$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: MSCG5aTmtIshX5Tj6dj5CF57dGZKriJpMtDyeS8NF9c= Subject key identifier: 9C:03:7F:25:BE:50:09:3A:22:E7:66:C0:78:AF:9B:0E:C5:25:47:9C Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0CB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0CAE Signing time: Wed 02 Jul 2025 18:22:43 +0000 Manifest this update: Wed 02 Jul 2025 18:22:42 +0000 Manifest next update: Wed 09 Jul 2025 18:22:42 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: hrc0evrOC5QZnKTR3fmbwM0D4q6wsUa7FNSzPxV6LyM=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: B32sLriEZBiwsvO/X5p+YP5+TxaEvkZ8AXqcNmiVRPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Jul 2 18:22:42 2025 GMT Not After : Jul 9 18:22:42 2025 GMT Subject: CN=686578f2-35bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:40:b6:74:bc:ff:56:33:f7:62:1f:c5:e8:f4: 8c:9a:71:c9:4a:4a:4b:6d:1c:c8:ba:2e:53:2b:60: cd:e6:a1:50:02:14:ce:96:13:0e:e2:b6:08:65:0a: 30:17:f1:91:cd:76:08:b0:14:85:bb:ee:29:40:ac: 03:59:01:71:1e:c4:93:45:06:d2:d9:9e:b8:cd:bd: f5:fe:c9:da:35:0f:a0:ea:69:f7:67:af:39:37:67: 9e:1e:9a:cc:1e:15:95:72:b6:0b:53:f7:76:8a:8d: 95:42:38:20:aa:50:89:64:bb:ae:77:16:61:7f:9b: 71:0a:cb:58:7f:5b:b1:0f:3b:ab:5f:87:48:57:03: 6c:6e:22:ed:75:c7:b2:e8:08:fd:8e:92:06:ed:ac: e6:6b:8d:25:91:73:f2:b2:2e:08:96:9f:8e:4d:83: e1:be:13:d6:66:8f:44:ec:94:84:cd:53:b5:68:38: 3f:ce:d5:ab:5c:59:cb:7b:62:8e:86:c1:3a:7d:5b: fc:86:72:b3:4e:bc:b8:a3:94:86:36:fa:91:f5:db: 31:ca:35:24:16:c5:3f:84:70:d1:fc:be:6c:89:ec: de:82:8b:71:d6:81:d2:14:e3:47:9b:c4:9a:5a:49: e2:21:29:6e:60:c4:6a:91:69:7b:01:22:e8:c9:c2: f2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:03:7F:25:BE:50:09:3A:22:E7:66:C0:78:AF:9B:0E:C5:25:47:9C X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:08:67:60:51:fb:1e:28:78:d9:ea:d2:1c:6e:54:c5:3b:e0: ad:73:4f:86:63:95:b0:18:94:31:9c:5d:09:5b:c8:63:f7:41: 34:05:f4:96:e5:69:5b:1c:1a:ca:5d:a0:9b:98:73:76:50:c3: 80:86:15:5e:b8:47:1b:ba:18:8b:4f:18:44:76:7e:98:36:95: 7d:23:59:3e:31:91:dd:81:a1:0c:e0:9e:ca:15:c0:49:87:8e: 41:00:e2:f6:30:a1:2d:79:67:62:c2:aa:5d:89:cd:93:1c:3a: 10:4b:3e:5e:c4:56:9a:ff:bc:88:35:8c:9e:bb:63:e3:9f:7f: d9:0e:d7:0d:91:41:19:0d:08:26:42:47:0a:05:e3:50:cc:a7: c7:2e:1c:01:23:78:f8:52:18:3a:11:3e:5d:b7:b2:61:0b:64: 7b:85:ed:47:eb:a1:c7:e9:c9:f8:40:9c:bc:c0:96:a5:cd:b2: 3e:6e:7f:fc:24:4f:ad:d8:68:d9:4b:27:10:2f:58:d3:c2:e2: a6:5f:a6:ef:cb:7a:09:43:36:eb:75:2a:9b:d5:f2:4a:da:6d: cd:1b:a9:de:fd:f2:ab:14:ba:a2:88:8b:3f:c4:24:b9:22:7a: 3f:bf:59:9c:38:bf:81:2e:8a:5c:5c:f8:06:c5:28:c4:3a:f4: a6:44:a8:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwNzAyMTgyMjQyWhcNMjUwNzA5MTgyMjQyWjAYMRYwFAYD VQQDEw02ODY1NzhmMi0zNWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kC2dLz/VjP3Yh/F6PSMmnHJSkpLbRzIui5TK2DN5qFQAhTOlhMO4rYIZQow F/GRzXYIsBSFu+4pQKwDWQFxHsSTRQbS2Z64zb31/snaNQ+g6mn3Z685N2eeHprM HhWVcrYLU/d2io2VQjggqlCJZLuudxZhf5txCstYf1uxDzurX4dIVwNsbiLtdcey 6Aj9jpIG7azma40lkXPysi4Ilp+OTYPhvhPWZo9E7JSEzVO1aDg/ztWrXFnLe2KO hsE6fVv8hnKzTry4o5SGNvqR9dsxyjUkFsU/hHDR/L5siezegotx1oHSFONHm8Sa WkniISluYMRqkWl7ASLoycLyJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwDfyW+ UAk6IudmwHivmw7FJUecMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVCGdgUfseKHjZ6tIcblTFO+Ctc0+GY5WwGJQxnF0JW8hj90E0BfSW 5WlbHBrKXaCbmHN2UMOAhhVeuEcbuhiLTxhEdn6YNpV9I1k+MZHdgaEM4J7KFcBJ h45BAOL2MKEteWdiwqpdic2THDoQSz5exFaa/7yINYyeu2Pjn3/ZDtcNkUEZDQgm QkcKBeNQzKfHLhwBI3j4Uhg6ET5dt7JhC2R7he1H66HH6cn4QJy8wJalzbI+bn/8 JE+t2GjZSycQL1jTwuKmX6bvy3oJQzbrdSqb1fJK2m3NG6ne/fKrFLqiiIs/xCS5 Ino/v1mcOL+BLopcXPgGxSjEOvSmRKj/ -----END CERTIFICATE-----Generated at Thu Jul 3 04:30:57 2025 by rpki-client