$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: zTIvwwKQmFGKghxWGDx/Pu72fx0Z/0+8fXkwLW1RaRM= Subject key identifier: BF:34:D5:6E:2B:E0:5A:2D:62:9E:84:F2:9B:64:3B:33:6B:04:17:D3 Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 176D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 1758 Signing time: Fri 22 Aug 2025 16:42:55 +0000 Manifest this update: Fri 22 Aug 2025 16:42:54 +0000 Manifest next update: Fri 29 Aug 2025 16:42:54 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: p7cNA4TCGIzdenT+LOaQQPlSYAGd/7TJCeDjPn3wli4=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: XhkwHyloR+2rDxWbay2n/StJn5+0QtLglAfKwVMv/5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5997 (0x176d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Aug 22 16:42:54 2025 GMT Not After : Aug 29 16:42:54 2025 GMT Subject: CN=68a89e0f-0849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:5e:ca:e1:e4:8f:ef:1b:4b:fd:42:c9:c8: f0:ab:9f:63:58:b9:ee:ec:7c:7b:68:9d:89:ab:16: ad:ab:f1:06:b7:a3:0b:d6:e7:ec:5f:d5:ef:a4:e3: 2a:fa:f4:82:1c:15:16:0a:b4:4b:36:ed:57:d9:55: 0f:ff:c0:6e:9f:3c:8b:71:bc:0a:c2:ad:2c:b3:4a: d1:3e:e8:f5:a0:dc:fb:f8:7e:ec:74:3f:cb:c5:95: f1:1c:87:c3:4c:93:a4:74:c4:27:98:5d:9c:28:b5: 13:fd:6e:f2:a1:4b:01:3e:06:9a:15:4a:b2:66:b7: b9:3c:4e:b0:c8:df:d2:1d:8c:5d:4a:15:36:fa:a4: 28:0d:11:c6:26:8d:04:42:c9:d1:99:a4:65:d1:4e: 57:23:c3:82:ac:81:f9:68:31:87:a5:fd:6b:9e:b5: 67:a9:c7:4f:c3:9a:35:16:cf:b9:e1:9a:13:59:02: 9c:57:81:25:28:78:38:e9:7e:62:49:39:0f:3a:c2: bd:3d:cd:fb:84:0b:5d:ea:71:78:ce:5a:d3:31:c5: 80:17:78:c6:ff:02:44:de:7f:52:78:6a:eb:2b:5f: ed:b5:e0:6f:b3:a9:71:c8:58:13:20:f7:9c:5a:3d: bf:af:f5:ce:80:d4:bf:df:e3:cc:1c:6b:67:7c:f5: 26:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:34:D5:6E:2B:E0:5A:2D:62:9E:84:F2:9B:64:3B:33:6B:04:17:D3 X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d8:64:9a:3b:ff:93:df:0b:f5:6d:0b:de:3f:5d:bf:cf:b3: 6c:52:08:0b:1c:b2:53:ef:56:4c:68:df:9f:79:b4:de:e6:ec: 48:9b:a4:11:06:04:9b:87:92:a9:bf:ae:37:6e:a2:cc:fe:93: 85:c5:75:de:be:e8:1a:8f:e1:18:10:43:b6:9d:e8:d8:69:0a: 11:37:4c:cd:61:bb:2d:63:20:8d:84:0d:66:a0:39:63:eb:18: f7:2a:b7:a4:77:a6:9e:5d:a9:3d:52:ac:1e:89:be:dc:21:ba: 13:18:c1:68:f8:ae:37:2b:0c:99:08:78:84:79:3a:91:87:8b: ea:ff:af:65:a4:71:78:6a:ac:29:d6:f6:ec:9c:e5:c3:d9:ea: bf:66:f4:b9:11:18:30:da:7f:43:11:49:e3:cf:77:db:c8:06: b2:1b:99:c7:09:11:49:60:c6:95:43:32:21:ef:49:09:4c:0c: b7:6c:91:8f:9d:c6:14:a6:7b:be:34:cc:3d:56:ff:9c:02:9c: c3:d3:60:3d:7d:8b:0c:4f:1e:88:47:db:b5:2b:31:d5:df:f9: 07:ba:f4:36:85:41:c5:04:fb:ce:c4:a5:2c:7f:d5:49:97:40: d4:b7:86:b7:08:10:9b:31:4e:70:2b:11:5f:a7:19:72:7d:b4: eb:10:59:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUwODIyMTY0MjU0WhcNMjUwODI5MTY0MjU0WjAYMRYwFAYD VQQDEw02OGE4OWUwZi0wODQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YpeyuHkj+8bS/1Cycjwq59jWLnu7Hx7aJ2Jqxatq/EGt6ML1ufsX9XvpOMq +vSCHBUWCrRLNu1X2VUP/8BunzyLcbwKwq0ss0rRPuj1oNz7+H7sdD/LxZXxHIfD TJOkdMQnmF2cKLUT/W7yoUsBPgaaFUqyZre5PE6wyN/SHYxdShU2+qQoDRHGJo0E QsnRmaRl0U5XI8OCrIH5aDGHpf1rnrVnqcdPw5o1Fs+54ZoTWQKcV4ElKHg46X5i STkPOsK9Pc37hAtd6nF4zlrTMcWAF3jG/wJE3n9SeGrrK1/tteBvs6lxyFgTIPec Wj2/r/XOgNS/3+PMHGtnfPUmlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL801W4r 4FotYp6E8ptkOzNrBBfTMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG2GSaO/+T3wv1bQveP12/z7NsUggLHLJT71ZMaN+febTe5uxIm6QR BgSbh5Kpv643bqLM/pOFxXXevugaj+EYEEO2nejYaQoRN0zNYbstYyCNhA1moDlj 6xj3Krekd6aeXak9Uqweib7cIboTGMFo+K43KwyZCHiEeTqRh4vq/69lpHF4aqwp 1vbsnOXD2eq/ZvS5ERgw2n9DEUnjz3fbyAayG5nHCRFJYMaVQzIh70kJTAy3bJGP ncYUpnu+NMw9Vv+cApzD02A9fYsMTx6IR9u1KzHV3/kHuvQ2hUHFBPvOxKUsf9VJ l0DUt4a3CBCbMU5wKxFfpxlyfbTrEFnE -----END CERTIFICATE-----Generated at Sat Aug 23 21:03:16 2025 by rpki-client