$ rpki-client -vvf rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft File: o9c6Tp8QQ946v09e0Qhor20zW_Q.mft (raw, json) Hash identifier: yHXLC7UfWhRvZLiGVZ8avSFNlH1HUPdYe03Na2HU744= Subject key identifier: A9:7D:BD:C4:5A:63:90:AE:C7:4C:0B:AE:E8:63:64:2C:DF:4E:93:F2 Authority key identifier: A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 Certificate issuer: /CN=A914A4A1/serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Certificate serial: 03D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft Manifest number: 03D4 Signing time: Sat 23 Aug 2025 00:49:17 +0000 Manifest this update: Sat 23 Aug 2025 00:49:17 +0000 Manifest next update: Sat 30 Aug 2025 00:49:17 +0000 Files and hashes: 1: o9c6Tp8QQ946v09e0Qhor20zW_Q.crl (hash: 1z3xxiN4Ym3j41tNe0+FiJflUpPJiuvUZWTxznrsMy4=) 2: 59212E58955D11EC97EC0461C4F9AE02.roa (hash: 82bmKccqbBzTdNqrTXoGpBcJx8ypp4VeLlhE4Yo0df8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:49:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 984 (0x3d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A4A1, serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Validity Not Before: Aug 23 00:49:17 2025 GMT Not After : Aug 30 00:49:17 2025 GMT Subject: CN=68a9100d-3202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7e:37:4f:9b:14:e3:3f:53:69:47:97:c7:2d: a7:8e:98:c6:2b:ab:1f:25:a8:88:65:f9:2f:58:bb: 3d:b8:c8:0b:b8:9e:cf:82:14:ca:07:b7:1b:4f:2d: bd:c7:fd:2c:6a:0d:01:b4:c5:9b:cc:b3:09:db:1e: 25:fb:1f:e8:46:58:da:8a:4b:ea:d1:d2:4e:01:14: ae:6b:87:bb:74:b9:3b:28:68:f0:00:45:86:fc:dd: f7:93:e0:15:c0:7d:94:14:e9:2e:d1:8f:49:43:2e: 4c:34:2f:8e:e2:7f:cd:52:7e:26:28:ec:87:a0:99: 51:ee:f9:77:b0:aa:2b:55:63:80:ed:57:1b:90:47: d4:8c:8a:68:50:2a:32:27:b7:b8:6e:79:f0:43:d6: b1:eb:0a:d3:0e:bf:5f:ce:28:87:39:40:1c:f9:25: 92:79:e2:78:5e:7e:ef:dc:d1:cb:94:3c:5b:1b:36: 84:3d:03:c3:06:bb:7b:f7:54:61:fe:a3:2a:c2:2c: 3f:35:8b:b8:88:bb:4e:f3:4b:63:29:56:f9:9d:a3: 93:ff:fc:52:40:db:e6:ac:09:78:67:be:fa:12:ec: 2c:78:b2:c3:c4:4b:4c:6a:90:39:c1:0e:57:74:39: 8f:0b:a5:a5:6d:55:05:02:18:71:b4:69:6d:24:26: 8d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:7D:BD:C4:5A:63:90:AE:C7:4C:0B:AE:E8:63:64:2C:DF:4E:93:F2 X509v3 Authority Key Identifier: keyid:A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:6f:0f:d0:cd:f0:8a:e0:1c:64:16:84:4a:42:90:fb:a2:5a: 6c:6c:83:d1:62:94:07:7d:b1:d6:67:75:80:38:cf:38:0b:9e: 3e:f5:3d:7e:60:7c:44:a6:2b:ab:d4:5e:01:f7:c4:0e:c8:9f: e4:c0:9c:d3:c5:0c:fe:85:a1:54:5f:54:67:e5:a3:d0:1b:fa: 0e:71:5d:16:80:64:c3:f7:6b:70:86:2a:f8:30:d8:a5:36:6b: eb:00:20:db:ba:af:2a:8c:a9:7b:da:cd:46:76:a6:18:ae:22: 49:9d:76:00:72:ed:84:14:d8:82:e3:57:ea:78:f5:b4:52:17: cb:39:ff:d3:b8:24:cf:11:b2:e5:0e:ed:ae:b0:51:be:c1:28: b0:5b:35:1f:2a:97:f3:0b:ab:b8:71:d3:4e:a4:36:90:ec:75: e2:b8:7f:70:f3:4c:73:bb:18:b7:a0:ca:de:5a:c8:fe:56:03: c7:34:95:97:26:42:f3:2d:c6:77:6f:ed:6a:51:c8:a7:16:f9: 26:19:15:62:64:19:0d:dc:9f:34:49:60:31:6a:94:74:46:45: 7f:09:d1:5c:70:ca:a0:dd:40:09:08:01:55:5b:32:20:4f:46: 24:eb:d5:ff:8a:bc:6c:f1:ae:36:f2:fd:d0:be:c3:a3:ec:39: 6e:11:ee:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0QTExMTAvBgNVBAUTKEEzRDczQTRFOUYxMDQzREUzQUJGNEY1RUQxMDg2OEFG NkQzMzVCRjQwHhcNMjUwODIzMDA0OTE3WhcNMjUwODMwMDA0OTE3WjAYMRYwFAYD VQQDEw02OGE5MTAwZC0zMjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAon43T5sU4z9TaUeXxy2njpjGK6sfJaiIZfkvWLs9uMgLuJ7PghTKB7cbTy29 x/0sag0BtMWbzLMJ2x4l+x/oRljaikvq0dJOARSua4e7dLk7KGjwAEWG/N33k+AV wH2UFOku0Y9JQy5MNC+O4n/NUn4mKOyHoJlR7vl3sKorVWOA7VcbkEfUjIpoUCoy J7e4bnnwQ9ax6wrTDr9fziiHOUAc+SWSeeJ4Xn7v3NHLlDxbGzaEPQPDBrt791Rh /qMqwiw/NYu4iLtO80tjKVb5naOT//xSQNvmrAl4Z776EuwseLLDxEtMapA5wQ5X dDmPC6WlbVUFAhhxtGltJCaNTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKl9vcRa Y5Cux0wLruhjZCzfTpPyMB8GA1UdIwQYMBaAFKPXOk6fEEPeOr9PXtEIaK9tM1v0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTRBMS82OENFQzA5NDk1 NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4UVE5NDZ2MDllMFFob3IyMHpX X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285YzZUcDhRUTk0NnYwOWUwUWhvcjIweldfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTRBMS82OENFQzA5NDk1NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4UVE5 NDZ2MDllMFFob3IyMHpXX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcbw/QzfCK4BxkFoRKQpD7olpsbIPRYpQHfbHWZ3WAOM84C54+9T1+ YHxEpiur1F4B98QOyJ/kwJzTxQz+haFUX1Rn5aPQG/oOcV0WgGTD92twhir4MNil NmvrACDbuq8qjKl72s1GdqYYriJJnXYAcu2EFNiC41fqePW0UhfLOf/TuCTPEbLl Du2usFG+wSiwWzUfKpfzC6u4cdNOpDaQ7HXiuH9w80xzuxi3oMreWsj+VgPHNJWX JkLzLcZ3b+1qUcinFvkmGRViZBkN3J80SWAxapR0RkV/CdFccMqg3UAJCAFVWzIg T0Yk69X/irxs8a428v3QvsOj7DluEe5C -----END CERTIFICATE-----Generated at Sun Aug 24 00:52:25 2025 by rpki-client