$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: ESksPu8vOQWiQhBqbfzMRmHDziMTOpTfsitfOmiwIis= Subject key identifier: 5F:EB:10:C5:C4:02:ED:5E:05:74:2F:F7:48:1B:BA:DA:9A:5F:0C:1B Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 05E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 05D8 Signing time: Fri 22 Aug 2025 23:12:57 +0000 Manifest this update: Fri 22 Aug 2025 23:12:57 +0000 Manifest next update: Fri 29 Aug 2025 23:12:57 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: v17qKOjf2B9IqXr9PZDwEiaHiZtBQI/oDttpAgMee8o=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: Ews4xG+BhGr1YKU7wFoc4NdQF1qugSkJAZpv3+K1VQA=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: ixAKLgsVNfo1Pz8i7g4aRb3j68KYgsQlay7em4iJOQg=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:12:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Aug 22 23:12:57 2025 GMT Not After : Aug 29 23:12:57 2025 GMT Subject: CN=68a8f979-495d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5b:bc:7c:91:90:fd:47:88:8a:49:5e:df:28: 9e:57:27:1b:7c:31:36:bc:37:39:05:c5:bf:2e:f2: 25:e5:a8:57:35:ef:35:de:08:cf:e4:84:2e:9a:ab: 5a:72:d3:cd:12:45:10:67:02:c1:92:6c:d4:67:f2: 36:7f:d9:fe:b2:57:46:14:fa:4e:31:82:cb:72:1d: 2b:c8:9a:41:11:bb:de:26:bc:7e:ec:46:60:2a:ed: ea:63:c0:9a:38:c4:7e:00:4c:d5:22:9d:38:18:a1: 3a:d7:71:63:1c:10:b8:d4:94:f6:c8:b1:17:4d:7f: e2:d8:84:2f:67:3e:62:d2:25:ae:59:8e:dd:09:91: 22:26:94:c8:55:f5:5a:93:41:db:1f:80:30:e5:d3: 76:c6:c5:36:3a:4c:8d:d7:2d:a0:8d:ed:f5:ad:ce: 48:0e:a5:8d:07:17:eb:38:42:3b:c7:67:37:5c:06: aa:48:59:bf:c5:48:dc:5f:43:93:48:98:7d:22:96: a5:ff:b4:5a:2d:60:16:d7:2a:e6:8c:74:20:b7:c9: cb:0c:ed:70:fa:c5:a9:24:60:e3:2f:fa:58:65:7f: 3e:69:27:29:61:bc:6a:ef:6f:ad:bb:15:bb:c9:89: e0:ce:ce:11:02:c1:7c:ae:5c:72:87:89:a7:be:12: e9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EB:10:C5:C4:02:ED:5E:05:74:2F:F7:48:1B:BA:DA:9A:5F:0C:1B X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:51:a3:4d:2d:ce:9a:92:7c:8e:83:12:32:65:bb:04:8a:68: df:a5:5f:75:64:b6:08:58:72:ac:07:20:23:c8:06:42:52:c7: 39:67:3e:5e:dd:2a:2c:d7:25:65:3f:8f:a0:68:ac:50:c7:e8: b0:39:ac:37:9c:5f:5b:dd:c2:ee:6f:1a:3a:04:ca:66:9d:ea: 90:b5:3f:72:db:7b:3a:90:57:c1:0f:a8:81:4b:95:0d:45:e6: 71:71:9f:9a:40:a9:2e:46:04:53:14:8c:93:dc:21:9f:4d:05: e5:78:a0:d8:61:d2:27:57:3b:9e:d9:21:0a:43:68:f9:9c:28: a0:9b:af:a7:f7:1b:ea:58:e0:06:cf:ca:30:e0:13:5d:b6:ad: 96:50:91:cf:17:36:ca:d7:57:99:49:6d:5a:b3:17:01:3d:a1: 2c:0c:0c:ce:e2:70:d5:2a:27:cf:c8:5b:a2:61:8c:2d:eb:33: 48:2f:a6:74:3c:f6:ad:cc:11:d3:14:72:3b:68:b7:84:13:b1: 78:f5:f2:77:66:f3:3d:72:c0:6a:bd:4b:65:8d:e5:68:ad:1e: 02:71:95:d9:ae:66:29:7b:97:88:b4:ff:99:d1:15:77:eb:45: 75:b9:de:d3:5a:cb:f1:71:95:9f:ac:c2:4a:98:f5:03:43:28: 6d:12:bc:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUwODIyMjMxMjU3WhcNMjUwODI5MjMxMjU3WjAYMRYwFAYD VQQDEw02OGE4Zjk3OS00OTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Vu8fJGQ/UeIikle3yieVycbfDE2vDc5BcW/LvIl5ahXNe813gjP5IQumqta ctPNEkUQZwLBkmzUZ/I2f9n+sldGFPpOMYLLch0ryJpBEbveJrx+7EZgKu3qY8Ca OMR+AEzVIp04GKE613FjHBC41JT2yLEXTX/i2IQvZz5i0iWuWY7dCZEiJpTIVfVa k0HbH4Aw5dN2xsU2OkyN1y2gje31rc5IDqWNBxfrOEI7x2c3XAaqSFm/xUjcX0OT SJh9Ipal/7RaLWAW1yrmjHQgt8nLDO1w+sWpJGDjL/pYZX8+aScpYbxq72+tuxW7 yYngzs4RAsF8rlxyh4mnvhLpNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/rEMXE Au1eBXQv90gbutqaXwwbMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFUaNNLc6aknyOgxIyZbsEimjfpV91ZLYIWHKsByAjyAZCUsc5Zz5e 3Sos1yVlP4+gaKxQx+iwOaw3nF9b3cLubxo6BMpmneqQtT9y23s6kFfBD6iBS5UN ReZxcZ+aQKkuRgRTFIyT3CGfTQXleKDYYdInVzue2SEKQ2j5nCigm6+n9xvqWOAG z8ow4BNdtq2WUJHPFzbK11eZSW1asxcBPaEsDAzO4nDVKifPyFuiYYwt6zNIL6Z0 PPatzBHTFHI7aLeEE7F49fJ3ZvM9csBqvUtljeVorR4CcZXZrmYpe5eItP+Z0RV3 60V1ud7TWsvxcZWfrMJKmPUDQyhtEryd -----END CERTIFICATE-----Generated at Sun Aug 24 01:03:03 2025 by rpki-client