$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: YVqgQPUBQsNHGb8357NMNzxwy68qjbMehLL9eoQbviM= Subject key identifier: 3D:4A:78:BF:25:EB:0B:43:12:93:59:1A:E8:C7:A6:48:74:11:83:5F Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 0201 Signing time: Mon 21 Jul 2025 02:25:37 +0000 Manifest this update: Mon 21 Jul 2025 02:25:36 +0000 Manifest next update: Mon 28 Jul 2025 02:25:36 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: B1Duhrg5KMARxTMosUvr71aeiqW+dtuunXm8iGZYPLM=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:25:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Jul 21 02:25:36 2025 GMT Not After : Jul 28 02:25:36 2025 GMT Subject: CN=687da521-99a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:97:f7:86:eb:13:40:c4:a2:09:cb:69:a7:59: 68:0d:65:9a:1d:93:fc:8a:c1:34:bb:7c:fa:94:78: fd:e7:2f:22:e9:67:c1:62:11:73:53:af:c4:03:52: d4:61:fe:c2:f4:d8:09:53:65:01:07:06:02:8b:73: db:c7:45:11:95:ff:0f:d2:82:51:cb:bc:21:2c:2b: b2:69:f4:4f:fb:3d:1e:12:43:d0:4c:e1:15:0e:1e: 4b:74:90:5c:f2:50:86:df:f5:2f:6f:2b:13:8e:c8: 59:84:7c:32:b1:62:a8:f7:1a:97:94:98:03:97:21: c9:02:61:36:34:8b:7d:36:e0:99:4c:7d:85:49:ef: c5:e8:93:bd:1f:3e:19:1d:a5:27:df:13:95:84:c3: 2a:5f:8a:a5:74:6b:3b:33:01:3e:23:ef:41:d8:c4: 13:0f:e0:05:38:2e:37:2e:29:af:c0:7f:0b:7a:07: 92:98:36:60:c0:70:6a:67:2b:3f:dd:cc:ec:86:97: b6:bb:7d:84:f9:7a:ab:16:91:05:34:36:66:06:95: ba:b8:54:dd:da:40:19:74:c2:69:e1:bf:76:d8:2d: bd:35:52:d9:dc:c4:f1:46:98:d4:5e:6b:ce:47:40: a8:37:27:5c:40:3d:1e:f8:90:5f:df:bd:6e:26:c7: a1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:4A:78:BF:25:EB:0B:43:12:93:59:1A:E8:C7:A6:48:74:11:83:5F X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:5f:7f:e3:99:90:3a:bb:2a:c6:2b:77:eb:15:b2:0e:4e:f1: 6c:71:c0:53:72:5c:4c:81:fb:49:89:9b:5f:d2:20:ff:04:fd: 70:39:07:3e:3a:2c:33:02:af:54:7a:22:88:05:9c:4b:75:6b: 06:8f:77:0a:e6:91:56:ba:6c:a8:16:0d:be:9c:62:bd:57:35: 41:d0:75:ca:5e:78:1d:fe:64:78:e0:bd:d4:e2:7c:ef:ed:c7: 98:6f:45:fb:07:6d:63:a8:c5:13:c3:a9:c8:95:ca:43:f9:fa: 56:8a:c7:9a:39:6d:2f:d2:bb:64:0b:27:dc:76:93:60:4e:8d: 25:55:cf:43:5a:62:ae:a9:74:65:4c:cd:20:48:7f:8a:9c:c5: d0:74:84:1b:47:c7:ab:9c:fc:ca:da:93:d2:69:b3:27:52:4b: bd:93:f8:3e:bf:09:29:39:66:0f:dc:40:7d:4f:82:1f:d6:0b: ff:53:b6:5c:d9:fa:89:2b:b7:b6:7f:b7:fa:1f:24:8c:45:c7: a1:11:e3:6d:b3:cb:58:4d:fc:2d:97:b0:55:b1:d6:52:8a:33: d2:52:ca:c4:2a:02:c5:c3:86:b9:1f:66:21:c3:8b:8e:8a:6f: b4:28:29:1c:4c:7b:45:a5:57:e9:cb:26:19:5b:3f:ae:fb:65: 11:e8:c8:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUwNzIxMDIyNTM2WhcNMjUwNzI4MDIyNTM2WjAYMRYwFAYD VQQDEw02ODdkYTUyMS05OWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Zf3husTQMSiCctpp1loDWWaHZP8isE0u3z6lHj95y8i6WfBYhFzU6/EA1LU Yf7C9NgJU2UBBwYCi3Pbx0URlf8P0oJRy7whLCuyafRP+z0eEkPQTOEVDh5LdJBc 8lCG3/UvbysTjshZhHwysWKo9xqXlJgDlyHJAmE2NIt9NuCZTH2FSe/F6JO9Hz4Z HaUn3xOVhMMqX4qldGs7MwE+I+9B2MQTD+AFOC43LimvwH8LegeSmDZgwHBqZys/ 3czshpe2u32E+XqrFpEFNDZmBpW6uFTd2kAZdMJp4b922C29NVLZ3MTxRpjUXmvO R0CoNydcQD0e+JBf371uJseh4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1KeL8l 6wtDEpNZGujHpkh0EYNfMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxX3/jmZA6uyrGK3frFbIOTvFsccBTclxMgftJiZtf0iD/BP1wOQc+ OiwzAq9UeiKIBZxLdWsGj3cK5pFWumyoFg2+nGK9VzVB0HXKXngd/mR44L3U4nzv 7ceYb0X7B21jqMUTw6nIlcpD+fpWiseaOW0v0rtkCyfcdpNgTo0lVc9DWmKuqXRl TM0gSH+KnMXQdIQbR8ernPzK2pPSabMnUku9k/g+vwkpOWYP3EB9T4If1gv/U7Zc 2fqJK7e2f7f6HySMRcehEeNts8tYTfwtl7BVsdZSijPSUsrEKgLFw4a5H2Yhw4uO im+0KCkcTHtFpVfpyyYZWz+u+2UR6Mg4 -----END CERTIFICATE-----Generated at Mon Jul 21 06:55:11 2025 by rpki-client