$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: S3L0Tk+vTgDVHe7ENm7tOdFuMcJb1THZvAsQFCX8/zM= Subject key identifier: 8D:B5:AE:58:05:70:60:AE:57:39:81:11:CA:91:FC:AE:50:03:BF:DE Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0A99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0A90 Signing time: Sun 20 Jul 2025 19:41:08 +0000 Manifest this update: Sun 20 Jul 2025 19:41:07 +0000 Manifest next update: Sun 27 Jul 2025 19:41:07 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: MMf+ygeliWXMkXt9My6LwL7J7PIgBsitNMcjoOOR0/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2713 (0xa99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Jul 20 19:41:07 2025 GMT Not After : Jul 27 19:41:07 2025 GMT Subject: CN=687d4654-0bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f0:4b:c5:08:69:73:ee:ef:27:37:c7:5a:48: 8f:70:21:2d:50:6e:6e:ff:e2:72:20:1b:9f:28:a9: 97:92:a7:2c:81:d0:fb:5b:a6:6d:ce:dc:03:a9:c1: 57:4b:16:73:a8:35:13:fd:05:8d:4b:6a:cb:4e:4d: 50:b2:88:dd:88:2f:15:4e:a7:01:ca:52:0a:64:dc: a3:8d:0e:04:23:49:89:b1:34:d6:b0:54:58:8f:b1: ba:eb:20:04:58:a2:43:5a:30:81:3d:2f:ba:38:80: 70:c6:0d:b0:e8:e3:4d:4c:14:78:56:fc:1b:8a:33: 3f:f7:e0:01:fc:65:8a:74:0f:5e:43:84:51:f0:8a: bf:a6:bf:e5:67:b1:d5:7f:ec:da:dd:f0:4a:2f:5a: e9:50:b5:2d:d6:02:1a:11:08:de:0f:29:d5:87:4b: 4c:2e:26:6f:da:fb:ea:f2:c7:40:af:4a:02:e1:a7: ce:95:46:62:ce:aa:45:a8:d7:fd:4b:e3:d6:59:72: ad:85:ac:f8:34:82:64:0e:29:eb:0f:e1:21:8d:16: b7:ce:e9:5c:d7:ad:0d:17:9c:8b:3f:bb:10:5b:c8: 92:d6:98:64:97:58:d3:7c:47:4d:42:14:31:e0:be: 5a:28:9b:a7:f6:4d:6d:27:38:14:e3:3c:cd:a1:9f: fc:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B5:AE:58:05:70:60:AE:57:39:81:11:CA:91:FC:AE:50:03:BF:DE X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:e3:a1:ba:43:cb:5c:a2:1c:eb:d1:22:c4:5d:33:d4:94:da: 10:48:87:cb:10:17:59:5e:05:0e:58:0b:0c:39:42:71:74:fc: 15:f7:7f:c9:c0:49:0d:7b:c8:f3:81:ee:3e:65:ba:18:75:b0: c8:24:ef:12:39:fe:1c:e7:51:0b:e6:34:58:a9:25:f9:0b:10: a1:36:f5:22:24:a2:28:6c:f5:54:7e:db:a9:a3:27:77:60:2c: 9a:70:df:fa:52:4c:9c:ef:5b:e3:c2:6c:3b:40:c4:98:5d:22: 38:c1:4e:d8:ae:c1:fb:7c:c0:c8:77:7c:2a:35:8e:dc:54:53: 72:8f:d1:19:2a:a0:b8:f1:29:0b:c9:ec:eb:ad:1f:06:db:9e: 3e:a3:5b:6b:e8:32:7f:96:2a:55:dd:b2:28:4e:1e:aa:4f:53: 82:48:fd:52:12:30:21:55:cf:4e:e9:0f:a9:b8:e2:cc:80:13: dd:5b:6e:15:64:62:e8:57:51:31:f1:91:6c:16:22:63:fc:02: c9:78:1c:7e:5e:9b:a6:18:bf:04:29:a0:a0:cc:4e:be:d2:e6: 98:0e:c3:57:63:31:be:d8:68:6b:f6:a5:0c:a5:30:e9:bd:0f: e7:f3:95:70:f4:04:b3:86:e6:cc:b5:86:09:4d:cd:d1:60:fc: b3:e4:5a:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUwNzIwMTk0MTA3WhcNMjUwNzI3MTk0MTA3WjAYMRYwFAYD VQQDEw02ODdkNDY1NC0wYmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvBLxQhpc+7vJzfHWkiPcCEtUG5u/+JyIBufKKmXkqcsgdD7W6ZtztwDqcFX SxZzqDUT/QWNS2rLTk1QsojdiC8VTqcBylIKZNyjjQ4EI0mJsTTWsFRYj7G66yAE WKJDWjCBPS+6OIBwxg2w6ONNTBR4VvwbijM/9+AB/GWKdA9eQ4RR8Iq/pr/lZ7HV f+za3fBKL1rpULUt1gIaEQjeDynVh0tMLiZv2vvq8sdAr0oC4afOlUZizqpFqNf9 S+PWWXKthaz4NIJkDinrD+EhjRa3zulc160NF5yLP7sQW8iS1phkl1jTfEdNQhQx 4L5aKJun9k1tJzgU4zzNoZ/85wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI21rlgF cGCuVzmBEcqR/K5QA7/eMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl46G6Q8tcohzr0SLEXTPUlNoQSIfLEBdZXgUOWAsMOUJxdPwV93/J wEkNe8jzge4+ZboYdbDIJO8SOf4c51EL5jRYqSX5CxChNvUiJKIobPVUftupoyd3 YCyacN/6Ukyc71vjwmw7QMSYXSI4wU7YrsH7fMDId3wqNY7cVFNyj9EZKqC48SkL yezrrR8G254+o1tr6DJ/lipV3bIoTh6qT1OCSP1SEjAhVc9O6Q+puOLMgBPdW24V ZGLoV1Ex8ZFsFiJj/ALJeBx+XpumGL8EKaCgzE6+0uaYDsNXYzG+2Ghr9qUMpTDp vQ/n85Vw9ASzhubMtYYJTc3RYPyz5FoD -----END CERTIFICATE-----Generated at Mon Jul 21 06:56:10 2025 by rpki-client