$ rpki-client -vvf rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft File: O0irhhZS-u7X4dElg_Frt_uyiRM.mft (raw, json) Hash identifier: HIyP/6OfMZ/nqucvyDGq8v+FToL4XUP/yrKEul1Dt34= Subject key identifier: 7A:8F:63:59:D2:0B:E7:60:24:49:42:A6:1B:C7:D0:62:35:31:C4:2C Authority key identifier: 3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 Certificate issuer: /CN=A9176909/serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Certificate serial: 020E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft Manifest number: 01FE Signing time: Thu 05 Jun 2025 01:57:06 +0000 Manifest this update: Thu 05 Jun 2025 01:57:06 +0000 Manifest next update: Thu 12 Jun 2025 01:57:06 +0000 Files and hashes: 1: O0irhhZS-u7X4dElg_Frt_uyiRM.crl (hash: ceW3V0Xc2Xq9sPyC81DZ04norjLVhhQ3hfsCLrykzAI=) 2: EDE89884DB1711EF8929832EC4F9AE02.roa (hash: tqa1Ixra7BMwCWoNM3olfzFpbEkXEWmJXa4eDjgnFBc=) 3: 8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa (hash: oSZdhfGWwwKdH63s+SExbmyRtKVUZJS009bBjLK65o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176909, serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Validity Not Before: Jun 5 01:57:06 2025 GMT Not After : Jun 12 01:57:06 2025 GMT Subject: CN=6840f972-a232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f7:c1:64:01:b7:aa:e2:de:95:31:c0:c2:5b: de:c3:0d:5d:0f:5a:c4:fb:52:55:a5:b4:1a:b5:94: 23:6e:10:23:a4:6c:00:28:3a:74:58:b0:01:31:a9: ae:dc:82:73:47:2c:90:48:14:48:ab:89:6f:42:84: 4e:8e:38:63:a2:7f:3f:96:7c:15:11:df:3d:fd:fa: 78:0e:73:ed:5b:1d:8e:fd:e1:77:ce:64:b8:9d:07: 5e:3e:b2:fd:fe:c1:02:b3:8a:28:61:cf:73:72:b9: 65:90:8e:07:73:70:0f:a1:b6:70:82:4a:92:62:82: d4:03:9f:51:33:3c:69:9b:1f:76:f5:a5:a3:52:c0: 6b:8a:96:4f:62:56:98:26:82:74:2d:9e:45:be:6a: a7:5a:82:bf:05:12:da:45:d8:21:c2:f9:f2:1c:a5: 90:b6:22:93:ac:12:3b:f3:c2:64:8c:a7:14:a5:00: b5:5d:74:c8:4c:a1:9c:c5:c6:05:5a:ee:bd:52:08: e6:98:9e:fe:23:e3:ca:2f:b2:8a:e4:11:04:3b:85: 22:95:cc:16:f4:c2:b9:01:b6:e5:98:38:35:d6:1e: 02:d8:41:62:76:1d:e5:46:4a:c3:06:b2:ac:60:d2: 59:bd:23:5f:e9:5e:dd:98:dc:3c:3c:4a:38:62:5b: 03:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8F:63:59:D2:0B:E7:60:24:49:42:A6:1B:C7:D0:62:35:31:C4:2C X509v3 Authority Key Identifier: keyid:3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:1a:0d:b3:90:04:cb:15:93:44:b8:6f:52:25:30:02:74:ea: e8:ef:5c:3f:f7:0f:c4:ef:9e:c3:09:55:26:0d:4e:47:60:19: fc:c8:d6:c5:f2:55:53:41:54:1e:54:94:37:c8:0e:1b:c4:71: b9:49:ee:42:42:46:b0:61:40:0e:9d:72:79:03:d2:87:67:02: 2a:2f:76:e1:8b:42:fd:b1:ad:db:12:2c:af:b0:30:a9:5b:ef: 4f:24:ee:47:39:f1:53:88:35:0d:76:26:1a:d6:19:af:c8:44: 3d:dd:ea:a6:66:3b:6e:5d:d7:49:b8:d7:5b:9a:61:4a:c6:25: ae:b6:8d:41:ea:b9:2d:e1:69:90:45:57:6c:d6:1d:ca:af:d0: 41:5b:3e:c1:ff:09:d5:6e:a2:f5:7f:59:a0:ef:6e:f6:a1:61: d7:41:c4:72:35:f8:05:49:f6:c8:77:21:ad:49:ca:12:20:65: 8a:ee:c8:c8:12:e7:76:b5:aa:87:e8:79:38:9c:c1:31:6d:82: e0:5a:e8:9b:09:5c:83:ab:14:88:75:11:2c:96:68:af:3d:27: 50:53:02:69:ef:1a:fa:2c:52:de:28:92:a5:c0:f1:1d:60:ad: 19:14:70:13:74:1e:8b:3f:8b:a2:32:0f:ba:bb:b5:65:71:29: 45:50:0c:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY5MDkxMTAvBgNVBAUTKDNCNDhBQjg2MTY1MkZBRUVEN0UxRDEyNTgzRjE2QkI3 RkJCMjg5MTMwHhcNMjUwNjA1MDE1NzA2WhcNMjUwNjEyMDE1NzA2WjAYMRYwFAYD VQQDEw02ODQwZjk3Mi1hMjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/fBZAG3quLelTHAwlveww1dD1rE+1JVpbQatZQjbhAjpGwAKDp0WLABMamu 3IJzRyyQSBRIq4lvQoROjjhjon8/lnwVEd89/fp4DnPtWx2O/eF3zmS4nQdePrL9 /sECs4ooYc9zcrllkI4Hc3APobZwgkqSYoLUA59RMzxpmx929aWjUsBripZPYlaY JoJ0LZ5FvmqnWoK/BRLaRdghwvnyHKWQtiKTrBI788JkjKcUpQC1XXTITKGcxcYF Wu69UgjmmJ7+I+PKL7KK5BEEO4UilcwW9MK5AbblmDg11h4C2EFidh3lRkrDBrKs YNJZvSNf6V7dmNw8PEo4YlsDIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqPY1nS C+dgJElCphvH0GI1McQsMB8GA1UdIwQYMBaAFDtIq4YWUvru1+HRJYPxa7f7sokT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjkwOS85QUJBQ0FDODRE Q0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11N1g0ZEVsZ19GcnRfdXlp Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08waXJoaFpTLXU3WDRkRWxnX0ZydF91eWlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjkwOS85QUJBQ0FDODREQ0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11 N1g0ZEVsZ19GcnRfdXlpUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmGg2zkATLFZNEuG9SJTACdOro71w/9w/E757DCVUmDU5HYBn8yNbF 8lVTQVQeVJQ3yA4bxHG5Se5CQkawYUAOnXJ5A9KHZwIqL3bhi0L9sa3bEiyvsDCp W+9PJO5HOfFTiDUNdiYa1hmvyEQ93eqmZjtuXddJuNdbmmFKxiWuto1B6rkt4WmQ RVds1h3Kr9BBWz7B/wnVbqL1f1mg7272oWHXQcRyNfgFSfbIdyGtScoSIGWK7sjI Eud2taqH6Hk4nMExbYLgWuibCVyDqxSIdREslmivPSdQUwJp7xr6LFLeKJKlwPEd YK0ZFHATdB6LP4uiMg+6u7VlcSlFUAx2 -----END CERTIFICATE-----Generated at Thu Jun 5 19:15:09 2025 by rpki-client