$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: uEbg5GuMtP+c8xGEcjoL0SJJmR0nn96lmsUW+E2UGtM= Subject key identifier: DA:CA:CF:8B:BE:F3:A3:94:FE:0C:72:22:97:E6:21:01:CC:55:57:30 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0A8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0A86 Signing time: Mon 30 Jun 2025 19:44:16 +0000 Manifest this update: Mon 30 Jun 2025 19:44:15 +0000 Manifest next update: Mon 07 Jul 2025 19:44:15 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: XBfxLGLQYYFatadYEPYD8cdSFnwywdeK/vZQHK1y+jU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2703 (0xa8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Jun 30 19:44:15 2025 GMT Not After : Jul 7 19:44:15 2025 GMT Subject: CN=6862e910-36eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ba:3f:2d:88:db:27:0f:64:f3:1c:ee:17:19: fc:87:f2:ff:e3:44:4d:f7:b2:7c:8c:b9:73:3e:93: 11:d4:b6:c5:79:ea:fe:e7:75:fe:25:4d:c6:2a:24: e8:8b:f1:c7:e8:0e:41:c4:dd:56:80:98:ac:bd:3d: d1:4b:07:f7:85:2f:db:a9:c1:d1:02:e4:80:4e:bc: a4:2a:4a:cd:c1:26:f7:9e:65:0b:b9:5d:87:a9:0d: c5:a0:c2:08:eb:f4:d4:a1:4d:50:d8:e9:19:cf:07: 63:cb:9d:49:70:3a:83:2b:20:e6:01:0d:06:b3:ca: 59:40:ad:49:24:69:63:de:ae:ea:c1:0d:a0:05:82: dc:92:95:ac:ad:61:91:5a:87:d4:26:b7:8d:24:3d: 45:08:38:8a:1f:73:54:be:35:93:0a:eb:d0:50:a8: 51:1f:1c:e7:04:17:c9:cf:12:19:0e:61:f4:79:33: 68:42:11:b9:36:68:05:85:d6:41:23:32:c2:a7:44: 5f:16:24:af:56:69:c1:d1:92:c5:b9:15:bb:eb:ea: 48:7e:d8:83:73:05:b7:dc:12:db:29:74:56:fc:09: db:67:90:60:47:02:12:6c:20:bd:73:26:bf:ba:00: b2:35:bd:72:12:79:fd:6c:a6:45:dd:87:38:e2:c2: 43:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:CA:CF:8B:BE:F3:A3:94:FE:0C:72:22:97:E6:21:01:CC:55:57:30 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:ba:4f:96:a5:65:e2:9e:f8:bd:0a:12:d0:56:f9:83:8b:b9: 6a:66:66:20:46:cb:51:06:37:af:94:5a:76:cd:18:ce:98:f8: c6:c6:59:58:38:0c:d8:c6:4a:b0:d9:a9:b4:53:f7:e0:bf:a8: 19:92:26:7e:df:77:d6:44:ea:86:ca:b0:5a:08:9a:5a:dc:16: 65:7e:68:d3:39:e6:96:11:68:47:ab:78:7e:ac:b8:0e:bd:4e: b4:26:87:8c:13:96:f2:ba:76:29:73:06:9b:9c:88:5e:2d:19: 5d:da:38:b3:9c:8d:a7:6a:7e:7a:e4:1d:b9:09:33:18:93:f4: fd:aa:d8:cf:60:31:8c:12:a4:0d:8a:c5:83:a1:21:d5:39:a8: eb:75:0a:16:68:28:f2:09:5b:aa:40:32:3b:4e:7d:37:d5:0c: 59:93:b1:35:36:9f:b8:52:38:dd:ef:4d:1d:f0:f5:41:58:cc: d2:0f:fb:e2:7a:44:d3:67:df:5c:2c:28:9a:ec:9d:32:b2:dc: 96:68:64:7f:44:18:5f:09:c1:9b:cc:75:21:56:0d:e6:16:69: 6f:ff:a2:3b:7b:7f:0d:04:05:06:f9:e5:23:eb:35:46:a8:2d: 5f:e2:bc:60:f1:03:4e:aa:e8:e1:25:8c:aa:19:dc:37:0c:d7: e8:b4:de:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUwNjMwMTk0NDE1WhcNMjUwNzA3MTk0NDE1WjAYMRYwFAYD VQQDEw02ODYyZTkxMC0zNmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4bo/LYjbJw9k8xzuFxn8h/L/40RN97J8jLlzPpMR1LbFeer+53X+JU3GKiTo i/HH6A5BxN1WgJisvT3RSwf3hS/bqcHRAuSATrykKkrNwSb3nmULuV2HqQ3FoMII 6/TUoU1Q2OkZzwdjy51JcDqDKyDmAQ0Gs8pZQK1JJGlj3q7qwQ2gBYLckpWsrWGR WofUJreNJD1FCDiKH3NUvjWTCuvQUKhRHxznBBfJzxIZDmH0eTNoQhG5NmgFhdZB IzLCp0RfFiSvVmnB0ZLFuRW76+pIftiDcwW33BLbKXRW/AnbZ5BgRwISbCC9cya/ ugCyNb1yEnn9bKZF3Yc44sJDbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrKz4u+ 86OU/gxyIpfmIQHMVVcwMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUuk+WpWXinvi9ChLQVvmDi7lqZmYgRstRBjevlFp2zRjOmPjGxllY OAzYxkqw2am0U/fgv6gZkiZ+33fWROqGyrBaCJpa3BZlfmjTOeaWEWhHq3h+rLgO vU60JoeME5byunYpcwabnIheLRld2jiznI2nan565B25CTMYk/T9qtjPYDGMEqQN isWDoSHVOajrdQoWaCjyCVuqQDI7Tn031QxZk7E1Np+4Ujjd700d8PVBWMzSD/vi ekTTZ99cLCia7J0ystyWaGR/RBhfCcGbzHUhVg3mFmlv/6I7e38NBAUG+eUj6zVG qC1f4rxg8QNOqujhJYyqGdw3DNfotN4z -----END CERTIFICATE-----Generated at Wed Jul 2 19:32:24 2025 by rpki-client