$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft File: o1EXGLQporBD5kW_sWUO5nd-QXI.mft (raw, json) Hash identifier: XltsFO0d7DfmW+exLp/XB0kA+ifZA5vquN9sS9h0rQs= Subject key identifier: E6:C0:5E:64:06:EF:9C:8B:5C:A0:66:E0:39:8D:7D:33:BA:3C:06:29 Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 Certificate issuer: /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Certificate serial: 0828 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft Manifest number: 0821 Signing time: Tue 22 Jul 2025 21:01:38 +0000 Manifest this update: Tue 22 Jul 2025 21:01:38 +0000 Manifest next update: Tue 29 Jul 2025 21:01:38 +0000 Files and hashes: 1: o1EXGLQporBD5kW_sWUO5nd-QXI.crl (hash: eBFp4b6r34Fps/svaQnRiLdDIef1jzcUgyHryhUJz6k=) 2: F48207E6DB8711EAA446B360C4F9AE02.roa (hash: wGBFb60F2aF0B9pOX18btxm9jl1WJHVfOK5kaTJxavY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 21:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2088 (0x828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ACF6, serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Validity Not Before: Jul 22 21:01:38 2025 GMT Not After : Jul 29 21:01:38 2025 GMT Subject: CN=687ffc32-e1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:65:f4:05:fb:c5:38:1a:37:b8:ad:0e:a6:b4: eb:6f:1f:6a:f5:d3:2c:f9:23:3a:cb:bc:fb:94:fb: be:7b:cc:68:24:44:a9:04:53:ce:a0:9f:eb:69:9b: 6d:3c:86:a4:86:1e:5e:29:d1:e3:39:e5:05:fd:7a: b0:f4:20:17:31:05:9b:d3:b0:40:ff:01:23:0a:ae: b4:e9:cf:d4:c7:99:20:2d:d9:7e:93:bb:c7:af:02: fa:1c:ac:bb:a9:25:bc:72:12:78:e3:94:4f:58:b9: e5:4a:ca:f3:56:25:13:f3:5c:9e:62:f7:76:6a:62: 07:22:8a:b0:01:8a:7a:2d:c4:53:03:9c:8e:cf:1c: c1:bd:f4:3e:0f:f8:45:00:bb:3b:e4:a9:5d:14:31: f7:1f:68:f8:95:99:c0:25:89:5d:4c:24:02:80:44: 0c:0d:ce:f1:0d:76:4d:ac:4a:a0:0c:d8:7a:6d:7b: 43:73:c9:b8:fd:ed:a1:c3:5e:f6:9b:77:75:f8:26: 15:12:8a:92:d5:c7:9c:01:fa:09:8f:fd:97:5e:9d: c6:8c:dd:74:8c:2a:17:d2:71:0b:24:f8:5c:f8:16: 47:be:bb:d8:bf:11:84:03:e9:ce:f2:60:6f:4c:34: f7:fe:5f:ec:83:99:ae:0d:4f:ed:d6:c5:d4:c6:84: be:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:C0:5E:64:06:EF:9C:8B:5C:A0:66:E0:39:8D:7D:33:BA:3C:06:29 X509v3 Authority Key Identifier: keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:61:64:b7:e5:99:1e:ff:f3:fd:bc:79:0d:a0:04:a8:c9:4f: 3a:f4:bd:63:6c:b5:8f:37:74:b9:98:5f:ad:1a:4a:ad:2f:6f: 85:7c:fc:1b:b4:d3:f1:10:70:84:8e:35:5e:b7:66:7a:83:dc: f4:14:86:6a:9b:88:d6:42:a2:00:46:8a:29:a1:88:1f:41:3b: 22:c6:11:cb:e4:99:1b:4f:d2:c5:6e:94:58:e2:65:2d:bd:8c: 8f:e4:e1:e2:17:7a:9c:87:15:d4:58:37:2a:a1:28:b1:34:18: cc:3c:28:47:41:93:9f:b4:30:ea:94:8f:c5:11:e2:1f:42:a4: 40:01:f3:3a:d3:ad:76:03:e6:22:ac:7b:a5:2f:3d:4e:97:fe: e3:da:53:16:46:1a:fe:e2:77:22:8f:8e:ba:87:a8:39:92:dc: ba:13:e0:32:02:96:c6:8e:d5:bb:7d:9e:b0:40:1b:1e:27:0a: cf:3c:1d:5c:68:c7:d6:24:bc:a3:d7:55:ac:21:81:20:01:d5: 64:72:4e:48:4d:8a:75:13:fa:5a:52:10:f5:09:35:49:c9:b1: 7c:10:4f:3e:2f:41:e5:50:c3:b0:11:5e:d3:fe:dc:67:59:a8: 1a:d2:0e:77:4e:13:bf:78:91:df:fb:f8:05:ec:07:a0:e3:21: 9e:34:f0:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDRjYxMTAvBgNVBAUTKEEzNTExNzE4QjQyOUEyQjA0M0U2NDVCRkIxNjUwRUU2 Nzc3RTQxNzIwHhcNMjUwNzIyMjEwMTM4WhcNMjUwNzI5MjEwMTM4WjAYMRYwFAYD VQQDEw02ODdmZmMzMi1lMWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmX0BfvFOBo3uK0OprTrbx9q9dMs+SM6y7z7lPu+e8xoJESpBFPOoJ/raZtt PIakhh5eKdHjOeUF/Xqw9CAXMQWb07BA/wEjCq606c/Ux5kgLdl+k7vHrwL6HKy7 qSW8chJ445RPWLnlSsrzViUT81yeYvd2amIHIoqwAYp6LcRTA5yOzxzBvfQ+D/hF ALs75KldFDH3H2j4lZnAJYldTCQCgEQMDc7xDXZNrEqgDNh6bXtDc8m4/e2hw172 m3d1+CYVEoqS1cecAfoJj/2XXp3GjN10jCoX0nELJPhc+BZHvrvYvxGEA+nO8mBv TDT3/l/sg5muDU/t1sXUxoS+DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObAXmQG 75yLXKBm4DmNfTO6PAYpMB8GA1UdIwQYMBaAFKNRFxi0KaKwQ+ZFv7FlDuZ3fkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUNGNi8zNDk3ODNFRURC ODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9yQkQ1a1dfc1dVTzVuZC1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRVhHTFFwb3JCRDVrV19zV1VPNW5kLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUNGNi8zNDk3ODNFRURCODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9y QkQ1a1dfc1dVTzVuZC1RWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjYWS35Zke//P9vHkNoASoyU869L1jbLWPN3S5mF+tGkqtL2+FfPwb tNPxEHCEjjVet2Z6g9z0FIZqm4jWQqIARoopoYgfQTsixhHL5JkbT9LFbpRY4mUt vYyP5OHiF3qchxXUWDcqoSixNBjMPChHQZOftDDqlI/FEeIfQqRAAfM60612A+Yi rHulLz1Ol/7j2lMWRhr+4ncij466h6g5kty6E+AyApbGjtW7fZ6wQBseJwrPPB1c aMfWJLyj11WsIYEgAdVkck5ITYp1E/paUhD1CTVJybF8EE8+L0HlUMOwEV7T/txn Waga0g53ThO/eJHf+/gF7Aeg4yGeNPAf -----END CERTIFICATE-----Generated at Thu Jul 24 08:38:22 2025 by rpki-client