$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft File: o1EXGLQporBD5kW_sWUO5nd-QXI.mft (raw, json) Hash identifier: IIJbHe+4l/P8Wq78a43GfdOpx1WmDV/Jd25J0QjxR3k= Subject key identifier: 72:D8:FA:A5:83:4B:A4:3C:F1:5F:B9:43:96:4B:44:6D:35:D2:58:10 Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 Certificate issuer: /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Certificate serial: 0827 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft Manifest number: 0820 Signing time: Sun 20 Jul 2025 20:54:22 +0000 Manifest this update: Sun 20 Jul 2025 20:54:22 +0000 Manifest next update: Sun 27 Jul 2025 20:54:22 +0000 Files and hashes: 1: o1EXGLQporBD5kW_sWUO5nd-QXI.crl (hash: V8GzwOfuMY3jUqgHt9yT9zeJxv6bQzeub3yG69nFmTg=) 2: F48207E6DB8711EAA446B360C4F9AE02.roa (hash: wGBFb60F2aF0B9pOX18btxm9jl1WJHVfOK5kaTJxavY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2087 (0x827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ACF6, serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Validity Not Before: Jul 20 20:54:22 2025 GMT Not After : Jul 27 20:54:22 2025 GMT Subject: CN=687d577e-90c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0f:00:75:b0:c5:b1:bc:3e:05:f1:98:4d:16: b3:1f:bd:be:88:c2:95:a6:c6:2f:6a:0b:4e:c0:46: 3e:0a:da:d3:f6:86:d0:38:b4:60:af:19:08:a5:21: 3a:a1:56:90:5e:8e:ae:06:56:73:a8:61:c5:ca:0f: 13:7b:e7:e4:8b:ca:86:b5:8d:c7:b3:14:56:d0:a6: ed:a6:be:a8:bf:d5:c3:da:7a:15:80:a9:34:83:0a: b9:e7:1f:7d:e4:b0:ed:2d:14:00:d4:05:11:bd:28: 6a:be:a7:11:17:61:8e:e8:6f:3e:5f:1d:e1:80:9b: 90:4b:e6:da:2e:65:a8:dc:7e:18:3f:03:67:d7:d5: 8e:ed:63:b7:a9:8b:6c:9e:dd:b2:bf:35:16:ce:b6: 73:a6:ce:5b:a6:a7:0e:fd:1f:a4:db:e9:53:a8:a7: b6:c1:ee:c4:50:0d:1e:f1:8f:fb:49:63:9c:09:68: c7:85:ba:48:d6:35:df:f2:eb:7e:e3:55:dd:81:81: 1c:2a:a5:76:3c:08:bd:e1:b0:b7:01:f1:9a:78:af: 80:bb:06:3b:c3:4e:0b:08:42:61:70:d4:8f:89:a2: e5:b7:30:61:7d:12:0f:8a:ba:2a:03:47:4e:a0:9e: 9d:e7:54:a0:4f:53:e4:cf:5e:14:5f:c7:d0:1b:bd: 71:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:D8:FA:A5:83:4B:A4:3C:F1:5F:B9:43:96:4B:44:6D:35:D2:58:10 X509v3 Authority Key Identifier: keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:fa:6a:ac:94:cb:14:f7:fb:6f:0a:d1:16:8e:cd:e7:23:87: b4:d2:fe:c5:68:dd:cf:a5:3f:5e:0a:1d:73:c9:80:76:74:dd: e1:f0:f5:f0:73:e8:8f:2c:db:49:9b:73:fe:d8:18:10:bc:29: e3:e9:6a:2e:c4:17:7d:f8:da:7d:ac:26:20:90:cc:6e:98:84: 8e:09:64:62:9d:dc:4f:7d:b3:47:85:ed:19:9b:dc:56:b3:91: 75:58:21:fc:4d:e4:cb:e4:a0:13:32:54:4d:50:32:28:51:26: a5:22:ff:18:eb:3e:99:e2:1c:27:c9:17:c4:b6:7e:18:df:32: 84:62:56:fb:27:eb:a2:96:c8:b8:db:fa:17:21:c8:ed:38:df: 86:01:79:89:5c:24:e0:98:fd:de:cc:51:e8:d7:bb:0b:e8:bb: 4e:85:b8:a7:4f:23:67:cc:79:98:a5:46:eb:d7:2a:ac:63:fa: 82:e1:6d:eb:23:53:da:74:53:43:ec:04:fd:c8:2c:80:c4:66: bb:76:b7:de:5a:c6:9e:10:7f:37:91:40:07:ed:e5:b3:9f:3c: 66:5e:cd:d0:3c:9e:42:29:2f:7e:5c:d2:ad:6e:8b:ba:9b:99: 57:60:46:6f:42:dc:4a:91:6b:c5:d9:f0:95:5e:41:ac:65:a2: ec:ea:3c:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDRjYxMTAvBgNVBAUTKEEzNTExNzE4QjQyOUEyQjA0M0U2NDVCRkIxNjUwRUU2 Nzc3RTQxNzIwHhcNMjUwNzIwMjA1NDIyWhcNMjUwNzI3MjA1NDIyWjAYMRYwFAYD VQQDEw02ODdkNTc3ZS05MGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvw8AdbDFsbw+BfGYTRazH72+iMKVpsYvagtOwEY+CtrT9obQOLRgrxkIpSE6 oVaQXo6uBlZzqGHFyg8Te+fki8qGtY3HsxRW0Kbtpr6ov9XD2noVgKk0gwq55x99 5LDtLRQA1AURvShqvqcRF2GO6G8+Xx3hgJuQS+baLmWo3H4YPwNn19WO7WO3qYts nt2yvzUWzrZzps5bpqcO/R+k2+lTqKe2we7EUA0e8Y/7SWOcCWjHhbpI1jXf8ut+ 41XdgYEcKqV2PAi94bC3AfGaeK+AuwY7w04LCEJhcNSPiaLltzBhfRIPiroqA0dO oJ6d51SgT1Pkz14UX8fQG71xWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLY+qWD S6Q88V+5Q5ZLRG010lgQMB8GA1UdIwQYMBaAFKNRFxi0KaKwQ+ZFv7FlDuZ3fkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUNGNi8zNDk3ODNFRURC ODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9yQkQ1a1dfc1dVTzVuZC1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRVhHTFFwb3JCRDVrV19zV1VPNW5kLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUNGNi8zNDk3ODNFRURCODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9y QkQ1a1dfc1dVTzVuZC1RWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU+mqslMsU9/tvCtEWjs3nI4e00v7FaN3PpT9eCh1zyYB2dN3h8PXw c+iPLNtJm3P+2BgQvCnj6WouxBd9+Np9rCYgkMxumISOCWRindxPfbNHhe0Zm9xW s5F1WCH8TeTL5KATMlRNUDIoUSalIv8Y6z6Z4hwnyRfEtn4Y3zKEYlb7J+uilsi4 2/oXIcjtON+GAXmJXCTgmP3ezFHo17sL6LtOhbinTyNnzHmYpUbr1yqsY/qC4W3r I1PadFND7AT9yCyAxGa7drfeWsaeEH83kUAH7eWznzxmXs3QPJ5CKS9+XNKtbou6 m5lXYEZvQtxKkWvF2fCVXkGsZaLs6jxq -----END CERTIFICATE-----Generated at Tue Jul 22 20:42:54 2025 by rpki-client