$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft File: Ol4QKeZcY2gSMttn2AU90vaU5h8.mft (raw, json) Hash identifier: IdtlyJEaomdOa8YVUuTgE3f9uVdZtVeSd7gmAfCyOWI= Subject key identifier: 28:DE:41:66:3C:70:F0:5A:22:3A:A9:08:FA:FB:8E:B8:D8:2E:CD:E1 Authority key identifier: 3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F Certificate issuer: /CN=A9174EC5/serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft Manifest number: 6D Signing time: Sat 23 Aug 2025 07:10:02 +0000 Manifest this update: Sat 23 Aug 2025 07:10:01 +0000 Manifest next update: Sat 30 Aug 2025 07:10:01 +0000 Files and hashes: 1: Ol4QKeZcY2gSMttn2AU90vaU5h8.crl (hash: GdHtAxUBHsopnAh5Q3y/btmoM8doLEaQKg59U7cbauY=) 2: E8112D9AD95A11EF815C7470C4F9AE02.roa (hash: mG5mPJ9TzgmR6vCAw7pVeBBypwUd04LX9QtyyGLebqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EC5, serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Validity Not Before: Aug 23 07:10:01 2025 GMT Not After : Aug 30 07:10:01 2025 GMT Subject: CN=68a9694a-592f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2f:69:bb:de:86:28:33:5e:a5:dc:17:ec:57: c1:f1:8c:7a:08:a6:e0:70:06:0b:2d:e1:9f:0a:bf: f3:47:3c:8b:1e:d5:3b:39:ba:59:28:1e:77:90:ae: 18:59:77:53:71:71:d0:7e:2d:ed:24:36:59:7a:af: d4:76:00:f6:a2:23:4c:0c:f1:d9:f2:cb:ed:10:10: 89:f1:e1:7a:a8:a7:02:33:eb:6b:28:2b:3d:d0:e8: f4:11:89:ca:fc:57:a4:4f:4f:f2:9c:86:a0:8f:72: 0a:5f:4c:c4:f3:42:4d:f8:81:ab:e4:76:d4:f9:be: 39:39:55:85:d7:0a:5d:66:90:4b:ce:2f:78:30:29: 9c:02:92:64:f4:20:27:ba:29:8f:28:17:b2:f2:74: 7f:08:90:18:d8:ee:72:f6:b6:0a:5f:70:8d:2d:f6: 33:87:e3:eb:cc:9b:91:88:04:8f:80:df:9f:e3:c9: ee:5d:94:a7:24:8f:d7:30:f6:c7:bb:1e:7c:67:83: a6:ab:c6:4e:6c:47:10:04:1d:cc:8c:5a:a2:6c:4d: 90:00:5b:3c:79:27:57:5f:70:23:83:6f:e8:64:a9: 03:8f:3a:58:c7:65:d0:b4:25:49:eb:d8:e8:76:1d: 92:2f:4d:b8:62:f3:8c:d4:ee:69:61:b8:28:41:54: 34:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:DE:41:66:3C:70:F0:5A:22:3A:A9:08:FA:FB:8E:B8:D8:2E:CD:E1 X509v3 Authority Key Identifier: keyid:3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:5b:55:47:6b:36:aa:d0:dd:49:3c:40:48:bd:1b:0d:fb:2d: c2:ec:88:35:8c:70:70:ba:ca:59:a8:c7:0f:a4:b0:96:ae:b2: ba:41:a5:ca:3e:52:15:15:20:65:aa:14:df:7b:bb:b8:8e:d8: d5:9f:58:cc:55:b2:28:76:40:c5:20:a6:a1:a3:33:07:c5:84: 0f:d7:35:28:e1:ed:18:6a:d3:45:fb:d1:30:5e:95:90:1e:56: 3f:e1:cb:82:f3:cd:26:9f:05:ba:85:bc:e1:47:fe:15:88:16: 03:c7:15:00:ef:de:0f:ca:74:8e:cc:74:ae:35:a6:76:9d:65: b4:55:3d:ed:ef:23:31:ee:cb:f6:01:01:34:c8:8c:70:c8:18: 00:44:c5:53:48:70:05:60:60:99:94:a8:88:22:a2:58:3e:ad: 32:a7:3a:95:47:7f:8a:d3:95:b5:20:33:6f:86:77:c8:62:11: 79:0a:e4:86:2e:8a:15:f5:9d:31:69:ae:cd:95:a2:d9:f0:d8: ad:86:50:ea:ef:55:3c:63:9b:86:60:2f:dc:a1:7e:7d:66:8b: aa:fe:44:75:5a:3e:a3:7b:00:92:08:ba:6e:7b:db:19:69:be: db:7e:6d:c7:46:5a:d6:22:2b:57:71:56:b5:22:78:1c:03:b9: 16:7b:f6:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEVDNTExMC8GA1UEBRMoM0E1RTEwMjlFNjVDNjM2ODEyMzJEQjY3RDgwNTNERDJG Njk0RTYxRjAeFw0yNTA4MjMwNzEwMDFaFw0yNTA4MzAwNzEwMDFaMBgxFjAUBgNV BAMTDTY4YTk2OTRhLTU5MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfL2m73oYoM16l3BfsV8HxjHoIpuBwBgst4Z8Kv/NHPIse1Ts5ulkoHneQrhhZ d1NxcdB+Le0kNll6r9R2APaiI0wM8dnyy+0QEInx4XqopwIz62soKz3Q6PQRicr8 V6RPT/KchqCPcgpfTMTzQk34gavkdtT5vjk5VYXXCl1mkEvOL3gwKZwCkmT0ICe6 KY8oF7LydH8IkBjY7nL2tgpfcI0t9jOH4+vMm5GIBI+A35/jye5dlKckj9cw9se7 Hnxng6arxk5sRxAEHcyMWqJsTZAAWzx5J1dfcCODb+hkqQOPOljHZdC0JUnr2Oh2 HZIvTbhi84zU7mlhuChBVDQDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKN5BZjxw 8FoiOqkI+vuOuNguzeEwHwYDVR0jBBgwFoAUOl4QKeZcY2gSMttn2AU90vaU5h8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0RUM1LzgyMzM1QTIwRDk1 QTExRUZBMDJGQjQ2RkM0RjlBRTAyL09sNFFLZVpjWTJnU010dG4yQVU5MHZhVTVo OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2w0UUtlWmNZMmdTTXR0bjJBVTkwdmFVNWg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 RUM1LzgyMzM1QTIwRDk1QTExRUZBMDJGQjQ2RkM0RjlBRTAyL09sNFFLZVpjWTJn U010dG4yQVU5MHZhVTVoOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHFbVUdrNqrQ3Uk8QEi9Gw37LcLsiDWMcHC6ylmoxw+ksJausrpBpco+ UhUVIGWqFN97u7iO2NWfWMxVsih2QMUgpqGjMwfFhA/XNSjh7Rhq00X70TBelZAe Vj/hy4LzzSafBbqFvOFH/hWIFgPHFQDv3g/KdI7MdK41pnadZbRVPe3vIzHuy/YB ATTIjHDIGABExVNIcAVgYJmUqIgiolg+rTKnOpVHf4rTlbUgM2+Gd8hiEXkK5IYu ihX1nTFprs2Votnw2K2GUOrvVTxjm4ZgL9yhfn1mi6r+RHVaPqN7AJIIum572xlp vtt+bcdGWtYiK1dxVrUieBwDuRZ79o8= -----END CERTIFICATE-----Generated at Sun Aug 24 04:59:49 2025 by rpki-client