$ rpki-client -vvf rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft File: o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft (raw, json) Hash identifier: WJlnAFBO2uyFJJdKMUE6s+eYM4QUidUICz4d8ztNcVQ= Subject key identifier: F6:8A:CE:69:E4:3D:B5:22:52:74:23:33:F1:AE:45:8E:A6:8C:8B:AD Authority key identifier: A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 Certificate issuer: /CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft Manifest number: E4 Signing time: Thu 03 Jul 2025 05:38:22 +0000 Manifest this update: Thu 03 Jul 2025 05:38:22 +0000 Manifest next update: Thu 10 Jul 2025 05:38:22 +0000 Files and hashes: 1: o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl (hash: MUVwaIpH32kouXRi7Kk+XEMhOSeFxlIgkqFcgbbE6+8=) 2: 8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa (hash: LEMiACV3Ie+SK4LkuQJBWGvSnOFQ7e/xDgjdO66Ipp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C10F, serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Validity Not Before: Jul 3 05:38:22 2025 GMT Not After : Jul 10 05:38:22 2025 GMT Subject: CN=6866174e-d8bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:aa:46:cb:2f:f2:0e:9e:f8:7e:f7:e4:ab:d0: 39:4b:0b:34:41:15:c9:bd:ba:86:2d:15:12:d4:59: 0a:1e:e7:50:98:45:53:32:01:0e:8d:df:49:99:43: ac:74:79:a1:74:22:e5:37:f5:7e:7e:e0:99:c6:72: 68:5b:bb:3b:4e:15:a1:13:5b:da:a6:98:24:07:e0: 91:71:65:a8:00:df:f5:ad:0c:74:28:af:d0:06:bc: 17:d7:ce:23:09:d0:4c:69:87:2a:9f:dd:57:4f:bc: 72:8c:60:e9:e9:32:53:21:0a:71:a4:91:82:6b:fd: d7:05:9b:fa:9a:9d:04:d9:4a:da:66:6d:76:ab:6a: 94:cb:54:21:86:5f:c6:1d:10:38:88:c8:9d:f6:e6: fa:60:57:2b:ec:68:50:61:2c:f7:f5:68:a7:a6:44: ed:ea:b6:ee:0c:3c:43:bc:b5:f2:89:68:74:8b:36: a0:dd:e0:d0:0b:49:c0:1d:f9:e0:d6:12:70:35:a2: 96:66:ff:3e:fd:7e:39:b4:72:b6:9f:de:c8:79:8b: 56:60:29:90:41:7a:ad:d7:a7:94:8e:24:c7:1a:0b: dc:96:f4:23:01:77:ae:16:02:34:84:02:89:cb:72: bb:b4:a6:c5:71:8b:85:11:37:30:ab:e7:a8:e4:ed: 43:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:8A:CE:69:E4:3D:B5:22:52:74:23:33:F1:AE:45:8E:A6:8C:8B:AD X509v3 Authority Key Identifier: keyid:A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:d6:7d:0d:1c:e6:2b:32:99:6a:2d:7d:2c:7d:8c:cc:d2:8d: b4:73:3c:ce:58:4b:8f:73:d3:7c:4a:57:d0:f3:f5:85:ef:8f: 29:8f:4c:76:10:53:5e:85:1d:30:46:83:17:69:24:37:52:73: 37:ee:a9:2b:16:d9:19:31:39:31:96:11:a3:a5:f5:05:6e:cb: 79:f2:a5:dc:41:b7:78:8b:a8:29:b0:2c:59:cd:d6:57:23:6c: 08:2c:7e:f3:3d:41:d4:77:42:e4:cd:2d:df:43:e2:ba:ee:7b: cf:16:d7:3f:c1:31:9b:52:23:a2:7c:0b:0a:f4:29:51:93:b0: 83:0e:11:8e:80:27:1f:bf:d7:17:dc:4c:80:c2:aa:84:8a:2c: 14:ba:53:cc:47:a0:c8:6a:76:e3:2a:68:9d:9f:5b:18:d0:e2: 8a:41:cc:93:ec:c1:26:83:19:45:49:8d:7a:00:8c:3b:61:0a: 9e:92:93:9f:4b:91:0b:73:2c:21:24:8d:75:0d:f5:79:1e:f0: 71:d5:85:23:61:a0:f7:c2:a1:b3:16:d8:aa:a4:64:94:af:0d: a4:fc:ff:98:c0:31:24:13:b3:e9:c8:2a:ee:09:a9:db:b4:93: 58:c2:b2:bc:e1:86:20:34:07:cb:e0:e5:11:82:5f:aa:21:18: 11:fe:04:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMEYxMTAvBgNVBAUTKEEzRUI1MUQyOTk5QkJCNDQ2NTlCRERBNkJFMUUxMEZB NTUxRTIyNjUwHhcNMjUwNzAzMDUzODIyWhcNMjUwNzEwMDUzODIyWjAYMRYwFAYD VQQDEw02ODY2MTc0ZS1kOGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6pGyy/yDp74fvfkq9A5Sws0QRXJvbqGLRUS1FkKHudQmEVTMgEOjd9JmUOs dHmhdCLlN/V+fuCZxnJoW7s7ThWhE1vappgkB+CRcWWoAN/1rQx0KK/QBrwX184j CdBMaYcqn91XT7xyjGDp6TJTIQpxpJGCa/3XBZv6mp0E2UraZm12q2qUy1Qhhl/G HRA4iMid9ub6YFcr7GhQYSz39WinpkTt6rbuDDxDvLXyiWh0izag3eDQC0nAHfng 1hJwNaKWZv8+/X45tHK2n97IeYtWYCmQQXqt16eUjiTHGgvclvQjAXeuFgI0hAKJ y3K7tKbFcYuFETcwq+eo5O1D4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaKzmnk PbUiUnQjM/GuRY6mjIutMB8GA1UdIwQYMBaAFKPrUdKZm7tEZZvdpr4eEPpVHiJl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEwRi85QTc1ODBDOEZE NEExMUVFODA5QjA3MzBDNEY5QUUwMi9vLXRSMHBtYnUwUmxtOTJtdmg0US1sVWVJ bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28tdFIwcG1idTBSbG05Mm12aDRRLWxVZUltVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEwRi85QTc1ODBDOEZENEExMUVFODA5QjA3MzBDNEY5QUUwMi9vLXRSMHBtYnUw UmxtOTJtdmg0US1sVWVJbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB51n0NHOYrMplqLX0sfYzM0o20czzOWEuPc9N8SlfQ8/WF748pj0x2 EFNehR0wRoMXaSQ3UnM37qkrFtkZMTkxlhGjpfUFbst58qXcQbd4i6gpsCxZzdZX I2wILH7zPUHUd0LkzS3fQ+K67nvPFtc/wTGbUiOifAsK9ClRk7CDDhGOgCcfv9cX 3EyAwqqEiiwUulPMR6DIanbjKmidn1sY0OKKQcyT7MEmgxlFSY16AIw7YQqekpOf S5ELcywhJI11DfV5HvBx1YUjYaD3wqGzFtiqpGSUrw2k/P+YwDEkE7PpyCruCanb tJNYwrK84YYgNAfL4OURgl+qIRgR/gQH -----END CERTIFICATE-----Generated at Thu Jul 3 17:26:23 2025 by rpki-client