$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: B5/jTIC8HuVBjsMSzw9a1xJuALeCJ4pUdAI3QNPhBlc= Subject key identifier: 34:98:75:0C:12:6F:0D:AF:24:F0:E0:12:68:AA:FD:46:21:06:DF:01 Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 131F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 23D5 Signing time: Fri 30 May 2025 17:12:24 +0000 Manifest this update: Fri 30 May 2025 17:12:23 +0000 Manifest next update: Fri 06 Jun 2025 17:12:23 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: KbmXhxQQi9TKsg1djV4X96B3wS+pHSKEzbVrhZkMg0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:12:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4895 (0x131f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: May 30 17:12:23 2025 GMT Not After : Jun 6 17:12:23 2025 GMT Subject: CN=6839e6f8-d2f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:98:da:fa:9f:f3:a0:56:71:0c:7c:34:23:cb: 14:7f:bf:05:f8:ab:3b:0d:d4:54:83:c6:fb:e0:c5: 8a:56:de:e2:94:ff:7b:d9:7a:05:3f:af:5b:78:a6: 19:9f:96:74:fd:54:65:3f:4c:08:f5:1d:c9:51:6f: 72:85:dd:63:af:75:49:7e:c4:87:3b:13:1c:3b:96: 91:7d:7e:b5:e0:b6:c1:d4:2d:37:a6:cc:2e:93:b8: 0d:3c:73:52:ec:cf:09:b0:47:87:0d:52:e2:07:2c: 6c:0d:fa:1d:51:54:e5:4d:61:d4:2d:17:a2:83:c6: 5d:ed:ee:59:1f:8b:18:ed:41:92:9c:8b:21:bf:ce: 1e:3a:a0:69:9f:54:6f:0c:b6:71:a3:32:f8:c5:a8: d2:75:3a:5f:2c:ee:1b:e2:46:9f:fa:61:ee:16:9f: 75:bc:8f:4e:fa:d6:77:7d:36:26:f4:57:82:b7:26: 5b:98:fe:df:0f:00:f0:e6:b2:7e:81:f0:57:49:68: ff:ec:ec:dd:12:1f:20:a4:88:e1:0f:0f:d8:da:56: bc:13:8b:95:ff:97:7e:5c:ce:27:34:ba:90:e3:a3: f6:37:af:28:ee:80:de:1e:99:6d:e8:a1:b7:4d:22: 91:93:9d:69:5c:e6:71:02:d8:06:66:19:6c:fa:86: e6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:98:75:0C:12:6F:0D:AF:24:F0:E0:12:68:AA:FD:46:21:06:DF:01 X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:bd:ed:52:e9:d1:69:d1:b8:f2:63:91:d4:4c:ba:c3:99:92: b3:90:f1:da:0a:98:53:60:c8:8f:f5:25:35:28:53:62:68:cd: 31:e1:da:49:71:c3:82:f5:cd:0a:cc:89:cd:64:34:95:4f:ca: 42:e3:3c:2d:05:01:1d:2f:bd:fd:d4:b3:1f:55:b8:d1:aa:da: 8c:99:9e:63:b5:31:3c:cb:20:d6:84:49:2a:26:82:01:f4:b8: 5a:94:0a:65:99:8d:62:70:cc:cb:f5:e2:97:89:33:25:f4:80: 6f:56:45:cd:3d:85:22:17:4f:57:38:f7:1b:c9:15:da:80:33: 65:02:6d:2a:f5:d8:1b:e9:7b:16:85:b8:16:c0:63:7d:40:00: bf:93:3f:d4:32:be:d4:af:d8:28:23:68:f6:aa:0e:7d:f3:51: 30:a3:55:74:d2:ad:69:74:d1:d7:84:6d:40:2d:8f:d2:8e:ee: db:38:05:f2:e3:8b:33:83:3b:59:c9:a1:fc:46:5a:f1:d2:d6: 79:7e:75:49:da:8c:1d:52:c5:8f:df:1f:0e:b1:e1:2b:d4:e5: 38:8e:a6:17:66:64:a0:37:54:c8:6c:cf:18:36:d2:a8:e9:af: 90:d5:0f:ed:b9:69:77:57:50:1c:f1:04:75:44:79:28:42:8e: 9a:30:0e:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjUwNTMwMTcxMjIzWhcNMjUwNjA2MTcxMjIzWjAYMRYwFAYD VQQDEw02ODM5ZTZmOC1kMmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5ja+p/zoFZxDHw0I8sUf78F+Ks7DdRUg8b74MWKVt7ilP972XoFP69beKYZ n5Z0/VRlP0wI9R3JUW9yhd1jr3VJfsSHOxMcO5aRfX614LbB1C03pswuk7gNPHNS 7M8JsEeHDVLiByxsDfodUVTlTWHULReig8Zd7e5ZH4sY7UGSnIshv84eOqBpn1Rv DLZxozL4xajSdTpfLO4b4kaf+mHuFp91vI9O+tZ3fTYm9FeCtyZbmP7fDwDw5rJ+ gfBXSWj/7OzdEh8gpIjhDw/Y2la8E4uV/5d+XM4nNLqQ46P2N68o7oDeHplt6KG3 TSKRk51pXOZxAtgGZhls+obmVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSYdQwS bw2vJPDgEmiq/UYhBt8BMB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4ve1S6dFp0bjyY5HUTLrDmZKzkPHaCphTYMiP9SU1KFNiaM0x4dpJ ccOC9c0KzInNZDSVT8pC4zwtBQEdL7391LMfVbjRqtqMmZ5jtTE8yyDWhEkqJoIB 9LhalAplmY1icMzL9eKXiTMl9IBvVkXNPYUiF09XOPcbyRXagDNlAm0q9dgb6XsW hbgWwGN9QAC/kz/UMr7Ur9goI2j2qg5981Ewo1V00q1pdNHXhG1ALY/Sju7bOAXy 44szgztZyaH8Rlrx0tZ5fnVJ2owdUsWP3x8OseEr1OU4jqYXZmSgN1TIbM8YNtKo 6a+Q1Q/tuWl3V1Ac8QR1RHkoQo6aMA4A -----END CERTIFICATE-----Generated at Sat May 31 15:36:55 2025 by rpki-client