$ rpki-client -vvf rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft File: oBoPBuMQs4EwEx14gpcL8WLdDWY.mft (raw, json) Hash identifier: ueN8Sw2NvlmEINVMNDT/bTS533J+q1rn+/coVEsYR28= Subject key identifier: 24:2C:EC:F1:10:D1:83:B5:29:3A:54:77:6E:C5:F0:04:A9:EB:F1:26 Authority key identifier: A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 Certificate issuer: /CN=A9150E55/serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Certificate serial: 0346 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft Manifest number: 0340 Signing time: Thu 03 Jul 2025 01:23:46 +0000 Manifest this update: Thu 03 Jul 2025 01:23:46 +0000 Manifest next update: Thu 10 Jul 2025 01:23:46 +0000 Files and hashes: 1: oBoPBuMQs4EwEx14gpcL8WLdDWY.crl (hash: NN1w6mK+6Ezt2gbiSKhUNCsaV+5kWghh/0ODeUnrggk=) 2: 2DC3DC54D54E11EF8C5B1651C4F9AE02.roa (hash: jj/VEZFojNzwFut6xQ2ddbaM/ffKwcFrBgOFEnS8TYI=) 3: 39952E50C6CB11ECB185E43EC4F9AE02.roa (hash: UriRXIOaFvm5u1qncQTi3IERwvU0QHA/1gyCNIPeCng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:23:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 838 (0x346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150E55, serialNumber=A01A0F06E310B38130131D7882970BF162DD0D66 Validity Not Before: Jul 3 01:23:46 2025 GMT Not After : Jul 10 01:23:46 2025 GMT Subject: CN=6865dba2-c1c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9f:b3:da:d4:5e:28:22:6d:70:22:a3:c5:3c: 51:c6:af:a6:f3:2e:b2:08:95:98:26:eb:c4:32:e3: 11:93:23:91:f4:46:44:45:cc:cb:d6:14:a6:d7:8f: 36:9f:04:ec:d3:14:2e:dc:87:b7:8e:d3:b7:a2:ea: 91:39:de:9c:c4:c7:b5:21:a4:56:b0:10:f7:9d:c8: 0e:47:83:38:51:b3:df:e6:f4:e4:1a:1e:cc:6a:b0: 8c:d2:80:e4:eb:a3:72:47:90:36:14:5a:7c:86:68: 32:cb:2a:88:56:e8:60:a7:dc:32:7f:aa:84:95:57: 0b:83:da:91:30:80:20:c1:ea:00:4a:2b:39:72:c3: 9a:54:2d:d9:a5:57:10:67:b9:30:df:4d:01:f1:0a: 53:ef:bd:06:fa:28:38:fd:43:ff:f0:a8:e5:f2:10: 1c:36:f9:72:d3:8d:6a:37:39:1c:1c:31:25:f5:56: 06:a9:c5:3f:ad:e4:c8:5b:f6:9a:3b:7f:23:be:4b: e3:c1:b1:10:a7:af:b7:00:9b:f0:ac:5a:bc:dd:62: 24:25:8c:5e:76:b1:fe:e7:4d:f0:07:14:05:50:e7: 4d:4a:9f:e3:57:43:0c:ae:e1:8b:d3:9e:fa:c7:6e: 6e:2a:46:38:a9:e9:fe:c8:b4:20:31:af:a7:bc:03: 76:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:2C:EC:F1:10:D1:83:B5:29:3A:54:77:6E:C5:F0:04:A9:EB:F1:26 X509v3 Authority Key Identifier: keyid:A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:79:ca:46:92:ca:c5:cb:a8:8e:a6:37:d4:97:44:90:f1:f7: 5a:a5:36:f8:b3:ab:8f:3c:6e:e2:b3:cc:10:6c:96:ab:98:d1: cc:3c:56:2e:97:5e:18:52:b9:1f:50:22:ac:6e:38:a3:87:e8: 8f:7f:b9:70:bc:7c:c0:d6:eb:df:19:4d:77:dc:61:8e:2c:8e: fc:eb:39:53:1a:13:c9:48:95:02:c1:72:bf:c6:40:3b:94:4a: a8:55:5e:e7:8b:48:48:07:27:de:35:a7:ee:f2:c5:71:0f:db: b8:00:ae:23:ae:d9:67:c7:cc:32:65:a0:10:b4:8e:dc:9a:cf: ff:e8:2f:5d:35:0e:55:c1:c3:d5:77:18:5a:f0:d6:4c:2c:4a: 55:62:4e:5c:7d:ef:cf:a4:30:48:e7:76:0b:bf:1b:26:d9:88: 8d:53:89:eb:88:97:5b:cd:a2:c7:86:44:eb:cc:6e:40:9a:2c: 87:1c:24:05:21:1d:0c:33:88:42:0b:51:df:25:63:d1:28:fd: 1e:9c:10:ca:4e:46:d5:71:f6:38:79:f8:11:5b:c3:4c:69:7b: 05:18:90:95:70:58:fc:fb:08:4a:65:6e:88:9f:cf:10:0b:af: 78:6b:9d:ff:e3:55:8d:13:4e:fd:ca:42:21:8c:06:0b:a8:5a: 51:da:61:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFNTUxMTAvBgNVBAUTKEEwMUEwRjA2RTMxMEIzODEzMDEzMUQ3ODgyOTcwQkYx NjJERDBENjYwHhcNMjUwNzAzMDEyMzQ2WhcNMjUwNzEwMDEyMzQ2WjAYMRYwFAYD VQQDEw02ODY1ZGJhMi1jMWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Z+z2tReKCJtcCKjxTxRxq+m8y6yCJWYJuvEMuMRkyOR9EZERczL1hSm1482 nwTs0xQu3Ie3jtO3ouqROd6cxMe1IaRWsBD3ncgOR4M4UbPf5vTkGh7MarCM0oDk 66NyR5A2FFp8hmgyyyqIVuhgp9wyf6qElVcLg9qRMIAgweoASis5csOaVC3ZpVcQ Z7kw300B8QpT770G+ig4/UP/8Kjl8hAcNvly041qNzkcHDEl9VYGqcU/reTIW/aa O38jvkvjwbEQp6+3AJvwrFq83WIkJYxedrH+503wBxQFUOdNSp/jV0MMruGL0576 x25uKkY4qen+yLQgMa+nvAN2VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQs7PEQ 0YO1KTpUd27F8ASp6/EmMB8GA1UdIwQYMBaAFKAaDwbjELOBMBMdeIKXC/Fi3Q1m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEU1NS83RDMyQTc0RUM2 MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0RXdFeDE0Z3BjTDhXTGRE V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Cb1BCdU1RczRFd0V4MTRncGNMOFdMZERXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEU1NS83RDMyQTc0RUM2MDAxMUVDODcwMDVDN0RDNEY5QUUwMi9vQm9QQnVNUXM0 RXdFeDE0Z3BjTDhXTGREV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8ecpGksrFy6iOpjfUl0SQ8fdapTb4s6uPPG7is8wQbJarmNHMPFYu l14YUrkfUCKsbjijh+iPf7lwvHzA1uvfGU133GGOLI786zlTGhPJSJUCwXK/xkA7 lEqoVV7ni0hIByfeNafu8sVxD9u4AK4jrtlnx8wyZaAQtI7cms//6C9dNQ5VwcPV dxha8NZMLEpVYk5cfe/PpDBI53YLvxsm2YiNU4nriJdbzaLHhkTrzG5AmiyHHCQF IR0MM4hCC1HfJWPRKP0enBDKTkbVcfY4efgRW8NMaXsFGJCVcFj8+whKZW6In88Q C694a53/41WNE079ykIhjAYLqFpR2mGk -----END CERTIFICATE-----Generated at Thu Jul 3 10:03:22 2025 by rpki-client