$ rpki-client -vvf rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft File: 0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft (raw, json) Hash identifier: RLWzEOnImQtx4QXEG9QupoGSKVvWrsgWvkG5bHcjMZs= Subject key identifier: F8:5C:97:F3:5D:BE:F8:05:9F:94:93:4C:A1:89:55:21:F1:26:3B:80 Authority key identifier: D2:8C:52:ED:09:0C:53:9C:10:F2:22:DE:EC:D9:A7:3C:49:A1:68:04 Certificate issuer: /CN=A915617E/serialNumber=D28C52ED090C539C10F222DEECD9A73C49A16804 Certificate serial: 0D90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft Manifest number: 0D88 Signing time: Fri 18 Jul 2025 18:06:00 +0000 Manifest this update: Fri 18 Jul 2025 18:06:00 +0000 Manifest next update: Fri 25 Jul 2025 18:06:00 +0000 Files and hashes: 1: 0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl (hash: LbENwg3kCCL6K5RjRpv9vNAc5jiwRZVDdNfMMAz1zfY=) 2: 3F67E64E62BD11EE8F393D25C4F9AE02.roa (hash: 27YGiOVHeYRZmfLChwQ0MVLlQEu8P+YtfErwSj+QIxo=) 3: DBDAFF6CC99611E9A41BCF75C4F9AE02.roa (hash: Ff3/yMR0vWErszLBIPlNKjSAb7MzXOTFYgb7mDfdJMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:05:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3472 (0xd90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915617E, serialNumber=D28C52ED090C539C10F222DEECD9A73C49A16804 Validity Not Before: Jul 18 18:06:00 2025 GMT Not After : Jul 25 18:06:00 2025 GMT Subject: CN=687a8d08-a65f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:be:45:d3:45:f8:d0:ac:c2:6a:50:92:d0:d6: aa:a7:91:e9:be:92:7b:21:2c:a8:46:93:9f:2c:ca: 7d:49:7c:57:58:65:3d:fd:82:54:38:ad:0e:6f:84: fe:4e:e3:5c:d0:bf:b7:76:8a:68:2e:49:f7:77:d7: 65:db:56:82:2a:4e:3b:fb:a6:59:c7:58:53:76:1a: 46:49:a4:fb:52:b2:0e:27:d4:17:b9:5a:9c:16:2b: 25:30:95:73:e5:f5:53:e4:ad:b1:93:ba:76:c6:19: 1d:ae:d4:37:f5:63:02:22:96:1a:35:c8:a6:a0:ee: 3f:46:e8:ba:6f:e8:68:9d:a9:80:d3:b9:4f:39:d0: d2:01:d7:99:82:96:bd:69:fa:70:9e:3c:74:9f:30: 4a:2f:ab:10:4e:7d:5d:15:cc:a6:8e:65:84:e0:87: e4:c1:68:9d:33:e8:19:20:74:df:7d:66:04:0c:53: 45:83:10:53:bb:f7:2b:2a:e7:83:69:6d:ba:2a:26: f5:35:c4:0f:af:28:7f:7f:3d:fb:ab:c6:bb:8e:c2: df:6d:84:5a:8e:5c:28:6c:4c:8c:27:1e:f4:15:38: f7:1c:23:13:69:36:c0:92:b0:e7:29:a4:61:bf:b1: c6:0a:c8:64:d4:cc:f3:46:0c:65:0b:22:82:5b:25: a3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:5C:97:F3:5D:BE:F8:05:9F:94:93:4C:A1:89:55:21:F1:26:3B:80 X509v3 Authority Key Identifier: keyid:D2:8C:52:ED:09:0C:53:9C:10:F2:22:DE:EC:D9:A7:3C:49:A1:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:d3:16:df:ee:48:01:f1:8e:f6:2a:61:58:29:93:ff:ed:86: 80:38:0d:35:85:40:dc:b3:ca:9d:dc:c5:5b:91:1d:db:9e:a5: 2f:cc:56:53:38:f1:2c:e9:90:31:9f:10:ea:b6:25:80:a5:69: d1:f5:cc:da:12:dc:44:d0:f6:2d:4c:df:cb:07:94:73:2d:f2: 05:56:7e:65:7e:f7:14:34:93:64:08:f8:f4:46:63:fc:c8:e4: 4f:4c:44:58:68:27:99:20:8c:09:39:ca:1c:a3:33:96:58:67: f2:77:39:85:55:fe:0c:11:50:bd:f9:e7:68:4e:92:e3:49:ed: c2:18:92:08:a0:fa:51:fe:be:ad:5e:3b:72:ba:64:78:cd:79: aa:eb:1f:13:be:dd:20:3c:02:6a:30:16:ec:2c:07:77:3a:3b: ba:3b:70:a4:46:c9:a3:1c:76:69:a5:41:d6:55:67:b0:f1:81: 41:f3:36:49:b4:e0:38:c2:4d:3f:3a:9c:9f:47:8c:64:76:11: d9:26:eb:d8:7e:d8:a0:45:90:99:36:76:a9:da:c5:b5:30:0a: ef:4a:a7:05:0a:f1:cc:64:4a:05:8a:1f:0a:f8:df:9a:23:d8: e5:ee:f8:53:8c:34:61:ff:ec:aa:dc:0f:53:70:95:41:d2:ca: 75:ba:5b:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxN0UxMTAvBgNVBAUTKEQyOEM1MkVEMDkwQzUzOUMxMEYyMjJERUVDRDlBNzND NDlBMTY4MDQwHhcNMjUwNzE4MTgwNjAwWhcNMjUwNzI1MTgwNjAwWjAYMRYwFAYD VQQDEw02ODdhOGQwOC1hNjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy75F00X40KzCalCS0Naqp5HpvpJ7ISyoRpOfLMp9SXxXWGU9/YJUOK0Ob4T+ TuNc0L+3dopoLkn3d9dl21aCKk47+6ZZx1hTdhpGSaT7UrIOJ9QXuVqcFislMJVz 5fVT5K2xk7p2xhkdrtQ39WMCIpYaNcimoO4/Rui6b+honamA07lPOdDSAdeZgpa9 afpwnjx0nzBKL6sQTn1dFcymjmWE4IfkwWidM+gZIHTffWYEDFNFgxBTu/crKueD aW26Kib1NcQPryh/fz37q8a7jsLfbYRajlwobEyMJx70FTj3HCMTaTbAkrDnKaRh v7HGCshk1MzzRgxlCyKCWyWjrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhcl/Nd vvgFn5STTKGJVSHxJjuAMB8GA1UdIwQYMBaAFNKMUu0JDFOcEPIi3uzZpzxJoWgE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjE3RS9FMUFEQjc0NkM5 OTUxMUU5QkFBQUIxNzRDNEY5QUUwMi8wb3hTN1FrTVU1d1E4aUxlN05tblBFbWhh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBveFM3UWtNVTV3UThpTGU3Tm1uUEVtaGFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjE3RS9FMUFEQjc0NkM5OTUxMUU5QkFBQUIxNzRDNEY5QUUwMi8wb3hTN1FrTVU1 d1E4aUxlN05tblBFbWhhQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC90xbf7kgB8Y72KmFYKZP/7YaAOA01hUDcs8qd3MVbkR3bnqUvzFZT OPEs6ZAxnxDqtiWApWnR9czaEtxE0PYtTN/LB5RzLfIFVn5lfvcUNJNkCPj0RmP8 yORPTERYaCeZIIwJOcocozOWWGfydzmFVf4MEVC9+edoTpLjSe3CGJIIoPpR/r6t XjtyumR4zXmq6x8Tvt0gPAJqMBbsLAd3Oju6O3CkRsmjHHZppUHWVWew8YFB8zZJ tOA4wk0/OpyfR4xkdhHZJuvYftigRZCZNnap2sW1MArvSqcFCvHMZEoFih8K+N+a I9jl7vhTjDRh/+yq3A9TcJVB0sp1ulsj -----END CERTIFICATE-----Generated at Sun Jul 20 11:43:15 2025 by rpki-client