$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft File: OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft (raw, json) Hash identifier: 6rfeMKXvY7dFFzhzLazXCJaYOcgiTRDtTKcU6QT2AgY= Subject key identifier: 0C:24:68:C6:49:3D:20:39:48:0A:7E:16:82:0E:E0:A0:EC:25:94:93 Authority key identifier: 39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 Certificate issuer: /CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Certificate serial: 1EB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft Manifest number: 1EA4 Signing time: Mon 30 Jun 2025 16:11:34 +0000 Manifest this update: Mon 30 Jun 2025 16:11:33 +0000 Manifest next update: Mon 07 Jul 2025 16:11:33 +0000 Files and hashes: 1: OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl (hash: 1pfejA5L6PSicqWH1yHo6Xj1k3Aj/9pf0VBnQARQibY=) 2: BFF7726E6EF711E69FBC340BC4F9AE02.roa (hash: W0ZWmGkhW06fRZVPw8jscLCIBobXeY3y+SwBDvJ1Z0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7856 (0x1eb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C7C, serialNumber=39D1D595541891353094583618D6CC079C830CE1 Validity Not Before: Jun 30 16:11:33 2025 GMT Not After : Jul 7 16:11:33 2025 GMT Subject: CN=6862b735-290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d9:cb:c3:de:8a:93:ff:70:85:3e:a1:8c:ba: 77:01:e5:2a:62:4e:43:dd:d7:a2:2f:f5:f3:c3:d0: 8c:71:48:82:dd:9f:b9:af:dd:2e:fd:bf:8a:ec:3b: 75:38:4b:7e:5c:c4:48:1b:67:88:46:56:62:b8:a6: a0:3f:8c:77:81:17:ec:41:0d:78:e3:20:9c:62:53: 98:8f:a8:19:81:e6:38:12:8a:4d:6e:e4:69:53:fe: 1a:7e:a8:d1:f6:f3:21:91:34:5b:37:51:50:dc:53: 01:01:2d:e5:79:1d:61:61:54:d8:cb:33:96:b6:9b: 9f:72:94:d5:7c:33:92:03:d4:fe:5d:af:78:53:fe: 67:41:56:d3:9a:9d:0a:9a:cc:de:27:4f:32:61:c0: f0:7f:28:ca:19:3b:ef:29:36:f9:42:32:9d:5c:92: 5a:58:60:3d:87:ce:cf:db:ad:fc:35:0b:f3:ae:4f: 48:28:bd:1e:aa:70:58:d2:26:bc:bf:8c:6b:fd:84: 5b:65:f8:c9:c3:94:48:d9:26:1d:6a:07:9f:1a:e2: b1:7b:52:ac:62:33:a9:3e:f8:01:4c:64:a9:66:36: d2:a3:ab:4c:c9:ae:52:2d:b4:25:42:da:9b:ec:03: 2b:9a:ce:1a:b1:02:40:c9:12:24:31:e8:01:3d:9c: 2c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:24:68:C6:49:3D:20:39:48:0A:7E:16:82:0E:E0:A0:EC:25:94:93 X509v3 Authority Key Identifier: keyid:39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:91:48:72:12:85:86:48:95:13:49:ae:3f:7b:d9:4a:60:dc: 96:e6:dd:aa:9e:0c:89:4e:b0:c8:41:31:4e:46:56:a3:00:e5: 52:97:e1:2f:40:48:f3:91:ae:39:1a:0e:94:e0:6c:d5:70:e5: 5e:7e:12:4d:79:6a:db:a2:45:84:93:6d:d7:76:13:c1:5a:99: 5f:30:d8:fb:86:7b:bf:3e:d9:3d:19:8f:ac:54:ac:44:b8:6a: c1:81:fc:c2:7c:a4:81:0e:d9:e6:a7:76:ba:18:a5:8b:3b:67: 72:fc:7c:48:31:2d:d8:33:41:20:86:0b:52:f7:d9:45:a6:bd: 8b:13:6c:00:33:f3:bf:39:11:81:e8:6b:91:b2:98:e3:0b:86: 49:e2:e2:e9:bc:44:4d:b6:4c:ec:1a:ee:4a:8e:9b:1f:6c:50: 44:92:0b:77:cc:e4:ad:48:21:75:8f:32:c4:c3:1e:49:27:6b: 7f:59:3a:ff:50:26:4b:36:14:86:4d:38:10:87:8d:cc:ce:8f: 3b:64:4b:4c:64:f4:0b:cd:5b:e8:4b:98:da:ae:c6:75:b7:88: 66:66:dc:ce:a4:8b:b7:fb:2c:c8:7f:d5:9f:68:79:09:bd:f0: 4f:63:64:b6:51:e2:38:c3:f1:44:2b:62:4b:79:0b:45:00:bb: 28:5f:34:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDN0MxMTAvBgNVBAUTKDM5RDFENTk1NTQxODkxMzUzMDk0NTgzNjE4RDZDQzA3 OUM4MzBDRTEwHhcNMjUwNjMwMTYxMTMzWhcNMjUwNzA3MTYxMTMzWjAYMRYwFAYD VQQDEw02ODYyYjczNS0yOTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstnLw96Kk/9whT6hjLp3AeUqYk5D3deiL/Xzw9CMcUiC3Z+5r90u/b+K7Dt1 OEt+XMRIG2eIRlZiuKagP4x3gRfsQQ144yCcYlOYj6gZgeY4EopNbuRpU/4afqjR 9vMhkTRbN1FQ3FMBAS3leR1hYVTYyzOWtpufcpTVfDOSA9T+Xa94U/5nQVbTmp0K mszeJ08yYcDwfyjKGTvvKTb5QjKdXJJaWGA9h87P2638NQvzrk9IKL0eqnBY0ia8 v4xr/YRbZfjJw5RI2SYdagefGuKxe1KsYjOpPvgBTGSpZjbSo6tMya5SLbQlQtqb 7AMrms4asQJAyRIkMegBPZws1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwkaMZJ PSA5SAp+FoIO4KDsJZSTMB8GA1UdIwQYMBaAFDnR1ZVUGJE1MJRYNhjWzAecgwzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM3Qy8yOUY3QTA0MDZF RjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtUVXdsRmcyR05iTUI1eURE T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kSFZsVlFZa1RVd2xGZzJHTmJNQjV5RERPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEM3Qy8yOUY3QTA0MDZFRjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtU VXdsRmcyR05iTUI1eURET0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAikUhyEoWGSJUTSa4/e9lKYNyW5t2qngyJTrDIQTFORlajAOVSl+Ev QEjzka45Gg6U4GzVcOVefhJNeWrbokWEk23XdhPBWplfMNj7hnu/Ptk9GY+sVKxE uGrBgfzCfKSBDtnmp3a6GKWLO2dy/HxIMS3YM0EghgtS99lFpr2LE2wAM/O/ORGB 6GuRspjjC4ZJ4uLpvERNtkzsGu5KjpsfbFBEkgt3zOStSCF1jzLEwx5JJ2t/WTr/ UCZLNhSGTTgQh43Mzo87ZEtMZPQLzVvoS5jarsZ1t4hmZtzOpIu3+yzIf9WfaHkJ vfBPY2S2UeI4w/FEK2JLeQtFALsoXzSc -----END CERTIFICATE-----Generated at Tue Jul 1 19:28:35 2025 by rpki-client