$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: Lz6MLJ0CzoDkvaGQOw30D41wApYQEw9Ka7WMoQELsb8= Subject key identifier: A7:BA:2B:DD:C7:E4:3D:2A:D3:A7:F0:CA:76:87:32:C3:D9:05:21:E0 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 76 Signing time: Fri 25 Jul 2025 03:26:09 +0000 Manifest this update: Fri 25 Jul 2025 03:26:08 +0000 Manifest next update: Fri 01 Aug 2025 03:26:08 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: cJHdypHfWzyio8RwpVgijBJdVYq/gVl1sXD6EaoGxmM=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 03:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Jul 25 03:26:08 2025 GMT Not After : Aug 1 03:26:08 2025 GMT Subject: CN=6882f951-9633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b3:af:6e:0c:f9:20:df:33:0b:60:f3:03:ea: e7:9d:dd:ab:4f:8d:24:c3:f0:4d:9c:b4:12:aa:5f: 73:16:dc:5e:6b:c7:6b:2e:f9:f9:ca:32:3e:c0:35: fe:9f:61:ad:29:b0:51:80:90:67:6a:ff:72:8e:4e: 57:a8:17:08:81:94:2a:48:3c:04:64:2c:8f:1f:80: 2b:d6:74:fc:0f:ff:a6:4c:a3:07:4c:8b:b0:bb:db: 97:01:28:a5:ab:22:ee:ff:35:3a:b5:34:18:98:10: 42:de:ad:1d:29:ae:db:3c:64:a7:a8:de:5f:9d:3f: 4e:2f:03:da:25:ca:33:de:07:4c:78:bf:61:99:91: 73:2c:11:9a:f8:86:ab:82:b2:d5:e2:95:ab:b1:43: 23:6e:d5:00:57:af:54:86:1b:86:4f:29:4c:e8:3b: 48:ff:f1:3f:3f:33:aa:4a:6b:ca:a0:a9:7f:40:d2: e7:d6:61:de:6e:48:53:26:12:0b:af:da:e0:42:d8: c7:4c:6f:a1:87:06:cb:5f:ee:4a:aa:d7:3a:06:a9: 59:32:6b:01:fd:1a:2d:ac:43:2d:af:b3:56:75:4d: 46:46:43:74:d8:6a:c3:ac:80:bc:ff:d6:4e:8b:55: 9b:da:fd:04:11:33:64:94:b3:81:45:bc:7d:e4:f6: a9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:BA:2B:DD:C7:E4:3D:2A:D3:A7:F0:CA:76:87:32:C3:D9:05:21:E0 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:5e:ef:de:8f:4c:54:05:3a:d6:f3:39:7d:50:3d:c5:2d:88: 3b:7a:0f:0d:bd:5e:00:a7:0d:9d:2f:e4:63:aa:8a:42:e3:f3: f7:7b:eb:36:fe:83:39:e7:80:33:10:2b:27:74:f7:f7:c8:9b: 1c:00:11:49:5a:1c:bd:32:16:d9:88:2a:07:bb:6f:7d:f5:41: 74:55:33:ea:b2:fb:fa:eb:05:2c:da:a3:d6:6a:95:ee:ac:14: 4c:46:57:da:64:c5:c7:c8:3f:b4:a5:6e:02:b2:7f:50:ea:e1: 5a:df:42:a3:34:d9:19:83:98:6c:4c:f0:17:9f:10:0d:7b:ea: 77:f8:42:66:48:4c:d7:e7:d2:7b:3e:a2:31:e1:a1:0a:d9:a3: cd:9e:2d:52:73:0e:d2:f1:f7:25:5d:e3:47:b1:bf:98:e7:00: fd:3a:63:d5:1d:56:bd:26:cb:62:22:33:2f:39:2b:a8:26:90: 17:72:93:06:83:b6:3d:0b:1a:fa:5a:21:e9:8e:3d:bd:73:a9: 4d:ba:83:bb:ff:8c:47:77:28:2f:9b:03:e4:2c:84:fa:3a:96: 8c:03:eb:e0:18:31:28:ce:55:14:cc:a5:2f:0b:ca:d1:41:3c: 76:aa:17:35:48:6c:30:73:0b:b7:d5:0f:cc:58:0f:dc:91:34: 99:b5:96:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTA3MjUwMzI2MDhaFw0yNTA4MDEwMzI2MDhaMBgxFjAUBgNV BAMTDTY4ODJmOTUxLTk2MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTs69uDPkg3zMLYPMD6ued3atPjSTD8E2ctBKqX3MW3F5rx2su+fnKMj7ANf6f Ya0psFGAkGdq/3KOTleoFwiBlCpIPARkLI8fgCvWdPwP/6ZMowdMi7C725cBKKWr Iu7/NTq1NBiYEELerR0prts8ZKeo3l+dP04vA9olyjPeB0x4v2GZkXMsEZr4hquC stXilauxQyNu1QBXr1SGG4ZPKUzoO0j/8T8/M6pKa8qgqX9A0ufWYd5uSFMmEguv 2uBC2MdMb6GHBstf7kqq1zoGqVkyawH9Gi2sQy2vs1Z1TUZGQ3TYasOsgLz/1k6L VZva/QQRM2SUs4FFvH3k9qk7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUp7or3cfk PSrTp/DKdocyw9kFIeAwHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRDRkMwOERBQjc2QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1 UWNmdUtfNjFCMWlRbXFsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKJe796PTFQFOtbzOX1QPcUtiDt6Dw29XgCnDZ0v5GOqikLj8/d76zb+ gznngDMQKyd09/fImxwAEUlaHL0yFtmIKge7b331QXRVM+qy+/rrBSzao9Zqle6s FExGV9pkxcfIP7SlbgKyf1Dq4VrfQqM02RmDmGxM8BefEA176nf4QmZITNfn0ns+ ojHhoQrZo82eLVJzDtLx9yVd40exv5jnAP06Y9UdVr0my2IiMy85K6gmkBdykwaD tj0LGvpaIemOPb1zqU26g7v/jEd3KC+bA+QshPo6lowD6+AYMSjOVRTMpS8LytFB PHaqFzVIbDBzC7fVD8xYD9yRNJm1ljI= -----END CERTIFICATE-----Generated at Fri Jul 25 22:49:08 2025 by rpki-client