$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: yH/Wqv8sO7h5CiyesY7iNF5N/p1aWDwT7UHGM0YIHVY= Subject key identifier: 90:6F:06:22:29:8A:0F:C2:B4:EC:F4:74:98:FB:98:42:F2:E3:40:FF Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 0845 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 0830 Signing time: Wed 02 Jul 2025 21:03:44 +0000 Manifest this update: Wed 02 Jul 2025 21:03:44 +0000 Manifest next update: Wed 09 Jul 2025 21:03:44 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: fETOqbNIrz77fVGPTZjWNPgRDKJ1DOFrAOqbDHZdL4g=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: ZWM4HJUjC3JgAEYknxCATq6PGI5BXk42LHpdEZQRJ0I=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: oVaIkIIp594wdZKn2XCmHgy069EyuIaCAvG8B279YGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2117 (0x845) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Jul 2 21:03:44 2025 GMT Not After : Jul 9 21:03:44 2025 GMT Subject: CN=68659eb0-8f1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:10:33:ae:3d:91:31:fc:bf:24:85:e0:7d: 81:64:b8:aa:b5:7e:20:57:5b:33:2e:93:0d:d6:94: 10:ed:55:fa:12:a1:01:51:63:a1:df:ae:41:11:ae: 59:b8:a1:84:a0:9c:0d:5f:67:7d:44:fc:0b:98:1f: f9:bd:9f:65:05:6f:d6:9e:52:71:cd:f9:cb:d0:48: ec:8c:9e:87:40:a4:13:a3:63:e6:24:f7:97:0c:cb: ec:37:d2:44:13:af:04:88:65:c7:89:16:e3:d7:a3: f0:5d:86:fb:a7:cb:2d:25:34:9a:82:81:f8:56:a9: 79:3a:cc:62:62:f4:c9:61:54:8b:95:25:66:8e:80: b9:b5:32:c5:a8:9d:ab:09:43:3f:ab:8f:0e:ef:52: 9f:00:22:9a:ae:b2:b3:28:01:0d:d6:38:9e:13:aa: df:4d:3f:f9:10:fe:de:7c:78:42:84:c1:73:76:7c: 51:29:61:6a:38:1b:e2:e4:6e:40:69:34:b4:2e:6f: 72:46:02:b0:59:6e:49:73:5e:9a:a3:95:de:07:65: f6:a9:d0:ed:21:b0:81:05:c1:d6:94:28:cf:ce:b3: b4:31:6d:b4:38:64:05:79:f2:d7:17:70:6d:13:82: d5:b1:e7:fa:e9:e1:40:60:64:98:63:b0:3c:aa:c6: 6b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:6F:06:22:29:8A:0F:C2:B4:EC:F4:74:98:FB:98:42:F2:E3:40:FF X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:7b:5e:1d:72:ae:9d:7f:e0:e6:78:f6:1e:fc:cc:af:d1:4b: fd:66:04:f2:ca:9a:95:62:8a:88:45:f5:42:6f:14:af:94:11: 3d:07:79:bf:c3:35:2b:e9:bb:58:35:b6:61:31:ca:df:2c:10: 3b:69:5b:c3:98:93:b8:67:36:30:84:93:d6:34:d6:2c:f5:4d: 0e:f1:44:92:29:34:19:fb:a3:72:b8:b0:88:71:ca:c9:64:7c: 52:0b:ba:25:e7:37:e5:e3:29:f1:00:0b:4c:1f:96:69:0b:d7: 69:0d:b9:80:46:8c:b4:6c:ae:70:fc:e1:44:c7:be:b5:78:b5: 77:b0:9f:7c:e3:f5:da:fa:50:be:f7:e3:42:07:6b:6d:12:96: 5f:8e:9a:24:c8:ac:1c:01:72:e0:04:d3:9d:e5:f3:48:dd:20: 9c:58:67:a6:1d:81:ed:75:11:a3:87:fd:f5:58:7d:0c:02:2a: 27:e4:12:4d:21:70:70:2f:ac:da:2a:57:bf:f2:4b:2e:fd:6f: 8d:21:78:33:b4:a9:4b:dd:8b:ee:2f:89:b2:22:75:d4:f4:4d: 38:01:7b:87:69:2f:43:94:c1:f5:c1:0e:bf:19:b3:ed:e5:67: b1:c9:46:7a:b5:ef:91:9e:df:44:29:8c:de:0a:3d:69:22:2f: 37:5c:09:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjUwNzAyMjEwMzQ0WhcNMjUwNzA5MjEwMzQ0WjAYMRYwFAYD VQQDEw02ODY1OWViMC04ZjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCwQM649kTH8vySF4H2BZLiqtX4gV1szLpMN1pQQ7VX6EqEBUWOh365BEa5Z uKGEoJwNX2d9RPwLmB/5vZ9lBW/WnlJxzfnL0EjsjJ6HQKQTo2PmJPeXDMvsN9JE E68EiGXHiRbj16PwXYb7p8stJTSagoH4Vql5OsxiYvTJYVSLlSVmjoC5tTLFqJ2r CUM/q48O71KfACKarrKzKAEN1jieE6rfTT/5EP7efHhChMFzdnxRKWFqOBvi5G5A aTS0Lm9yRgKwWW5Jc16ao5XeB2X2qdDtIbCBBcHWlCjPzrO0MW20OGQFefLXF3Bt E4LVsef66eFAYGSYY7A8qsZrzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBvBiIp ig/CtOz0dJj7mELy40D/MB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0e14dcq6df+DmePYe/Myv0Uv9ZgTyypqVYoqIRfVCbxSvlBE9B3m/ wzUr6btYNbZhMcrfLBA7aVvDmJO4ZzYwhJPWNNYs9U0O8USSKTQZ+6NyuLCIccrJ ZHxSC7ol5zfl4ynxAAtMH5ZpC9dpDbmARoy0bK5w/OFEx761eLV3sJ984/Xa+lC+ 9+NCB2ttEpZfjpokyKwcAXLgBNOd5fNI3SCcWGemHYHtdRGjh/31WH0MAion5BJN IXBwL6zaKle/8ksu/W+NIXgztKlL3YvuL4myInXU9E04AXuHaS9DlMH1wQ6/GbPt 5WexyUZ6te+Rnt9EKYzeCj1pIi83XAns -----END CERTIFICATE-----Generated at Thu Jul 3 11:22:32 2025 by rpki-client