$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: szOz+OLkyS8osKbsd0f1REHOVxn1BXoQAjqV0Tz/U+A= Subject key identifier: 03:3E:A4:F2:06:2F:4A:D2:78:F1:CB:CA:B0:CF:63:26:37:11:0E:28 Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0B12 Signing time: Sun 24 Aug 2025 19:18:57 +0000 Manifest this update: Sun 24 Aug 2025 19:18:57 +0000 Manifest next update: Sun 31 Aug 2025 19:18:57 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: iaRylRXeaeLTWTzNSKEqzcVdUgDMTpGPx8oRpsRe668=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: pPxz0Xj0Q495OhV6+Bhr4ANjqSPrxc3sqmemzntEGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2841 (0xb19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2, serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Aug 24 19:18:57 2025 GMT Not After : Aug 31 19:18:57 2025 GMT Subject: CN=68ab65a1-32bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:91:a0:f6:bc:10:98:cb:9d:76:da:9a:7c:f6: d3:7e:4d:70:ba:32:62:6b:71:06:9a:e3:d8:9b:ef: df:ad:99:ad:7c:58:d3:d4:5f:4a:08:09:68:f6:84: 91:54:4d:b6:a9:47:cc:ca:8c:b2:36:71:77:52:bc: 17:53:eb:be:e0:fe:34:c9:ea:cb:b1:23:39:a3:eb: 91:b6:da:ca:ae:f1:05:a9:4d:10:c4:0f:7f:67:d2: ed:89:4d:b8:58:54:38:a4:88:ed:55:d2:e1:62:74: 83:5c:a6:ea:55:64:fd:43:04:eb:b7:dc:bc:e6:bb: 84:98:e7:e2:2f:a7:70:43:e8:b3:22:9f:94:3a:d2: 47:75:2a:50:af:f7:a4:c4:ad:cc:43:9e:3e:80:d3: e5:e1:b1:20:a8:b6:1b:53:61:58:6a:de:a9:b5:43: 34:ff:75:c9:ca:ff:49:47:16:c6:fa:89:6a:4b:38: 89:77:83:53:7d:54:44:6f:a5:4a:52:c3:ea:b5:0c: bc:9e:7f:7b:30:50:1c:64:9e:4e:6b:90:1a:18:a3: 9d:ec:8f:cc:10:52:1e:bd:2f:6e:b5:8f:1f:0a:10: 99:d5:79:2e:37:8f:ef:a5:57:6c:8c:16:1d:74:25: 39:c6:a4:b9:5e:de:1a:40:5f:e8:ac:8b:4a:96:74: b1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:3E:A4:F2:06:2F:4A:D2:78:F1:CB:CA:B0:CF:63:26:37:11:0E:28 X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:48:62:19:0b:c1:4f:81:61:d5:8c:07:dd:19:d4:c1:2f:68: 51:59:f7:6f:e3:27:76:5d:d9:17:bc:fa:48:a2:68:f3:fd:66: fe:09:93:17:6c:d8:13:f0:3e:54:20:d5:c4:d3:b1:dc:a3:44: 74:fa:96:2a:b2:99:ca:ee:d7:0d:c3:e2:20:9d:54:f8:00:47: 35:92:12:7d:6e:5c:4e:ef:23:32:a6:a2:44:1d:af:7e:5a:10: cf:9f:f7:b3:5a:d8:bd:07:a0:ba:e3:ec:19:0f:da:f9:2c:9c: 63:ac:a0:4f:60:0b:5e:6a:f1:5a:23:78:bd:c1:a2:ba:d2:13: 61:8a:d6:ce:7f:24:e2:c2:84:a3:19:2f:ba:02:6b:1c:88:a4: e5:fa:33:03:c0:07:e9:8f:c2:fa:97:18:9f:7e:d8:a6:5e:26: 39:10:0f:82:7f:f7:4d:28:67:65:63:ee:92:14:9d:c4:38:8b: 20:b3:87:e7:40:32:6a:40:52:25:c4:27:c3:1e:6e:73:14:ea: 51:8e:70:df:34:13:00:05:c8:b3:82:d9:90:2e:dc:f5:63:db: b7:7d:4a:aa:46:a9:49:8f:ca:0d:1e:1e:49:74:e6:57:2f:b6: d6:eb:66:95:e6:b4:79:a2:13:1b:dd:f4:d4:82:9c:10:54:f6: 67:b3:3d:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjUwODI0MTkxODU3WhcNMjUwODMxMTkxODU3WjAYMRYwFAYD VQQDEw02OGFiNjVhMS0zMmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmpGg9rwQmMuddtqafPbTfk1wujJia3EGmuPYm+/frZmtfFjT1F9KCAlo9oSR VE22qUfMyoyyNnF3UrwXU+u+4P40yerLsSM5o+uRttrKrvEFqU0QxA9/Z9LtiU24 WFQ4pIjtVdLhYnSDXKbqVWT9QwTrt9y85ruEmOfiL6dwQ+izIp+UOtJHdSpQr/ek xK3MQ54+gNPl4bEgqLYbU2FYat6ptUM0/3XJyv9JRxbG+olqSziJd4NTfVREb6VK UsPqtQy8nn97MFAcZJ5Oa5AaGKOd7I/MEFIevS9utY8fChCZ1XkuN4/vpVdsjBYd dCU5xqS5Xt4aQF/orItKlnSxFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAM+pPIG L0rSePHLyrDPYyY3EQ4oMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChSGIZC8FPgWHVjAfdGdTBL2hRWfdv4yd2XdkXvPpIomjz/Wb+CZMX bNgT8D5UINXE07Hco0R0+pYqspnK7tcNw+IgnVT4AEc1khJ9blxO7yMypqJEHa9+ WhDPn/ezWti9B6C64+wZD9r5LJxjrKBPYAteavFaI3i9waK60hNhitbOfyTiwoSj GS+6AmsciKTl+jMDwAfpj8L6lxifftimXiY5EA+Cf/dNKGdlY+6SFJ3EOIsgs4fn QDJqQFIlxCfDHm5zFOpRjnDfNBMABcizgtmQLtz1Y9u3fUqqRqlJj8oNHh5JdOZX L7bW62aV5rR5ohMb3fTUgpwQVPZnsz3j -----END CERTIFICATE-----Generated at Sun Aug 24 21:44:35 2025 by rpki-client