$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: oshwhiAJdySd0ZEPSjtuKtWcfd1SLHf0C+okVRAERvY= Subject key identifier: 4C:D1:E4:93:EB:09:D8:C5:C3:23:3E:A0:B3:6C:C7:4A:F3:5A:DA:B1 Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 01FC Signing time: Sat 23 Aug 2025 02:27:44 +0000 Manifest this update: Sat 23 Aug 2025 02:27:44 +0000 Manifest next update: Sat 30 Aug 2025 02:27:44 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: slNklykuWQtVpcSL33Yb4g6tHF2x73C1jLGfV0aOxwE=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Aug 23 02:27:44 2025 GMT Not After : Aug 30 02:27:44 2025 GMT Subject: CN=68a92720-54ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:23:97:49:23:35:ed:cc:9a:3b:ca:ae:78: 6e:42:de:d5:c7:0e:2a:4b:c8:56:45:35:11:7a:2f: 82:03:33:75:72:2f:6c:3f:ee:2e:45:e0:67:d0:62: bf:f0:c8:dd:98:02:3f:21:63:b0:2f:7b:89:4b:29: ac:82:14:fd:8f:95:f3:44:38:38:57:fa:bc:b4:29: 6f:82:bf:dd:95:c3:48:99:16:41:a8:f3:f0:6f:09: 4d:f5:1d:7a:46:88:0d:a1:61:e8:ed:f6:f4:07:ff: e7:7c:72:84:90:17:89:0a:f6:75:3b:4c:16:b3:31: f1:a1:c3:f7:40:86:f1:dd:8c:31:ef:f9:2f:d8:f6: ba:8a:40:18:61:0f:04:e4:26:4a:3b:84:23:e7:07: 5f:50:16:60:02:f4:d6:5d:77:2d:01:92:9e:8d:fb: 1f:1a:99:d9:dc:5b:c5:db:b5:6c:6e:a2:33:b0:40: d8:93:c1:01:f1:29:c0:cc:65:9a:14:8d:38:93:7d: 0b:d9:be:7b:6c:a7:5c:7a:7a:22:ff:22:f4:49:5a: 9d:14:b5:a5:77:8a:7b:e2:e5:d4:84:02:a2:01:23: c2:bf:86:49:5d:a1:2f:75:c2:55:5a:5c:0a:75:43: 47:8f:e2:50:ba:49:3c:52:a8:94:01:b0:ce:58:11: 3b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D1:E4:93:EB:09:D8:C5:C3:23:3E:A0:B3:6C:C7:4A:F3:5A:DA:B1 X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:b0:08:14:e2:d0:b2:e9:5d:15:9e:2e:e8:0f:32:14:b4:e9: e2:4e:c6:43:7c:e5:2a:d8:ed:b4:65:35:be:34:45:68:20:7f: c3:24:f9:30:75:2d:67:2a:54:bf:1c:b2:c5:14:4f:21:99:45: a3:6f:e2:e4:68:b4:5d:3f:66:1e:06:76:6f:5b:19:4c:13:bb: ac:c3:8c:43:b8:2c:fd:a6:ee:d9:c5:57:5d:38:c8:6a:92:00: 08:c1:6b:75:81:b4:9b:ea:67:ef:1d:9a:57:5f:0b:db:c0:58: 0f:7e:ce:6f:ee:92:38:73:84:74:ec:be:27:ba:ce:86:ed:17: 19:d6:36:c0:38:03:86:b8:90:d8:76:9b:79:6e:e5:20:1c:d1: 1e:46:c6:41:5b:93:64:61:97:29:d7:64:86:c5:3e:8a:08:d2: e3:3c:0e:92:2a:d3:38:66:d4:8f:e2:c2:65:88:4a:34:d7:86: 95:b3:e3:ca:a6:ad:8c:d7:4b:61:a5:e6:5a:02:97:af:89:04: 6c:7d:79:a6:2b:83:58:5a:df:da:b9:ee:10:30:e3:d8:81:57: 02:75:d2:09:13:92:9e:e8:17:ec:b5:b4:82:33:a0:bb:c7:e9: ec:11:f2:f5:c0:2d:c5:45:9d:88:2d:1f:26:45:30:7c:07:2a: 08:85:42:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwODIzMDIyNzQ0WhcNMjUwODMwMDIyNzQ0WjAYMRYwFAYD VQQDEw02OGE5MjcyMC01NGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Yojl0kjNe3MmjvKrnhuQt7Vxw4qS8hWRTURei+CAzN1ci9sP+4uReBn0GK/ 8MjdmAI/IWOwL3uJSymsghT9j5XzRDg4V/q8tClvgr/dlcNImRZBqPPwbwlN9R16 RogNoWHo7fb0B//nfHKEkBeJCvZ1O0wWszHxocP3QIbx3Ywx7/kv2Pa6ikAYYQ8E 5CZKO4Qj5wdfUBZgAvTWXXctAZKejfsfGpnZ3FvF27VsbqIzsEDYk8EB8SnAzGWa FI04k30L2b57bKdcenoi/yL0SVqdFLWld4p74uXUhAKiASPCv4ZJXaEvdcJVWlwK dUNHj+JQukk8UqiUAbDOWBE7OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzR5JPr CdjFwyM+oLNsx0rzWtqxMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKsAgU4tCy6V0Vni7oDzIUtOniTsZDfOUq2O20ZTW+NEVoIH/DJPkw dS1nKlS/HLLFFE8hmUWjb+LkaLRdP2YeBnZvWxlME7usw4xDuCz9pu7ZxVddOMhq kgAIwWt1gbSb6mfvHZpXXwvbwFgPfs5v7pI4c4R07L4nus6G7RcZ1jbAOAOGuJDY dpt5buUgHNEeRsZBW5NkYZcp12SGxT6KCNLjPA6SKtM4ZtSP4sJliEo014aVs+PK pq2M10thpeZaApeviQRsfXmmK4NYWt/aue4QMOPYgVcCddIJE5Ke6BfstbSCM6C7 x+nsEfL1wC3FRZ2ILR8mRTB8ByoIhUL4 -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:40 2025 by rpki-client