$ rpki-client -vvf rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft File: OIgNuTaszJvXTT2434iHsyjleI0.mft (raw, json) Hash identifier: cYSg+0mscJpR1bE9TzEOAvmqXvGT48Z9zJRvqxCfC2Y= Subject key identifier: DB:77:25:3A:02:37:93:16:3A:12:62:8A:BE:1A:23:C8:76:39:27:40 Authority key identifier: 38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D Certificate issuer: /CN=A912E411/serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Certificate serial: 08A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft Manifest number: 1481 Signing time: Wed 02 Jul 2025 19:01:02 +0000 Manifest this update: Wed 02 Jul 2025 19:01:01 +0000 Manifest next update: Wed 09 Jul 2025 19:01:01 +0000 Files and hashes: 1: OIgNuTaszJvXTT2434iHsyjleI0.crl (hash: BZ9qjL1UxLA1QWXY8t8vSSGG5KBKGaSCU5Zswg5643E=) 2: F6EC251224E711F087B2F571C4F9AE02.roa (hash: ixwNvaFcfk2na9cvy/T/P4B71LV0FaS6LsHWYtDlPXs=) 3: C766E398C0EE11EA94A1F146C4F9AE02.roa (hash: 4Kv7xQwln4PVRYcYiLH9p6kQ8sftutG3ICgl5f6YZnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2213 (0x8a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E411, serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Validity Not Before: Jul 2 19:01:01 2025 GMT Not After : Jul 9 19:01:01 2025 GMT Subject: CN=686581ee-d6c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:93:c3:e7:a1:9e:0e:e0:ea:16:c3:95:be:91: da:d1:72:e3:ab:ff:4f:fd:63:e3:2d:dd:1c:7e:a6: b9:66:21:a7:7d:bf:e9:3c:be:ac:ed:b4:32:7e:58: 41:3d:38:b1:54:5d:56:56:c4:21:fb:89:94:d9:f1: 0d:70:a4:cc:5e:df:e5:1e:e1:30:e2:47:cc:1b:ca: a9:78:38:36:65:2f:58:44:09:a9:3c:7e:25:cd:6d: a6:c1:95:bf:44:d3:46:a7:56:ed:77:21:07:39:5d: d7:c0:27:0b:53:5e:71:a2:47:ba:3d:8b:28:43:1d: d5:4a:fc:78:63:5d:d8:7c:3a:34:bd:9d:79:ab:d4: 00:fe:e5:09:58:f1:cb:63:e9:48:b5:b9:37:a5:2e: 7d:36:e5:7c:31:67:d8:8e:96:46:37:97:b3:42:f6: 4b:70:e5:ba:96:73:a4:29:e6:2a:c9:ff:ef:f5:c0: 97:d6:ae:10:a4:50:a7:5f:55:4a:e3:cc:08:b7:cd: cf:fd:ad:b7:e8:a3:e0:af:29:26:0a:8a:25:90:91: c2:1e:9b:6d:20:8c:8b:6f:38:6f:8e:bd:b2:1e:cf: df:c7:9c:8a:03:fa:94:b2:8c:9f:f2:5e:d3:4b:37: e8:11:fa:05:82:c3:39:3f:15:4e:a5:64:f7:59:6b: 7b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:77:25:3A:02:37:93:16:3A:12:62:8A:BE:1A:23:C8:76:39:27:40 X509v3 Authority Key Identifier: keyid:38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:06:11:5b:a8:ff:d8:40:63:cb:8d:4d:96:11:c7:64:91:25: c4:74:64:a2:07:b3:f3:3b:c9:e0:b1:1e:89:06:eb:f5:70:73: f6:79:d7:a1:97:55:75:9c:70:30:24:9a:b1:22:ae:58:da:2c: 11:c7:40:20:96:c0:ea:7c:3f:43:84:eb:38:22:2d:8c:58:1d: 26:54:0e:be:7d:c3:5c:44:49:e8:4f:d6:68:e8:3a:43:e8:7b: 51:ef:28:f6:6d:a3:80:a8:4e:6d:61:44:ad:bc:73:f1:8d:f4: 2a:7d:e8:f7:76:0f:60:02:13:58:2c:1e:13:17:e2:ef:93:28: a7:3e:3d:93:e8:1a:ec:db:de:e0:a0:d6:d2:fd:12:3d:97:18: 3e:80:fb:fd:59:74:91:2f:38:ec:92:7f:17:de:e5:e7:53:4a: 5c:45:53:25:5c:15:11:c4:1d:30:ce:23:90:6a:ed:54:c1:52: 11:24:7e:19:89:2b:60:f5:16:4d:c4:f1:d9:d1:b8:9a:a9:6f: 56:97:95:4d:a2:19:bb:7c:8c:73:c5:75:c8:10:6c:fd:79:d6: 51:9f:6b:ea:96:81:d5:b9:00:0f:99:7d:b8:5c:77:97:b5:85: a0:09:4e:fe:e9:68:0e:f6:61:43:4f:b3:30:b1:1e:49:ea:c4: c4:e5:e1:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU0MTExMTAvBgNVBAUTKDM4ODgwREI5MzZBQ0NDOUJENzREM0RCOERGODg4N0Iz MjhFNTc4OEQwHhcNMjUwNzAyMTkwMTAxWhcNMjUwNzA5MTkwMTAxWjAYMRYwFAYD VQQDEw02ODY1ODFlZS1kNmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZPD56GeDuDqFsOVvpHa0XLjq/9P/WPjLd0cfqa5ZiGnfb/pPL6s7bQyflhB PTixVF1WVsQh+4mU2fENcKTMXt/lHuEw4kfMG8qpeDg2ZS9YRAmpPH4lzW2mwZW/ RNNGp1btdyEHOV3XwCcLU15xoke6PYsoQx3VSvx4Y13YfDo0vZ15q9QA/uUJWPHL Y+lItbk3pS59NuV8MWfYjpZGN5ezQvZLcOW6lnOkKeYqyf/v9cCX1q4QpFCnX1VK 48wIt83P/a236KPgrykmCoolkJHCHpttIIyLbzhvjr2yHs/fx5yKA/qUsoyf8l7T SzfoEfoFgsM5PxVOpWT3WWt7swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNt3JToC N5MWOhJiir4aI8h2OSdAMB8GA1UdIwQYMBaAFDiIDbk2rMyb1009uN+Ih7Mo5XiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTQxMS9GMEIwMEVCNDE5 MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pKdlhUVDI0MzRpSHN5amxl STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZ051VGFzekp2WFRUMjQzNGlIc3lqbGVJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTQxMS9GMEIwMEVCNDE5MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pK dlhUVDI0MzRpSHN5amxlSTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCBhFbqP/YQGPLjU2WEcdkkSXEdGSiB7PzO8ngsR6JBuv1cHP2edeh l1V1nHAwJJqxIq5Y2iwRx0AglsDqfD9DhOs4Ii2MWB0mVA6+fcNcREnoT9Zo6DpD 6HtR7yj2baOAqE5tYUStvHPxjfQqfej3dg9gAhNYLB4TF+LvkyinPj2T6Brs297g oNbS/RI9lxg+gPv9WXSRLzjskn8X3uXnU0pcRVMlXBURxB0wziOQau1UwVIRJH4Z iStg9RZNxPHZ0biaqW9Wl5VNohm7fIxzxXXIEGz9edZRn2vqloHVuQAPmX24XHeX tYWgCU7+6WgO9mFDT7MwsR5J6sTE5eEh -----END CERTIFICATE-----Generated at Fri Jul 4 16:23:07 2025 by rpki-client