$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: gKtvobFbPTqeS9v4ZOOeXLMTQhyZodFbD17uS2y6hZU= Subject key identifier: E6:56:69:D4:E6:BE:B6:EA:3D:70:5F:FE:FC:DB:49:BC:55:3F:C1:FF Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 7C Signing time: Tue 09 Sep 2025 06:51:31 +0000 Manifest this update: Tue 09 Sep 2025 06:51:31 +0000 Manifest next update: Tue 16 Sep 2025 06:51:31 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: 1h6boscWnOrK3sJSbHcBjfKqPR2G7uvB7HYBXSVG0fA=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Sep 9 06:51:31 2025 GMT Not After : Sep 16 06:51:31 2025 GMT Subject: CN=68bfce73-256d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:34:ff:0b:d6:f5:76:d1:06:ec:5b:40:17:a6: ac:48:3b:83:dc:42:c7:1a:53:39:02:16:93:1f:a3: 88:7b:c7:69:d4:3d:e5:4a:40:1d:0e:f9:9e:26:4d: 4d:3e:9a:37:b5:86:09:bb:9f:9f:3c:dc:ae:8b:6f: 3a:16:f4:a3:34:2a:6c:fc:0d:2a:f1:39:a7:40:08: 28:b1:35:86:2e:e5:78:be:a8:01:cc:3f:65:78:ec: 22:04:d8:b5:e4:45:92:93:c0:d2:ef:d5:2a:04:cb: 57:f5:64:a3:5b:4b:a0:3d:48:ca:ff:40:6d:d1:66: 27:ca:0a:e2:08:d6:37:98:a0:d9:1c:8c:58:d3:35: c9:74:1c:47:71:66:f4:12:db:f6:b1:3f:a2:fa:d0: 66:f4:00:d3:11:a7:3e:9c:47:1c:51:d7:14:6e:aa: 07:83:29:7e:ad:0f:22:37:38:0d:e6:03:7b:8f:2d: 31:09:0f:2f:ec:0f:9f:29:68:bd:67:aa:8b:12:84: e2:83:dd:d0:ea:68:1e:12:80:0e:1b:55:24:fc:bd: 22:db:a2:06:58:2b:ed:f5:b2:a9:5d:72:65:83:96: 4a:d2:4f:ad:66:4c:26:78:64:ea:e2:7f:0d:f9:57: d7:14:8b:03:28:1e:a0:6d:a9:7d:50:7b:27:69:d9: a2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:56:69:D4:E6:BE:B6:EA:3D:70:5F:FE:FC:DB:49:BC:55:3F:C1:FF X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:2e:5f:a2:72:23:7b:11:11:36:e1:ba:cf:8d:66:32:40:5d: da:5a:b1:20:a3:2f:cb:14:33:7b:1a:23:2e:87:13:b9:3d:dc: 72:e0:8a:58:b5:cf:f7:29:03:06:41:be:f9:9e:83:bf:48:2f: 21:90:75:c4:25:1e:23:f4:0f:5e:cf:cd:ec:24:9b:64:d1:28: 4a:a0:8f:e1:13:ab:2d:89:27:9f:15:b6:be:14:6f:02:aa:bf: 20:ca:db:95:f5:fe:a1:8b:6c:4b:b2:45:aa:1f:1e:35:f5:5c: 16:a3:29:7e:e5:6a:ba:e8:d8:34:45:78:7d:73:fc:0e:3a:62: d5:9b:70:cd:15:39:76:42:b0:39:72:3f:f6:c9:a8:b8:ed:eb: 8e:67:54:c3:ff:5e:3d:fb:28:97:c0:a0:f4:f3:09:a5:86:b6: 1b:c3:08:d1:0e:c1:28:0b:08:a2:a2:83:1c:a9:83:c6:50:ae: 7b:27:d5:4f:54:fc:5d:ef:41:5e:a6:d6:a1:89:00:55:ff:ec: c7:a2:11:55:6b:b0:85:44:cd:ad:83:80:98:be:c4:da:06:b3: c8:1e:a6:dd:77:67:de:6d:f4:c4:31:5f:f7:d4:3e:8d:67:5d: 14:52:e1:ae:44:27:97:c1:fc:d0:10:8a:25:64:4f:8e:49:83: af:73:5d:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTA5MDkwNjUxMzFaFw0yNTA5MTYwNjUxMzFaMBgxFjAUBgNV BAMTDTY4YmZjZTczLTI1NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtNP8L1vV20QbsW0AXpqxIO4PcQscaUzkCFpMfo4h7x2nUPeVKQB0O+Z4mTU0+ mje1hgm7n5883K6LbzoW9KM0Kmz8DSrxOadACCixNYYu5Xi+qAHMP2V47CIE2LXk RZKTwNLv1SoEy1f1ZKNbS6A9SMr/QG3RZifKCuII1jeYoNkcjFjTNcl0HEdxZvQS 2/axP6L60Gb0ANMRpz6cRxxR1xRuqgeDKX6tDyI3OA3mA3uPLTEJDy/sD58paL1n qosShOKD3dDqaB4SgA4bVST8vSLbogZYK+31sqldcmWDlkrST61mTCZ4ZOrifw35 V9cUiwMoHqBtqX1Qeydp2aI7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5lZp1Oa+ tuo9cF/+/NtJvFU/wf8wHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF4uX6JyI3sRETbhus+NZjJAXdpasSCjL8sUM3saIy6HE7k93HLgili1 z/cpAwZBvvmeg79ILyGQdcQlHiP0D17Pzewkm2TRKEqgj+ETqy2JJ58Vtr4UbwKq vyDK25X1/qGLbEuyRaofHjX1XBajKX7larro2DRFeH1z/A46YtWbcM0VOXZCsDly P/bJqLjt645nVMP/Xj37KJfAoPTzCaWGthvDCNEOwSgLCKKigxypg8ZQrnsn1U9U /F3vQV6m1qGJAFX/7MeiEVVrsIVEza2DgJi+xNoGs8gept13Z95t9MQxX/fUPo1n XRRS4a5EJ5fB/NAQiiVkT45Jg69zXXw= -----END CERTIFICATE-----Generated at Tue Sep 9 13:26:31 2025 by rpki-client