$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: UghNZu7yYL6DZcbcrAiZxB/LzVx8pxW0jClDlPzs9SM= Subject key identifier: 5D:21:A9:37:AE:61:54:76:FF:79:27:A4:A4:A4:58:F4:97:BA:29:DA Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 62 Signing time: Mon 21 Jul 2025 07:13:48 +0000 Manifest this update: Mon 21 Jul 2025 07:13:47 +0000 Manifest next update: Mon 28 Jul 2025 07:13:47 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: VgNFEqxiiQ1ik04PULir/v+iKxSKhQv6Ou0aBKnnzJs=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Jul 21 07:13:47 2025 GMT Not After : Jul 28 07:13:47 2025 GMT Subject: CN=687de8ac-a919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b1:62:b1:a5:d8:ce:54:e3:84:af:86:32:d1: a1:8a:85:59:e5:db:00:26:c8:7e:42:ae:49:5d:e7: 42:57:e7:a9:b7:f2:42:b1:d8:43:b0:3f:1c:e9:58: da:62:3b:b1:c5:e2:b1:80:5a:0a:ec:72:9b:7d:78: 30:6c:86:9e:5b:28:99:ed:1d:ec:fa:90:33:07:1b: 53:49:84:62:10:1f:92:7b:cd:38:9f:21:a2:30:be: ca:80:46:29:04:9f:c4:bb:8a:75:47:42:42:27:d2: fc:f8:9a:ec:5c:d7:2c:a2:d6:ba:8a:f2:8d:b9:10: b9:d2:99:b2:6d:fe:b2:0e:b6:32:0e:c0:a5:d7:ba: 5d:21:16:5a:86:2c:00:8b:61:ff:c2:98:a5:0d:7b: 73:c2:8c:e4:ba:e1:6a:88:47:b3:02:5d:d3:f5:a3: ad:12:0a:76:2e:dc:d5:cf:b7:ab:a2:7b:ba:94:28: 02:d3:8d:e9:a5:e4:ea:e2:a3:41:14:14:9c:a3:fe: f7:20:9d:da:0a:eb:f8:d2:e3:9d:9d:09:01:dd:5d: f8:42:ae:9a:c3:36:2b:49:70:98:b8:d6:8e:00:5e: 4a:90:34:2f:dd:bb:68:c8:33:8d:f7:13:41:9f:cb: 34:66:5f:81:e9:1b:6d:98:32:43:75:c1:60:59:e1: 27:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:21:A9:37:AE:61:54:76:FF:79:27:A4:A4:A4:58:F4:97:BA:29:DA X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:a8:98:85:0b:9f:d9:69:5c:fa:d7:a7:12:9b:61:4d:ac:8c: 38:d1:c5:b3:44:73:2f:7a:aa:31:a9:2b:36:dd:a3:c9:45:46: 4c:b3:21:9c:95:a7:97:e1:12:11:17:92:ca:70:de:a8:1a:dd: 7d:19:d2:46:5c:b5:6f:d7:21:7e:6f:5f:08:af:22:42:23:f1: 12:f5:60:3a:bd:0d:db:f2:e8:84:68:d9:8b:1f:f1:4e:c1:97: 7b:62:3b:ac:ec:3b:0c:a2:9e:6b:34:e0:ca:b2:c6:42:12:f6: 75:86:2b:76:43:bf:1a:13:06:53:ed:0a:ff:fe:fc:94:ac:62: fb:c5:c2:c7:b1:b1:91:a4:d1:5e:3d:92:61:7b:31:b0:ed:2b: ac:c7:46:44:9d:73:8a:05:fc:36:67:07:ae:93:ce:9a:99:b2: b4:7c:df:4c:20:bb:95:12:3d:13:2b:bc:ba:ef:69:43:20:75: 82:95:dc:84:72:6c:87:39:28:88:bc:91:eb:7c:1c:e0:76:ad: 6f:ee:76:dd:5e:14:c6:30:0c:73:46:71:6f:8b:32:dd:df:1f: d6:a0:47:ce:af:b6:b5:63:42:85:63:ee:89:9c:35:e0:0f:b6: 75:5f:80:8f:b6:9e:86:fb:df:79:14:5b:b2:dc:2d:4b:8f:36: c2:24:38:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTA3MjEwNzEzNDdaFw0yNTA3MjgwNzEzNDdaMBgxFjAUBgNV BAMTDTY4N2RlOGFjLWE5MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmsWKxpdjOVOOEr4Yy0aGKhVnl2wAmyH5Crkld50JX56m38kKx2EOwPxzpWNpi O7HF4rGAWgrscpt9eDBshp5bKJntHez6kDMHG1NJhGIQH5J7zTifIaIwvsqARikE n8S7inVHQkIn0vz4muxc1yyi1rqK8o25ELnSmbJt/rIOtjIOwKXXul0hFlqGLACL Yf/CmKUNe3PCjOS64WqIR7MCXdP1o60SCnYu3NXPt6uie7qUKALTjeml5Orio0EU FJyj/vcgndoK6/jS452dCQHdXfhCrprDNitJcJi41o4AXkqQNC/du2jIM433E0Gf yzRmX4HpG22YMkN1wWBZ4SffAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXSGpN65h VHb/eSekpKRY9Je6KdowHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACOomIULn9lpXPrXpxKbYU2sjDjRxbNEcy96qjGpKzbdo8lFRkyzIZyV p5fhEhEXkspw3qga3X0Z0kZctW/XIX5vXwivIkIj8RL1YDq9Ddvy6IRo2Ysf8U7B l3tiO6zsOwyinms04MqyxkIS9nWGK3ZDvxoTBlPtCv/+/JSsYvvFwsexsZGk0V49 kmF7MbDtK6zHRkSdc4oF/DZnB66TzpqZsrR830wgu5USPRMrvLrvaUMgdYKV3IRy bIc5KIi8ket8HOB2rW/udt1eFMYwDHNGcW+LMt3fH9agR86vtrVjQoVj7omcNeAP tnVfgI+2nob733kUW7LcLUuPNsIkOAk= -----END CERTIFICATE-----Generated at Wed Jul 23 02:38:43 2025 by rpki-client