$ rpki-client -vvf rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft File: oBoPBuMQs4EwEx14gpcL8WLdDWY.mft (raw, json) Hash identifier: 2YS8TWMaLDhCOwVlIQwCIWuAZw+1tuwQlJXkYn0G580= Subject key identifier: BE:C4:52:76:70:F5:E9:39:FC:38:05:83:02:FF:D6:76:AA:E1:24:2C Authority key identifier: A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 Certificate issuer: /CN=A9150E55/serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Certificate serial: 0360 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft Manifest number: 035A Signing time: Sat 23 Aug 2025 01:12:22 +0000 Manifest this update: Sat 23 Aug 2025 01:12:22 +0000 Manifest next update: Sat 30 Aug 2025 01:12:22 +0000 Files and hashes: 1: oBoPBuMQs4EwEx14gpcL8WLdDWY.crl (hash: p3F+Ts53opWNde09QgmbpMFQr3zlm9wdeN1UG6x+Pus=) 2: 2DC3DC54D54E11EF8C5B1651C4F9AE02.roa (hash: jj/VEZFojNzwFut6xQ2ddbaM/ffKwcFrBgOFEnS8TYI=) 3: 39952E50C6CB11ECB185E43EC4F9AE02.roa (hash: UriRXIOaFvm5u1qncQTi3IERwvU0QHA/1gyCNIPeCng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:12:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 864 (0x360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E55, serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Validity Not Before: Aug 23 01:12:22 2025 GMT Not After : Aug 30 01:12:22 2025 GMT Subject: CN=68a91576-ffd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:00:95:e2:b4:b4:b1:5a:e1:77:50:41:e2:75: 53:c0:8c:62:36:ad:c7:6b:59:b4:f7:f8:ca:df:40: 43:00:7d:a0:c8:18:f6:e2:79:ee:f6:74:b2:23:30: a5:42:26:07:46:99:a8:82:d6:7d:9a:1a:e1:d5:74: 43:86:00:8c:97:e1:55:f6:cd:93:ee:59:bd:a4:8f: 76:b4:f8:82:c0:a0:fe:1f:19:8d:9f:44:59:97:78: 5c:8f:f5:1a:4c:c9:bf:10:58:4c:07:ba:33:b4:45: 81:4a:e0:e2:da:c4:10:a8:62:15:9e:01:c9:8f:d1: 43:e1:68:6b:2f:b9:e0:52:a2:38:16:52:ef:1e:66: 5b:e9:0a:f7:97:75:eb:e7:1e:e5:8e:2c:78:2b:3c: ab:95:9b:e7:8b:c5:df:50:4f:04:32:2c:dd:73:b6: 5f:b4:d4:31:7b:fc:20:20:d9:cb:54:a1:6a:86:94: 9c:c4:d7:f6:54:35:7d:e3:fa:d5:b1:86:0a:47:29: c1:b5:1b:ac:5b:cd:91:17:a8:75:de:c3:c1:9d:6a: 0d:47:19:6c:a5:ed:83:98:cc:4c:d6:50:bb:87:fe: 15:bb:2d:b7:5c:78:7c:e7:a9:1b:6e:e5:0a:98:d3: f1:b8:63:6f:66:ad:dc:a2:3d:99:ac:f3:17:9f:35: de:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C4:52:76:70:F5:E9:39:FC:38:05:83:02:FF:D6:76:AA:E1:24:2C X509v3 Authority Key Identifier: keyid:A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:e1:29:69:ad:9e:f3:ed:ec:54:cc:ec:e4:a3:0d:2e:a6:60: 81:a2:78:91:ee:a0:ea:49:d0:ab:48:36:e2:17:02:d6:70:33: ae:0b:b0:49:2d:13:9e:b4:e4:0b:7e:a8:9b:4c:1d:8b:23:77: 34:65:25:d5:ba:83:8a:97:99:68:d9:e1:d5:f5:d8:88:25:63: b1:06:97:c9:bf:2a:27:0a:af:37:d2:a2:9b:3e:4e:06:2e:44: d8:2c:d1:bd:40:2f:c8:da:61:b3:95:4f:b4:75:25:47:6e:a9: ba:ef:39:47:10:44:6e:aa:aa:b8:75:8a:c5:58:e1:2d:16:1a: 30:50:20:47:4f:ec:6b:81:b1:13:fc:ea:e6:69:70:e9:1d:39: 0a:a5:2f:0e:63:25:c9:60:5a:75:9b:f4:57:be:52:72:95:e6: cf:98:2b:d3:da:f4:6d:09:98:15:60:73:95:5a:e7:8e:44:3c: 14:91:4e:56:33:0a:c2:5f:3e:75:d4:34:dc:78:6a:38:2e:6d: 84:34:ce:bb:ef:1a:17:b5:40:10:d4:9b:e0:9a:75:46:5f:08: 7b:3c:3a:f3:78:a6:22:34:1b:c3:60:7f:73:2e:57:c6:50:56: 5a:c3:e5:51:6d:9e:3a:fc:ff:e8:41:a6:bc:1b:4b:1a:70:21: 4f:d2:59:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFNTUxMTAvBgNVBAUTKEEwMUEwRjA2RTMxMEIzODEzMDEzMUQ3ODgyOTcwQkYx NjJERDBENjYwHhcNMjUwODIzMDExMjIyWhcNMjUwODMwMDExMjIyWjAYMRYwFAYD VQQDEw02OGE5MTU3Ni1mZmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwCV4rS0sVrhd1BB4nVTwIxiNq3Ha1m09/jK30BDAH2gyBj24nnu9nSyIzCl QiYHRpmogtZ9mhrh1XRDhgCMl+FV9s2T7lm9pI92tPiCwKD+HxmNn0RZl3hcj/Ua TMm/EFhMB7oztEWBSuDi2sQQqGIVngHJj9FD4WhrL7ngUqI4FlLvHmZb6Qr3l3Xr 5x7ljix4KzyrlZvni8XfUE8EMizdc7ZftNQxe/wgINnLVKFqhpScxNf2VDV94/rV sYYKRynBtRusW82RF6h13sPBnWoNRxlspe2DmMxM1lC7h/4Vuy23XHh856kbbuUK mNPxuGNvZq3coj2ZrPMXnzXenwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7EUnZw 9ek5/DgFgwL/1naq4SQsMB8GA1UdIwQYMBaAFKAaDwbjELOBMBMdeIKXC/Fi3Q1m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEU1NS83RDMyQTc0RUM2 MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0RXdFeDE0Z3BjTDhXTGRE V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Cb1BCdU1RczRFd0V4MTRncGNMOFdMZERXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEU1NS83RDMyQTc0RUM2MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0 RXdFeDE0Z3BjTDhXTGREV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj4SlprZ7z7exUzOzkow0upmCBoniR7qDqSdCrSDbiFwLWcDOuC7BJ LROetOQLfqibTB2LI3c0ZSXVuoOKl5lo2eHV9diIJWOxBpfJvyonCq830qKbPk4G LkTYLNG9QC/I2mGzlU+0dSVHbqm67zlHEERuqqq4dYrFWOEtFhowUCBHT+xrgbET /OrmaXDpHTkKpS8OYyXJYFp1m/RXvlJylebPmCvT2vRtCZgVYHOVWueORDwUkU5W MwrCXz511DTceGo4Lm2ENM677xoXtUAQ1JvgmnVGXwh7PDrzeKYiNBvDYH9zLlfG UFZaw+VRbZ46/P/oQaa8G0sacCFP0llO -----END CERTIFICATE-----Generated at Sat Aug 23 19:26:17 2025 by rpki-client