$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: g96bVre2xFp6jxwA3bU0zN9Q2zYWSrpVqBgl2W8iJdA= Subject key identifier: 0A:DC:55:E7:C5:7D:3E:D3:B5:9C:E7:B9:15:7F:84:A8:3B:00:59:FC Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 011B Signing time: Mon 21 Jul 2025 04:54:17 +0000 Manifest this update: Mon 21 Jul 2025 04:54:17 +0000 Manifest next update: Mon 28 Jul 2025 04:54:17 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: /a+ujK2PPNl1Dfm2L2d78X8WahU3KZDjNEMkPc309vY=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: ISi9gMsFzLmCrnxNv9LX4WndyIlBo1W9bMj3vV8OrvU=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: XVC372fFbzyMJ0najd3nCWGY6qSm44Rgv1v3SKiEpsU=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: g33ewG8+stt2H8q9hyzT5GDP+B5N5luEGnz8BVmfPXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:54:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Jul 21 04:54:17 2025 GMT Not After : Jul 28 04:54:17 2025 GMT Subject: CN=687dc7f9-b6bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a5:3e:e5:3c:45:58:7d:4f:62:42:95:10:08: 93:7d:50:f4:87:39:4a:a5:1a:41:15:e1:ee:61:1e: 4e:f8:0b:23:b9:28:da:df:4c:de:97:35:36:0f:a2: 09:4f:7a:dc:a0:af:3f:d7:e3:77:2c:e2:52:7b:ae: 92:61:b8:d2:5f:9f:cf:e2:b5:82:3b:75:47:83:ac: b9:f6:e6:ea:0f:db:0f:bc:ab:95:ca:ab:3d:08:59: e4:7d:56:dc:51:56:1e:42:08:5d:55:4e:80:d6:7d: c0:39:2a:69:8b:88:4e:e1:f6:9c:b3:f9:2f:f2:45: ef:0c:6a:3f:bf:1b:b0:33:93:bd:74:66:e8:dd:ae: 5e:19:78:40:0e:e6:d3:6f:0f:1f:37:90:31:7e:7f: a0:7c:b2:8d:cd:fe:e8:e3:c0:d9:48:68:8e:61:50: ea:44:2e:c1:6c:e7:87:ff:6f:1e:db:1d:5e:2f:79: a3:fd:6e:ca:b4:58:1c:5d:4b:f8:41:42:cb:33:5a: f3:ac:4b:e0:6e:f0:72:9d:9c:c5:63:e9:d8:a1:2b: e9:90:49:e5:9a:d7:cb:b2:b2:a0:66:01:59:1d:ac: e7:c7:75:99:20:41:d7:d6:25:69:72:64:69:c0:fb: a5:89:22:03:53:32:f5:4a:37:bd:7c:2a:ac:36:b8: 97:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:DC:55:E7:C5:7D:3E:D3:B5:9C:E7:B9:15:7F:84:A8:3B:00:59:FC X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:00:3e:63:d7:53:7b:50:5c:74:27:d5:ec:b5:c8:bc:38:f8: 31:2d:04:33:12:7c:dc:d4:c5:9b:df:db:2d:8b:43:4a:ef:fc: f1:4b:16:3d:75:70:e9:f2:4d:bd:ca:a0:33:bc:13:b4:a3:f2: a3:7f:b1:41:4b:a3:1c:cc:55:63:3d:5d:d0:61:57:47:63:f8: ad:5a:45:68:23:aa:d2:3e:eb:83:da:f1:28:f8:6a:f0:82:a6: ab:3f:99:9c:5c:18:49:c9:40:34:62:df:85:be:6f:ec:cc:6d: 27:ed:78:49:23:78:ed:e2:43:2e:4f:90:cf:03:ed:80:95:65: d6:68:4a:b2:08:49:18:5e:f7:94:64:48:5c:b2:eb:ef:86:1f: eb:d9:23:c4:a7:d9:4a:84:73:b0:e3:79:0f:b7:53:e9:9d:90: 4a:a2:8f:90:fd:2b:ed:4a:54:18:2b:0b:1e:9a:33:43:2c:5e: a0:e9:1a:a3:49:9c:6b:e4:02:ba:36:6a:e8:f4:1b:77:15:ba: 01:e0:88:e6:7d:da:25:7b:56:3e:55:b5:29:d9:50:09:3b:fe: 63:a6:54:b7:6f:98:6d:46:20:28:52:c1:ba:8c:af:53:f3:23: 9e:4a:6b:54:1c:9a:bb:a4:d9:d0:93:21:68:88:64:f7:1f:af: ab:ed:36:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwNzIxMDQ1NDE3WhcNMjUwNzI4MDQ1NDE3WjAYMRYwFAYD VQQDEw02ODdkYzdmOS1iNmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKU+5TxFWH1PYkKVEAiTfVD0hzlKpRpBFeHuYR5O+AsjuSja30zelzU2D6IJ T3rcoK8/1+N3LOJSe66SYbjSX5/P4rWCO3VHg6y59ubqD9sPvKuVyqs9CFnkfVbc UVYeQghdVU6A1n3AOSppi4hO4facs/kv8kXvDGo/vxuwM5O9dGbo3a5eGXhADubT bw8fN5Axfn+gfLKNzf7o48DZSGiOYVDqRC7BbOeH/28e2x1eL3mj/W7KtFgcXUv4 QULLM1rzrEvgbvBynZzFY+nYoSvpkEnlmtfLsrKgZgFZHaznx3WZIEHX1iVpcmRp wPuliSIDUzL1Sje9fCqsNriXkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArcVefF fT7TtZznuRV/hKg7AFn8MB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrAD5j11N7UFx0J9Xstci8OPgxLQQzEnzc1MWb39sti0NK7/zxSxY9 dXDp8k29yqAzvBO0o/Kjf7FBS6MczFVjPV3QYVdHY/itWkVoI6rSPuuD2vEo+Grw gqarP5mcXBhJyUA0Yt+Fvm/szG0n7XhJI3jt4kMuT5DPA+2AlWXWaEqyCEkYXveU ZEhcsuvvhh/r2SPEp9lKhHOw43kPt1PpnZBKoo+Q/SvtSlQYKwsemjNDLF6g6Rqj SZxr5AK6Nmro9Bt3FboB4Ijmfdole1Y+VbUp2VAJO/5jplS3b5htRiAoUsG6jK9T 8yOeSmtUHJq7pNnQkyFoiGT3H6+r7Ta1 -----END CERTIFICATE-----Generated at Mon Jul 21 12:50:10 2025 by rpki-client