$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft File: OXH34h0IySQ6u0A_gDBkv3iy2IA.mft (raw, json) Hash identifier: bBxKoJwl2TSTmPna6xnRtlNPCDfisVFowkEZcWTO6dU= Subject key identifier: B3:3C:E8:FE:09:AD:1A:1A:8F:23:FA:A8:9A:82:56:66:0D:E9:50:97 Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0CC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft Manifest number: 0C9C Signing time: Fri 18 Jul 2025 18:27:29 +0000 Manifest this update: Fri 18 Jul 2025 18:27:28 +0000 Manifest next update: Fri 25 Jul 2025 18:27:28 +0000 Files and hashes: 1: OXH34h0IySQ6u0A_gDBkv3iy2IA.crl (hash: cbbr1ffhv50vjHw0k1CulrlnEZZFQH9XK6vf2uTZEZU=) 2: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (hash: TeIPGyGqDRDL84HA9NnAzVJOOMFf2EjmrKH/elumev8=) 3: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (hash: lRMtWT21HxefR8cIAkbesXguaIjwdfIuBa6XccIOgBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:27:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3273 (0xcc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F, serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Jul 18 18:27:28 2025 GMT Not After : Jul 25 18:27:28 2025 GMT Subject: CN=687a9210-c93c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2c:79:18:e9:65:a6:ca:bc:15:ef:5f:80:2f: 98:49:61:86:a6:85:dc:4a:41:60:bf:68:0a:d7:4c: 4b:18:27:13:84:6a:b1:b4:af:86:88:a1:77:0f:f8: 9b:84:f9:87:0a:15:de:ff:cd:89:24:a7:04:54:7c: 24:a5:46:c1:dc:89:e2:e0:48:c3:73:6b:ec:9f:d2: 66:23:b0:5c:30:78:d1:4a:9d:07:93:ca:19:ce:38: 9a:81:34:9e:81:3c:9e:94:2e:6c:40:99:09:03:f0: 4d:d3:53:89:06:f5:cc:9b:01:8e:89:85:ce:6b:81: e0:06:49:9a:51:17:72:00:95:2d:92:b9:25:a6:34: 2e:98:60:a4:b1:d0:4a:59:e3:ee:61:dd:40:ac:e7: 51:06:fd:9a:da:2a:2e:a4:97:b9:b1:a1:ab:dd:f0: 88:59:54:ad:a1:2d:71:1d:2d:76:bd:25:0f:85:33: cd:a3:fc:2f:a9:c9:b2:e4:a7:07:30:e8:d4:a6:25: 96:c6:ff:44:ae:8e:59:8d:97:c6:37:4f:68:8c:a0: 23:21:1a:4a:52:24:f3:c3:eb:d6:9f:52:51:3b:a3: b0:a1:a5:38:f3:07:3f:4a:7f:6c:ea:41:5a:9c:73: 8f:87:8a:32:9d:9b:d0:20:f0:b1:14:bb:dd:72:3f: 26:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3C:E8:FE:09:AD:1A:1A:8F:23:FA:A8:9A:82:56:66:0D:E9:50:97 X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e7:94:a6:48:2c:01:51:89:d1:29:d0:11:fc:ff:a1:11:00: 1d:34:b0:d3:37:57:f0:ba:9e:f6:11:74:9f:d1:e7:69:ed:6b: 6b:dd:8a:0d:44:6e:e3:be:47:23:0e:f4:d4:4b:33:b7:7a:03: 0e:d8:2f:7c:2c:67:c8:8d:be:ea:c1:6e:76:39:37:6f:8a:a2: e0:ae:dc:6a:b4:6b:b0:e8:55:39:30:3d:6b:7d:23:c2:99:f3: 0b:f7:a3:eb:d8:42:c8:97:2f:da:b4:92:70:1c:65:44:52:7f: 3c:72:58:14:e0:8e:63:dc:f8:76:93:78:39:a8:6d:16:b4:40: a8:a8:c0:e8:e1:f5:84:e9:d4:92:df:0e:2d:b1:62:2a:c6:9b: 45:5f:c0:20:88:e5:82:d8:af:21:d7:41:c1:a8:48:4c:65:e8: 24:b8:e2:35:15:ae:31:3f:2a:2e:7f:f6:cb:e6:3b:33:eb:0f: 20:df:dc:8e:58:94:01:40:d4:eb:8b:22:fa:a6:a7:e6:d6:49: a8:73:3c:2b:be:35:8c:cf:04:75:14:aa:13:cd:5f:7f:20:b5: b1:a2:c4:3a:a8:f4:89:45:62:7b:58:bc:1f:f1:70:9a:c5:4b: 58:d5:99:e2:11:bd:5f:61:70:5b:83:35:5a:4c:62:89:a1:4e: bd:c8:72:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjUwNzE4MTgyNzI4WhcNMjUwNzI1MTgyNzI4WjAYMRYwFAYD VQQDEw02ODdhOTIxMC1jOTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwix5GOllpsq8Fe9fgC+YSWGGpoXcSkFgv2gK10xLGCcThGqxtK+GiKF3D/ib hPmHChXe/82JJKcEVHwkpUbB3Ini4EjDc2vsn9JmI7BcMHjRSp0Hk8oZzjiagTSe gTyelC5sQJkJA/BN01OJBvXMmwGOiYXOa4HgBkmaURdyAJUtkrklpjQumGCksdBK WePuYd1ArOdRBv2a2ioupJe5saGr3fCIWVStoS1xHS12vSUPhTPNo/wvqcmy5KcH MOjUpiWWxv9Ero5ZjZfGN09ojKAjIRpKUiTzw+vWn1JRO6OwoaU48wc/Sn9s6kFa nHOPh4oynZvQIPCxFLvdcj8mPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLM86P4J rRoajyP6qJqCVmYN6VCXMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDQ2Ri83REEyNEM3QTAwNjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlT UTZ1MEFfZ0RCa3YzaXkySUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy55SmSCwBUYnRKdAR/P+hEQAdNLDTN1fwup72EXSf0edp7Wtr3YoN RG7jvkcjDvTUSzO3egMO2C98LGfIjb7qwW52OTdviqLgrtxqtGuw6FU5MD1rfSPC mfML96Pr2ELIly/atJJwHGVEUn88clgU4I5j3Ph2k3g5qG0WtECoqMDo4fWE6dSS 3w4tsWIqxptFX8AgiOWC2K8h10HBqEhMZegkuOI1Fa4xPyouf/bL5jsz6w8g39yO WJQBQNTriyL6pqfm1kmoczwrvjWMzwR1FKoTzV9/ILWxosQ6qPSJRWJ7WLwf8XCa xUtY1ZniEb1fYXBbgzVaTGKJoU69yHJ3 -----END CERTIFICATE-----Generated at Sun Jul 20 14:15:02 2025 by rpki-client