$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft File: Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft (raw, json) Hash identifier: 8pD6ulss6VWf47S5c2ZRw4MsolhLWZqFKKLpybR2qOs= Subject key identifier: D6:78:0F:51:0E:30:60:6D:BE:4B:34:FB:CD:B1:8E:6B:85:5A:F3:65 Authority key identifier: 3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C Certificate issuer: /CN=A914C4ED/serialNumber=3B3D6BA9FBEF424AFABFD2BA30C8B857D459F09C Certificate serial: 0330 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft Manifest number: 032A Signing time: Sat 23 Aug 2025 01:03:18 +0000 Manifest this update: Sat 23 Aug 2025 01:03:17 +0000 Manifest next update: Sat 30 Aug 2025 01:03:17 +0000 Files and hashes: 1: Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl (hash: 25vm7CiCghgfRDW9PPAeUhKb+HtImwMTfREvuLdmXO8=) 2: 03C06766DC1211EC80AE816DC4F9AE02.roa (hash: Utn78ATYCOJD2s8KH2tHbQkxop0M2VDIkapS9+XLIf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 816 (0x330) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=3B3D6BA9FBEF424AFABFD2BA30C8B857D459F09C Validity Not Before: Aug 23 01:03:17 2025 GMT Not After : Aug 30 01:03:17 2025 GMT Subject: CN=68a91356-cb03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b4:9d:77:d1:e6:6b:29:85:ce:85:10:c3:04: 81:29:6c:62:16:89:ec:de:76:a0:28:e1:62:84:1d: 86:8c:9b:3a:90:27:d9:ac:63:9f:b0:3b:8f:78:8d: b3:e5:d6:cd:c7:f9:6a:ee:52:05:45:91:1b:c1:23: 71:88:e8:39:3b:3d:cf:97:28:46:96:4f:37:88:b7: 70:6d:b7:f5:63:21:7c:9d:83:0b:d9:95:df:3f:d9: a9:d7:1c:d1:0c:5f:e2:b1:44:0b:11:94:62:b1:87: c5:be:9f:65:e8:20:e1:af:19:19:78:1e:e9:55:01: 16:19:80:72:7f:d8:00:fa:ee:c0:d7:23:f7:d7:ab: 46:bb:b1:37:a0:d9:8d:a0:fb:e8:0e:59:74:fe:b6: 8b:25:67:62:97:25:ed:13:ce:fe:54:a5:0a:74:41: 6f:00:89:8c:88:15:3c:5a:35:45:c9:53:9a:08:08: 62:d6:58:cf:b3:cb:1c:28:9f:8a:9a:3c:74:96:6a: a8:e7:99:e4:73:22:48:d4:3d:79:1c:bd:53:d4:94: af:9b:b8:30:e2:17:67:8f:56:17:e7:0f:71:d8:d4: b4:bf:e4:68:5b:13:80:5b:1c:0e:b5:40:cc:e8:19: 70:eb:e0:c5:df:16:50:31:c0:50:65:05:d7:09:35: 5d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:78:0F:51:0E:30:60:6D:BE:4B:34:FB:CD:B1:8E:6B:85:5A:F3:65 X509v3 Authority Key Identifier: keyid:3B:3D:6B:A9:FB:EF:42:4A:FA:BF:D2:BA:30:C8:B8:57:D4:59:F0:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/B35EB50CDBF811EC93240E5DC4F9AE02/Oz1rqfvvQkr6v9K6MMi4V9RZ8Jw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:5e:54:0c:1a:cf:af:a6:ae:d8:14:26:a8:49:bc:62:2d:83: 9c:79:93:0c:25:fd:a6:f4:a0:a4:bd:66:00:c1:59:5a:bb:70: 4c:48:04:3e:8a:3d:2d:a7:2c:44:b6:9b:19:ae:8c:c0:51:37: de:fe:77:95:ab:a5:e6:6e:24:da:ba:6c:5f:69:4b:cd:4c:25: 68:95:ea:3e:4d:90:81:92:2f:bf:b7:65:5d:a4:39:28:d5:58: 94:4d:f8:be:9b:b6:5c:c8:d2:c6:19:10:8e:3b:48:4f:82:cc: 79:50:ff:78:dc:f7:a2:bd:f4:8e:d8:d3:60:09:59:7b:b8:8c: 08:cb:77:05:bb:8a:fd:f4:9e:8e:55:c6:fa:86:0d:e6:da:35: e2:ee:8d:fc:4f:89:56:1d:a4:67:64:ec:ce:61:db:f4:b3:ac: 3f:8c:b1:c8:f4:af:7b:e8:12:c4:6f:eb:c9:b1:3d:17:01:a7: 04:a3:9d:80:dc:e9:b3:21:ab:90:82:1a:0c:9f:7d:18:54:48: 22:4c:5e:d1:50:24:0d:80:7c:36:9d:9e:72:c1:72:18:40:ef: da:cb:b2:49:1f:00:25:53:bd:ae:23:6c:5f:40:23:0d:20:80: 97:30:ed:a2:04:3b:e5:25:9d:39:73:ce:3f:18:f7:ab:46:73: 43:8a:f2:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKDNCM0Q2QkE5RkJFRjQyNEFGQUJGRDJCQTMwQzhCODU3 RDQ1OUYwOUMwHhcNMjUwODIzMDEwMzE3WhcNMjUwODMwMDEwMzE3WjAYMRYwFAYD VQQDEw02OGE5MTM1Ni1jYjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLSdd9HmaymFzoUQwwSBKWxiFons3nagKOFihB2GjJs6kCfZrGOfsDuPeI2z 5dbNx/lq7lIFRZEbwSNxiOg5Oz3PlyhGlk83iLdwbbf1YyF8nYML2ZXfP9mp1xzR DF/isUQLEZRisYfFvp9l6CDhrxkZeB7pVQEWGYByf9gA+u7A1yP316tGu7E3oNmN oPvoDll0/raLJWdilyXtE87+VKUKdEFvAImMiBU8WjVFyVOaCAhi1ljPs8scKJ+K mjx0lmqo55nkcyJI1D15HL1T1JSvm7gw4hdnj1YX5w9x2NS0v+RoWxOAWxwOtUDM 6Blw6+DF3xZQMcBQZQXXCTVdCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZ4D1EO MGBtvks0+82xjmuFWvNlMB8GA1UdIwQYMBaAFDs9a6n770JK+r/SujDIuFfUWfCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC9CMzVFQjUwQ0RC RjgxMUVDOTMyNDBFNURDNEY5QUUwMi9PejFycWZ2dlFrcjZ2OUs2TU1pNFY5Ulo4 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL096MXJxZnZ2UWtyNnY5SzZNTWk0VjlSWjhKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC9CMzVFQjUwQ0RCRjgxMUVDOTMyNDBFNURDNEY5QUUwMi9PejFycWZ2dlFr cjZ2OUs2TU1pNFY5Ulo4SncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdXlQMGs+vpq7YFCaoSbxiLYOceZMMJf2m9KCkvWYAwVlau3BMSAQ+ ij0tpyxEtpsZrozAUTfe/neVq6XmbiTaumxfaUvNTCVoleo+TZCBki+/t2VdpDko 1ViUTfi+m7ZcyNLGGRCOO0hPgsx5UP943PeivfSO2NNgCVl7uIwIy3cFu4r99J6O Vcb6hg3m2jXi7o38T4lWHaRnZOzOYdv0s6w/jLHI9K976BLEb+vJsT0XAacEo52A 3OmzIauQghoMn30YVEgiTF7RUCQNgHw2nZ5ywXIYQO/ay7JJHwAlU72uI2xfQCMN IICXMO2iBDvlJZ05c84/GPerRnNDivK/ -----END CERTIFICATE-----Generated at Sat Aug 23 20:35:36 2025 by rpki-client