$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft File: Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft (raw, json) Hash identifier: upP6K7fI8hT1IO0KpbAW0iftli13dg+H13VZjGgRZKE= Subject key identifier: 93:56:AC:4E:FF:39:E0:CF:8A:33:3B:D9:2A:96:67:4C:29:D8:DE:9E Authority key identifier: 3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C Certificate issuer: /CN=A914C4ED/serialNumber=3B3D6BA9FBEF424AFABFD2BA30C8B857D459F09C Certificate serial: 0316 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft Manifest number: 0310 Signing time: Thu 03 Jul 2025 01:15:11 +0000 Manifest this update: Thu 03 Jul 2025 01:15:10 +0000 Manifest next update: Thu 10 Jul 2025 01:15:10 +0000 Files and hashes: 1: Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl (hash: 3Ef/jamGZcdkf86VTozcevv5XXnUoOuULeZolR7rp4k=) 2: 03C06766DC1211EC80AE816DC4F9AE02.roa (hash: Utn78ATYCOJD2s8KH2tHbQkxop0M2VDIkapS9+XLIf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 790 (0x316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=3B3D6BA9FBEF424AFABFD2BA30C8B857D459F09C Validity Not Before: Jul 3 01:15:10 2025 GMT Not After : Jul 10 01:15:10 2025 GMT Subject: CN=6865d99f-2b70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b2:26:13:be:5b:a9:2e:37:0b:94:50:f1:82: be:fa:38:47:4c:1c:b4:16:11:c3:9e:2f:2f:40:32: 7b:3b:5a:1c:f7:37:a2:20:ac:7c:da:56:11:5a:96: a2:76:ef:e0:ca:5a:a0:c4:22:1f:1d:2c:25:1e:b3: dd:d2:42:11:68:d0:9b:39:8d:e9:b2:a2:31:56:d2: 68:9d:52:73:58:39:85:35:5f:d3:56:26:8a:26:b3: 29:38:d5:89:07:83:75:cf:d2:88:c6:70:a2:d6:68: 76:93:c3:a1:ae:bf:d5:c4:4c:e3:8b:ea:c3:1b:ef: aa:c1:e1:dd:5a:8c:0d:8e:fc:63:f8:7b:70:2d:a9: 0e:cb:e8:19:dd:4e:13:dd:52:8b:bf:02:a9:e2:21: bc:3f:87:e4:9a:7a:f4:8c:a7:87:6a:85:59:98:5b: 08:ef:67:20:e1:37:f9:1c:b5:94:28:56:88:00:43: 5f:a3:7b:c7:83:00:43:6b:93:bb:6e:de:6f:c1:79: dc:e5:49:f2:2f:17:4a:c9:d1:23:62:e0:e8:c6:a1: 45:9a:29:de:06:c0:97:47:da:a4:73:ff:be:3a:08: 89:fe:59:83:62:86:d3:04:6a:00:b2:44:e0:4d:a9: 62:c0:ac:9f:20:1f:6a:ef:d2:f7:bf:72:62:3d:7c: cb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:56:AC:4E:FF:39:E0:CF:8A:33:3B:D9:2A:96:67:4C:29:D8:DE:9E X509v3 Authority Key Identifier: keyid:3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:b3:4d:36:c5:96:9b:13:55:e6:fe:fa:dd:a5:72:8b:4e:fb: 14:85:05:7a:4c:35:e8:57:db:fa:d9:7f:76:51:fd:19:98:3a: 9a:b7:c0:57:fd:a9:30:3b:72:1a:2e:8e:aa:68:ef:02:71:d8: 4c:8c:f9:64:3b:de:c7:6c:69:fb:92:a0:b8:ea:1e:4a:be:1f: cd:8e:34:d8:24:61:af:5d:c7:95:59:4d:2b:b2:be:53:5a:36: 32:31:cd:69:79:ee:35:dd:24:01:45:36:a9:c9:3c:c9:24:00: b0:b8:f4:f2:5a:fe:c8:d3:15:61:77:a4:d9:32:a8:7a:ec:c3: a5:c6:07:56:56:fd:44:0e:d7:3f:66:81:5a:8e:3e:33:60:5c: 1b:6f:4f:8a:1c:5a:0a:be:c2:26:fb:91:24:b6:e8:20:48:00: c6:fe:50:de:ef:f7:ed:36:5c:db:f0:7f:4e:36:62:7a:47:a2: 83:e3:0a:4f:95:1c:16:5b:ca:8f:17:f3:6c:33:e7:c3:f7:8c: 78:65:0f:e3:70:30:72:ff:06:96:97:c8:cb:e5:2f:df:14:6f: 72:c9:01:72:9c:70:13:c3:26:f9:3c:e4:7c:72:a3:23:9c:af: 5f:ea:b0:3a:ba:5c:55:1d:68:d9:2c:2f:ea:f0:37:d6:74:08: 64:1c:21:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKDNCM0Q2QkE5RkJFRjQyNEFGQUJGRDJCQTMwQzhCODU3 RDQ1OUYwOUMwHhcNMjUwNzAzMDExNTEwWhcNMjUwNzEwMDExNTEwWjAYMRYwFAYD VQQDEw02ODY1ZDk5Zi0yYjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrImE75bqS43C5RQ8YK++jhHTBy0FhHDni8vQDJ7O1oc9zeiIKx82lYRWpai du/gylqgxCIfHSwlHrPd0kIRaNCbOY3psqIxVtJonVJzWDmFNV/TViaKJrMpONWJ B4N1z9KIxnCi1mh2k8Ohrr/VxEzji+rDG++qweHdWowNjvxj+HtwLakOy+gZ3U4T 3VKLvwKp4iG8P4fkmnr0jKeHaoVZmFsI72cg4Tf5HLWUKFaIAENfo3vHgwBDa5O7 bt5vwXnc5UnyLxdKydEjYuDoxqFFmineBsCXR9qkc/++OgiJ/lmDYobTBGoAskTg TaliwKyfIB9q79L3v3JiPXzLlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNWrE7/ OeDPijM72SqWZ0wp2N6eMB8GA1UdIwQYMBaAFDs9a6n770JK+r/SujDIuFfUWfCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC9CMzVFQjUwQ0RC RjgxMUVDOTMyNDBFNURDNEY5QUUwMi9PejFycWZ2dlFrcjZ2OUs2TU1pNFY5Ulo4 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL096MXJxZnZ2UWtyNnY5SzZNTWk0VjlSWjhKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC9CMzVFQjUwQ0RCRjgxMUVDOTMyNDBFNURDNEY5QUUwMi9PejFycWZ2dlFr cjZ2OUs2TU1pNFY5Ulo4SncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEs002xZabE1Xm/vrdpXKLTvsUhQV6TDXoV9v62X92Uf0ZmDqat8BX /akwO3IaLo6qaO8CcdhMjPlkO97HbGn7kqC46h5Kvh/NjjTYJGGvXceVWU0rsr5T WjYyMc1pee413SQBRTapyTzJJACwuPTyWv7I0xVhd6TZMqh67MOlxgdWVv1EDtc/ ZoFajj4zYFwbb0+KHFoKvsIm+5EktuggSADG/lDe7/ftNlzb8H9ONmJ6R6KD4wpP lRwWW8qPF/NsM+fD94x4ZQ/jcDBy/waWl8jL5S/fFG9yyQFynHATwyb5POR8cqMj nK9f6rA6ulxVHWjZLC/q8DfWdAhkHCFs -----END CERTIFICATE-----Generated at Thu Jul 3 11:28:47 2025 by rpki-client