$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: iG1m46imgVKiAytztKKmbegSt7lgQAgXQCDOO/AN0U0= Subject key identifier: 8C:75:61:10:AB:DA:94:BD:D4:4D:22:47:21:D8:1A:A3:BE:57:40:51 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0C8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0C80 Signing time: Wed 02 Jul 2025 18:29:31 +0000 Manifest this update: Wed 02 Jul 2025 18:29:30 +0000 Manifest next update: Wed 09 Jul 2025 18:29:30 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: N7xb1HT2AEnATgX5IszhyI3AJYD4CSNuOLUkrJ0MdXY=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: CJEgaP8KqXDJxOZP2RnxuUbrLWDCGR55rSwKPSomEHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3215 (0xc8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Jul 2 18:29:30 2025 GMT Not After : Jul 9 18:29:30 2025 GMT Subject: CN=68657a8a-9eb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4e:99:8c:51:69:ba:4e:08:09:ba:eb:f5:32: 9d:1f:e5:7a:c4:bb:68:db:5c:39:cf:89:ee:f3:9c: e5:b9:ea:32:44:ea:e0:63:83:4d:5b:d0:33:84:be: c5:4e:47:4b:7c:05:e1:7d:25:4e:d1:9f:ef:d8:8e: 84:43:07:dd:cd:e3:34:ff:d9:f3:bb:8d:76:b4:0c: b5:df:de:b1:cb:a7:3a:14:45:f2:ef:8c:47:22:58: f5:45:32:eb:7c:8c:28:a4:7b:9b:bd:e4:83:6f:46: 7d:91:d0:2b:5d:83:ab:0f:3e:c4:6d:12:7d:b5:d4: 11:96:98:73:ca:fd:f6:57:23:2d:dc:a0:c1:5b:76: e7:7e:92:ba:46:3c:53:27:c9:73:c2:ec:01:2b:7c: 8e:3a:cc:9a:12:ea:3a:80:c6:c1:21:df:82:90:f4: f9:36:61:f7:d4:26:7c:ed:24:86:b0:e2:d5:6d:9c: 77:2b:b3:02:e4:fa:4c:5c:ee:f4:66:dc:d1:ab:98: ad:c7:4e:a4:40:62:50:ba:75:03:de:8e:96:d8:42: a3:32:29:2e:db:2a:d0:bb:93:26:4b:d6:0f:94:0b: b1:4a:c3:6f:76:43:02:8b:23:0e:b1:11:08:26:4b: 63:b9:00:22:47:3e:f4:cd:cf:17:da:28:e9:92:81: 37:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:75:61:10:AB:DA:94:BD:D4:4D:22:47:21:D8:1A:A3:BE:57:40:51 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:8d:ad:29:6a:f5:6a:6f:91:eb:92:a0:f4:da:da:38:6d:e4: 6f:4a:f5:ad:7d:46:30:83:bf:7f:ab:54:49:a6:cd:e1:85:a2: f5:fe:10:fc:1f:62:9c:7c:c1:4e:9e:26:d2:2f:52:b2:fd:66: 2d:1f:be:3a:3c:cb:49:5b:27:25:ca:02:b2:0a:cc:e8:cb:67: 81:e7:10:97:29:22:49:ab:4d:fb:ed:ee:e6:6f:31:3c:6b:c7: e4:76:30:bc:19:e1:b9:ff:af:d0:24:6f:97:00:6c:df:8c:76: 13:63:7d:d6:c2:45:63:55:9e:3a:0c:c5:8d:8b:77:36:65:45: 19:71:44:bd:ff:3a:23:c0:ed:47:3c:ac:a0:a0:eb:fe:93:34: ec:c9:c6:f8:3e:ff:07:a8:30:e1:7a:cb:3b:41:bc:4b:96:e8: b7:84:ed:ce:ea:fd:26:b1:87:34:d3:93:74:02:a6:e2:ca:6d: cd:87:f9:5d:73:94:6b:9d:2b:64:a3:3b:32:30:04:f9:fe:ea: 2d:1d:59:77:8d:5d:33:e3:7f:60:27:f8:fb:7f:69:36:13:1f: 2e:3b:24:cc:cb:b4:b2:4f:82:da:16:b0:b4:c2:72:e7:f0:60: 0d:20:de:47:f7:6f:24:5b:e5:4e:47:99:d2:31:a4:41:a2:ec: f1:5e:b0:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjUwNzAyMTgyOTMwWhcNMjUwNzA5MTgyOTMwWjAYMRYwFAYD VQQDEw02ODY1N2E4YS05ZWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq06ZjFFpuk4ICbrr9TKdH+V6xLto21w5z4nu85zlueoyROrgY4NNW9AzhL7F TkdLfAXhfSVO0Z/v2I6EQwfdzeM0/9nzu412tAy1396xy6c6FEXy74xHIlj1RTLr fIwopHubveSDb0Z9kdArXYOrDz7EbRJ9tdQRlphzyv32VyMt3KDBW3bnfpK6RjxT J8lzwuwBK3yOOsyaEuo6gMbBId+CkPT5NmH31CZ87SSGsOLVbZx3K7MC5PpMXO70 ZtzRq5itx06kQGJQunUD3o6W2EKjMiku2yrQu5MmS9YPlAuxSsNvdkMCiyMOsREI JktjuQAiRz70zc8X2ijpkoE3lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIx1YRCr 2pS91E0iRyHYGqO+V0BRMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZja0pavVqb5HrkqD02to4beRvSvWtfUYwg79/q1RJps3hhaL1/hD8 H2KcfMFOnibSL1Ky/WYtH746PMtJWyclygKyCszoy2eB5xCXKSJJq0377e7mbzE8 a8fkdjC8GeG5/6/QJG+XAGzfjHYTY33WwkVjVZ46DMWNi3c2ZUUZcUS9/zojwO1H PKygoOv+kzTsycb4Pv8HqDDhess7QbxLlui3hO3O6v0msYc005N0Aqbiym3Nh/ld c5RrnStkozsyMAT5/uotHVl3jV0z439gJ/j7f2k2Ex8uOyTMy7SyT4LaFrC0wnLn 8GANIN5H928kW+VOR5nSMaRBouzxXrBf -----END CERTIFICATE-----Generated at Thu Jul 3 00:11:39 2025 by rpki-client