wAF+ngnU0xxkQVAFjKBXMLaIzA3sLTy2 -----END CERTIFICATE-----Generated at Mon Sep 8 02:24:48 2025 by rpki-client