$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft File: Ol4QKeZcY2gSMttn2AU90vaU5h8.mft (raw, json) Hash identifier: JOC3Y+TZi1fbkIf/gZZzBng5EhYesUjBZEqQKA7tBxc= Subject key identifier: 98:B5:47:13:D9:17:87:B0:4B:E4:7C:58:D2:1E:12:DF:C5:74:31:C7 Authority key identifier: 3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F Certificate issuer: /CN=A9174EC5/serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft Manifest number: 53 Signing time: Thu 03 Jul 2025 07:29:06 +0000 Manifest this update: Thu 03 Jul 2025 07:29:06 +0000 Manifest next update: Thu 10 Jul 2025 07:29:06 +0000 Files and hashes: 1: Ol4QKeZcY2gSMttn2AU90vaU5h8.crl (hash: lUgfGzni8vL1b0pdfP/Xt/DflahBZ325XmjiajvlMl4=) 2: E8112D9AD95A11EF815C7470C4F9AE02.roa (hash: mG5mPJ9TzgmR6vCAw7pVeBBypwUd04LX9QtyyGLebqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EC5, serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Validity Not Before: Jul 3 07:29:06 2025 GMT Not After : Jul 10 07:29:06 2025 GMT Subject: CN=68663142-c8a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:09:6e:69:b5:97:9f:21:70:13:64:70:13:46: 90:96:6d:9f:c4:e6:2d:36:ba:27:e2:d0:fb:03:f9: 07:be:10:60:07:6b:de:58:fb:d5:1c:6a:79:2e:f1: 58:6f:01:3a:18:3e:6c:fc:4b:55:8a:18:59:ed:85: 33:67:89:ad:76:2c:d3:89:4c:7d:51:dc:ed:a7:cd: e1:e5:b7:6c:85:c3:d9:dc:77:4e:2c:5a:99:8e:de: 9b:66:94:b8:e1:f8:34:ef:30:3d:5d:e2:4c:fd:82: 8e:c4:61:25:aa:59:8f:0d:9c:54:38:cb:a5:a4:ee: 33:12:76:56:3c:e0:35:a8:42:18:be:f4:34:8c:e0: b8:a2:c7:59:a2:17:d0:90:bd:d5:97:21:80:ac:79: f0:bb:dd:63:4f:6b:30:57:d2:18:ae:f0:39:e3:e0: 24:49:e6:34:7b:ee:65:1f:0e:37:24:af:65:d6:f1: a6:f0:b1:24:1c:8e:c1:4d:e2:9b:b8:54:bf:12:08: d8:74:51:51:0d:73:a8:16:50:90:8b:1f:12:96:ae: e5:f8:46:37:e3:9b:cc:68:9f:54:9e:64:32:b3:94: e6:d7:af:fd:99:9c:a1:42:5b:2a:ec:e0:56:b2:32: 32:f0:af:1c:37:74:d9:21:28:eb:3d:26:b6:5c:5b: 81:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B5:47:13:D9:17:87:B0:4B:E4:7C:58:D2:1E:12:DF:C5:74:31:C7 X509v3 Authority Key Identifier: keyid:3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:69:f5:86:14:ee:15:59:e3:d7:3b:96:d4:65:a5:34:12:4f: 56:81:3f:e9:58:5d:40:39:eb:a5:3f:29:fd:2a:ef:11:4d:7d: 1e:fb:6f:99:31:a0:b0:19:22:dd:94:fb:64:59:c3:03:e2:01: 3d:6d:ca:93:e0:84:87:7d:a0:25:47:c6:9e:5e:44:31:a9:97: 89:04:40:15:17:2c:a0:78:3f:cd:dc:fd:b4:b9:fa:c3:f6:b4: a2:94:66:0c:b2:3a:07:4b:2f:bd:22:60:25:51:6d:b0:fe:07: c4:c6:48:eb:50:66:86:06:14:5a:2d:cf:ff:18:3b:58:f0:09: 25:32:4f:e4:83:4f:82:ba:2a:1f:4c:84:c4:34:77:71:5e:26: e0:83:6a:21:a7:c0:e6:94:fd:60:0c:1e:2d:1e:40:d6:cb:f2: 81:db:d4:96:63:96:3d:59:29:ad:07:2b:d2:f4:22:11:8b:c4: 0a:bb:95:4e:fc:81:47:38:12:cc:ec:cc:3a:f0:68:d2:8d:36: ab:a6:ad:ea:d9:28:e8:f4:87:3d:15:4c:f6:6a:47:61:a7:60: 23:a8:b4:f5:3a:30:82:2f:4b:44:cc:98:16:d2:7e:62:36:8b: c1:6a:25:c4:40:ff:e3:34:fa:fc:d7:58:c7:12:4a:65:b7:40: 44:9e:9e:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEVDNTExMC8GA1UEBRMoM0E1RTEwMjlFNjVDNjM2ODEyMzJEQjY3RDgwNTNERDJG Njk0RTYxRjAeFw0yNTA3MDMwNzI5MDZaFw0yNTA3MTAwNzI5MDZaMBgxFjAUBgNV BAMTDTY4NjYzMTQyLWM4YTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZCW5ptZefIXATZHATRpCWbZ/E5i02uifi0PsD+Qe+EGAHa95Y+9Ucanku8Vhv AToYPmz8S1WKGFnthTNnia12LNOJTH1R3O2nzeHlt2yFw9ncd04sWpmO3ptmlLjh +DTvMD1d4kz9go7EYSWqWY8NnFQ4y6Wk7jMSdlY84DWoQhi+9DSM4Liix1miF9CQ vdWXIYCsefC73WNPazBX0hiu8Dnj4CRJ5jR77mUfDjckr2XW8abwsSQcjsFN4pu4 VL8SCNh0UVENc6gWUJCLHxKWruX4Rjfjm8xon1SeZDKzlObXr/2ZnKFCWyrs4Fay MjLwrxw3dNkhKOs9JrZcW4HlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmLVHE9kX h7BL5HxY0h4S38V0MccwHwYDVR0jBBgwFoAUOl4QKeZcY2gSMttn2AU90vaU5h8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0RUM1LzgyMzM1QTIwRDk1 QTExRUZBMDJGQjQ2RkM0RjlBRTAyL09sNFFLZVpjWTJnU010dG4yQVU5MHZhVTVo OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2w0UUtlWmNZMmdTTXR0bjJBVTkwdmFVNWg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 RUM1LzgyMzM1QTIwRDk1QTExRUZBMDJGQjQ2RkM0RjlBRTAyL09sNFFLZVpjWTJn U010dG4yQVU5MHZhVTVoOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADxp9YYU7hVZ49c7ltRlpTQST1aBP+lYXUA566U/Kf0q7xFNfR77b5kx oLAZIt2U+2RZwwPiAT1typPghId9oCVHxp5eRDGpl4kEQBUXLKB4P83c/bS5+sP2 tKKUZgyyOgdLL70iYCVRbbD+B8TGSOtQZoYGFFotz/8YO1jwCSUyT+SDT4K6Kh9M hMQ0d3FeJuCDaiGnwOaU/WAMHi0eQNbL8oHb1JZjlj1ZKa0HK9L0IhGLxAq7lU78 gUc4EszszDrwaNKNNqumrerZKOj0hz0VTPZqR2GnYCOotPU6MIIvS0TMmBbSfmI2 i8FqJcRA/+M0+vzXWMcSSmW3QESenm4= -----END CERTIFICATE-----Generated at Thu Jul 3 10:42:31 2025 by rpki-client