$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: 0PPF5lNRQ9BI3x9TWB5W921R8r8SeObP9QikoO8xzMY= Subject key identifier: 40:48:A0:E6:1D:3A:38:4D:67:68:3A:B0:19:88:A7:1D:5C:02:B9:2C Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0CAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0CA2 Signing time: Sun 08 Jun 2025 18:00:37 +0000 Manifest this update: Sun 08 Jun 2025 18:00:36 +0000 Manifest next update: Sun 15 Jun 2025 18:00:36 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: wDUtGPWwPbDfFux/xNlZdd5LOeyKBNTDcXbzH7eJZrk=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: B32sLriEZBiwsvO/X5p+YP5+TxaEvkZ8AXqcNmiVRPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 18:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3243 (0xcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Jun 8 18:00:36 2025 GMT Not After : Jun 15 18:00:36 2025 GMT Subject: CN=6845cfc4-2ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:06:44:4a:be:68:e4:0f:b9:62:61:ce:42:8f: ea:9f:02:a5:ba:94:d5:45:57:4b:66:5a:f3:be:f3: 7d:63:41:2a:de:14:90:59:07:87:10:8a:62:f6:44: e1:c2:40:de:ed:ee:09:f5:59:8f:54:79:46:c8:dd: ed:1d:55:2a:43:69:d9:20:f1:a6:77:2e:e3:94:86: 8c:39:f8:a0:6c:ab:aa:83:7f:d4:42:d7:43:66:7a: 22:12:7f:08:67:65:d9:7e:26:db:77:e5:8a:c6:fc: 68:72:6e:75:5d:6c:52:6b:81:4a:81:dd:47:7d:0c: 2f:44:7a:80:ea:b9:34:02:a4:6b:32:31:c8:01:f4: 86:51:1e:ba:c3:c4:e8:ef:03:37:85:89:e9:e6:ea: 6d:a9:80:67:90:0f:0d:51:c0:37:8c:2a:2c:b9:61: ca:cc:fc:36:14:2a:88:6e:89:ed:62:75:7b:7b:0c: 78:d3:f2:2d:95:93:78:ce:95:f4:d4:44:27:d0:e4: f6:d7:de:1c:67:89:9c:e2:6e:28:23:68:08:73:d2: 36:60:0c:5d:b4:6b:32:6f:9a:db:5f:75:bd:9a:8d: a7:92:49:8e:c8:04:df:da:36:ef:c9:69:48:96:ce: 72:c4:f0:6f:7b:94:04:dc:6b:03:9d:15:cc:1f:da: b1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:48:A0:E6:1D:3A:38:4D:67:68:3A:B0:19:88:A7:1D:5C:02:B9:2C X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:6c:e4:5d:e5:f5:f3:7d:28:9d:d4:53:6a:28:10:08:1e:f5: 9d:0c:cc:c3:1c:88:60:4f:dd:af:cc:65:43:42:e8:ca:13:0f: e3:82:07:5e:a7:e0:e2:17:5d:1e:a8:aa:60:37:20:a6:9d:88: 78:43:e3:f5:bf:8d:14:d8:f1:43:9d:f3:6e:bf:a0:05:b8:2b: 6c:59:d7:8a:13:1f:8c:8a:81:57:ab:28:27:a1:52:78:95:b5: 66:d3:1b:3d:cf:1f:84:88:fb:3c:18:14:cc:c4:9d:8c:03:21: df:24:72:81:05:a8:63:56:1c:e1:9b:45:79:7f:63:aa:ce:5f: cf:34:2e:16:6c:44:7c:11:f2:c0:23:81:45:58:71:94:6d:b0: 24:2b:7d:4c:06:12:3d:db:44:bc:96:1b:f1:a3:ec:f8:8d:cb: 9c:ad:8c:fc:de:20:eb:a2:e1:51:fc:5f:79:5d:8f:58:7f:4b: 98:0e:0c:46:13:ab:9d:da:e9:81:ab:86:e0:91:85:73:93:44: c5:c1:cf:29:74:d5:81:6d:e6:42:4e:71:f2:c6:f5:3c:91:74: 18:5c:9a:c5:9a:68:5b:98:22:4b:04:12:df:45:1c:0d:e5:e2: a9:00:9d:2b:e0:3f:99:69:34:1f:0b:fc:39:14:b6:f1:ca:41: 1e:96:b2:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwNjA4MTgwMDM2WhcNMjUwNjE1MTgwMDM2WjAYMRYwFAYD VQQDEw02ODQ1Y2ZjNC0yZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwZESr5o5A+5YmHOQo/qnwKlupTVRVdLZlrzvvN9Y0Eq3hSQWQeHEIpi9kTh wkDe7e4J9VmPVHlGyN3tHVUqQ2nZIPGmdy7jlIaMOfigbKuqg3/UQtdDZnoiEn8I Z2XZfibbd+WKxvxocm51XWxSa4FKgd1HfQwvRHqA6rk0AqRrMjHIAfSGUR66w8To 7wM3hYnp5uptqYBnkA8NUcA3jCosuWHKzPw2FCqIbontYnV7ewx40/ItlZN4zpX0 1EQn0OT2194cZ4mc4m4oI2gIc9I2YAxdtGsyb5rbX3W9mo2nkkmOyATf2jbvyWlI ls5yxPBve5QE3GsDnRXMH9qx3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBIoOYd OjhNZ2g6sBmIpx1cArksMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUbORd5fXzfSid1FNqKBAIHvWdDMzDHIhgT92vzGVDQujKEw/jggde p+DiF10eqKpgNyCmnYh4Q+P1v40U2PFDnfNuv6AFuCtsWdeKEx+MioFXqygnoVJ4 lbVm0xs9zx+EiPs8GBTMxJ2MAyHfJHKBBahjVhzhm0V5f2Oqzl/PNC4WbER8EfLA I4FFWHGUbbAkK31MBhI920S8lhvxo+z4jcucrYz83iDrouFR/F95XY9Yf0uYDgxG E6ud2umBq4bgkYVzk0TFwc8pdNWBbeZCTnHyxvU8kXQYXJrFmmhbmCJLBBLfRRwN 5eKpAJ0r4D+ZaTQfC/w5FLbxykEelrLB -----END CERTIFICATE-----Generated at Mon Jun 9 04:04:37 2025 by rpki-client