$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: gSYnEFBro48rHFsh9zbgnVaiN1QKtJ/E262kXGIV7rA= Subject key identifier: 5A:8D:6B:18:EA:5D:57:CA:C8:93:67:60:7B:08:5F:41:15:ED:CD:44 Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 0875 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 085C Signing time: Thu 18 Sep 2025 20:56:28 +0000 Manifest this update: Thu 18 Sep 2025 20:56:27 +0000 Manifest next update: Thu 25 Sep 2025 20:56:27 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: sAloFMeIJJueB6DJhY7G90gJsfpC2n/DmHL4iKhxzGU=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: Wvwkw2qq7X3gm9ipfWCc3BGdmbxdjnrv9dxFhs0Hnp4=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: DAWoyEN2Fc3h4hex7mVD7U45759qmKwV9gi2n6Era6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2165 (0x875) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Sep 18 20:56:27 2025 GMT Not After : Sep 25 20:56:27 2025 GMT Subject: CN=68cc71fb-9057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ae:a3:48:10:0f:61:e1:79:ff:e8:cd:c5:49: 9e:e3:ff:bb:27:f4:f7:77:50:40:d6:14:7d:63:a8: bd:be:e5:ee:28:1e:0d:f4:06:5f:01:35:9b:7d:03: 2a:a7:0c:ab:36:39:42:13:f7:c6:33:5e:c1:5f:16: d8:17:2b:a5:a3:fd:14:d1:6d:a1:4c:98:1e:9c:85: c0:09:ad:29:18:ba:15:1f:13:aa:aa:e2:80:7e:9d: cd:22:df:03:6d:c7:4f:53:24:b6:d8:4a:40:38:18: f7:fe:7f:b3:ce:43:8e:74:f9:5d:26:b8:cc:65:51: dc:6a:17:79:c4:3a:2a:e7:1a:37:e2:7d:ee:77:44: 93:54:90:5e:8c:bf:b3:fb:6d:aa:4b:ae:b2:f8:d4: 0b:f6:fc:e1:2f:b2:7e:c7:93:8a:5f:9f:8d:e4:26: 25:d5:df:b7:9d:db:0c:7a:e7:5b:d3:2f:f3:54:3f: 47:b6:93:bb:51:3d:2e:c1:71:2f:ac:97:83:8c:66: b0:39:ac:51:19:cc:da:df:9d:ed:5b:d1:81:96:ff: 02:cd:ce:fa:03:8b:39:59:dc:f8:15:09:8c:f3:17: eb:b1:ec:d4:1b:6b:8b:35:72:f2:37:59:7e:5a:29: 84:55:12:74:63:e3:69:9f:23:22:f5:a3:cb:44:a9: 9f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:8D:6B:18:EA:5D:57:CA:C8:93:67:60:7B:08:5F:41:15:ED:CD:44 X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:ca:96:f9:e5:e8:c8:79:e1:78:f9:5c:02:06:ca:ba:ef:95: f1:a8:c4:b8:6c:1e:aa:a1:5b:04:ef:fb:94:a1:9b:49:16:f7: 4b:8e:fb:b0:d9:14:18:7e:aa:a8:a3:09:a2:d9:0a:7a:d0:f4: 6f:da:49:49:3c:16:75:c6:d1:47:2a:53:5e:50:64:a6:6d:30: 26:bb:37:4f:56:91:f9:e7:34:4b:b1:1f:13:4e:22:c8:7d:35: 80:cb:66:8e:09:19:7f:64:a9:3e:b5:c6:8d:bd:88:f1:6b:97: 1e:84:9e:d2:ef:77:0a:b2:39:31:0c:9a:20:01:72:ba:bd:e8: cd:e2:c0:77:44:cc:ff:ed:5b:d1:e2:44:9a:2e:39:f8:f1:50: 96:df:84:1f:e9:f4:e9:b8:92:ec:35:6d:fa:aa:d9:db:82:1f: 37:d5:01:87:5c:6e:2c:2c:b0:80:b8:d2:75:39:1b:b7:ed:b0: 24:0b:f6:e3:58:94:a7:39:69:fa:11:0a:ca:03:50:b7:11:02: b3:5c:8e:16:2d:4d:71:3d:48:51:d1:b5:f2:e3:4a:2d:a8:b1: 16:13:a1:56:15:d3:b3:cc:45:23:a4:1f:63:c1:5c:f7:a4:62: f7:1c:c0:e2:37:60:97:a4:65:63:91:1a:ff:04:a9:d9:5e:e0: 23:37:4d:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjUwOTE4MjA1NjI3WhcNMjUwOTI1MjA1NjI3WjAYMRYwFAYD VQQDEw02OGNjNzFmYi05MDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK6jSBAPYeF5/+jNxUme4/+7J/T3d1BA1hR9Y6i9vuXuKB4N9AZfATWbfQMq pwyrNjlCE/fGM17BXxbYFyulo/0U0W2hTJgenIXACa0pGLoVHxOqquKAfp3NIt8D bcdPUyS22EpAOBj3/n+zzkOOdPldJrjMZVHcahd5xDoq5xo34n3ud0STVJBejL+z +22qS66y+NQL9vzhL7J+x5OKX5+N5CYl1d+3ndsMeudb0y/zVD9HtpO7UT0uwXEv rJeDjGawOaxRGcza353tW9GBlv8Czc76A4s5Wdz4FQmM8xfrsezUG2uLNXLyN1l+ WimEVRJ0Y+NpnyMi9aPLRKmf5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqNaxjq XVfKyJNnYHsIX0EV7c1EMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIypb55ejIeeF4+VwCBsq675XxqMS4bB6qoVsE7/uUoZtJFvdLjvuw 2RQYfqqoowmi2Qp60PRv2klJPBZ1xtFHKlNeUGSmbTAmuzdPVpH55zRLsR8TTiLI fTWAy2aOCRl/ZKk+tcaNvYjxa5cehJ7S73cKsjkxDJogAXK6vejN4sB3RMz/7VvR 4kSaLjn48VCW34Qf6fTpuJLsNW36qtnbgh831QGHXG4sLLCAuNJ1ORu37bAkC/bj WJSnOWn6EQrKA1C3EQKzXI4WLU1xPUhR0bXy40otqLEWE6FWFdOzzEUjpB9jwVz3 pGL3HMDiN2CXpGVjkRr/BKnZXuAjN03K -----END CERTIFICATE-----Generated at Thu Sep 18 23:51:16 2025 by rpki-client