$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: RUymBzzl9xVgKTsVJVkXUiR/JzGcwSQiQC9aL4RjAFQ= Subject key identifier: 96:40:00:36:21:DF:69:74:B2:71:5A:F5:55:2B:81:34:5C:6A:20:E1 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0CD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0C96 Signing time: Fri 22 Aug 2025 18:32:07 +0000 Manifest this update: Fri 22 Aug 2025 18:32:07 +0000 Manifest next update: Fri 29 Aug 2025 18:32:07 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: Cp336WIl88zEZAfB4ACDmcbfAr+hU3/IcCnPUBSeCYU=) 2: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 3: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 4: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 5: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) 6: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 8: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 9: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3287 (0xcd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Aug 22 18:32:07 2025 GMT Not After : Aug 29 18:32:07 2025 GMT Subject: CN=68a8b7a7-e8f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8b:42:ba:1e:50:a4:b8:aa:f7:4b:b6:51:3b: 45:ae:12:d6:92:90:3b:2d:61:60:27:75:fd:4d:92: 8b:b9:4f:11:a0:1a:29:b4:81:fa:ce:3e:e0:30:48: 01:6d:3e:a4:3f:e0:5d:ff:b7:a5:49:06:5e:e5:f4: b8:50:c1:ab:3a:dc:a7:f0:57:6e:fc:35:a5:32:db: 74:79:a3:ff:0e:2d:73:90:77:03:89:a9:1d:30:4d: 28:a0:2c:30:53:0a:9d:88:07:fe:90:21:5f:bb:1d: 3d:da:1a:8c:46:e9:82:ce:1b:bb:a6:32:3b:62:21: ac:66:6f:71:b5:a2:38:a2:4c:ee:3b:eb:ab:8b:24: 7c:6e:ba:29:67:67:d1:c4:90:d5:91:84:87:65:62: 68:1a:cb:8d:0d:92:08:5d:dd:58:03:60:e5:bf:2e: 4f:b5:2c:e3:0f:d4:51:40:5c:ae:c2:b5:bf:18:d7: 99:92:14:fe:a3:81:f1:61:c3:6a:55:fc:a7:88:b7: f1:6d:8b:5a:78:7c:fd:a6:38:e7:e0:18:77:41:d8: 37:14:7c:a7:75:cc:cf:6d:8d:c5:08:c6:08:41:c2: 0c:c8:16:e5:7f:ac:2a:5a:14:46:00:7e:d3:b9:9f: 2f:35:0f:69:ec:65:fb:18:fe:0a:e2:24:52:5a:36: b3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:40:00:36:21:DF:69:74:B2:71:5A:F5:55:2B:81:34:5C:6A:20:E1 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:81:97:35:46:71:c1:25:4e:2d:82:5e:c8:27:e5:b2:76:ac: cf:cb:17:47:40:b1:ea:b2:33:e6:04:25:19:37:72:19:9c:44: ad:59:c6:19:4d:f0:3b:42:46:dc:5e:e6:33:93:b5:24:b8:17: 25:4b:ea:a1:13:0e:fb:ba:ce:9a:ee:42:f6:56:f5:e4:3c:88: 09:3a:24:d3:11:3d:3c:f7:4b:2d:27:ba:10:06:00:71:25:e9: 98:b2:d0:54:45:0c:db:82:1c:ba:b4:62:d5:0b:1e:5c:fe:80: ca:2a:b9:de:18:27:03:ca:63:1e:d3:e0:79:d7:76:62:2a:b3: d4:ae:1c:19:f4:07:db:99:88:dc:bc:1a:e0:a9:98:18:98:91: d9:3c:bf:10:f5:e7:bc:81:b6:f0:67:96:27:c6:d2:6e:56:c3: 76:1f:91:dd:ae:ee:c8:6e:06:02:db:78:ad:f6:69:34:99:7f: b9:7d:87:af:92:63:d7:cc:0e:d1:a7:60:e6:6f:a8:b9:91:df: 08:42:c1:69:fe:e4:ac:71:55:c4:46:e9:a9:27:94:8c:b2:6c: cc:c1:b6:5c:a2:0f:f8:19:c4:18:e5:fc:24:33:70:68:ec:e2: 98:15:58:d6:cf:35:15:d3:90:a1:13:da:51:79:19:82:45:8e: 8b:98:38:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUwODIyMTgzMjA3WhcNMjUwODI5MTgzMjA3WjAYMRYwFAYD VQQDEw02OGE4YjdhNy1lOGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34tCuh5QpLiq90u2UTtFrhLWkpA7LWFgJ3X9TZKLuU8RoBoptIH6zj7gMEgB bT6kP+Bd/7elSQZe5fS4UMGrOtyn8Fdu/DWlMtt0eaP/Di1zkHcDiakdME0ooCww UwqdiAf+kCFfux092hqMRumCzhu7pjI7YiGsZm9xtaI4okzuO+uriyR8bropZ2fR xJDVkYSHZWJoGsuNDZIIXd1YA2Dlvy5PtSzjD9RRQFyuwrW/GNeZkhT+o4HxYcNq VfyniLfxbYtaeHz9pjjn4Bh3Qdg3FHyndczPbY3FCMYIQcIMyBblf6wqWhRGAH7T uZ8vNQ9p7GX7GP4K4iRSWjazOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZAADYh 32l0snFa9VUrgTRcaiDhMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVgZc1RnHBJU4tgl7IJ+WydqzPyxdHQLHqsjPmBCUZN3IZnEStWcYZ TfA7QkbcXuYzk7UkuBclS+qhEw77us6a7kL2VvXkPIgJOiTTET0890stJ7oQBgBx JemYstBURQzbghy6tGLVCx5c/oDKKrneGCcDymMe0+B513ZiKrPUrhwZ9AfbmYjc vBrgqZgYmJHZPL8Q9ee8gbbwZ5YnxtJuVsN2H5Hdru7IbgYC23it9mk0mX+5fYev kmPXzA7Rp2Dmb6i5kd8IQsFp/uSscVXERumpJ5SMsmzMwbZcog/4GcQY5fwkM3Bo 7OKYFVjWzzUV05ChE9pReRmCRY6LmDh2 -----END CERTIFICATE-----Generated at Sat Aug 23 17:11:56 2025 by rpki-client