$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: kts4w836UgSMFmgrG7oZIlyCovAv2KB8VohCljZvMnI= Subject key identifier: 82:0E:54:42:FA:92:3D:EF:E4:DD:68:BA:64:C5:88:90:F0:A6:2F:FA Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 014B Signing time: Wed 23 Jul 2025 04:28:15 +0000 Manifest this update: Wed 23 Jul 2025 04:28:14 +0000 Manifest next update: Wed 30 Jul 2025 04:28:14 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: xqYFe2WTpgXy9FnDO4pf5lJxnClpPgPaG67XCEAPMiw=) 2: 2D7DCF98BA1411EFBD0C393DC4F9AE02.roa (hash: fg42UFyy2LFjnZK3Qasj9lnWcNe6AFnhvIhyePUvpAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 04:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B, serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: Jul 23 04:28:14 2025 GMT Not After : Jul 30 04:28:14 2025 GMT Subject: CN=688064df-2313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c8:0b:ed:92:8e:11:1a:da:ad:dc:69:30:b8: ce:10:6c:e4:a2:4d:c9:29:99:30:1e:0f:91:86:e9: 1b:7f:de:6f:8f:44:26:71:5d:aa:d8:97:b4:5f:b6: 8f:3c:69:58:c1:8e:4e:09:03:41:cf:12:92:af:90: 30:72:1c:b9:4c:68:88:7c:c0:41:de:fe:97:ac:2e: b5:75:dd:7a:53:28:d4:81:83:20:5f:a9:3d:5f:7b: a0:b4:ce:51:d4:95:f3:41:c7:9f:10:8d:74:71:1e: 81:e1:0f:ef:01:82:06:f6:1f:00:7d:95:cb:5a:00: 3f:d0:37:73:ce:9a:7e:6d:10:db:d1:00:ed:83:8d: 46:26:d2:b3:e1:91:f4:77:a9:f3:5c:0f:6d:c7:a7: ea:4d:37:78:79:5c:ef:2c:a7:aa:03:ae:1c:53:33: 29:c3:87:81:0d:53:79:f6:48:8b:14:9a:da:b2:e3: eb:0a:d3:df:a6:e1:0a:ad:81:01:17:eb:6f:a1:73: b0:1b:54:40:b1:24:3a:01:59:43:0a:5c:70:33:b0: 22:f6:28:51:14:6b:e2:d2:7d:eb:45:e9:17:56:a2: 50:fe:ef:33:a1:8b:9c:e3:81:13:d1:25:6a:62:ba: 24:cf:c3:50:50:e1:74:61:1b:a1:f9:c6:48:9e:89: f5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:0E:54:42:FA:92:3D:EF:E4:DD:68:BA:64:C5:88:90:F0:A6:2F:FA X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:7c:43:7d:b1:46:50:97:39:4e:c6:45:cc:7d:e8:1b:9e:f1: 5f:07:49:27:a4:19:0e:e4:fe:6c:1a:8e:bf:f4:24:93:11:11: 1e:0b:25:16:14:48:a3:91:22:43:2b:a8:85:d5:2d:2c:e8:98: 41:6d:02:56:0f:ea:c5:78:7a:f6:aa:9e:05:fe:0d:d3:25:74: 7f:ed:0d:48:33:12:fe:db:02:ba:9b:0b:06:a3:15:54:13:15: 1f:b6:ac:b9:4c:3f:75:45:a1:76:b5:48:1d:40:50:e8:08:99: 2a:2d:d4:3b:91:c0:d1:6f:e2:dd:31:6c:f0:0b:98:90:72:be: cb:ab:bb:2c:db:b1:af:a1:40:ee:17:6d:97:85:8f:9f:a9:ee: d2:72:cf:72:4d:c5:69:2e:69:19:5d:1f:22:8f:45:28:d2:3c: f8:26:85:dc:cf:7a:5a:d6:aa:f8:f0:55:c8:9b:5a:f7:8e:92: cb:b1:5c:c6:92:99:a3:9a:c9:85:d9:54:43:c3:b6:5c:1e:d4: 44:cd:ff:08:02:a9:71:70:32:91:3f:df:14:d2:6f:5c:5e:42: 69:48:2e:91:f3:1d:bf:d8:63:b0:1a:29:6a:c8:ea:e1:24:1b: af:9a:98:df:96:d5:9d:4e:94:15:18:e5:8d:9e:d5:fd:d9:b4: ad:db:87:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjUwNzIzMDQyODE0WhcNMjUwNzMwMDQyODE0WjAYMRYwFAYD VQQDEw02ODgwNjRkZi0yMzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocgL7ZKOERrardxpMLjOEGzkok3JKZkwHg+Rhukbf95vj0QmcV2q2Je0X7aP PGlYwY5OCQNBzxKSr5Awchy5TGiIfMBB3v6XrC61dd16UyjUgYMgX6k9X3ugtM5R 1JXzQcefEI10cR6B4Q/vAYIG9h8AfZXLWgA/0Ddzzpp+bRDb0QDtg41GJtKz4ZH0 d6nzXA9tx6fqTTd4eVzvLKeqA64cUzMpw4eBDVN59kiLFJrasuPrCtPfpuEKrYEB F+tvoXOwG1RAsSQ6AVlDClxwM7Ai9ihRFGvi0n3rRekXVqJQ/u8zoYuc44ET0SVq Yrokz8NQUOF0YRuh+cZInon1RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIOVEL6 kj3v5N1oumTFiJDwpi/6MB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBq WjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsfEN9sUZQlzlOxkXMfegbnvFfB0knpBkO5P5sGo6/9CSTEREeCyUW FEijkSJDK6iF1S0s6JhBbQJWD+rFeHr2qp4F/g3TJXR/7Q1IMxL+2wK6mwsGoxVU ExUftqy5TD91RaF2tUgdQFDoCJkqLdQ7kcDRb+LdMWzwC5iQcr7Lq7ss27GvoUDu F22XhY+fqe7Scs9yTcVpLmkZXR8ij0Uo0jz4JoXcz3pa1qr48FXIm1r3jpLLsVzG kpmjmsmF2VRDw7ZcHtREzf8IAqlxcDKRP98U0m9cXkJpSC6R8x2/2GOwGilqyOrh JBuvmpjfltWdTpQVGOWNntX92bSt24fo -----END CERTIFICATE-----Generated at Thu Jul 24 12:26:47 2025 by rpki-client