$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft File: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft (raw, json) Hash identifier: 8RCSGUP0WESiM4xrycEyFh0EloHiqPcmmJ2rnhcsaYY= Subject key identifier: 3E:E0:1F:6D:28:C8:99:FB:E3:A2:4B:D5:0F:84:5D:B1:DD:F4:84:C5 Authority key identifier: 3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 Certificate issuer: /CN=A919F0DA/serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Certificate serial: 2402 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft Manifest number: 602D Signing time: Sun 20 Jul 2025 14:15:20 +0000 Manifest this update: Sun 20 Jul 2025 14:15:19 +0000 Manifest next update: Sun 27 Jul 2025 14:15:19 +0000 Files and hashes: 1: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl (hash: XgS50KqRL8R6nnPqYxGvgCaaU8uGk5XVuJBIgk+YOuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9218 (0x2402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Validity Not Before: Jul 20 14:15:19 2025 GMT Not After : Jul 27 14:15:19 2025 GMT Subject: CN=687cf9f7-b787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:77:b5:f0:2e:13:f5:ad:c7:41:5d:fe:43:f1: 6a:b3:3c:47:6a:d0:60:9c:17:93:3c:fa:a9:4e:89: 3f:6e:0e:79:23:40:df:27:62:60:82:6d:76:aa:7c: 43:aa:4f:0d:14:ab:f2:de:d0:42:1f:1e:4a:72:5c: 7a:2b:62:1b:d0:28:fd:99:a3:c4:dc:11:61:c5:1e: 65:6c:71:0c:f8:96:2a:74:07:29:91:13:a7:46:21: 37:e4:fd:76:9a:37:33:83:9c:21:01:71:11:d1:80: bb:f8:0a:89:08:18:82:d1:42:ad:4c:ab:38:5f:f2: c9:92:0b:b6:87:98:dd:d1:7d:f1:ac:0c:c3:75:20: 3c:34:01:8d:de:d3:df:ae:bd:1c:ef:46:e9:79:a7: 98:be:b1:d9:db:01:d7:cb:46:12:44:f2:89:b5:58: 1e:5d:49:43:38:b6:82:ac:4c:ea:8d:0c:e2:39:f0: 0c:ae:bc:e7:f1:07:a3:b5:1b:c7:07:f9:1f:6c:8e: 76:6f:e7:04:32:be:6d:e4:b4:8b:d2:85:60:c6:8a: 2d:20:04:e9:b1:34:a1:da:55:83:12:5f:7c:57:8e: 30:c8:4b:eb:4a:69:29:ab:c5:b8:73:33:a4:1f:d8: b5:40:8e:3d:90:cc:f6:e4:40:b8:85:09:01:cd:89: 65:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E0:1F:6D:28:C8:99:FB:E3:A2:4B:D5:0F:84:5D:B1:DD:F4:84:C5 X509v3 Authority Key Identifier: keyid:3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:63:de:ee:ff:79:f4:69:e9:fc:57:33:75:6a:f0:c0:87:be: 58:b0:ae:86:c7:1b:c5:ec:22:36:6f:e8:4e:83:9e:ad:e2:27: 29:eb:bd:93:c9:a6:8a:fa:52:83:24:de:58:02:68:ba:5a:fc: 2d:26:47:05:0b:27:8e:16:0a:ea:23:9c:89:90:92:02:65:5d: e1:17:4e:31:1d:6d:78:af:87:71:cb:19:15:be:46:a4:7f:28: 66:56:1d:97:9a:61:17:cb:8f:3f:db:18:6a:43:d8:77:6c:3c: a4:8f:b7:c5:43:03:2a:54:85:2c:5c:6c:73:c8:32:ba:50:37: a3:58:94:43:a7:67:af:ce:64:58:43:88:72:70:bd:0c:00:06: 71:dc:76:8b:7a:a3:83:4c:86:5e:5d:dd:f5:db:e2:73:f2:d7: 58:84:6a:f4:cc:d0:70:61:c5:c3:42:97:73:29:f7:7d:ca:1a: 30:82:71:a1:a9:33:4b:fb:c7:02:ff:c3:22:a2:ff:34:c7:98: 61:a8:4f:2d:72:b8:d4:83:c0:9f:37:eb:6e:3a:14:76:16:26: f6:e2:47:12:86:66:f0:7f:0b:c7:5f:8b:cb:1b:cf:c4:d7:f1: f8:90:98:08:b4:7b:b2:e2:39:a7:f9:60:a3:89:bc:29:6d:02: 1e:cf:c1:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNBODMwRDQzRjM1OTQ0RkZCMjg2MDFEMzMzMzAyMEFD M0MzMTkyNDEwHhcNMjUwNzIwMTQxNTE5WhcNMjUwNzI3MTQxNTE5WjAYMRYwFAYD VQQDEw02ODdjZjlmNy1iNzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHe18C4T9a3HQV3+Q/FqszxHatBgnBeTPPqpTok/bg55I0DfJ2Jggm12qnxD qk8NFKvy3tBCHx5Kclx6K2Ib0Cj9maPE3BFhxR5lbHEM+JYqdAcpkROnRiE35P12 mjczg5whAXER0YC7+AqJCBiC0UKtTKs4X/LJkgu2h5jd0X3xrAzDdSA8NAGN3tPf rr0c70bpeaeYvrHZ2wHXy0YSRPKJtVgeXUlDOLaCrEzqjQziOfAMrrzn8QejtRvH B/kfbI52b+cEMr5t5LSL0oVgxootIATpsTSh2lWDEl98V44wyEvrSmkpq8W4czOk H9i1QI49kMz25EC4hQkBzYllcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7gH20o yJn746JL1Q+EXbHd9ITFMB8GA1UdIwQYMBaAFDqDDUPzWUT/soYB0zMwIKw8MZJB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQLXloZ0hUTXpBZ3JEd3hr a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09vTU5RX05aUlAteWhnSFRNekFnckR3eGtrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS9GQzYxRTAwODFENjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQ LXloZ0hUTXpBZ3JEd3hra0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPY97u/3n0aen8VzN1avDAh75YsK6GxxvF7CI2b+hOg56t4icp672T yaaK+lKDJN5YAmi6WvwtJkcFCyeOFgrqI5yJkJICZV3hF04xHW14r4dxyxkVvkak fyhmVh2XmmEXy48/2xhqQ9h3bDykj7fFQwMqVIUsXGxzyDK6UDejWJRDp2evzmRY Q4hycL0MAAZx3HaLeqODTIZeXd312+Jz8tdYhGr0zNBwYcXDQpdzKfd9yhowgnGh qTNL+8cC/8Miov80x5hhqE8tcrjUg8CfN+tuOhR2Fib24kcShmbwfwvHX4vLG8/E 1/H4kJgItHuy4jmn+WCjibwpbQIez8EO -----END CERTIFICATE-----Generated at Mon Jul 21 02:07:44 2025 by rpki-client