$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: z/69BPIc5XlteGa2sqdEBmHzwdO0gllD371+q9gCLEw= Subject key identifier: 8E:7F:20:CB:49:0A:14:DB:68:59:59:64:91:C6:B3:26:F5:FA:82:A4 Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 085F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 084A Signing time: Fri 22 Aug 2025 20:51:26 +0000 Manifest this update: Fri 22 Aug 2025 20:51:25 +0000 Manifest next update: Fri 29 Aug 2025 20:51:25 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: xezMo3TwWK60i44S8q3eCBMvfVE8tkT5MqDOMqtanv4=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: ZWM4HJUjC3JgAEYknxCATq6PGI5BXk42LHpdEZQRJ0I=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: oVaIkIIp594wdZKn2XCmHgy069EyuIaCAvG8B279YGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2143 (0x85f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Aug 22 20:51:25 2025 GMT Not After : Aug 29 20:51:25 2025 GMT Subject: CN=68a8d84e-87bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:10:97:42:47:b7:e8:ca:47:21:84:7d:24:a3: eb:a7:b6:bf:56:62:52:82:52:7d:78:09:92:d1:9c: 44:75:04:83:8d:96:33:53:99:45:e9:22:15:52:08: 9f:9f:90:12:4a:ba:9e:76:d3:cc:16:34:80:0b:f8: 20:ed:9d:1e:5e:fe:a2:f9:dd:47:5a:2a:df:fc:a1: 29:e4:2f:0e:06:b6:b9:2c:79:35:d8:8a:a5:5e:5e: cb:12:93:d7:a8:f5:8c:2a:3c:7d:0b:3c:83:9e:38: c0:0a:6f:75:4c:a4:9d:bb:4e:ba:a6:a7:27:5c:a7: 71:2e:b2:d6:38:05:21:dd:8e:9a:79:3c:36:75:07: 8a:88:0d:de:03:ee:d3:37:37:68:c9:fc:50:07:39: 1a:2f:c5:38:89:f1:d4:4a:62:e1:6d:9b:9a:92:cb: 2b:6f:9b:bd:80:91:3c:aa:e6:05:53:3e:aa:00:fd: be:d0:6f:c2:78:23:d4:2a:04:49:da:ab:a4:d8:28: 9f:49:27:e3:78:09:8d:e0:d2:ab:dd:f8:d5:3b:03: fe:bd:59:7a:2c:eb:3f:d9:71:74:00:10:34:78:8e: 2f:fe:d0:61:88:88:4e:2b:da:67:ea:b5:96:89:ae: 1f:16:8d:95:34:cb:36:ad:3c:71:1b:1b:ba:e2:54: 69:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:7F:20:CB:49:0A:14:DB:68:59:59:64:91:C6:B3:26:F5:FA:82:A4 X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:87:ee:97:0a:23:ac:04:d7:e4:b2:73:46:f5:78:e9:70:f5: 22:e9:62:35:d8:11:85:8d:7e:ba:47:c7:cc:9d:69:65:98:43: 47:e7:54:9d:36:67:2c:76:06:f2:2b:64:08:e1:22:22:75:95: 58:a2:4c:8f:61:d3:22:ba:09:71:f0:fe:45:d2:74:97:08:8c: 8e:10:e6:08:e7:a0:62:a9:50:7a:2a:5c:b3:23:96:97:e2:61: e7:76:14:c0:99:f1:d0:d6:5d:ab:bd:fe:5e:e8:70:21:fb:a9: 02:a4:ba:9b:c5:b3:9d:e0:c8:b6:a6:d5:95:47:8a:1c:39:67: 09:75:55:e8:e1:45:ad:dc:82:3b:79:43:9d:87:f0:74:16:16: e7:5d:96:0d:4c:b9:fb:0d:6e:2c:b4:9f:32:27:79:6b:d6:03: 80:5f:aa:34:ed:bf:e1:5f:b2:51:cf:2e:90:96:65:be:66:36: 24:77:d0:19:6d:cd:9d:fa:03:bd:fa:54:26:f5:10:1d:02:97: 7e:50:b2:0b:f5:96:84:5e:cf:51:36:9b:a9:39:9b:be:21:c7: 06:f3:82:f9:d6:c9:cf:29:13:19:cf:dd:20:12:6b:ad:b8:93: 76:a0:46:08:40:3a:5d:af:3c:46:fe:22:73:49:12:83:c9:b8: 1b:2b:68:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjUwODIyMjA1MTI1WhcNMjUwODI5MjA1MTI1WjAYMRYwFAYD VQQDEw02OGE4ZDg0ZS04N2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhCXQke36MpHIYR9JKPrp7a/VmJSglJ9eAmS0ZxEdQSDjZYzU5lF6SIVUgif n5ASSrqedtPMFjSAC/gg7Z0eXv6i+d1HWirf/KEp5C8OBra5LHk12IqlXl7LEpPX qPWMKjx9CzyDnjjACm91TKSdu066pqcnXKdxLrLWOAUh3Y6aeTw2dQeKiA3eA+7T NzdoyfxQBzkaL8U4ifHUSmLhbZuakssrb5u9gJE8quYFUz6qAP2+0G/CeCPUKgRJ 2quk2CifSSfjeAmN4NKr3fjVOwP+vVl6LOs/2XF0ABA0eI4v/tBhiIhOK9pn6rWW ia4fFo2VNMs2rTxxGxu64lRp7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5/IMtJ ChTbaFlZZJHGsyb1+oKkMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXh+6XCiOsBNfksnNG9XjpcPUi6WI12BGFjX66R8fMnWllmENH51Sd NmcsdgbyK2QI4SIidZVYokyPYdMiuglx8P5F0nSXCIyOEOYI56BiqVB6KlyzI5aX 4mHndhTAmfHQ1l2rvf5e6HAh+6kCpLqbxbOd4Mi2ptWVR4ocOWcJdVXo4UWt3II7 eUOdh/B0FhbnXZYNTLn7DW4stJ8yJ3lr1gOAX6o07b/hX7JRzy6QlmW+ZjYkd9AZ bc2d+gO9+lQm9RAdApd+ULIL9ZaEXs9RNpupOZu+IccG84L51snPKRMZz90gEmut uJN2oEYIQDpdrzxG/iJzSRKDybgbK2i9 -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:50 2025 by rpki-client