$ rpki-client -vvf rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft File: OOHW4K0CW7AuZUgYPvKoIABQo2U.mft (raw, json) Hash identifier: L+BPyv7cvBfKMiku+9Zsz939nc42jYgoVDeY1BxczRo= Subject key identifier: 1F:18:42:11:3E:7B:32:0B:F1:BD:90:B3:CD:DE:D2:B1:A3:8E:54:B3 Authority key identifier: 38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 Certificate issuer: /CN=A9135EC4/serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Certificate serial: 349F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft Manifest number: 349B Signing time: Sat 28 Jun 2025 14:30:29 +0000 Manifest this update: Sat 28 Jun 2025 14:30:28 +0000 Manifest next update: Sat 05 Jul 2025 14:30:28 +0000 Files and hashes: 1: OOHW4K0CW7AuZUgYPvKoIABQo2U.crl (hash: A1Vvy00jdk+MZCRR6N/LLbT8XmctF3y2k2bAzdcVfzw=) 2: E89AA63C3A3411EDA5928760C4F9AE02.roa (hash: 05APYQJe4DJPEEjidbXlOzb6+S6p4c1Z55iGoGM7Isg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 14:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13471 (0x349f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135EC4, serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Validity Not Before: Jun 28 14:30:28 2025 GMT Not After : Jul 5 14:30:28 2025 GMT Subject: CN=685ffc84-f2ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:67:cf:98:6e:98:ff:e3:1a:ea:89:bb:59:a8: 82:a7:44:5b:3c:92:10:7a:8f:7a:cb:83:e2:34:6d: 96:69:99:5d:a6:0c:05:f4:1b:9b:cf:ae:f5:83:a8: 27:4d:7d:10:86:78:03:ab:7d:ed:ed:44:bf:62:a4: 68:09:e8:cb:43:48:1e:32:49:bd:51:3c:d1:fe:25: 7f:f1:89:d4:18:ef:13:f7:eb:20:00:2c:ff:63:ea: 92:fd:3a:4b:6f:ed:d6:b0:47:b1:bc:c6:42:1e:8b: 85:a5:4c:27:5c:96:74:2d:23:0a:f0:4c:a1:f7:17: a6:50:52:5a:f8:1f:05:e1:ac:f5:5d:bc:65:a6:51: d4:ae:5a:43:19:10:fe:bb:19:16:b7:a7:4b:db:eb: 48:48:61:53:87:97:09:b9:a4:bc:7e:c6:68:ac:9c: e5:c4:4d:2e:34:db:71:95:32:b4:53:8a:12:68:62: f1:1d:65:6a:94:77:55:f5:83:c7:60:81:3f:4d:d8: d5:5c:1e:98:33:52:b6:58:c3:91:12:3e:65:dd:2b: 37:50:2b:4b:ca:cd:60:7e:6b:2a:58:32:49:8f:50: 21:e5:f7:1a:71:f9:a8:99:44:66:c9:e9:79:f0:9f: 16:d1:59:e8:fe:c1:e0:51:6f:73:c2:1e:60:bf:f0: cb:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:18:42:11:3E:7B:32:0B:F1:BD:90:B3:CD:DE:D2:B1:A3:8E:54:B3 X509v3 Authority Key Identifier: keyid:38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:f3:14:1b:87:ec:dd:da:76:f0:bf:f5:77:56:e5:e1:23:ba: a7:26:02:83:dd:c9:7d:51:36:12:07:07:ab:12:8b:09:bb:54: e3:9e:d5:68:ff:65:4d:74:e7:f5:24:9a:83:e4:ac:71:de:4e: 05:dc:a5:d3:ec:f0:fa:6f:e3:81:34:7d:25:c4:dc:d7:02:f1: a6:51:75:89:cf:1f:b9:0e:5e:56:4c:3a:b3:68:29:12:b2:7c: 84:6b:2d:a4:60:65:e1:36:c7:90:80:e7:dc:a5:19:0a:a7:91: 1b:e6:6f:53:dd:d9:ad:ef:46:ef:ea:03:37:7b:56:9c:db:c7: 82:ff:be:8a:07:16:93:25:e3:5e:de:bf:19:26:7d:0e:1f:4a: 40:b1:c5:aa:4b:14:43:62:8e:e1:82:21:14:23:ef:42:1f:43: 54:38:1a:eb:c5:20:2a:b6:78:63:72:cb:ef:b6:17:e8:18:ef: 8d:74:01:1e:01:4b:23:ec:0d:4f:8c:21:04:80:1d:78:dd:be: a1:1b:1f:81:b9:37:6c:9d:fb:11:81:60:e7:8f:5c:b6:97:e6: 1e:75:e4:5b:cf:7a:70:51:55:31:0c:ee:13:ce:f0:94:d9:7d: 50:41:58:2c:31:af:71:3f:bd:d1:af:89:cc:3b:c1:e0:b8:01: a5:c8:36:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVFQzQxMTAvBgNVBAUTKDM4RTFENkUwQUQwMjVCQjAyRTY1NDgxODNFRjJBODIw MDA1MEEzNjUwHhcNMjUwNjI4MTQzMDI4WhcNMjUwNzA1MTQzMDI4WjAYMRYwFAYD VQQDEw02ODVmZmM4NC1mMmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02fPmG6Y/+Ma6om7WaiCp0RbPJIQeo96y4PiNG2WaZldpgwF9Bubz671g6gn TX0QhngDq33t7US/YqRoCejLQ0geMkm9UTzR/iV/8YnUGO8T9+sgACz/Y+qS/TpL b+3WsEexvMZCHouFpUwnXJZ0LSMK8Eyh9xemUFJa+B8F4az1XbxlplHUrlpDGRD+ uxkWt6dL2+tISGFTh5cJuaS8fsZorJzlxE0uNNtxlTK0U4oSaGLxHWVqlHdV9YPH YIE/TdjVXB6YM1K2WMOREj5l3Ss3UCtLys1gfmsqWDJJj1Ah5fcacfmomURmyel5 8J8W0Vno/sHgUW9zwh5gv/DLKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8YQhE+ ezIL8b2Qs83e0rGjjlSzMB8GA1UdIwQYMBaAFDjh1uCtAluwLmVIGD7yqCAAUKNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUVDNC84QTlBODM2ODFE ODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3QXVaVWdZUHZLb0lBQlFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09PSFc0SzBDVzdBdVpVZ1lQdktvSUFCUW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUVDNC84QTlBODM2ODFEODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3 QXVaVWdZUHZLb0lBQlFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ8xQbh+zd2nbwv/V3VuXhI7qnJgKD3cl9UTYSBwerEosJu1TjntVo /2VNdOf1JJqD5Kxx3k4F3KXT7PD6b+OBNH0lxNzXAvGmUXWJzx+5Dl5WTDqzaCkS snyEay2kYGXhNseQgOfcpRkKp5Eb5m9T3dmt70bv6gM3e1ac28eC/76KBxaTJeNe 3r8ZJn0OH0pAscWqSxRDYo7hgiEUI+9CH0NUOBrrxSAqtnhjcsvvthfoGO+NdAEe AUsj7A1PjCEEgB143b6hGx+BuTdsnfsRgWDnj1y2l+YedeRbz3pwUVUxDO4TzvCU 2X1QQVgsMa9xP73Rr4nMO8HguAGlyDbZ -----END CERTIFICATE-----Generated at Sun Jun 29 15:15:29 2025 by rpki-client