$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: 4lH6hhWjyASRKGf5fRHwRh4Q8CRvRisJpbfZEpmtGPo= Subject key identifier: F1:69:13:3A:68:84:CC:13:C5:59:93:17:87:72:43:83:4F:2F:30:EB Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 6A Signing time: Tue 01 Jul 2025 03:47:25 +0000 Manifest this update: Tue 01 Jul 2025 03:47:25 +0000 Manifest next update: Tue 08 Jul 2025 03:47:25 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: ioLUWYRuyEtNQaCXI5OfkSepCUuwLhgjDJnM2ro1MG0=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Jul 1 03:47:25 2025 GMT Not After : Jul 8 03:47:25 2025 GMT Subject: CN=68635a4d-728e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:98:d1:d0:c9:df:3a:2f:b6:73:86:8b:6b:bc: b2:77:b4:21:23:a6:1f:68:f4:03:bf:81:ec:c2:8e: 26:7b:60:fa:f2:f0:89:e7:27:c9:d5:b5:ac:ee:04: 1a:6f:b4:f4:4f:f2:39:cd:04:d2:04:96:89:f5:57: c7:fa:78:d9:0b:5f:23:e9:90:0c:b0:51:58:f1:8c: eb:7d:6d:dd:e0:89:48:1b:e9:eb:5f:77:1c:99:f1: da:ad:80:7b:f2:d7:67:3c:0a:8c:6d:3c:ce:c3:77: c8:64:78:a7:b8:78:6e:17:b6:25:ca:2b:a4:a5:eb: 01:a0:06:48:83:7a:fa:3d:53:f4:a2:7e:c6:7a:f4: e0:53:df:f5:49:d3:88:8d:0c:bb:17:5c:41:a6:fa: d7:15:34:ac:fa:b9:17:79:1e:76:63:84:bf:a2:6a: e8:e3:ea:b8:1e:d6:74:7d:f1:89:34:f6:3c:24:f2: 00:20:55:ac:19:ae:47:a4:40:97:4c:0a:f1:c1:26: ec:94:40:0e:25:0f:69:fb:f8:b8:c5:dc:59:ad:a8: 4c:e7:68:68:ea:84:df:9b:79:4b:1b:bc:1c:09:0f: 34:f7:bd:5d:42:93:9f:ca:1d:02:ed:c9:27:ab:5d: 37:e7:ee:95:c5:86:9f:51:38:15:79:fb:f4:b0:d7: a3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:69:13:3A:68:84:CC:13:C5:59:93:17:87:72:43:83:4F:2F:30:EB X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:9a:09:09:c8:0d:8f:9c:e2:73:11:11:2b:48:58:1c:c6:a9: 88:33:ce:64:4b:ed:41:53:d9:b2:5e:f2:6b:92:7b:a3:18:2b: 85:f2:9b:9f:19:16:52:37:c9:17:0a:25:4b:9d:e8:6c:92:f7: 12:0a:49:fe:b1:51:a5:dd:1e:44:eb:f6:39:3c:6d:7d:e7:43: ad:13:ce:e1:6f:fb:d7:98:b9:e0:18:8b:31:01:97:0e:44:34: e0:4a:3d:86:d0:72:52:05:6f:95:8d:27:2c:9a:4c:3d:c2:0b: 0f:7e:32:8e:64:32:e5:fe:52:f8:2d:a5:a2:0a:88:56:b7:09: ae:17:36:13:52:a7:a9:bd:ed:94:ed:97:93:14:a8:4b:a9:a3: 66:45:a0:d3:4e:81:e6:64:fa:c7:09:a7:dc:d2:48:f3:c2:d5: d0:c5:d3:56:9c:a0:f0:09:66:b6:cf:65:6e:33:e2:f2:3a:ac: 87:df:46:1d:f0:e5:60:c0:7d:e1:08:cb:b0:ed:4b:7a:88:bb: a0:9a:04:0e:9a:41:ff:05:4a:d4:32:29:d4:d4:f8:e1:2d:30: 09:da:63:6e:cd:70:c4:c0:a7:e4:7a:61:e4:ae:a1:72:27:38: 5c:02:7a:c1:74:ee:79:23:a3:9f:d3:e0:85:34:70:82:22:a7: bb:20:38:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTA3MDEwMzQ3MjVaFw0yNTA3MDgwMzQ3MjVaMBgxFjAUBgNV BAMTDTY4NjM1YTRkLTcyOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDmNHQyd86L7ZzhotrvLJ3tCEjph9o9AO/gezCjiZ7YPry8InnJ8nVtazuBBpv tPRP8jnNBNIElon1V8f6eNkLXyPpkAywUVjxjOt9bd3giUgb6etfdxyZ8dqtgHvy 12c8CoxtPM7Dd8hkeKe4eG4XtiXKK6Sl6wGgBkiDevo9U/SifsZ69OBT3/VJ04iN DLsXXEGm+tcVNKz6uRd5HnZjhL+iaujj6rge1nR98Yk09jwk8gAgVawZrkekQJdM CvHBJuyUQA4lD2n7+LjF3FmtqEznaGjqhN+beUsbvBwJDzT3vV1Ck5/KHQLtySer XTfn7pXFhp9ROBV5+/Sw16MFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8WkTOmiE zBPFWZMXh3JDg08vMOswHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRDRkMwOERBQjc2QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1 UWNmdUtfNjFCMWlRbXFsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKaaCQnIDY+c4nMREStIWBzGqYgzzmRL7UFT2bJe8muSe6MYK4Xym58Z FlI3yRcKJUud6GyS9xIKSf6xUaXdHkTr9jk8bX3nQ60TzuFv+9eYueAYizEBlw5E NOBKPYbQclIFb5WNJyyaTD3CCw9+Mo5kMuX+UvgtpaIKiFa3Ca4XNhNSp6m97ZTt l5MUqEupo2ZFoNNOgeZk+scJp9zSSPPC1dDF01acoPAJZrbPZW4z4vI6rIffRh3w 5WDAfeEIy7DtS3qIu6CaBA6aQf8FStQyKdTU+OEtMAnaY27NcMTAp+R6YeSuoXIn OFwCesF07nkjo5/T4IU0cIIip7sgOMc= -----END CERTIFICATE-----Generated at Wed Jul 2 00:28:16 2025 by rpki-client