$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft File: rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft (raw, json) Hash identifier: tLrqNfNB2BsaenZvD3hRM+6QA7PU15H/V7PoQxB1GCc= Subject key identifier: 3A:61:01:59:AC:D7:AB:67:30:A9:04:A5:DD:81:0F:0A:95:EA:2D:F3 Authority key identifier: AE:73:B7:05:48:FF:42:2E:D0:2D:59:D1:CA:25:79:3A:05:E9:E4:2A Certificate issuer: /CN=A9196DCA/serialNumber=AE73B70548FF422ED02D59D1CA25793A05E9E42A Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft Manifest number: 68 Signing time: Mon 21 Jul 2025 07:09:36 +0000 Manifest this update: Mon 21 Jul 2025 07:09:36 +0000 Manifest next update: Mon 28 Jul 2025 07:09:36 +0000 Files and hashes: 1: rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl (hash: Yz3W2Yq3Tw9Qvwvzc4iIUGnrJqnRhWpJWayyNq6nEck=) 2: E39AF9C6CB3611EFAE3C1A10C4F9AE02.roa (hash: HaAP7uUg1XzzgFWY/CdSRARMCuA2gGNyuumYnBvV1lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:09:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DCA, serialNumber=AE73B70548FF422ED02D59D1CA25793A05E9E42A Validity Not Before: Jul 21 07:09:36 2025 GMT Not After : Jul 28 07:09:36 2025 GMT Subject: CN=687de7b0-3a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a5:e8:8d:6e:98:93:77:9c:56:c2:bd:66:ce: 13:6c:c3:39:c8:b8:20:ee:f5:1d:03:33:c5:e0:1b: d4:47:d0:3c:c4:69:2c:45:c8:0a:8c:05:b2:fd:fa: f3:65:1a:31:71:fe:60:59:56:4d:5b:71:66:00:b9: c6:9a:7a:ee:02:ab:06:cc:0d:5e:17:73:b5:19:11: 05:4f:0d:d2:a6:24:29:8d:27:ba:a1:3d:31:e7:39: 46:43:91:54:ed:c6:8c:a4:4d:f5:57:db:0c:cd:8c: b8:87:3a:ae:58:a3:2b:4b:0c:40:43:49:3f:07:39: b1:30:f5:96:f3:50:a2:8a:89:1e:18:e7:bf:e4:98: cc:e6:6e:db:19:97:47:5d:05:ec:0d:40:d7:f4:bb: 3b:fd:af:aa:6e:9d:be:73:0d:8e:de:03:10:eb:d5: 33:02:19:53:95:b0:85:53:bd:eb:0f:dd:e6:9b:e7: 91:89:8b:70:67:7e:b0:97:bf:6f:8c:6a:c6:f4:0c: dd:d7:a5:b4:5c:a5:69:71:e3:05:9d:86:92:a3:c0: f1:8e:39:e0:29:bc:11:a8:06:1a:91:22:bb:2f:14: 35:70:62:0f:76:03:4a:78:37:6a:56:52:df:2d:fd: 9c:86:4a:65:fd:31:f7:7b:19:e5:ac:36:e6:bc:32: 5b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:61:01:59:AC:D7:AB:67:30:A9:04:A5:DD:81:0F:0A:95:EA:2D:F3 X509v3 Authority Key Identifier: keyid:AE:73:B7:05:48:FF:42:2E:D0:2D:59:D1:CA:25:79:3A:05:E9:E4:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:ee:a3:7f:79:dd:2a:ec:12:09:4d:87:be:e8:fa:69:e6:de: e1:0d:93:01:c8:47:01:7e:df:5e:61:5d:fc:35:aa:9c:df:6b: be:d1:fc:51:a6:36:c7:57:4c:c0:53:69:9c:a0:d2:e7:45:ef: 49:5d:c4:71:7a:6a:b4:5c:a9:66:a1:d9:96:59:68:05:44:e0: cd:0c:a3:c5:50:54:1e:71:d1:3d:24:7c:eb:5c:6e:b8:a1:30: fe:59:f1:af:d4:5c:4d:f8:14:e4:2c:0d:03:7d:a5:73:25:b1: a7:79:5d:c1:23:29:6f:4d:cb:08:3a:2c:f2:81:7b:51:72:9d: d5:cf:0f:6a:e1:e3:33:8d:97:89:bb:f8:cf:e6:37:c9:40:a1: 3f:dd:34:ac:8d:ea:f8:6f:d1:44:f9:55:65:69:33:1a:2d:9d: f6:dc:bc:29:a6:48:56:c7:95:2a:22:78:c0:a6:1a:f5:0a:d8: 43:49:06:81:ea:40:f2:54:8d:58:79:15:c8:57:b1:4c:87:3f: 2d:3b:58:f4:0d:ce:81:37:b6:00:9a:54:6a:06:29:2f:dc:85: 7c:fd:21:b3:26:1a:9b:f1:31:ae:35:13:87:22:cb:8a:ab:17: cb:06:a0:9a:40:b8:fb:07:3d:44:ab:3d:ed:10:8c:1b:d2:39: 8e:92:62:67 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDQTExMC8GA1UEBRMoQUU3M0I3MDU0OEZGNDIyRUQwMkQ1OUQxQ0EyNTc5M0Ew NUU5RTQyQTAeFw0yNTA3MjEwNzA5MzZaFw0yNTA3MjgwNzA5MzZaMBgxFjAUBgNV BAMTDTY4N2RlN2IwLTNhOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUpeiNbpiTd5xWwr1mzhNswznIuCDu9R0DM8XgG9RH0DzEaSxFyAqMBbL9+vNl GjFx/mBZVk1bcWYAucaaeu4CqwbMDV4Xc7UZEQVPDdKmJCmNJ7qhPTHnOUZDkVTt xoykTfVX2wzNjLiHOq5YoytLDEBDST8HObEw9ZbzUKKKiR4Y57/kmMzmbtsZl0dd BewNQNf0uzv9r6punb5zDY7eAxDr1TMCGVOVsIVTvesP3eab55GJi3BnfrCXv2+M asb0DN3XpbRcpWlx4wWdhpKjwPGOOeApvBGoBhqRIrsvFDVwYg92A0p4N2pWUt8t /ZyGSmX9Mfd7GeWsNua8MltFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOmEBWazX q2cwqQSl3YEPCpXqLfMwHwYDVR0jBBgwFoAUrnO3BUj/Qi7QLVnRyiV5OgXp5Cow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RENBLzUwMTA5ODc2Q0Ix RjExRUZCN0FDMjc4NkM0RjlBRTAyL3JuTzNCVWpfUWk3UUxWblJ5aVY1T2dYcDVD by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcm5PM0JVal9RaTdRTFZuUnlpVjVPZ1hwNUNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 RENBLzUwMTA5ODc2Q0IxRjExRUZCN0FDMjc4NkM0RjlBRTAyL3JuTzNCVWpfUWk3 UUxWblJ5aVY1T2dYcDVDby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABXuo3953SrsEglNh77o+mnm3uENkwHIRwF+315hXfw1qpzfa77R/FGm NsdXTMBTaZyg0udF70ldxHF6arRcqWah2ZZZaAVE4M0Mo8VQVB5x0T0kfOtcbrih MP5Z8a/UXE34FOQsDQN9pXMlsad5XcEjKW9Nywg6LPKBe1FyndXPD2rh4zONl4m7 +M/mN8lAoT/dNKyN6vhv0UT5VWVpMxotnfbcvCmmSFbHlSoieMCmGvUK2ENJBoHq QPJUjVh5FchXsUyHPy07WPQNzoE3tgCaVGoGKS/chXz9IbMmGpvxMa41E4ciy4qr F8sGoJpAuPsHPUSrPe0QjBvSOY6SYmc= -----END CERTIFICATE-----Generated at Mon Jul 21 12:46:10 2025 by rpki-client