$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: ENNzEDI7bMNdDyP70plu8i/u12iUfJfXGkzqe/2/Yq0= Subject key identifier: 8C:97:A1:96:F9:23:28:6D:39:3D:A2:77:A0:45:51:35:3D:30:6C:9A Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0B18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0B11 Signing time: Fri 22 Aug 2025 19:27:09 +0000 Manifest this update: Fri 22 Aug 2025 19:27:08 +0000 Manifest next update: Fri 29 Aug 2025 19:27:08 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: I2gfo2GCVk799+SyQ2EDNcr0WhWWq9V/Nc1mS3adHwQ=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: pPxz0Xj0Q495OhV6+Bhr4ANjqSPrxc3sqmemzntEGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2840 (0xb18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2, serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Aug 22 19:27:08 2025 GMT Not After : Aug 29 19:27:08 2025 GMT Subject: CN=68a8c48c-8708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e0:bb:08:89:ec:cd:95:7e:5f:cd:d3:e1:d0: 59:75:1e:e5:af:51:c1:35:f1:6c:64:ba:cd:53:bd: e6:a3:bb:34:f9:5d:13:3f:81:97:65:b0:88:f8:ad: 05:12:7c:b6:50:b9:1c:f7:f9:8f:9c:6c:5c:b5:ad: 26:5a:c3:ec:61:69:1f:36:61:b3:8d:78:4e:61:6c: 0d:dc:b6:81:50:fe:0d:5f:99:6c:e4:14:79:62:9a: 3d:d5:fd:08:69:72:6d:18:78:84:1d:fa:b3:b2:92: 56:76:99:b4:41:b7:0a:04:92:2d:d4:e4:7b:6c:16: dd:88:f8:2c:a4:8c:e8:9a:d4:5f:c1:40:8f:bc:bc: dc:68:bf:0b:0f:b6:67:66:b6:ad:e5:e4:ca:43:99: 25:81:6f:b7:13:91:11:b9:4c:63:cf:c0:36:87:28: dd:26:5f:f6:a2:a7:69:e9:55:84:70:6d:be:94:27: c6:2d:b1:64:86:73:bc:c8:d6:aa:17:6d:ee:03:2d: 24:ba:be:9a:24:6f:2d:b0:1b:92:20:68:c5:4e:73: 97:a1:65:36:09:ca:2e:69:ea:26:59:cf:b3:da:f8: 7f:64:ae:04:d2:47:c9:f5:31:cc:a1:f2:21:5e:a0: 7f:75:fd:ce:24:71:22:e5:11:64:94:7a:08:19:d0: 80:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:97:A1:96:F9:23:28:6D:39:3D:A2:77:A0:45:51:35:3D:30:6C:9A X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:3a:4b:6b:08:89:8c:3f:a1:52:56:06:cf:57:85:0a:3a:05: ed:a3:c6:56:33:9e:2c:dd:5b:78:21:c3:f2:c3:72:b9:ac:f2: ce:b8:b5:8c:1e:49:a6:c1:25:fe:4c:d9:91:26:42:4a:b5:43: 50:5d:41:0b:46:f7:c8:0c:c3:f7:8c:08:e5:3f:88:d3:68:6e: 9e:c9:3d:ca:1f:ba:62:3e:43:e4:e7:ca:31:9b:66:34:3a:48: e0:10:dc:e9:90:5f:5e:8d:75:bd:64:f5:da:e4:01:7b:5c:c0: ed:4c:2f:aa:06:48:7c:ae:98:69:42:83:01:32:1c:e6:ad:15: b1:a9:82:31:fb:da:37:20:a9:61:be:8a:d5:34:78:4e:88:c5: fc:41:e8:aa:4d:6f:80:af:cf:d2:fd:57:70:a6:56:88:e7:d0: ef:9a:12:77:b1:04:54:3f:24:35:02:55:cf:2c:a8:63:85:be: d1:06:6d:70:55:51:ab:58:b5:01:93:d1:f4:aa:d7:04:36:89: 18:e6:d6:35:16:97:b8:e9:51:62:62:1c:cf:db:52:00:5f:88: 67:bd:42:46:68:57:0a:4d:3f:9c:9f:18:1c:ae:40:fc:6a:ac: f7:e2:de:3d:12:a7:20:1a:ef:61:b1:22:2c:33:6d:ee:0f:ee: af:09:80:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjUwODIyMTkyNzA4WhcNMjUwODI5MTkyNzA4WjAYMRYwFAYD VQQDEw02OGE4YzQ4Yy04NzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eC7CInszZV+X83T4dBZdR7lr1HBNfFsZLrNU73mo7s0+V0TP4GXZbCI+K0F Eny2ULkc9/mPnGxcta0mWsPsYWkfNmGzjXhOYWwN3LaBUP4NX5ls5BR5Ypo91f0I aXJtGHiEHfqzspJWdpm0QbcKBJIt1OR7bBbdiPgspIzomtRfwUCPvLzcaL8LD7Zn Zrat5eTKQ5klgW+3E5ERuUxjz8A2hyjdJl/2oqdp6VWEcG2+lCfGLbFkhnO8yNaq F23uAy0kur6aJG8tsBuSIGjFTnOXoWU2CcouaeomWc+z2vh/ZK4E0kfJ9THMofIh XqB/df3OJHEi5RFklHoIGdCAPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyXoZb5 IyhtOT2id6BFUTU9MGyaMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAROktrCImMP6FSVgbPV4UKOgXto8ZWM54s3Vt4IcPyw3K5rPLOuLWM HkmmwSX+TNmRJkJKtUNQXUELRvfIDMP3jAjlP4jTaG6eyT3KH7piPkPk58oxm2Y0 OkjgENzpkF9ejXW9ZPXa5AF7XMDtTC+qBkh8rphpQoMBMhzmrRWxqYIx+9o3IKlh vorVNHhOiMX8QeiqTW+Ar8/S/VdwplaI59DvmhJ3sQRUPyQ1AlXPLKhjhb7RBm1w VVGrWLUBk9H0qtcENokY5tY1Fpe46VFiYhzP21IAX4hnvUJGaFcKTT+cnxgcrkD8 aqz34t49EqcgGu9hsSIsM23uD+6vCYCh -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:36 2025 by rpki-client