$ rpki-client -vvf rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft File: o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft (raw, json) Hash identifier: ML6YRQZ5KbPzBqTQVm6IFC6tmpbZrC1lO0LIePCmVS8= Subject key identifier: 06:56:C0:58:FE:0F:70:23:44:A2:3F:92:FF:9E:4D:34:84:C7:73:FC Authority key identifier: A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 Certificate issuer: /CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft Manifest number: 0101 Signing time: Sat 23 Aug 2025 05:18:24 +0000 Manifest this update: Sat 23 Aug 2025 05:18:23 +0000 Manifest next update: Sat 30 Aug 2025 05:18:23 +0000 Files and hashes: 1: o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl (hash: abc4YEi2KijGQht9+pbGBo/kcfNioekw9tVUzw54J6I=) 2: 4A9AD51270F811F0BA070F34C4F9AE02.roa (hash: QDfFAc+QsuBck33Pcmt3S/+ttTSwrhFIgTHSmH6YmEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C10F, serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Validity Not Before: Aug 23 05:18:23 2025 GMT Not After : Aug 30 05:18:23 2025 GMT Subject: CN=68a94f1f-446d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e3:85:ab:bd:53:6c:b0:f3:df:9b:43:4f:3d: bb:fc:ad:79:e3:f6:85:45:6a:91:e5:36:5e:f6:85: 40:1c:2f:f2:06:cf:34:c0:c2:f2:c5:34:04:bf:74: 4c:4f:6b:e8:d0:b8:3a:1a:1a:da:72:7e:40:1e:b4: 57:e5:26:00:53:e4:fd:28:d7:a9:ef:40:10:b2:2e: 8a:35:47:6c:8c:38:93:9d:52:35:97:61:be:89:19: f0:60:0e:34:d6:54:cc:34:13:4c:36:e5:da:ca:d7: b7:40:26:47:ac:52:ce:f5:7f:06:73:e8:d2:fe:2e: ba:26:c1:e3:ad:90:9b:4c:94:67:34:f4:18:b3:24: e8:59:0b:4f:d3:67:f9:9f:fd:bf:98:ed:2a:45:ba: e6:fc:ac:54:34:1c:40:91:88:eb:1b:c9:19:d3:d4: 56:09:87:11:96:d7:7a:16:03:d3:39:3d:56:cf:7a: 9b:d2:6d:ef:79:62:86:89:63:54:f7:e1:19:36:6a: da:8a:3d:8d:8a:f7:48:1c:e5:5b:aa:91:f5:14:e1: 25:ba:9a:11:c7:3f:13:b6:40:51:ed:ac:cc:62:4e: 9e:05:2a:cf:7a:45:93:15:7b:7b:70:46:f1:1e:45: f9:95:82:b2:b9:d4:fd:62:07:d4:48:97:55:fa:19: af:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:56:C0:58:FE:0F:70:23:44:A2:3F:92:FF:9E:4D:34:84:C7:73:FC X509v3 Authority Key Identifier: keyid:A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:cb:c7:04:60:10:de:60:c5:9a:29:58:49:47:cf:da:0a:8e: a4:07:b2:46:52:34:df:37:f3:92:0f:48:98:82:32:0e:7b:09: 4d:54:94:ca:72:6d:09:86:3e:e4:67:87:a9:4d:73:d3:9c:e0: 9d:25:a0:76:21:57:48:d7:df:d0:02:17:94:9c:74:06:0f:fd: fb:2c:02:7e:f7:68:61:a1:d3:48:21:88:cc:02:ae:b1:5a:9e: 12:8b:6b:d4:6a:e7:27:b5:ee:f6:75:1e:e5:4a:23:bf:d8:6e: 9e:17:b6:74:34:fa:fd:82:6a:ad:ec:fd:e9:6d:bd:6c:e1:21: f6:6c:80:55:28:22:d3:e6:67:29:a5:8c:9b:04:19:0e:a5:32: f6:eb:4b:f5:d2:56:bb:b7:3b:88:80:6a:b9:70:58:6b:44:84: f6:38:75:11:c3:25:67:b4:57:1c:49:de:9e:77:7e:7f:32:7b: 55:7c:7e:4c:1c:ec:33:78:77:d7:62:f6:aa:37:40:e8:b2:5b: 6a:b0:40:9e:b5:56:78:0d:15:20:be:4b:2c:b2:c0:9c:2f:23: a9:30:dc:59:f5:a2:41:af:69:3f:7c:6a:c0:ae:d3:74:8d:93: 42:d4:69:a4:76:55:c6:0d:96:b0:d6:07:08:b5:04:65:1c:07: 11:ac:2c:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMEYxMTAvBgNVBAUTKEEzRUI1MUQyOTk5QkJCNDQ2NTlCRERBNkJFMUUxMEZB NTUxRTIyNjUwHhcNMjUwODIzMDUxODIzWhcNMjUwODMwMDUxODIzWjAYMRYwFAYD VQQDEw02OGE5NGYxZi00NDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOOFq71TbLDz35tDTz27/K154/aFRWqR5TZe9oVAHC/yBs80wMLyxTQEv3RM T2vo0Lg6Ghracn5AHrRX5SYAU+T9KNep70AQsi6KNUdsjDiTnVI1l2G+iRnwYA40 1lTMNBNMNuXayte3QCZHrFLO9X8Gc+jS/i66JsHjrZCbTJRnNPQYsyToWQtP02f5 n/2/mO0qRbrm/KxUNBxAkYjrG8kZ09RWCYcRltd6FgPTOT1Wz3qb0m3veWKGiWNU 9+EZNmraij2NivdIHOVbqpH1FOElupoRxz8TtkBR7azMYk6eBSrPekWTFXt7cEbx HkX5lYKyudT9YgfUSJdV+hmvMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZWwFj+ D3AjRKI/kv+eTTSEx3P8MB8GA1UdIwQYMBaAFKPrUdKZm7tEZZvdpr4eEPpVHiJl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEwRi85QTc1ODBDOEZE NEExMUVFODA5QjA3MzBDNEY5QUUwMi9vLXRSMHBtYnUwUmxtOTJtdmg0US1sVWVJ bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28tdFIwcG1idTBSbG05Mm12aDRRLWxVZUltVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEwRi85QTc1ODBDOEZENEExMUVFODA5QjA3MzBDNEY5QUUwMi9vLXRSMHBtYnUw UmxtOTJtdmg0US1sVWVJbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmy8cEYBDeYMWaKVhJR8/aCo6kB7JGUjTfN/OSD0iYgjIOewlNVJTK cm0Jhj7kZ4epTXPTnOCdJaB2IVdI19/QAheUnHQGD/37LAJ+92hhodNIIYjMAq6x Wp4Si2vUaucnte72dR7lSiO/2G6eF7Z0NPr9gmqt7P3pbb1s4SH2bIBVKCLT5mcp pYybBBkOpTL260v10la7tzuIgGq5cFhrRIT2OHURwyVntFccSd6ed35/MntVfH5M HOwzeHfXYvaqN0DosltqsECetVZ4DRUgvkssssCcLyOpMNxZ9aJBr2k/fGrArtN0 jZNC1GmkdlXGDZaw1gcItQRlHAcRrCy5 -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:21 2025 by rpki-client