$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: OtTb7EPY1+HcZg1pnFSkTOTH2UVRDfQNFomyG7s+5A8= Subject key identifier: B5:9C:0A:34:22:4D:0D:51:F1:99:07:4C:B8:3D:83:F2:6C:EE:12:84 Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 0180 Signing time: Thu 03 Jul 2025 03:44:07 +0000 Manifest this update: Thu 03 Jul 2025 03:44:07 +0000 Manifest next update: Thu 10 Jul 2025 03:44:07 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: gevBHvWhXQIjOJJHK0RLOb83xz4yb4bf9QtXR5PhH0k=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: Hgvy/rbsLEaWAnrB/PMoMX/RB2XdkdZAeykYpDBMbDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Jul 3 03:44:07 2025 GMT Not After : Jul 10 03:44:07 2025 GMT Subject: CN=6865fc87-c8f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a9:5d:79:64:d2:5f:39:58:4e:50:4a:f4:4d: e6:37:09:20:64:a1:c9:56:ce:1d:f0:86:a4:66:33: 1d:db:7a:05:e1:60:74:34:0b:45:6f:07:63:0f:38: f5:57:b9:50:ba:6c:6b:4f:16:c0:6c:5f:55:f6:fe: f3:db:80:6f:5c:14:8d:95:ab:59:4b:f5:96:b6:f5: 8e:6c:2a:6a:4c:15:1a:27:44:a6:2d:a5:8d:52:f7: 71:cc:aa:75:06:72:ad:09:4b:5d:4e:c6:9d:85:51: 42:b7:a0:2f:2e:8c:8b:3e:09:91:32:ea:4f:ee:b4: ee:25:f9:d8:0f:61:bc:b1:7c:8e:93:a5:80:ea:83: 95:e9:59:d5:45:a3:41:3a:fb:d5:fd:36:95:0a:63: 90:6b:90:44:0b:4e:0e:37:05:cb:8a:93:40:0d:13: ca:7b:fd:ca:34:ed:11:e3:3d:df:2c:fa:4d:a1:b6: 3f:1b:f5:3e:6a:8b:8e:77:9a:89:d8:a3:60:24:31: c3:3b:2e:5c:f2:2e:f1:9b:37:24:e4:9f:b5:62:17: 54:b1:3e:cd:c3:5e:d8:84:0d:f0:93:bb:4b:4a:98: c3:2c:3a:30:a1:60:03:1b:2f:72:af:17:44:ae:6f: 77:7e:89:96:14:c3:44:77:ca:05:57:bd:f3:c0:fb: 8f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:9C:0A:34:22:4D:0D:51:F1:99:07:4C:B8:3D:83:F2:6C:EE:12:84 X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:e5:e7:3e:21:41:28:7e:c8:b8:99:33:f1:a6:03:14:99:fb: 17:98:94:97:87:e4:12:e4:20:f7:75:47:32:4f:fa:34:09:87: 04:29:d1:8c:5f:12:dd:ee:5e:31:60:52:f4:c8:bb:20:2f:64: 4b:b5:98:c5:0b:27:ac:07:76:fe:18:76:30:1d:7f:63:f9:fa: 6a:c1:8a:24:03:5a:20:2f:94:34:12:c6:72:f6:17:92:35:c2: 59:db:36:d7:f2:a4:9f:cf:45:2e:b4:89:48:61:9e:15:71:b8: 96:06:5a:28:e2:6b:93:f0:52:a7:5b:c1:4c:ca:db:b5:2e:dd: 4e:1a:4e:af:e7:fc:21:ad:3d:4a:82:d1:0e:c8:e3:e9:23:cc: 2a:cd:9d:ce:9f:11:07:ee:6d:2f:f4:75:50:29:c8:5b:57:5f: f6:61:4a:37:e1:32:57:33:88:ab:59:04:0e:c9:98:96:38:f3: 4b:17:b8:d0:ad:76:9b:40:f0:11:a1:1f:c0:f6:36:2c:43:a3: fe:4f:a8:8c:36:78:79:51:63:4d:f2:14:bf:c4:94:fa:f6:0d: 5d:dd:7e:f3:01:e6:a4:b4:2c:34:6f:d0:ba:0a:84:98:4b:31: b7:7a:42:79:6c:6a:56:2e:7e:b1:f7:f0:52:5b:20:f5:8f:64: 02:f1:38:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjUwNzAzMDM0NDA3WhcNMjUwNzEwMDM0NDA3WjAYMRYwFAYD VQQDEw02ODY1ZmM4Ny1jOGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqldeWTSXzlYTlBK9E3mNwkgZKHJVs4d8IakZjMd23oF4WB0NAtFbwdjDzj1 V7lQumxrTxbAbF9V9v7z24BvXBSNlatZS/WWtvWObCpqTBUaJ0SmLaWNUvdxzKp1 BnKtCUtdTsadhVFCt6AvLoyLPgmRMupP7rTuJfnYD2G8sXyOk6WA6oOV6VnVRaNB OvvV/TaVCmOQa5BEC04ONwXLipNADRPKe/3KNO0R4z3fLPpNobY/G/U+aouOd5qJ 2KNgJDHDOy5c8i7xmzck5J+1YhdUsT7Nw17YhA3wk7tLSpjDLDowoWADGy9yrxdE rm93fomWFMNEd8oFV73zwPuPgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWcCjQi TQ1R8ZkHTLg9g/Js7hKEMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB45ec+IUEofsi4mTPxpgMUmfsXmJSXh+QS5CD3dUcyT/o0CYcEKdGM XxLd7l4xYFL0yLsgL2RLtZjFCyesB3b+GHYwHX9j+fpqwYokA1ogL5Q0EsZy9heS NcJZ2zbX8qSfz0UutIlIYZ4VcbiWBloo4muT8FKnW8FMytu1Lt1OGk6v5/whrT1K gtEOyOPpI8wqzZ3OnxEH7m0v9HVQKchbV1/2YUo34TJXM4irWQQOyZiWOPNLF7jQ rXabQPARoR/A9jYsQ6P+T6iMNnh5UWNN8hS/xJT69g1d3X7zAeaktCw0b9C6CoSY SzG3ekJ5bGpWLn6x9/BSWyD1j2QC8TgR -----END CERTIFICATE-----Generated at Thu Jul 3 05:21:40 2025 by rpki-client