$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: i14fAwCPnbm5rjSaRFrPAo4YnlROC6CSSJRqHAgPw6U= Subject key identifier: DC:33:67:60:43:F0:98:6B:03:C9:81:88:C7:D3:9B:9C:67:9A:A0:0B Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 1330 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 23F7 Signing time: Wed 02 Jul 2025 17:12:27 +0000 Manifest this update: Wed 02 Jul 2025 17:12:26 +0000 Manifest next update: Wed 09 Jul 2025 17:12:26 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: hwjatupZRe9ccG8LFmnr9+JAc5xL4L6dGiI9zcAiWIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4912 (0x1330) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: Jul 2 17:12:26 2025 GMT Not After : Jul 9 17:12:26 2025 GMT Subject: CN=6865687b-6e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:80:12:a3:4d:ac:12:ca:45:d8:77:e5:b8:93: 2b:69:3c:83:ad:a1:9f:60:f6:05:d1:58:0f:da:30: e6:08:fc:3c:04:cb:85:a1:57:b3:c0:24:c2:3b:51: 68:00:57:87:f1:30:a2:06:a9:6a:f7:18:0e:d7:75: 47:c3:ac:8f:46:f5:ee:e0:64:73:f9:34:a6:6e:9e: 9b:a0:ad:ac:05:a2:fb:66:60:d3:b2:34:d3:76:0f: 1a:d5:ec:9c:18:5f:9d:a8:20:dd:16:56:91:c5:9c: c5:95:53:c9:4d:61:b0:a8:a4:8b:b6:dc:c0:a4:64: 77:d3:10:d6:be:fa:ee:b0:b0:b0:8b:90:c3:27:ce: 81:9f:76:cc:fb:ab:6c:7e:de:95:01:02:0d:97:3d: 02:64:51:66:8e:94:0b:3b:51:d4:bf:fc:76:fc:b0: b4:cd:fc:9c:0e:e7:6c:55:6d:bb:24:59:f5:13:a3: b9:4b:48:ff:05:7b:54:6b:ac:bb:07:8a:3e:60:fe: 18:59:51:f2:cd:43:b9:f0:ee:51:fc:77:38:e3:d8: a1:f5:a8:bb:77:69:78:3d:3a:40:ef:55:1c:5c:62: 09:d5:ab:b7:84:0c:86:1a:b2:bf:5f:74:67:b0:76: 79:5c:a2:3f:e4:2d:09:32:13:3f:c4:47:ad:8e:40: ee:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:33:67:60:43:F0:98:6B:03:C9:81:88:C7:D3:9B:9C:67:9A:A0:0B X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:47:d2:4e:3b:98:2d:45:05:3d:6d:23:e2:35:2f:f1:87:1d: bb:e9:12:35:55:34:ca:24:df:e2:55:03:32:99:d6:ee:d0:16: f2:f6:26:ca:c6:d7:eb:ba:1a:88:b4:5c:eb:c6:4e:fe:8d:18: 36:de:24:0e:88:38:d9:81:e7:75:e4:93:fc:8b:36:8b:05:c7: b0:34:57:bb:a1:74:11:e2:05:47:4f:3b:2c:03:1b:02:5d:99: a6:e2:15:5f:b4:8e:d8:24:08:2f:11:b6:f2:48:a1:0e:c6:ee: 38:87:27:1d:7b:36:26:ab:e2:c9:ac:24:48:57:05:49:11:8f: 75:3b:e6:f0:08:e9:cf:62:44:5f:fe:41:04:b1:cd:32:e0:ef: 6b:ec:0b:54:1e:3c:f5:2e:a9:2c:af:e3:0e:af:ec:5e:70:7d: de:c5:1b:18:9e:9a:e4:d0:74:a0:a0:4e:54:17:00:7b:bb:3f: 77:9b:ab:f4:4d:14:95:97:32:34:45:ca:3d:7b:8b:43:1a:38: a8:de:ad:ba:e8:93:f4:56:a2:de:78:6a:b7:4a:22:d2:72:fa: 82:f4:6f:4b:c2:09:10:f6:a9:41:1e:e8:89:0f:b8:83:bb:26: e5:dc:ee:0b:84:e7:60:39:94:57:04:74:e0:12:d9:b0:74:22: 66:18:57:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjUwNzAyMTcxMjI2WhcNMjUwNzA5MTcxMjI2WjAYMRYwFAYD VQQDEw02ODY1Njg3Yi02ZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnoASo02sEspF2HfluJMraTyDraGfYPYF0VgP2jDmCPw8BMuFoVezwCTCO1Fo AFeH8TCiBqlq9xgO13VHw6yPRvXu4GRz+TSmbp6boK2sBaL7ZmDTsjTTdg8a1eyc GF+dqCDdFlaRxZzFlVPJTWGwqKSLttzApGR30xDWvvrusLCwi5DDJ86Bn3bM+6ts ft6VAQINlz0CZFFmjpQLO1HUv/x2/LC0zfycDudsVW27JFn1E6O5S0j/BXtUa6y7 B4o+YP4YWVHyzUO58O5R/Hc449ih9ai7d2l4PTpA71UcXGIJ1au3hAyGGrK/X3Rn sHZ5XKI/5C0JMhM/xEetjkDuDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwzZ2BD 8JhrA8mBiMfTm5xnmqALMB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKR9JOO5gtRQU9bSPiNS/xhx276RI1VTTKJN/iVQMymdbu0Bby9ibK xtfruhqItFzrxk7+jRg23iQOiDjZged15JP8izaLBcewNFe7oXQR4gVHTzssAxsC XZmm4hVftI7YJAgvEbbySKEOxu44hycdezYmq+LJrCRIVwVJEY91O+bwCOnPYkRf /kEEsc0y4O9r7AtUHjz1Lqksr+MOr+xecH3exRsYnprk0HSgoE5UFwB7uz93m6v0 TRSVlzI0Rco9e4tDGjio3q266JP0VqLeeGq3SiLScvqC9G9LwgkQ9qlBHuiJD7iD uybl3O4LhOdgOZRXBHTgEtmwdCJmGFdS -----END CERTIFICATE-----Generated at Wed Jul 2 19:51:45 2025 by rpki-client