$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: CRFaDbgMp2lWWwoCQOIhWLzprO0F0RLbibB1tRkZ2Tw= Subject key identifier: 23:D9:C5:E9:E3:A3:61:AC:E8:F8:68:BF:E3:3E:BD:68:F1:5B:FC:34 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 0190 Signing time: Thu 03 Jul 2025 03:35:35 +0000 Manifest this update: Thu 03 Jul 2025 03:35:34 +0000 Manifest next update: Thu 10 Jul 2025 03:35:34 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: 28Sw+v/V026dF9Yitvqq7SAoyKhasMtLlD5QBaLQhEI=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Jul 3 03:35:34 2025 GMT Not After : Jul 10 03:35:34 2025 GMT Subject: CN=6865fa87-2107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:13:d8:0d:40:ed:7c:69:36:73:a5:76:78:be: 30:9a:03:d7:32:3b:9e:f0:a4:bc:76:e6:97:1c:26: a7:20:25:85:ad:69:e6:1c:96:65:35:12:3b:50:e2: 8b:58:5a:ed:24:f8:e3:3e:c8:d0:80:4f:cf:af:ba: 9c:e2:0d:7f:9e:29:08:fc:5d:ff:27:1d:15:c3:0f: 4c:c2:3b:ef:2d:7b:53:0f:5b:fc:eb:7c:0f:0c:20: 68:bc:1a:fb:90:2d:f0:e9:eb:62:41:b2:d3:11:d4: af:1b:d8:35:cd:be:78:7c:99:72:12:31:1a:82:63: 70:96:61:57:b4:ea:05:51:55:7e:bf:c5:0b:f9:07: 56:6d:9f:c9:ae:9d:a3:5b:7d:f3:ca:c1:9e:47:d9: b3:43:ab:3a:e8:d0:86:61:f2:00:3b:20:ec:ec:23: a3:d1:1a:2e:ef:23:1b:cc:cb:8f:b5:1b:97:f6:2f: a5:4a:e7:86:cc:81:60:3c:ac:f4:bc:46:71:e0:f1: d5:fd:6b:8d:8b:fd:6d:6b:45:db:28:fd:ba:f5:5d: ad:65:a7:c5:86:ed:9d:ae:b7:c5:09:0d:fe:f7:eb: eb:06:b5:f8:b5:cb:3b:71:20:2b:50:e2:e9:fd:3d: 89:93:c6:44:e9:23:8d:89:23:4b:dd:1e:4c:71:c9: 39:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D9:C5:E9:E3:A3:61:AC:E8:F8:68:BF:E3:3E:BD:68:F1:5B:FC:34 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:53:f8:1d:df:71:71:bb:a9:e6:e1:b2:e6:6f:ee:ea:d0:fa: 00:e7:4c:16:6f:41:a5:1c:94:9d:5c:47:59:76:b2:eb:db:7a: de:de:cb:04:99:82:c0:9b:cd:f6:3f:5c:17:41:07:1b:1f:e2: a6:97:02:c4:f5:dd:e4:f3:91:ed:9c:52:ab:fc:08:e5:fc:95: 59:57:5a:a5:d6:aa:13:f2:62:88:ab:cc:af:4e:32:6a:7b:01: 98:af:7c:2b:6c:11:fc:a4:b1:7b:bd:fa:c8:71:44:3f:b0:c6: e6:d9:4b:9c:c1:e6:88:1c:2d:60:c7:6c:18:7d:3d:44:2b:a4: c3:09:97:a3:ae:af:68:d6:24:a2:0b:fb:48:54:a3:67:c9:43: 3a:f9:d4:d1:0b:80:51:9c:cf:8b:50:6a:c9:d6:09:b9:44:c5: f7:c2:21:a6:44:07:e9:f5:c6:f2:7c:27:18:46:36:ac:36:61: 0f:6f:1d:3b:05:30:5a:e5:31:6b:19:19:f5:cf:d5:a2:84:fc: 82:3d:d7:f4:2d:1a:aa:5e:7f:dd:35:22:9f:bb:d1:26:e0:d6: 86:29:50:23:74:13:c9:85:a8:c2:76:cf:5a:a7:80:e0:65:0f: 4f:f2:c5:e5:0c:25:19:56:9d:f9:78:20:fd:5a:d8:ef:e8:45: 67:79:1e:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUwNzAzMDMzNTM0WhcNMjUwNzEwMDMzNTM0WjAYMRYwFAYD VQQDEw02ODY1ZmE4Ny0yMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRPYDUDtfGk2c6V2eL4wmgPXMjue8KS8duaXHCanICWFrWnmHJZlNRI7UOKL WFrtJPjjPsjQgE/Pr7qc4g1/nikI/F3/Jx0Vww9MwjvvLXtTD1v863wPDCBovBr7 kC3w6etiQbLTEdSvG9g1zb54fJlyEjEagmNwlmFXtOoFUVV+v8UL+QdWbZ/Jrp2j W33zysGeR9mzQ6s66NCGYfIAOyDs7COj0Rou7yMbzMuPtRuX9i+lSueGzIFgPKz0 vEZx4PHV/WuNi/1ta0XbKP269V2tZafFhu2drrfFCQ3+9+vrBrX4tcs7cSArUOLp /T2Jk8ZE6SONiSNL3R5Mcck56QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPZxenj o2Gs6Phov+M+vWjxW/w0MB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwU/gd33Fxu6nm4bLmb+7q0PoA50wWb0GlHJSdXEdZdrLr23re3ssE mYLAm832P1wXQQcbH+KmlwLE9d3k85HtnFKr/Ajl/JVZV1ql1qoT8mKIq8yvTjJq ewGYr3wrbBH8pLF7vfrIcUQ/sMbm2UucweaIHC1gx2wYfT1EK6TDCZejrq9o1iSi C/tIVKNnyUM6+dTRC4BRnM+LUGrJ1gm5RMX3wiGmRAfp9cbyfCcYRjasNmEPbx07 BTBa5TFrGRn1z9WihPyCPdf0LRqqXn/dNSKfu9Em4NaGKVAjdBPJhajCds9ap4Dg ZQ9P8sXlDCUZVp35eCD9Wtjv6EVneR6a -----END CERTIFICATE-----Generated at Thu Jul 3 07:56:22 2025 by rpki-client