$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft File: OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft (raw, json) Hash identifier: xsp86eb4qYJby4fUNgTOdlAmPEzBZeGMwqhj5D4i5uk= Subject key identifier: 74:9D:AA:17:E0:9E:34:B8:26:11:96:93:0B:94:84:94:10:9F:00:18 Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft Manifest number: 46 Signing time: Sat 19 Jul 2025 07:39:55 +0000 Manifest this update: Sat 19 Jul 2025 07:39:54 +0000 Manifest next update: Sat 26 Jul 2025 07:39:54 +0000 Files and hashes: 1: OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl (hash: xVIFv4JQSI+faJmWxNhB6velF9gVaEyHG5LV6+/U3mI=) 2: 54DA33D2FB2E11EFB488A95EC4F9AE02.roa (hash: L/7VzM2fbo0IdE808LBeTzf3z0geWQ0SpeUJCZmWPBg=) 3: 53E9C44CFB2E11EFB488A95EC4F9AE02.roa (hash: hzaK0MTBJLVrmr0hWnuGmH3SdcFclIxCzlQUZOQabQ8=) 4: 5460E9C8FB2E11EFB488A95EC4F9AE02.roa (hash: bkhjgOMD/IEHS+ly/VrsRugL9cN6Yu5sgUx5f40TuYM=) 5: 553798E2FB2E11EFB488A95EC4F9AE02.roa (hash: p8161Irka1RhOlKGL72R+iegNNjEoBL5dnyvjeUTVQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C Validity Not Before: Jul 19 07:39:54 2025 GMT Not After : Jul 26 07:39:54 2025 GMT Subject: CN=687b4bca-3d4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2d:02:c8:bd:41:b3:26:d3:ba:9b:4e:07:e7: f8:98:7c:db:05:3c:52:e7:ca:eb:19:a2:bb:5c:ff: b9:83:5d:11:34:82:a8:21:23:95:d9:42:6f:c1:92: 99:ba:95:46:16:f0:63:94:45:94:eb:96:41:fa:6b: 1c:c5:e3:cc:2b:2d:af:d3:3c:bc:b6:d4:1d:ea:f6: 51:94:80:ce:47:c9:df:3e:60:44:bf:1c:19:a8:27: c2:7f:0e:b4:b6:03:6d:17:cb:a2:21:9d:17:aa:04: c9:1c:81:c5:fb:95:86:8c:3b:59:73:df:06:73:32: ea:16:52:1b:bc:aa:aa:70:2f:57:6f:d0:1f:d0:c5: b5:b3:2a:9e:a9:b8:0f:c8:7c:73:9b:22:60:9c:ff: 99:8a:18:92:e5:fb:a0:66:d9:88:01:65:00:c5:0c: 17:0e:84:9e:3c:9d:06:c8:49:04:df:d4:89:1c:a4: 61:7f:59:91:82:ad:4b:40:64:95:7c:02:da:7c:8e: 41:da:f4:61:cd:9e:7c:fb:b3:ee:52:f4:33:e9:4e: c5:9e:dc:6b:95:a6:1b:6f:df:82:0f:cb:85:84:b5: e7:95:cd:3a:b8:ef:b0:89:62:09:c3:27:ff:2a:e7: 63:b8:c9:f5:c5:38:92:ab:60:26:a1:47:8c:8f:de: 08:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:9D:AA:17:E0:9E:34:B8:26:11:96:93:0B:94:84:94:10:9F:00:18 X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:a5:47:ea:70:73:44:31:4c:87:28:04:7f:61:fb:6c:e2:59: 68:89:64:6c:c1:b8:69:cd:13:48:2e:74:3a:6d:5d:cb:a4:cc: 53:af:13:d0:9d:c3:46:29:12:f1:f1:63:e8:57:c7:8e:e2:23: 10:01:27:07:b4:dd:90:16:d9:c9:d8:3a:68:7b:e8:e8:a4:be: 1c:6b:db:79:23:2a:9e:0e:a9:a6:0c:89:d8:f2:91:0d:73:e5: 76:72:60:43:8a:c8:59:9e:ce:45:67:32:93:2c:39:15:11:6b: 67:cb:01:f9:c7:67:d0:58:23:8e:1d:8d:25:d3:a7:b6:1a:0d: de:aa:39:3b:56:4a:63:d5:7f:49:10:c3:a3:2b:14:bd:1c:a4: ca:f7:63:ec:d1:5a:54:19:53:3e:d3:d3:11:c8:68:26:88:3c: f7:07:a3:0a:94:9c:e7:34:18:b1:00:9c:a0:7f:9e:21:eb:de: 93:5a:dd:de:7e:fc:43:71:e3:50:06:49:83:da:fa:61:70:ef: ef:08:10:18:e4:60:fa:cf:be:9c:6d:2c:86:73:99:40:ce:74: 15:e4:9b:89:be:72:03:cd:5e:ce:b6:11:91:47:e1:72:3a:e4: 1a:0c:9f:a1:c5:80:be:d4:8c:9f:ba:3b:0b:62:0e:2c:79:b8: bd:c2:ed:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTUwMjExMC8GA1UEBRMoMzg2QzMwMEVENzJGMTJCOTA1NDc4QTMzQ0VGMjc3OTky NTRBNjkxQzAeFw0yNTA3MTkwNzM5NTRaFw0yNTA3MjYwNzM5NTRaMBgxFjAUBgNV BAMTDTY4N2I0YmNhLTNkNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4LQLIvUGzJtO6m04H5/iYfNsFPFLnyusZortc/7mDXRE0gqghI5XZQm/Bkpm6 lUYW8GOURZTrlkH6axzF48wrLa/TPLy21B3q9lGUgM5Hyd8+YES/HBmoJ8J/DrS2 A20Xy6IhnReqBMkcgcX7lYaMO1lz3wZzMuoWUhu8qqpwL1dv0B/QxbWzKp6puA/I fHObImCc/5mKGJLl+6Bm2YgBZQDFDBcOhJ48nQbISQTf1IkcpGF/WZGCrUtAZJV8 Atp8jkHa9GHNnnz7s+5S9DPpTsWe3GuVphtv34IPy4WEteeVzTq477CJYgnDJ/8q 52O4yfXFOJKrYCahR4yP3ggbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdJ2qF+Ce NLgmEZaTC5SElBCfABgwHwYDVR0jBBgwFoAUOGwwDtcvErkFR4ozzvJ3mSVKaRww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNTAyLzg3QzNGRDBBRkIy OTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FS dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0d3d0R0Y3ZFcmtGUjRvenp2SjNtU1ZLYVJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NTAyLzg3QzNGRDBBRkIyOTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJr RlI0b3p6dkozbVNWS2FSdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABClR+pwc0QxTIcoBH9h+2ziWWiJZGzBuGnNE0gudDptXcukzFOvE9Cd w0YpEvHxY+hXx47iIxABJwe03ZAW2cnYOmh76Oikvhxr23kjKp4OqaYMidjykQ1z 5XZyYEOKyFmezkVnMpMsORURa2fLAfnHZ9BYI44djSXTp7YaDd6qOTtWSmPVf0kQ w6MrFL0cpMr3Y+zRWlQZUz7T0xHIaCaIPPcHowqUnOc0GLEAnKB/niHr3pNa3d5+ /ENx41AGSYPa+mFw7+8IEBjkYPrPvpxtLIZzmUDOdBXkm4m+cgPNXs62EZFH4XI6 5BoMn6HFgL7UjJ+6OwtiDix5uL3C7WM= -----END CERTIFICATE-----Generated at Sun Jul 20 18:23:57 2025 by rpki-client