$ rpki-client -vvf rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft File: oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft (raw, json) Hash identifier: gKZWJwvjYnb92NnDi2x3sSONDx49LZZjsrl4Cq1fm7o= Subject key identifier: 2E:98:B2:17:50:CE:E4:AE:B7:BE:78:E8:07:9F:33:DC:12:51:80:5C Authority key identifier: A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 Certificate issuer: /CN=A9194040/serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Certificate serial: 039E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft Manifest number: 0399 Signing time: Thu 03 Jul 2025 01:10:14 +0000 Manifest this update: Thu 03 Jul 2025 01:10:13 +0000 Manifest next update: Thu 10 Jul 2025 01:10:13 +0000 Files and hashes: 1: oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl (hash: TVwuSF/gJ/nFmQvPVx5P0E/+yDXBWffHXat/LQJayS0=) 2: D1E294C2A34411EC803D2585C4F9AE02.roa (hash: lJa/v3Ew27zEz3fGPQRNJii4SZZ7fJhhCVEdIkMKWNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 926 (0x39e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194040, serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0 Validity Not Before: Jul 3 01:10:13 2025 GMT Not After : Jul 10 01:10:13 2025 GMT Subject: CN=6865d876-a396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f2:34:c7:12:47:8c:00:66:54:e3:7f:6e:7e: 6d:3d:af:bf:d3:62:78:00:3d:bc:42:31:68:20:92: 70:da:99:66:bf:fc:d2:9a:d7:ca:2a:c9:50:7f:cf: 68:20:24:3e:7a:d4:35:f2:4c:6c:1c:dd:68:06:85: b0:3b:45:e2:c2:8a:22:55:7d:6c:53:1f:3e:16:d2: a7:ac:de:c4:e7:f2:27:c3:9f:cf:6e:e3:a7:8c:5f: 97:82:44:11:cd:94:b3:e7:bf:b4:80:78:c0:b1:70: e1:5b:4d:df:a5:ea:a1:84:3d:39:7f:37:88:c3:d7: ff:1c:17:69:d8:c4:7a:6f:e0:ce:1d:94:e0:86:5c: c9:1e:b4:81:93:28:0b:ae:07:b6:9f:89:03:38:92: 3b:25:76:bd:20:41:bf:75:66:2c:37:57:2c:bf:10: 75:3a:ff:ff:0f:8f:1f:d8:68:b3:17:6b:e3:6f:36: c8:d8:80:00:99:7b:b9:c9:cc:3d:f0:89:98:f5:1f: 0b:c9:3b:aa:bd:4e:87:bd:3a:e1:48:59:cd:de:02: dc:92:89:95:f9:42:d9:ab:83:a3:c7:8c:3d:f1:f8: d6:b8:9c:d8:fd:1f:00:74:5d:9e:b5:64:4e:ce:60: 18:13:98:59:fe:a7:39:d2:19:41:b0:cd:71:2e:39: 8a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:98:B2:17:50:CE:E4:AE:B7:BE:78:E8:07:9F:33:DC:12:51:80:5C X509v3 Authority Key Identifier: keyid:A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:5a:fc:b7:06:da:a9:0c:41:5d:02:82:69:f8:bf:e9:1a:04: 73:41:62:82:df:52:fa:3a:57:7d:68:c4:80:89:2d:cb:60:a6: 2e:85:31:db:f4:f5:8c:b7:8a:54:37:de:e7:1d:31:8d:eb:15: 5e:9c:5f:51:00:d0:b0:e7:b0:0f:0a:d1:c4:42:b8:5f:a6:7e: c6:57:cf:ce:c5:f5:ea:94:2c:81:fd:11:ba:76:ca:ea:38:6a: 81:ea:98:30:a3:31:00:ad:47:a9:1a:5e:50:02:d1:cc:c7:5d: f4:41:36:50:1e:74:f9:37:4d:79:02:42:c5:bf:19:cd:87:db: 15:8c:fe:e4:a0:66:2d:fe:27:a6:90:1e:d6:be:4b:45:66:ce: 24:89:d5:29:48:83:60:04:03:91:1d:4c:c3:ef:7a:a1:ff:2a: 22:2c:1a:81:72:f6:b2:9c:51:b9:a5:05:ea:09:db:71:7c:31: f9:68:11:6c:87:f1:7f:db:d2:e8:41:b2:a7:88:79:51:80:eb: b3:44:8c:37:8c:78:1a:9e:75:11:4b:28:1d:fb:ff:7f:75:b7: 5f:b4:cc:a3:a4:df:1c:7b:3b:76:1a:e3:d7:9a:76:0c:0c:6b: 62:bf:d8:1a:c2:0e:18:32:c0:cb:9b:a2:ef:73:9d:ac:af:fc: 10:3f:53:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQwNDAxMTAvBgNVBAUTKEEwN0NEM0QxMDIxQTU4QzI0MEExMjEzNzQwMEI5N0Ix OEI3OTk4RDAwHhcNMjUwNzAzMDExMDEzWhcNMjUwNzEwMDExMDEzWjAYMRYwFAYD VQQDEw02ODY1ZDg3Ni1hMzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPI0xxJHjABmVON/bn5tPa+/02J4AD28QjFoIJJw2plmv/zSmtfKKslQf89o ICQ+etQ18kxsHN1oBoWwO0XiwooiVX1sUx8+FtKnrN7E5/Inw5/PbuOnjF+XgkQR zZSz57+0gHjAsXDhW03fpeqhhD05fzeIw9f/HBdp2MR6b+DOHZTghlzJHrSBkygL rge2n4kDOJI7JXa9IEG/dWYsN1csvxB1Ov//D48f2GizF2vjbzbI2IAAmXu5ycw9 8ImY9R8LyTuqvU6HvTrhSFnN3gLckomV+ULZq4Ojx4w98fjWuJzY/R8AdF2etWRO zmAYE5hZ/qc50hlBsM1xLjmKywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6YshdQ zuSut7546AefM9wSUYBcMB8GA1UdIwQYMBaAFKB809ECGljCQKEhN0ALl7GLeZjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDA0MC85QjA0QTBGMkEz NDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdNSkFvU0UzUUF1WHNZdDVt TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29IelQwUUlhV01KQW9TRTNRQXVYc1l0NW1OQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDA0MC85QjA0QTBGMkEzNDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdN SkFvU0UzUUF1WHNZdDVtTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0Wvy3BtqpDEFdAoJp+L/pGgRzQWKC31L6Old9aMSAiS3LYKYuhTHb 9PWMt4pUN97nHTGN6xVenF9RANCw57APCtHEQrhfpn7GV8/OxfXqlCyB/RG6dsrq OGqB6pgwozEArUepGl5QAtHMx130QTZQHnT5N015AkLFvxnNh9sVjP7koGYt/iem kB7WvktFZs4kidUpSINgBAORHUzD73qh/yoiLBqBcvaynFG5pQXqCdtxfDH5aBFs h/F/29LoQbKniHlRgOuzRIw3jHgannURSygd+/9/dbdftMyjpN8cezt2GuPXmnYM DGtiv9gawg4YMsDLm6Lvc52sr/wQP1Ot -----END CERTIFICATE-----Generated at Thu Jul 3 15:34:38 2025 by rpki-client