$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: tgF80cXDhJkGI1scYtC71X40arpOon70gE9K71TLflw= Subject key identifier: 46:1F:EB:00:D5:DF:12:A3:88:2E:82:11:CE:F1:5A:A5:39:60:2F:00 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0CD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0CCA Signing time: Fri 22 Aug 2025 18:14:56 +0000 Manifest this update: Fri 22 Aug 2025 18:14:55 +0000 Manifest next update: Fri 29 Aug 2025 18:14:55 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: iDDiFwEhlpFqt0Wy2of71jOLAgQ39oiXTKv1sVCWKDs=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: Lgb8GqRFfTjU3W3z9LRFwwnC1h3FLvp4weLwp44Pmyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3284 (0xcd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Aug 22 18:14:55 2025 GMT Not After : Aug 29 18:14:55 2025 GMT Subject: CN=68a8b3a0-18ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a4:30:11:5d:67:22:34:e9:43:da:16:07:9f: a7:2e:46:13:e0:ef:26:df:68:0a:d6:d7:83:e1:58: 5b:f7:96:98:1e:e0:06:dc:d3:b4:0b:54:4e:e4:83: fe:14:42:87:71:7e:0a:5d:31:18:a0:14:8d:78:1c: 68:54:48:36:5f:d3:2b:c3:5f:31:d3:37:48:2f:c8: 8e:4b:5d:15:60:1f:5d:e6:ca:2b:cf:49:7b:0e:ec: b6:2b:16:fb:74:db:bf:b2:d3:89:32:d8:02:6f:34: 42:74:fa:fd:c9:9e:15:9f:8c:bc:f3:f7:c4:ce:51: a4:7c:61:04:23:e6:cf:59:23:31:8a:57:04:85:36: 25:da:85:32:a9:15:dc:f6:ea:06:2c:98:6b:b0:7e: 8f:0b:ba:4e:92:9b:76:f1:e2:a3:58:eb:20:2e:a2: 1a:7f:a3:15:02:22:3a:df:73:23:cb:d8:64:d5:e9: 81:8e:83:7a:a2:cc:6f:73:5e:20:90:e5:86:9f:b7: 93:4e:e1:f5:3f:62:6b:02:da:ec:3f:19:a3:c8:78: 0d:46:23:62:ec:cd:0a:aa:39:ae:82:29:15:45:d2: 21:93:5f:f8:fc:51:d5:a5:24:7d:fd:e0:54:50:bf: 04:5f:99:2b:6c:b9:c7:05:9b:d9:82:03:e9:13:21: 8d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1F:EB:00:D5:DF:12:A3:88:2E:82:11:CE:F1:5A:A5:39:60:2F:00 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:84:23:c3:94:41:f3:ec:d3:53:14:de:31:4c:ce:24:39:aa: 30:86:ea:9d:e9:ef:4e:12:fa:63:e1:ae:30:6e:17:60:e4:52: f9:42:c0:38:11:e6:c0:b0:23:f4:0e:23:b5:01:a6:bc:49:3c: 5a:80:8e:c8:a0:01:6a:98:0f:2b:44:41:5b:18:dc:6c:5c:db: f8:26:12:05:76:e3:3a:17:ff:79:e4:c3:ee:ea:a5:ff:d5:92: ab:8e:76:64:b2:96:3d:26:87:9c:26:3a:44:d1:10:6b:6c:10: d5:63:bf:5e:ce:b4:8b:3e:66:32:24:78:ab:52:02:ea:db:84: f3:83:24:31:72:6e:c1:d5:a3:be:76:21:cd:6b:ab:d8:07:7a: 59:44:4b:d2:13:9f:3c:32:b7:0c:8a:f2:1c:c4:00:38:0a:c2: ff:ec:0f:89:4d:d2:da:65:f3:61:1f:4e:5c:39:24:83:04:05: 4e:ca:00:fd:d6:e9:6b:9e:36:2c:17:04:c7:10:dc:3d:04:83: ca:86:04:86:de:00:81:d9:fc:84:fa:b4:58:17:c2:c5:4b:59: a6:45:5a:44:b0:c7:a0:c2:82:96:7f:d9:44:08:0d:dc:90:90: 47:9c:4e:4e:9e:35:33:68:94:7e:38:2f:85:85:90:5e:93:dc: c7:af:a9:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwODIyMTgxNDU1WhcNMjUwODI5MTgxNDU1WjAYMRYwFAYD VQQDEw02OGE4YjNhMC0xOGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6QwEV1nIjTpQ9oWB5+nLkYT4O8m32gK1teD4Vhb95aYHuAG3NO0C1RO5IP+ FEKHcX4KXTEYoBSNeBxoVEg2X9Mrw18x0zdIL8iOS10VYB9d5sorz0l7Duy2Kxb7 dNu/stOJMtgCbzRCdPr9yZ4Vn4y88/fEzlGkfGEEI+bPWSMxilcEhTYl2oUyqRXc 9uoGLJhrsH6PC7pOkpt28eKjWOsgLqIaf6MVAiI633Mjy9hk1emBjoN6osxvc14g kOWGn7eTTuH1P2JrAtrsPxmjyHgNRiNi7M0KqjmugikVRdIhk1/4/FHVpSR9/eBU UL8EX5krbLnHBZvZggPpEyGNwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYf6wDV 3xKjiC6CEc7xWqU5YC8AMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjhCPDlEHz7NNTFN4xTM4kOaowhuqd6e9OEvpj4a4wbhdg5FL5QsA4 EebAsCP0DiO1Aaa8STxagI7IoAFqmA8rREFbGNxsXNv4JhIFduM6F/955MPu6qX/ 1ZKrjnZkspY9JoecJjpE0RBrbBDVY79ezrSLPmYyJHirUgLq24TzgyQxcm7B1aO+ diHNa6vYB3pZREvSE588MrcMivIcxAA4CsL/7A+JTdLaZfNhH05cOSSDBAVOygD9 1ulrnjYsFwTHENw9BIPKhgSG3gCB2fyE+rRYF8LFS1mmRVpEsMegwoKWf9lECA3c kJBHnE5OnjUzaJR+OC+FhZBek9zHr6nr -----END CERTIFICATE-----Generated at Sun Aug 24 00:15:18 2025 by rpki-client