$ rpki-client -vvf rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft File: OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft (raw, json) Hash identifier: 1HkxvGTEb/BJjFDCi5KzjhtTdIKPj8o7ZQKa08VH+dg= Subject key identifier: 61:E2:4E:BF:95:C2:BC:1A:B7:20:5A:B2:94:4F:17:93:03:9D:CF:7D Authority key identifier: 38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 Certificate issuer: /CN=A9151638/serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Certificate serial: 0491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft Manifest number: 048C Signing time: Sat 19 Jul 2025 00:24:27 +0000 Manifest this update: Sat 19 Jul 2025 00:24:27 +0000 Manifest next update: Sat 26 Jul 2025 00:24:27 +0000 Files and hashes: 1: OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl (hash: 6ypDAnLlMeN/JtMznVtX8XHwkLFxjMVlrNsJBsJKOQo=) 2: 2404BA68477011EC8A31B762C4F9AE02.roa (hash: w9FaGj3sY61MFEZzIunRrfWZ3OYXoXaJ/HX3XZ5M44M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1169 (0x491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151638, serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Validity Not Before: Jul 19 00:24:27 2025 GMT Not After : Jul 26 00:24:27 2025 GMT Subject: CN=687ae5bb-30dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:df:79:5c:4c:00:29:e4:e1:10:c8:ee:71:03: b3:e8:3d:43:e7:40:b9:f9:4c:09:bf:42:ff:35:c5: 68:60:e5:f9:3c:a2:b2:2c:62:92:47:d4:00:7e:f2: 34:f1:44:47:10:95:75:15:49:3e:24:57:17:25:54: d6:3e:2d:fd:ec:08:45:eb:2e:49:7d:cb:60:16:bc: fb:1c:c3:ef:56:c9:29:d4:11:86:ea:07:74:7e:91: 85:56:3d:91:55:bd:8a:71:17:e9:2d:b9:56:51:68: 2d:de:5b:0d:6f:ec:4f:98:97:b8:c7:29:b8:9a:54: f6:74:6f:b9:dd:e4:d5:e5:47:ae:e5:6f:53:14:75: b2:3c:41:49:b8:e6:cd:2b:49:da:10:80:1d:35:f9: 81:6f:26:d1:62:ef:35:38:27:46:96:61:59:28:f0: af:41:c7:bc:ce:c2:b4:4d:19:d8:51:61:bd:f8:7d: ac:a4:ec:00:35:36:e5:0f:f3:75:cc:46:a7:a1:cd: 67:ee:cc:de:d4:3c:3e:c5:cf:40:32:ab:22:6c:6a: cd:06:bc:fe:bf:fc:e6:4b:fc:e5:22:bd:ee:c3:94: bc:7f:41:ab:d0:61:e5:fd:1a:9a:b9:29:cb:f8:6b: ba:a1:f8:fc:a1:d8:8c:0d:25:aa:db:dc:c1:65:9a: 94:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E2:4E:BF:95:C2:BC:1A:B7:20:5A:B2:94:4F:17:93:03:9D:CF:7D X509v3 Authority Key Identifier: keyid:38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:32:06:1e:34:f7:1b:24:d7:fc:1c:c1:24:1f:af:23:97:08: 08:3c:71:8a:a8:46:e8:62:5d:c5:c9:fd:c8:09:d1:fe:73:42: 2b:1c:e7:da:a1:ea:7f:41:4d:14:63:c3:ee:05:d5:69:06:9a: ed:69:8c:f8:82:3d:c9:f7:8e:cf:48:0b:8b:ff:5c:eb:64:4d: f9:e6:87:1b:1a:32:53:a0:5d:02:b4:a5:93:c5:51:ed:d4:cb: 34:ef:3e:4d:6d:8f:17:c3:4d:10:3d:96:29:25:95:cc:34:46: 6e:ca:b4:65:f0:1d:b7:b9:7b:46:72:e6:4b:00:bb:f1:ef:da: 96:39:8d:4c:f4:f6:0c:83:7f:a3:c4:d7:23:18:96:e3:8c:ea: e6:db:3b:5d:6b:70:b8:01:2b:05:b5:04:47:1a:22:3c:b3:ce: b4:df:6e:bb:44:e9:d4:7e:d7:1b:3b:6b:85:b2:4c:c3:ef:41: 2e:45:89:da:c8:25:f1:e8:74:7e:86:2b:7c:d6:a3:7d:61:f6: 45:89:7f:49:35:5a:13:3b:d0:78:fb:ba:4b:5a:da:a0:e4:32: 26:f3:f7:a4:93:34:5f:10:cd:94:f4:d8:a3:ec:0a:50:0f:34: 5e:56:8f:1d:1a:c4:93:63:8b:f2:dc:e8:16:5f:e5:ce:39:d9: ea:ef:8b:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2MzgxMTAvBgNVBAUTKDM4NTkyRjA1NkY4M0NDRDQwQTYyQUUxMTYwMjkyNjk0 Mjg1QTJDRjQwHhcNMjUwNzE5MDAyNDI3WhcNMjUwNzI2MDAyNDI3WjAYMRYwFAYD VQQDEw02ODdhZTViYi0zMGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAot95XEwAKeThEMjucQOz6D1D50C5+UwJv0L/NcVoYOX5PKKyLGKSR9QAfvI0 8URHEJV1FUk+JFcXJVTWPi397AhF6y5JfctgFrz7HMPvVskp1BGG6gd0fpGFVj2R Vb2KcRfpLblWUWgt3lsNb+xPmJe4xym4mlT2dG+53eTV5Ueu5W9TFHWyPEFJuObN K0naEIAdNfmBbybRYu81OCdGlmFZKPCvQce8zsK0TRnYUWG9+H2spOwANTblD/N1 zEanoc1n7sze1Dw+xc9AMqsibGrNBrz+v/zmS/zlIr3uw5S8f0Gr0GHl/RqauSnL +Gu6ofj8odiMDSWq29zBZZqU3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHiTr+V wrwatyBaspRPF5MDnc99MB8GA1UdIwQYMBaAFDhZLwVvg8zUCmKuEWApJpQoWiz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTYzOC8xMjcxMTczMjQ3 NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpOUUtZcTRSWUNrbWxDaGFM UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Ga3ZCVy1Eek5RS1lxNFJZQ2ttbENoYUxQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTYzOC8xMjcxMTczMjQ3NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpO UUtZcTRSWUNrbWxDaGFMUFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKMgYeNPcbJNf8HMEkH68jlwgIPHGKqEboYl3Fyf3ICdH+c0IrHOfa oep/QU0UY8PuBdVpBprtaYz4gj3J947PSAuL/1zrZE355ocbGjJToF0CtKWTxVHt 1Ms07z5NbY8Xw00QPZYpJZXMNEZuyrRl8B23uXtGcuZLALvx79qWOY1M9PYMg3+j xNcjGJbjjOrm2ztda3C4ASsFtQRHGiI8s8603267ROnUftcbO2uFskzD70EuRYna yCXx6HR+hit81qN9YfZFiX9JNVoTO9B4+7pLWtqg5DIm8/ekkzRfEM2U9Nij7ApQ DzReVo8dGsSTY4vy3OgWX+XOOdnq74tS -----END CERTIFICATE-----Generated at Sun Jul 20 11:25:25 2025 by rpki-client