$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: kVuNFzAPaLHcPHXjrQSuK/3sYMWMVAVmSF3lDt3O80o= Subject key identifier: E9:18:00:6B:16:74:C4:62:32:4D:09:5C:31:40:2D:31:DE:AA:5A:66 Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 09DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 09C9 Signing time: Sun 08 Jun 2025 19:44:20 +0000 Manifest this update: Sun 08 Jun 2025 19:44:19 +0000 Manifest next update: Sun 15 Jun 2025 19:44:19 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: zr+OHrge7qmzHS2n4ck3VM170Ho3sxfvxV/m5C7NwgM=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: Cf8bqRacvTWl+UzpH6e1kxekXSzzSxIQ9wSazOTj5Ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 19:44:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2523 (0x9db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE, serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: Jun 8 19:44:19 2025 GMT Not After : Jun 15 19:44:19 2025 GMT Subject: CN=6845e813-a39d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5e:41:55:be:2f:20:0c:3c:fe:f7:c4:70:aa: 33:e5:72:a7:35:1d:4a:1a:f2:65:d9:9b:a8:0c:ea: 8d:8f:35:ff:0d:ad:02:e1:ef:28:0b:2b:e6:e0:43: 93:61:af:c7:7f:a1:ae:a3:ce:3f:36:60:e5:fc:2d: da:68:bb:09:01:b7:c4:2e:ff:b3:46:36:3c:87:e8: 63:5d:a9:95:d4:d5:77:08:17:2f:67:24:41:08:b8: 65:fd:d4:bc:15:07:76:c5:cb:6a:e0:03:b8:cc:5e: 00:d5:c8:e3:b1:a8:00:ff:bc:a4:a9:1f:92:0c:ca: ed:f6:91:f4:23:48:d4:25:e5:cf:7e:12:e1:9a:71: bf:04:c0:7c:a6:70:74:4a:c2:38:f2:dd:5d:40:33: 62:24:21:78:52:54:d0:e8:86:2d:3a:85:c2:fd:39: 85:c8:f0:c5:75:1e:59:7e:b0:25:0a:60:a5:dc:36: 77:e1:eb:f3:6f:1c:e9:ce:6b:95:16:95:28:5d:da: 21:97:44:a0:3a:7f:9d:d7:84:30:fb:15:e4:61:61: 3c:dc:3e:47:cd:42:22:ed:3c:4f:82:c7:1b:0e:10: f9:14:58:f8:f1:b1:19:cf:97:5e:aa:9d:18:34:35: 99:fd:e0:97:15:eb:6b:b4:e5:35:95:45:7d:8d:10: 68:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:18:00:6B:16:74:C4:62:32:4D:09:5C:31:40:2D:31:DE:AA:5A:66 X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:57:08:74:3b:49:74:54:36:16:7f:3e:86:6b:fe:a1:0b:6f: df:8d:a3:57:3e:1e:d4:f1:16:01:3c:a9:9a:ae:fc:30:8a:34: cc:4d:83:7f:c0:10:7f:39:75:88:61:99:c0:b0:ce:99:0f:26: 4c:93:db:e6:a1:95:e3:bf:e6:4d:64:2b:a8:bd:05:0d:8b:28: e2:35:99:7c:95:29:5f:d4:6b:22:27:2e:47:8d:b4:34:ef:53: fd:a6:f3:79:68:5d:77:0a:1f:dc:cf:ed:a2:69:43:5e:48:73: 4a:b0:c0:bd:5d:ad:a2:bd:55:c9:ac:15:03:87:eb:0f:85:5f: d8:32:f8:64:ba:ce:b4:aa:a6:7d:1f:aa:16:b5:fe:be:47:e5: c7:b9:e8:0c:83:44:d2:59:09:0b:ca:c3:0d:1f:f4:84:ad:37: 7a:41:2a:3c:49:28:2b:7b:82:b1:c6:56:b7:7e:a5:06:8f:8a: d1:a7:3a:4b:fb:71:b0:22:65:ee:a3:ef:11:c2:54:f9:ee:51: 97:9e:7b:20:eb:ef:f5:76:26:10:93:fc:e3:b8:0e:19:fa:df: 51:e2:db:24:ec:d5:af:ff:70:e9:03:b8:91:24:fd:70:2f:2f: 8f:a0:7b:74:ee:57:03:ab:49:ce:c2:56:f3:33:5d:b9:7d:d2: fa:90:43:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjUwNjA4MTk0NDE5WhcNMjUwNjE1MTk0NDE5WjAYMRYwFAYD VQQDEw02ODQ1ZTgxMy1hMzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuV5BVb4vIAw8/vfEcKoz5XKnNR1KGvJl2ZuoDOqNjzX/Da0C4e8oCyvm4EOT Ya/Hf6Guo84/NmDl/C3aaLsJAbfELv+zRjY8h+hjXamV1NV3CBcvZyRBCLhl/dS8 FQd2xctq4AO4zF4A1cjjsagA/7ykqR+SDMrt9pH0I0jUJeXPfhLhmnG/BMB8pnB0 SsI48t1dQDNiJCF4UlTQ6IYtOoXC/TmFyPDFdR5ZfrAlCmCl3DZ34evzbxzpzmuV FpUoXdohl0SgOn+d14Qw+xXkYWE83D5HzUIi7TxPgscbDhD5FFj48bEZz5deqp0Y NDWZ/eCXFetrtOU1lUV9jRBouwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkYAGsW dMRiMk0JXDFALTHeqlpmMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzVwh0O0l0VDYWfz6Ga/6hC2/fjaNXPh7U8RYBPKmarvwwijTMTYN/ wBB/OXWIYZnAsM6ZDyZMk9vmoZXjv+ZNZCuovQUNiyjiNZl8lSlf1GsiJy5HjbQ0 71P9pvN5aF13Ch/cz+2iaUNeSHNKsMC9Xa2ivVXJrBUDh+sPhV/YMvhkus60qqZ9 H6oWtf6+R+XHuegMg0TSWQkLysMNH/SErTd6QSo8SSgre4Kxxla3fqUGj4rRpzpL +3GwImXuo+8RwlT57lGXnnsg6+/1diYQk/zjuA4Z+t9R4tsk7NWv/3DpA7iRJP1w Ly+PoHt07lcDq0nOwlbzM125fdL6kENK -----END CERTIFICATE-----Generated at Tue Jun 10 04:40:07 2025 by rpki-client