$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft File: o1EXGLQporBD5kW_sWUO5nd-QXI.mft (raw, json) Hash identifier: vhqyN88rSM+1ZidaWxr18qnVpxI43R85X3mQvRJxsVw= Subject key identifier: 1F:C6:7D:8F:9D:F7:B7:8C:78:03:0D:09:36:AD:0C:C2:D5:B1:34:75 Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 Certificate issuer: /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Certificate serial: 0829 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft Manifest number: 0822 Signing time: Thu 24 Jul 2025 20:57:54 +0000 Manifest this update: Thu 24 Jul 2025 20:57:53 +0000 Manifest next update: Thu 31 Jul 2025 20:57:53 +0000 Files and hashes: 1: o1EXGLQporBD5kW_sWUO5nd-QXI.crl (hash: q3W/CQm4E1/AaEjkmC3BOhL9nW65vIQ9NgV3zlv42U4=) 2: F48207E6DB8711EAA446B360C4F9AE02.roa (hash: wGBFb60F2aF0B9pOX18btxm9jl1WJHVfOK5kaTJxavY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 20:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2089 (0x829) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ACF6, serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Validity Not Before: Jul 24 20:57:53 2025 GMT Not After : Jul 31 20:57:53 2025 GMT Subject: CN=68829e51-51ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ad:f1:0f:19:0e:26:89:ff:54:7e:93:c1:ee: 29:71:5c:83:5e:57:f3:90:0c:91:12:2b:9b:0e:01: a9:46:0f:1f:cd:6e:b0:16:11:24:70:dd:a0:e9:b7: d0:f6:9e:a3:0e:90:4c:3a:8e:74:de:23:c0:92:8c: 38:d8:21:4d:8b:cc:df:58:b6:f5:e6:d2:9c:1a:25: c7:fb:e7:fe:c6:cc:ab:05:44:fa:fd:f0:69:49:90: dc:28:4f:f0:9f:b4:51:6f:92:f6:75:03:2f:89:cf: a8:c9:bc:a0:6c:b3:a5:82:0a:7e:e8:af:93:95:49: 1d:34:91:e8:12:62:22:ae:58:04:ee:d9:78:9f:b5: e1:6c:2c:90:8d:65:dc:87:4b:ca:f0:eb:90:80:64: 41:52:21:63:19:ce:de:10:c8:73:b9:3a:85:a1:f6: e2:d5:58:bc:75:4b:a1:1b:07:9b:a3:05:6e:fe:66: fb:cf:82:91:80:0d:da:c0:81:e9:39:eb:c2:31:ee: dc:cc:8e:a9:e7:99:a6:cd:08:85:40:1d:22:45:8c: d7:ad:5f:13:0c:02:a3:e5:18:b9:e2:90:04:25:3a: ea:c0:40:d2:ce:15:96:a8:24:84:91:12:4a:9a:bf: 1f:31:bf:d8:29:b8:dc:15:5d:fb:ea:6e:ef:3e:e9: 4c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C6:7D:8F:9D:F7:B7:8C:78:03:0D:09:36:AD:0C:C2:D5:B1:34:75 X509v3 Authority Key Identifier: keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:3b:ef:2b:d6:85:0c:8a:21:ab:36:fd:bb:89:ce:73:dc:81: ba:73:4e:77:68:73:a4:0c:22:0a:f0:66:e6:9e:00:68:0d:9a: 43:ac:13:38:71:8a:09:da:80:09:64:3b:98:71:03:80:e5:4a: ca:a2:a3:ee:58:db:8f:43:0e:4f:6e:ab:20:8a:54:9a:13:cb: 63:2a:24:80:c3:01:bc:b8:1d:9b:ad:83:1e:cc:e1:a6:82:ef: ed:fb:d7:93:c9:77:86:b9:fc:34:86:59:49:b6:b6:49:de:14: a6:70:6d:6c:e4:ee:c2:2b:ec:10:e4:45:48:04:e5:48:ec:03: 84:e7:6c:5a:ea:41:fa:a6:d2:5d:31:e5:5e:84:90:73:6b:66: ce:a7:96:81:43:4b:ee:99:d1:8c:b9:b6:f4:83:07:88:13:67: 60:8f:e5:12:f8:68:f7:a7:bf:3a:b0:e5:b3:56:58:6c:78:4e: e3:86:9d:fd:24:46:f7:4f:12:d4:ca:6d:11:25:e7:41:8c:24: da:5a:a0:bf:19:ac:ba:db:8a:a3:12:cb:10:3b:64:b2:a4:a8: 38:8e:66:3b:73:0a:3f:6f:fc:1e:69:a3:cb:7d:f2:e3:73:be: 5f:81:4d:bb:6d:17:9a:21:23:fe:a5:22:c6:de:f4:ae:a8:fa: ab:89:c8:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDRjYxMTAvBgNVBAUTKEEzNTExNzE4QjQyOUEyQjA0M0U2NDVCRkIxNjUwRUU2 Nzc3RTQxNzIwHhcNMjUwNzI0MjA1NzUzWhcNMjUwNzMxMjA1NzUzWjAYMRYwFAYD VQQDEw02ODgyOWU1MS01MWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyK3xDxkOJon/VH6Twe4pcVyDXlfzkAyREiubDgGpRg8fzW6wFhEkcN2g6bfQ 9p6jDpBMOo503iPAkow42CFNi8zfWLb15tKcGiXH++f+xsyrBUT6/fBpSZDcKE/w n7RRb5L2dQMvic+oybygbLOlggp+6K+TlUkdNJHoEmIirlgE7tl4n7XhbCyQjWXc h0vK8OuQgGRBUiFjGc7eEMhzuTqFofbi1Vi8dUuhGwebowVu/mb7z4KRgA3awIHp OevCMe7czI6p55mmzQiFQB0iRYzXrV8TDAKj5Ri54pAEJTrqwEDSzhWWqCSEkRJK mr8fMb/YKbjcFV376m7vPulMtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/GfY+d 97eMeAMNCTatDMLVsTR1MB8GA1UdIwQYMBaAFKNRFxi0KaKwQ+ZFv7FlDuZ3fkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUNGNi8zNDk3ODNFRURC ODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9yQkQ1a1dfc1dVTzVuZC1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRVhHTFFwb3JCRDVrV19zV1VPNW5kLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUNGNi8zNDk3ODNFRURCODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9y QkQ1a1dfc1dVTzVuZC1RWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiO+8r1oUMiiGrNv27ic5z3IG6c053aHOkDCIK8GbmngBoDZpDrBM4 cYoJ2oAJZDuYcQOA5UrKoqPuWNuPQw5PbqsgilSaE8tjKiSAwwG8uB2brYMezOGm gu/t+9eTyXeGufw0hllJtrZJ3hSmcG1s5O7CK+wQ5EVIBOVI7AOE52xa6kH6ptJd MeVehJBza2bOp5aBQ0vumdGMubb0gweIE2dgj+US+Gj3p786sOWzVlhseE7jhp39 JEb3TxLUym0RJedBjCTaWqC/Gay624qjEssQO2SypKg4jmY7cwo/b/weaaPLffLj c75fgU27bReaISP+pSLG3vSuqPqricjU -----END CERTIFICATE-----Generated at Fri Jul 25 05:34:08 2025 by rpki-client