$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: SKCTFJW3um/J8gICLADynW3qqUWi65qil1ZNz2hB0Ec= Subject key identifier: 95:34:D6:2B:51:88:F3:BC:C6:2F:AF:3B:F5:13:5E:91:EC:47:3D:A3 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 05BE Signing time: Wed 02 Jul 2025 23:24:59 +0000 Manifest this update: Wed 02 Jul 2025 23:24:59 +0000 Manifest next update: Wed 09 Jul 2025 23:24:59 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: ddSNFtg7wcW3N8CqzGXtE91N9wmjeQ4kyL/UQ2h36Gg=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: Ews4xG+BhGr1YKU7wFoc4NdQF1qugSkJAZpv3+K1VQA=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: ixAKLgsVNfo1Pz8i7g4aRb3j68KYgsQlay7em4iJOQg=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Jul 2 23:24:59 2025 GMT Not After : Jul 9 23:24:59 2025 GMT Subject: CN=6865bfcb-887d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:31:f3:48:b2:7a:79:42:7c:80:e1:50:e3:92: c0:2b:4f:97:fd:b3:fc:89:55:43:4f:da:6a:4c:06: 1b:c3:d6:65:4c:a4:0a:23:03:2b:e3:50:46:ee:b3: 12:d3:dd:27:82:6b:7e:e9:c0:58:7a:07:d3:76:d8: c3:42:66:b8:36:98:a5:cb:fe:bb:4c:9c:f7:3d:80: 62:1e:e2:15:28:4d:70:87:e5:98:f1:6f:97:90:37: 08:e3:ae:ce:6f:92:d6:33:74:3c:11:b5:af:84:c0: 44:2d:f3:e7:6f:ed:b9:d6:9d:1f:e6:96:17:99:7c: 67:e7:38:b8:ff:f4:c9:85:b7:5f:f1:bf:56:09:7f: b5:f0:f8:7d:b2:21:7e:39:a4:10:89:d8:51:c5:ab: cb:c6:63:ac:29:7a:28:2e:4a:e8:d3:54:0a:cc:73: 51:fd:93:d0:96:5b:fa:35:52:85:dc:6b:43:a7:e5: fc:e5:8f:43:8d:d3:e9:9d:06:a1:d8:3f:27:06:38: 61:51:0d:d3:ee:ad:c6:2b:b0:38:da:bf:6a:53:42: 97:50:98:3a:27:ba:9b:d3:15:35:2e:5e:9b:b0:44: 0f:7e:47:bb:d3:89:30:76:ef:21:c3:b0:1c:53:08: f1:33:08:49:ab:49:e3:eb:16:28:f0:e3:57:41:d9: 50:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:34:D6:2B:51:88:F3:BC:C6:2F:AF:3B:F5:13:5E:91:EC:47:3D:A3 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:6b:95:0b:81:59:2f:0c:5c:12:4e:5f:6a:73:0f:40:0e:49: 90:8d:94:c2:0f:f8:eb:1c:0a:b9:c1:c6:e3:04:a4:b6:17:e2: d1:52:c8:fe:b9:5f:e8:42:6c:45:32:e0:cf:80:c7:5a:04:c4: b6:65:cb:4d:63:0c:8c:d3:28:fc:e5:09:0f:c4:ca:9e:c2:db: 5a:6c:9c:99:72:78:9c:64:1a:fe:3a:05:12:84:67:0b:6c:55: eb:f4:e8:57:e6:ad:2b:61:58:4a:de:d0:e1:a1:eb:37:a0:1e: b5:a9:68:89:ac:1b:d0:85:fc:1a:d0:7e:50:bf:9b:de:1b:ec: 40:a6:10:73:7a:ad:68:97:7c:a3:19:4d:3e:bb:49:54:1f:43: c0:44:4b:84:c9:f3:13:a9:c3:80:3d:58:24:09:a2:a9:3e:7e: 26:30:34:97:6a:4f:4e:df:81:8b:a8:f9:95:3c:04:8d:f9:0e: bd:ee:c4:3f:c9:93:de:e7:20:31:34:d8:09:9c:5f:53:ef:77: ec:91:0f:c2:c6:0c:26:c9:c7:2a:c8:c4:03:0f:54:8e:72:85: 15:c4:cc:b3:f4:81:a3:1e:b6:c3:1a:c8:57:c9:8b:2a:03:73: b8:de:b1:82:42:7d:f5:be:c6:bb:16:f1:54:10:ba:63:78:3d: 6c:31:2a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUwNzAyMjMyNDU5WhcNMjUwNzA5MjMyNDU5WjAYMRYwFAYD VQQDEw02ODY1YmZjYi04ODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjHzSLJ6eUJ8gOFQ45LAK0+X/bP8iVVDT9pqTAYbw9ZlTKQKIwMr41BG7rMS 090ngmt+6cBYegfTdtjDQma4Npily/67TJz3PYBiHuIVKE1wh+WY8W+XkDcI467O b5LWM3Q8EbWvhMBELfPnb+251p0f5pYXmXxn5zi4//TJhbdf8b9WCX+18Ph9siF+ OaQQidhRxavLxmOsKXooLkro01QKzHNR/ZPQllv6NVKF3GtDp+X85Y9DjdPpnQah 2D8nBjhhUQ3T7q3GK7A42r9qU0KXUJg6J7qb0xU1Ll6bsEQPfke704kwdu8hw7Ac UwjxMwhJq0nj6xYo8ONXQdlQ6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJU01itR iPO8xi+vO/UTXpHsRz2jMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUa5ULgVkvDFwSTl9qcw9ADkmQjZTCD/jrHAq5wcbjBKS2F+LRUsj+ uV/oQmxFMuDPgMdaBMS2ZctNYwyM0yj85QkPxMqewttabJyZcnicZBr+OgUShGcL bFXr9OhX5q0rYVhK3tDhoes3oB61qWiJrBvQhfwa0H5Qv5veG+xAphBzeq1ol3yj GU0+u0lUH0PAREuEyfMTqcOAPVgkCaKpPn4mMDSXak9O34GLqPmVPASN+Q697sQ/ yZPe5yAxNNgJnF9T73fskQ/CxgwmyccqyMQDD1SOcoUVxMyz9IGjHrbDGshXyYsq A3O43rGCQn31vsa7FvFUELpjeD1sMSov -----END CERTIFICATE-----Generated at Fri Jul 4 03:43:36 2025 by rpki-client