$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: AVKSLDMcVlJQt/5P8z2D11PqLnISwPIPeRSrYA5uU0E= Subject key identifier: BF:A5:DB:A1:0A:63:DE:CA:67:B2:15:56:3C:FE:9A:AA:10:52:C7:8E Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 0820 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 0819 Signing time: Wed 02 Jul 2025 21:08:08 +0000 Manifest this update: Wed 02 Jul 2025 21:08:08 +0000 Manifest next update: Wed 09 Jul 2025 21:08:08 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: UZUcSMcVqq2Lzb2vYsX17YZ6iWm+P+oxLbkyO7xSuVE=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: OwVRnVKX5TIRRxRa7tYPZCkquxRI/+jnc5rYmXmYkKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2080 (0x820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: Jul 2 21:08:08 2025 GMT Not After : Jul 9 21:08:08 2025 GMT Subject: CN=68659fb8-51e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3c:db:82:a3:56:a7:0e:a2:f4:eb:09:58:b8: 3e:a2:3e:4d:e5:1a:90:b6:19:44:25:b4:df:bd:6e: 90:ad:27:9b:c1:b4:53:10:ae:de:f3:be:18:37:23: 9f:8f:a5:eb:97:56:2f:4c:4b:87:88:31:fe:3f:95: 11:50:80:26:71:e7:67:09:3f:80:8b:79:10:22:6f: 93:0a:c1:27:c2:a6:96:a7:0d:f8:09:18:41:42:64: 2c:e7:b4:f0:d9:e2:3f:c7:36:56:a8:0e:b9:1d:df: 75:65:20:3a:e1:7a:ad:5b:55:28:7c:89:5e:37:a3: 41:e0:a1:c8:d6:59:0d:6d:cf:28:37:2d:8d:48:72: 27:3e:61:25:e7:2a:b2:8b:52:34:b8:98:ec:1a:3a: dd:a7:2d:16:41:87:6f:b5:93:13:12:fa:8e:f6:8c: 01:2d:a0:0f:db:bb:66:3a:5d:92:16:70:61:c3:1f: ac:7a:9a:02:57:04:4f:d7:81:21:f7:a0:31:60:8f: 59:00:84:d0:10:83:18:14:06:24:4f:3b:c2:1a:22: be:39:f6:32:3d:99:ce:19:3b:2e:b1:4e:49:fc:ce: b8:87:4e:69:1a:b7:3a:b3:f3:85:71:2d:db:b6:06: 1b:f7:0c:c1:f8:33:71:11:1d:79:b0:51:59:08:02: 3b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A5:DB:A1:0A:63:DE:CA:67:B2:15:56:3C:FE:9A:AA:10:52:C7:8E X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:6c:8b:23:56:82:71:06:3a:82:c4:43:78:e5:1d:02:f9:cf: 03:c3:91:cb:57:e3:7c:f0:33:6f:3f:53:ff:2b:36:aa:d5:27: 34:ad:f9:9d:57:06:72:6e:8f:ae:21:1c:69:04:96:3e:27:be: 85:85:d0:b4:dd:ef:e9:dc:03:06:88:22:df:8f:c4:82:d3:39: 5f:a2:75:55:d2:91:ce:a9:eb:c8:a8:69:55:9d:cf:d0:1b:12: ff:ea:ce:38:95:d0:c7:8f:76:41:bd:4a:66:d5:03:39:46:10: 03:5c:49:1c:01:24:1d:85:dc:8e:b3:14:08:c0:2e:3d:d1:8a: 39:b2:9d:92:4b:f7:28:75:ee:fd:10:e4:82:e0:3a:ee:71:af: f1:eb:b1:7d:7b:7a:0c:aa:b3:d8:53:de:c7:89:14:70:9d:77: e8:b4:e1:f9:a6:62:ee:55:82:3f:69:c5:b9:67:04:31:bf:d1: e3:b9:9c:bc:05:68:16:63:63:d7:fc:3a:b9:ac:75:cc:78:f3: 0f:5c:9b:74:7a:14:79:da:f7:59:ac:b7:a1:64:84:11:ca:c2: ed:0e:ba:a0:52:ea:11:ed:6d:87:1d:62:f0:20:77:6b:1c:8c: 2a:71:bd:4e:67:fd:cf:03:7d:f7:8f:0d:31:52:e5:56:4a:64: c7:f0:48:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjUwNzAyMjEwODA4WhcNMjUwNzA5MjEwODA4WjAYMRYwFAYD VQQDEw02ODY1OWZiOC01MWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzzbgqNWpw6i9OsJWLg+oj5N5RqQthlEJbTfvW6QrSebwbRTEK7e874YNyOf j6Xrl1YvTEuHiDH+P5URUIAmcednCT+Ai3kQIm+TCsEnwqaWpw34CRhBQmQs57Tw 2eI/xzZWqA65Hd91ZSA64XqtW1UofIleN6NB4KHI1lkNbc8oNy2NSHInPmEl5yqy i1I0uJjsGjrdpy0WQYdvtZMTEvqO9owBLaAP27tmOl2SFnBhwx+sepoCVwRP14Eh 96AxYI9ZAITQEIMYFAYkTzvCGiK+OfYyPZnOGTsusU5J/M64h05pGrc6s/OFcS3b tgYb9wzB+DNxER15sFFZCAI7YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+l26EK Y97KZ7IVVjz+mqoQUseOMB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPbIsjVoJxBjqCxEN45R0C+c8Dw5HLV+N88DNvP1P/Kzaq1Sc0rfmd VwZybo+uIRxpBJY+J76FhdC03e/p3AMGiCLfj8SC0zlfonVV0pHOqevIqGlVnc/Q GxL/6s44ldDHj3ZBvUpm1QM5RhADXEkcASQdhdyOsxQIwC490Yo5sp2SS/code79 EOSC4Druca/x67F9e3oMqrPYU97HiRRwnXfotOH5pmLuVYI/acW5ZwQxv9HjuZy8 BWgWY2PX/Dq5rHXMePMPXJt0ehR52vdZrLehZIQRysLtDrqgUuoR7W2HHWLwIHdr HIwqcb1OZ/3PA333jw0xUuVWSmTH8EiT -----END CERTIFICATE-----Generated at Thu Jul 3 03:31:08 2025 by rpki-client