$ rpki-client -vvf rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft File: OOHW4K0CW7AuZUgYPvKoIABQo2U.mft (raw, json) Hash identifier: VQFYmWUw7vYsz2qKOEgJX8u3LvfQ6J8tH16dOU5jvZI= Subject key identifier: 77:23:78:EE:46:BF:19:E9:EE:85:1B:C6:F0:D0:7C:CC:9E:B2:56:32 Authority key identifier: 38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 Certificate issuer: /CN=A9135EC4/serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Certificate serial: 34BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft Manifest number: 34B7 Signing time: Fri 22 Aug 2025 14:31:52 +0000 Manifest this update: Fri 22 Aug 2025 14:31:51 +0000 Manifest next update: Fri 29 Aug 2025 14:31:51 +0000 Files and hashes: 1: OOHW4K0CW7AuZUgYPvKoIABQo2U.crl (hash: Z4KUcnHAmcPQhePFbpzhLqw5tAfPrFFniYM/sdbIvo8=) 2: E89AA63C3A3411EDA5928760C4F9AE02.roa (hash: 05APYQJe4DJPEEjidbXlOzb6+S6p4c1Z55iGoGM7Isg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:31:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13499 (0x34bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135EC4, serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Validity Not Before: Aug 22 14:31:51 2025 GMT Not After : Aug 29 14:31:51 2025 GMT Subject: CN=68a87f58-b44b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:62:df:9a:2e:a8:10:b2:11:46:66:7f:de:10: 53:9e:57:74:61:71:52:75:85:60:92:25:df:4b:5e: 46:81:4b:79:44:88:87:50:18:bf:bf:1d:14:9e:66: 63:d4:c0:b6:71:d6:3a:e4:37:37:ca:58:ef:85:5f: 93:1c:e7:65:26:59:e9:cd:8e:7e:62:62:c2:c8:3d: d8:36:16:7f:1c:3b:e4:e4:de:40:78:ce:55:34:8e: e9:41:de:b0:2a:d7:77:7a:bc:04:f1:25:2b:36:48: b9:bf:bf:a5:c3:fb:e4:71:39:ba:b8:0b:4b:7a:f8: e1:ad:01:52:f6:f5:71:96:9a:f9:e3:cb:6d:db:15: 17:7b:5b:2b:d5:76:7d:d6:d7:df:ec:6c:6e:2c:ca: 09:c2:a0:57:e2:ac:9e:8a:d2:4d:6f:6d:9d:23:0d: 53:d5:07:59:2e:87:a2:cd:82:5b:ca:2d:e3:b5:8c: 0c:cf:18:49:94:fc:2c:99:a6:cb:55:c6:f4:55:87: 44:67:d5:f6:d8:72:35:87:42:45:d7:5b:62:de:d8: ea:a0:28:54:f6:1d:28:9a:28:89:fb:e6:1b:1b:ea: a8:56:05:86:df:d3:df:b3:1b:e9:33:ce:e8:f1:83: 7d:97:fd:76:1c:a4:b1:a1:14:ea:0a:7e:94:0a:02: 82:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:23:78:EE:46:BF:19:E9:EE:85:1B:C6:F0:D0:7C:CC:9E:B2:56:32 X509v3 Authority Key Identifier: keyid:38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:2d:8a:c6:a7:c6:b0:98:73:e4:80:ce:9f:5b:69:84:f3:ee: ff:7a:92:d0:60:52:62:ec:47:49:dc:35:8f:de:7f:70:2c:94: 96:ed:01:c3:b5:cd:c5:d3:a9:89:f2:e9:36:ae:12:63:9e:11: 37:21:a8:8f:1d:1a:08:7e:e0:06:af:4a:73:6f:12:1c:60:ec: 3a:66:af:60:3e:54:7a:1f:d0:35:2a:53:63:21:48:f8:6f:41: 08:6e:a7:79:fb:41:d0:de:da:20:39:22:de:d5:c7:40:94:b7: bb:81:b7:89:27:a0:ab:30:6b:6c:27:9d:f9:cf:0e:e1:86:cb: 9e:f7:92:9b:e3:0f:77:bc:00:dd:88:70:96:73:05:c9:ee:89: 5a:d0:90:d5:ab:1b:75:b4:d3:a7:cd:0f:a4:23:80:2c:e0:6d: f0:84:5e:67:4e:29:2a:5a:44:9a:ef:82:88:8c:a4:62:22:86: eb:30:00:c7:b7:cd:ca:bd:30:76:c9:8f:99:e3:eb:2e:fd:13: 15:3a:d1:0d:d7:ef:83:0a:f2:55:81:94:7c:c3:90:1e:12:92: 40:5d:ca:27:64:ce:63:a8:94:4d:31:51:ea:0b:e9:27:b2:20: 51:b7:7a:1d:8f:cf:be:4a:13:ee:5b:59:81:55:15:f3:3c:f6: 3f:3f:54:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVFQzQxMTAvBgNVBAUTKDM4RTFENkUwQUQwMjVCQjAyRTY1NDgxODNFRjJBODIw MDA1MEEzNjUwHhcNMjUwODIyMTQzMTUxWhcNMjUwODI5MTQzMTUxWjAYMRYwFAYD VQQDEw02OGE4N2Y1OC1iNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42Lfmi6oELIRRmZ/3hBTnld0YXFSdYVgkiXfS15GgUt5RIiHUBi/vx0UnmZj 1MC2cdY65Dc3yljvhV+THOdlJlnpzY5+YmLCyD3YNhZ/HDvk5N5AeM5VNI7pQd6w Ktd3erwE8SUrNki5v7+lw/vkcTm6uAtLevjhrQFS9vVxlpr548tt2xUXe1sr1XZ9 1tff7GxuLMoJwqBX4qyeitJNb22dIw1T1QdZLoeizYJbyi3jtYwMzxhJlPwsmabL Vcb0VYdEZ9X22HI1h0JF11ti3tjqoChU9h0omiiJ++YbG+qoVgWG39PfsxvpM87o 8YN9l/12HKSxoRTqCn6UCgKCTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcjeO5G vxnp7oUbxvDQfMyeslYyMB8GA1UdIwQYMBaAFDjh1uCtAluwLmVIGD7yqCAAUKNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUVDNC84QTlBODM2ODFE ODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3QXVaVWdZUHZLb0lBQlFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09PSFc0SzBDVzdBdVpVZ1lQdktvSUFCUW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUVDNC84QTlBODM2ODFEODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3 QXVaVWdZUHZLb0lBQlFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCLYrGp8awmHPkgM6fW2mE8+7/epLQYFJi7EdJ3DWP3n9wLJSW7QHD tc3F06mJ8uk2rhJjnhE3IaiPHRoIfuAGr0pzbxIcYOw6Zq9gPlR6H9A1KlNjIUj4 b0EIbqd5+0HQ3togOSLe1cdAlLe7gbeJJ6CrMGtsJ535zw7hhsue95Kb4w93vADd iHCWcwXJ7ola0JDVqxt1tNOnzQ+kI4As4G3whF5nTikqWkSa74KIjKRiIobrMADH t83KvTB2yY+Z4+su/RMVOtEN1++DCvJVgZR8w5AeEpJAXconZM5jqJRNMVHqC+kn siBRt3odj8++ShPuW1mBVRXzPPY/P1T/ -----END CERTIFICATE-----Generated at Sat Aug 23 18:46:48 2025 by rpki-client