$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: z1qQb49u/0dIYVnzjd1Np+EaNiO8+SilQIM4z3s6k64= Subject key identifier: E0:85:70:CF:E5:48:64:F2:92:3F:1C:34:37:D9:59:4D:0D:48:9F:11 Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0B63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 09A8 Signing time: Sat 19 Jul 2025 00:03:48 +0000 Manifest this update: Sat 19 Jul 2025 00:03:48 +0000 Manifest next update: Sat 26 Jul 2025 00:03:48 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: UIEQAVdQih2gx1yN3KFtk2B2X0xgpSaWOAGjBWbs2aE=) 2: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: vQWuHkxNO3W+64VKIpJFVWJTeNRMIc+wKzNHsAhde4Q=) 3: 59DBAE3E318311F09059AF40C4F9AE02.roa (hash: aVl556fzOpXZhCAQS6RzMi60L/5QSS92vYE3e8gw1zM=) 4: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: tUqKc58G4NP/ZiNhEE4m52A3vGMH09GTzhVMgnnCe/8=) 5: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: uy/Ya9Uphz8yk5gzFrvw8K92wA25vKbiFTbIY5cp56U=) 6: D69762C65D6E11F0BB109139C4F9AE02.roa (hash: vjnhmQa5HSnDxz3nkjF5DqrVQCuIOrUIvCFoUrf2TAo=) 7: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: KHmIhJVDnUN/JIAGOGyBUT9fEQNuIGqQSzduAjkMS7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:03:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2915 (0xb63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Jul 19 00:03:48 2025 GMT Not After : Jul 26 00:03:48 2025 GMT Subject: CN=687ae0e4-55c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8f:fb:10:7e:fa:41:b0:a4:8c:b9:51:35:ef: 5c:55:b3:e9:a9:66:79:54:57:a2:6b:ff:44:ba:ee: c5:99:a4:68:c2:0b:43:7d:98:c1:2e:00:2b:8c:85: 36:3a:c5:c1:ef:81:52:f7:52:a7:5e:0b:be:af:b6: ad:6b:05:74:18:4f:b5:a4:cb:d8:16:9b:12:77:9a: 1e:bb:1f:4c:6f:fb:27:73:05:19:2a:57:d8:4c:f4: a2:05:15:85:6f:4d:0c:68:b8:81:05:22:54:24:f4: 6e:cc:bc:c9:45:a8:0f:1c:a9:19:a4:c9:8b:c5:4a: 59:69:3c:d8:1b:f4:5d:96:02:8b:27:26:3a:a3:b6: 15:bc:0b:82:a1:6b:17:b9:da:4a:67:f0:25:8e:53: d7:2d:bb:01:f5:c2:78:93:a4:b2:ff:d4:9d:43:fb: 88:be:18:c3:c7:a5:c3:a7:eb:f4:1c:08:81:84:00: f3:26:d3:44:f3:91:da:6d:02:26:ad:2f:10:2b:b9: 3d:20:1c:9f:c7:13:5b:a5:bf:ad:06:92:1f:15:4b: 46:17:27:c5:7c:36:a2:c9:fd:5e:08:04:fa:1f:2e: c0:40:49:b7:f1:33:ce:86:a7:4d:b4:ef:c1:05:c8: 79:c7:49:50:c1:04:6c:27:1a:76:dd:cb:f9:da:51: d6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:85:70:CF:E5:48:64:F2:92:3F:1C:34:37:D9:59:4D:0D:48:9F:11 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:cf:1f:53:18:1f:27:b1:2f:d5:65:37:95:85:a7:7f:fa:22: f6:db:b5:f2:ed:2d:9e:76:62:bc:f6:6e:b8:cf:4f:25:78:8e: d7:dc:c0:84:dd:09:72:19:c4:04:44:d1:24:45:a1:11:bb:28: c4:59:39:0a:05:61:59:d3:b7:a9:44:71:10:69:8e:93:2a:6a: e4:dc:da:0d:3b:08:df:4a:73:78:c5:8c:23:03:2b:92:3a:73: 27:d9:67:a3:3a:93:6f:50:62:14:e2:8d:01:17:1b:82:68:5e: 0b:f4:ef:b2:ea:e7:ef:bf:ed:d3:d6:4d:b6:81:44:3f:83:10: 1f:76:6f:d3:5e:f2:95:49:20:10:41:52:99:e4:1a:fd:e9:d5: 82:e2:17:10:6a:7a:e7:1e:4e:96:e9:8f:ae:7c:10:0c:68:94: 57:8e:ed:a1:ff:61:e8:b8:f6:2a:7c:d5:a3:dd:3e:ad:e6:d8: 3f:cd:7b:9c:5c:96:61:9b:3d:21:42:0a:5e:b3:82:18:d8:a5: 45:6f:5d:de:7e:9d:46:4f:a9:c2:88:7e:dd:85:00:10:f5:bc: c7:f8:0b:66:00:f4:5a:20:82:11:ad:c8:41:97:9f:4f:59:19: a4:1e:05:2e:11:f8:5d:d0:0a:89:5e:c5:4e:b7:97:d6:0a:9d: 9e:92:06:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjUwNzE5MDAwMzQ4WhcNMjUwNzI2MDAwMzQ4WjAYMRYwFAYD VQQDEw02ODdhZTBlNC01NWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Y/7EH76QbCkjLlRNe9cVbPpqWZ5VFeia/9Euu7FmaRowgtDfZjBLgArjIU2 OsXB74FS91KnXgu+r7atawV0GE+1pMvYFpsSd5oeux9Mb/sncwUZKlfYTPSiBRWF b00MaLiBBSJUJPRuzLzJRagPHKkZpMmLxUpZaTzYG/RdlgKLJyY6o7YVvAuCoWsX udpKZ/AljlPXLbsB9cJ4k6Sy/9SdQ/uIvhjDx6XDp+v0HAiBhADzJtNE85HabQIm rS8QK7k9IByfxxNbpb+tBpIfFUtGFyfFfDaiyf1eCAT6Hy7AQEm38TPOhqdNtO/B Bch5x0lQwQRsJxp23cv52lHWkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCFcM/l SGTykj8cNDfZWU0NSJ8RMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWzx9TGB8nsS/VZTeVhad/+iL227Xy7S2edmK89m64z08leI7X3MCE 3QlyGcQERNEkRaERuyjEWTkKBWFZ07epRHEQaY6TKmrk3NoNOwjfSnN4xYwjAyuS OnMn2WejOpNvUGIU4o0BFxuCaF4L9O+y6ufvv+3T1k22gUQ/gxAfdm/TXvKVSSAQ QVKZ5Br96dWC4hcQanrnHk6W6Y+ufBAMaJRXju2h/2HouPYqfNWj3T6t5tg/zXuc XJZhmz0hQgpes4IY2KVFb13efp1GT6nCiH7dhQAQ9bzH+AtmAPRaIIIRrchBl59P WRmkHgUuEfhd0AqJXsVOt5fWCp2ekga7 -----END CERTIFICATE-----Generated at Sun Jul 20 15:02:01 2025 by rpki-client