$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft File: rOKNq-U2SWN_puTjId4bY0Y7g88.mft (raw, json) Hash identifier: JeXhLJJt9NWDawMUPZhoHhdmYR27dizEcLJdCGdsi50= Subject key identifier: B3:0A:5D:32:09:68:5D:92:01:46:2A:64:72:E7:32:EF:11:DE:E9:91 Authority key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF Certificate issuer: /CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft Manifest number: 011B Signing time: Sat 23 Aug 2025 04:59:32 +0000 Manifest this update: Sat 23 Aug 2025 04:59:32 +0000 Manifest next update: Sat 30 Aug 2025 04:59:32 +0000 Files and hashes: 1: rOKNq-U2SWN_puTjId4bY0Y7g88.crl (hash: 1mMP1x6ieWhVvuzostecRELukCpM+VtFe5y/ZdxAFy0=) 2: E7F6D15AD17411EE87F7325DC4F9AE02.roa (hash: roB5hg8LbgyHBq3NzG2BxN4ORRxykj532WnJpDlGnj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Validity Not Before: Aug 23 04:59:32 2025 GMT Not After : Aug 30 04:59:32 2025 GMT Subject: CN=68a94ab4-2216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e7:c0:f6:05:da:43:47:b6:6c:a6:e3:a1:da: e6:fc:27:4a:54:ba:d1:e6:07:5d:e1:4b:93:39:c0: 9a:d6:8d:d6:f1:12:ac:66:32:4d:2a:2b:41:ff:1e: 40:19:6c:29:6c:e0:7b:7b:a8:97:52:5a:64:75:0a: 05:44:5f:d3:2e:31:b3:86:b8:db:d5:67:f8:05:f4: 12:79:39:8c:51:ea:d9:6b:7d:e2:85:2a:e5:71:86: 68:a9:a7:6f:9a:48:b5:5b:a0:6a:22:a9:d0:b1:9a: 08:c3:5f:54:a8:15:8d:5b:c3:e4:54:87:ae:2c:d7: 80:f9:e3:2e:94:c6:6a:de:e9:cb:72:af:0e:ea:ba: 93:1b:c3:16:58:c0:e7:31:03:2e:b0:e0:00:27:5b: ad:99:22:b2:ed:89:1c:0f:bc:7d:13:e9:66:a2:29: 18:da:b4:8d:81:e8:6f:df:5e:69:86:6e:15:a3:b7: 10:37:63:76:6b:ad:79:e2:ca:e1:53:79:1c:20:82: 1b:29:97:fc:41:d9:d9:29:54:c0:34:b1:ce:28:e0: 01:b4:76:46:07:97:cf:bd:d6:2a:b5:67:b6:4a:ec: 31:c9:bc:53:92:47:d3:21:75:a7:d7:37:93:4b:d2: 01:27:c7:d2:76:89:78:00:a2:85:cb:f2:cc:13:6e: 12:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0A:5D:32:09:68:5D:92:01:46:2A:64:72:E7:32:EF:11:DE:E9:91 X509v3 Authority Key Identifier: keyid:AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:02:3a:b5:c5:78:9d:04:42:3b:c8:4c:18:90:2a:57:8a:b7: ea:d0:49:46:52:5f:c9:57:a2:2e:ff:a3:7d:9e:7e:87:1a:5c: 85:c3:e0:8d:d8:ed:77:61:10:72:68:1a:8b:eb:49:93:cb:77: 1c:17:9c:c2:1d:78:75:29:0a:3a:73:27:3a:5c:07:a4:44:e1: 5a:1b:f3:c9:26:a0:a8:82:a6:79:d7:63:e8:f9:a2:b3:e6:67: f4:91:5d:db:14:c0:61:3c:fa:1e:b6:8f:69:f2:e3:3a:f5:6b: bc:05:12:44:a8:ef:0a:28:a6:7f:80:d2:ad:1c:04:12:9a:d6: ad:e4:0c:e3:f6:1f:a4:f0:ba:a6:64:47:c3:4a:9c:d8:53:01: 8f:df:ff:17:b4:f5:ed:63:bd:ea:03:9b:04:31:7b:c4:13:e3: 94:cd:22:3c:80:4c:ba:05:02:dd:9e:f9:b4:58:e1:41:27:e6: 74:cf:28:a8:72:ea:7c:bd:19:6f:36:8e:0c:e9:a2:10:12:4a: 9f:ae:15:40:6d:04:45:7e:09:d3:3a:70:88:0b:14:0c:08:a8: df:15:d1:44:1d:13:e9:64:13:04:45:8f:8a:d6:ce:78:56:37: fe:de:90:35:68:2e:d6:b2:80:c5:e6:e3:33:95:19:41:ba:22: 12:b5:b2:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKEFDRTI4REFCRTUzNjQ5NjM3RkE2RTRFMzIxREUxQjYz NDYzQjgzQ0YwHhcNMjUwODIzMDQ1OTMyWhcNMjUwODMwMDQ1OTMyWjAYMRYwFAYD VQQDEw02OGE5NGFiNC0yMjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuufA9gXaQ0e2bKbjodrm/CdKVLrR5gdd4UuTOcCa1o3W8RKsZjJNKitB/x5A GWwpbOB7e6iXUlpkdQoFRF/TLjGzhrjb1Wf4BfQSeTmMUerZa33ihSrlcYZoqadv mki1W6BqIqnQsZoIw19UqBWNW8PkVIeuLNeA+eMulMZq3unLcq8O6rqTG8MWWMDn MQMusOAAJ1utmSKy7YkcD7x9E+lmoikY2rSNgehv315phm4Vo7cQN2N2a6154srh U3kcIIIbKZf8QdnZKVTANLHOKOABtHZGB5fPvdYqtWe2SuwxybxTkkfTIXWn1zeT S9IBJ8fSdol4AKKFy/LME24SkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMKXTIJ aF2SAUYqZHLnMu8R3umRMB8GA1UdIwQYMBaAFKzijavlNkljf6bk4yHeG2NGO4PP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS9BMUYyMzQzQ0Qx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNXTl9wdVRqSWQ0YlkwWTdn ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPS05xLVUyU1dOX3B1VGpJZDRiWTBZN2c4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS9BMUYyMzQzQ0QxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNX Tl9wdVRqSWQ0YlkwWTdnODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfAjq1xXidBEI7yEwYkCpXirfq0ElGUl/JV6Iu/6N9nn6HGlyFw+CN 2O13YRByaBqL60mTy3ccF5zCHXh1KQo6cyc6XAekROFaG/PJJqCogqZ512Po+aKz 5mf0kV3bFMBhPPoeto9p8uM69Wu8BRJEqO8KKKZ/gNKtHAQSmtat5Azj9h+k8Lqm ZEfDSpzYUwGP3/8XtPXtY73qA5sEMXvEE+OUzSI8gEy6BQLdnvm0WOFBJ+Z0zyio cup8vRlvNo4M6aIQEkqfrhVAbQRFfgnTOnCICxQMCKjfFdFEHRPpZBMERY+K1s54 Vjf+3pA1aC7WsoDF5uMzlRlBuiIStbJr -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:24 2025 by rpki-client