$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft File: OLX3py9k7NJYhfi0dYUC4j2oOLs.mft (raw, json) Hash identifier: NFMXrSvtJVVVUEk51oCsgWV0M1wivjlIV5cRK+SdIYQ= Subject key identifier: 53:0E:C8:87:69:44:F7:AD:A0:A5:48:2F:04:F0:17:B8:F7:F8:7D:72 Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Certificate serial: 0A3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft Manifest number: 0A27 Signing time: Fri 18 Jul 2025 20:02:58 +0000 Manifest this update: Fri 18 Jul 2025 20:02:57 +0000 Manifest next update: Fri 25 Jul 2025 20:02:57 +0000 Files and hashes: 1: OLX3py9k7NJYhfi0dYUC4j2oOLs.crl (hash: is3qAGD/wXGShdBJaP6iw8SKkc6jeZAVJpH9PdG8sPA=) 2: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (hash: +OxVgsTFeHXtInD93OSVx4VoDwnGKpFnWPCaCB5ImQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2620 (0xa3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C039, serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Validity Not Before: Jul 18 20:02:57 2025 GMT Not After : Jul 25 20:02:57 2025 GMT Subject: CN=687aa872-4599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5f:72:65:0b:64:b6:cc:a5:32:00:00:b3:28: 7f:08:fc:ed:8e:a0:b7:74:52:8f:08:ac:4b:23:d7: d0:d3:8b:99:9d:07:58:66:ee:be:94:70:f5:b6:bd: 9c:0a:81:b6:73:40:31:2b:7f:3f:5a:78:01:03:63: 55:e7:89:cc:ad:db:49:22:9d:b1:10:e5:a5:85:8a: 0b:27:d7:f9:cb:de:01:31:7a:0b:00:4f:69:42:51: e9:db:97:05:90:c8:a4:55:e3:1e:9e:e5:11:28:5d: b7:40:46:42:be:16:6c:4a:57:52:45:88:2b:5f:78: 2b:57:bc:b2:9a:9c:44:3e:47:32:55:a5:0f:7a:bd: 02:b5:20:e9:5b:94:d8:b3:e4:49:85:c3:4b:ed:35: 61:63:98:95:27:c0:45:90:ef:0f:3a:00:1a:e0:39: 9d:73:9b:fc:90:6e:09:c6:90:09:66:2a:87:f6:2d: 6c:5d:24:9a:64:0b:ea:43:6e:4e:c9:a5:35:8c:38: dc:6c:d6:4e:dd:69:48:9c:99:f2:19:01:17:2e:30: bc:dc:fd:df:f5:3b:01:1a:36:b2:ce:84:82:5a:b8: 10:0d:27:3e:a7:cf:3b:ce:62:fe:3c:70:07:6a:01: ae:54:6d:16:b3:99:11:ec:e4:69:2e:2e:e2:84:f6: 8f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0E:C8:87:69:44:F7:AD:A0:A5:48:2F:04:F0:17:B8:F7:F8:7D:72 X509v3 Authority Key Identifier: keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:8c:02:11:2b:cb:5d:72:e9:4b:06:eb:35:99:13:fb:82:65: 67:f4:67:ae:f4:89:a9:d6:15:d4:c4:26:66:4a:62:a3:b1:9e: 64:9d:53:93:1e:e0:56:3c:3d:aa:58:1e:2a:36:67:04:9e:77: 08:26:f2:99:70:73:09:8d:ae:54:a1:d2:27:03:69:b1:8b:3e: f2:f9:d7:2d:2e:78:49:4c:b6:d3:92:e0:10:c4:e1:19:a1:4c: f3:9a:7c:5a:cb:ee:f7:8d:e3:11:f1:c2:7d:d4:c4:49:17:d4: c0:e0:30:1d:fc:6a:a1:f9:c9:6a:23:37:1e:c3:65:ad:1b:48: fb:41:1c:80:2b:f4:9c:91:d5:12:2d:0c:70:c5:09:ad:b4:f8: 15:15:4e:00:1e:0a:67:e0:e4:07:5b:96:24:01:60:40:33:19: 36:60:6e:e8:3e:fc:60:57:35:ae:92:30:36:cf:36:bf:48:c0: 0e:d7:12:c1:42:29:71:21:13:81:1b:ec:13:23:f5:3b:57:60: 63:2a:49:fe:54:ff:89:4b:45:b2:72:99:c9:b1:1c:3d:b4:8a: d7:1e:2c:61:58:58:14:0b:be:76:5b:63:b7:e7:32:74:18:79: ac:5f:41:fc:ee:5d:27:47:ee:51:77:f6:e8:07:b9:4f:1d:6b: ec:2d:b3:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwMzkxMTAvBgNVBAUTKDM4QjVGN0E3MkY2NEVDRDI1ODg1RjhCNDc1ODUwMkUy M0RBODM4QkIwHhcNMjUwNzE4MjAwMjU3WhcNMjUwNzI1MjAwMjU3WjAYMRYwFAYD VQQDEw02ODdhYTg3Mi00NTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqV9yZQtktsylMgAAsyh/CPztjqC3dFKPCKxLI9fQ04uZnQdYZu6+lHD1tr2c CoG2c0AxK38/WngBA2NV54nMrdtJIp2xEOWlhYoLJ9f5y94BMXoLAE9pQlHp25cF kMikVeMenuURKF23QEZCvhZsSldSRYgrX3grV7yympxEPkcyVaUPer0CtSDpW5TY s+RJhcNL7TVhY5iVJ8BFkO8POgAa4Dmdc5v8kG4JxpAJZiqH9i1sXSSaZAvqQ25O yaU1jDjcbNZO3WlInJnyGQEXLjC83P3f9TsBGjayzoSCWrgQDSc+p887zmL+PHAH agGuVG0Ws5kR7ORpLi7ihPaPOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMOyIdp RPetoKVILwTwF7j3+H1yMB8GA1UdIwQYMBaAFDi196cvZOzSWIX4tHWFAuI9qDi7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzAzOS9DMjVEMDJGRTc4 OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdOSlloZmkwZFlVQzRqMm9P THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09MWDNweTlrN05KWWhmaTBkWVVDNGoyb09Mcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzAzOS9DMjVEMDJGRTc4OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdO SlloZmkwZFlVQzRqMm9PTHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrjAIRK8tdculLBus1mRP7gmVn9Geu9Imp1hXUxCZmSmKjsZ5knVOT HuBWPD2qWB4qNmcEnncIJvKZcHMJja5UodInA2mxiz7y+dctLnhJTLbTkuAQxOEZ oUzzmnxay+73jeMR8cJ91MRJF9TA4DAd/Gqh+clqIzcew2WtG0j7QRyAK/SckdUS LQxwxQmttPgVFU4AHgpn4OQHW5YkAWBAMxk2YG7oPvxgVzWukjA2zza/SMAO1xLB QilxIROBG+wTI/U7V2BjKkn+VP+JS0WycpnJsRw9tIrXHixhWFgUC752W2O35zJ0 GHmsX0H87l0nR+5Rd/boB7lPHWvsLbNU -----END CERTIFICATE-----Generated at Sun Jul 20 03:37:08 2025 by rpki-client