$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: dMGn7UaYkkhhYYy2ov7Gethb4i0yu0npekyvXSNlZog= Subject key identifier: 63:36:89:49:DD:75:D7:3C:41:EF:F3:61:8F:54:D9:B1:66:D7:47:6F Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 73 Signing time: Sat 23 Aug 2025 07:04:20 +0000 Manifest this update: Sat 23 Aug 2025 07:04:20 +0000 Manifest next update: Sat 30 Aug 2025 07:04:20 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: ZQ1aAE/mHl8o98croGtag2+dcTyngNpM0BYf3T7pLMI=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Aug 23 07:04:20 2025 GMT Not After : Aug 30 07:04:20 2025 GMT Subject: CN=68a967f4-26f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d4:1c:c2:9f:a4:c9:65:6e:bb:1f:07:47:05: 4a:4c:e9:40:f7:fe:0e:32:9d:ef:a1:da:7c:a8:10: 7e:ce:4f:64:80:70:ec:08:8e:bf:9f:34:19:e7:6e: 1f:f0:ea:ba:4a:7a:c2:31:f8:b4:a4:86:6d:aa:27: 98:a4:32:70:ac:df:32:48:80:34:e6:08:26:04:cb: 19:dc:94:e2:4e:fb:82:e8:17:2e:74:e7:e4:44:61: 0a:22:80:0e:43:6f:6c:5a:a3:e0:04:a4:c3:de:91: 62:0c:32:77:b9:e8:80:b9:95:6a:19:fd:e4:bf:87: 68:94:b4:01:3f:1b:02:38:07:af:66:8f:92:06:9b: d0:2a:c0:1d:ee:76:26:65:4f:8c:06:e9:e1:e2:ef: 1e:61:d1:67:db:56:6a:5a:02:e9:fe:e9:7b:bc:86: ac:c4:6d:6c:9f:5f:37:22:55:0a:10:62:a4:29:a8: 08:c0:70:8f:ed:55:a4:67:45:15:dc:85:6a:3c:b1: 73:e6:fc:9b:28:eb:80:47:76:c2:44:27:34:34:fe: 56:fd:6e:09:73:72:89:a2:e8:a9:4a:0e:33:82:bc: 9a:83:75:3c:35:56:54:2b:da:5f:77:f8:35:7c:0a: bb:e7:be:45:fc:27:b6:97:55:22:9b:05:2e:7a:ae: ee:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:36:89:49:DD:75:D7:3C:41:EF:F3:61:8F:54:D9:B1:66:D7:47:6F X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:71:33:1f:61:c3:47:fe:ab:80:ae:cf:97:c4:1d:b7:a4:e1: e0:19:fd:de:b0:df:c6:8a:b2:fa:a9:88:6d:b6:75:d7:fd:ec: ce:6c:31:50:ee:7d:a4:ce:41:a1:0f:3d:7d:9b:ac:88:3d:7f: 1b:11:bf:c8:b1:64:10:bf:00:e9:80:d4:b1:c7:c9:6c:b5:02: 1b:20:7c:d7:e8:63:cc:dc:c9:c6:0d:f7:ac:46:7a:56:b6:d5: c9:fd:8a:b7:53:42:b6:b7:3d:a2:c7:e5:e3:e1:02:6c:b1:08: a8:98:8e:7b:48:00:7e:28:79:c8:11:aa:5e:07:d3:52:2c:5f: 40:8f:70:d5:b6:23:25:cb:46:2a:8d:d8:1b:32:92:54:22:36: e4:24:75:da:9a:a1:36:68:ee:34:80:f3:13:bc:ae:11:82:7e: d3:14:cc:79:77:49:6d:30:e7:5d:ac:a8:58:a7:d2:06:86:33: cc:3f:79:db:3f:38:2b:2d:72:6b:03:de:97:b9:53:82:ad:f2: 92:ef:17:8d:b8:db:ae:d7:a2:b9:cc:3f:76:c2:78:32:99:f1: 6d:58:ec:7e:db:7f:0f:10:4b:c6:3b:04:9d:b9:7d:9f:d8:2d: d2:07:c8:10:f0:b6:e4:23:bf:cd:4b:21:d4:81:23:c2:38:18: 0f:de:c1:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTA4MjMwNzA0MjBaFw0yNTA4MzAwNzA0MjBaMBgxFjAUBgNV BAMTDTY4YTk2N2Y0LTI2ZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf1BzCn6TJZW67HwdHBUpM6UD3/g4yne+h2nyoEH7OT2SAcOwIjr+fNBnnbh/w 6rpKesIx+LSkhm2qJ5ikMnCs3zJIgDTmCCYEyxnclOJO+4LoFy505+REYQoigA5D b2xao+AEpMPekWIMMne56IC5lWoZ/eS/h2iUtAE/GwI4B69mj5IGm9AqwB3udiZl T4wG6eHi7x5h0WfbVmpaAun+6Xu8hqzEbWyfXzciVQoQYqQpqAjAcI/tVaRnRRXc hWo8sXPm/Jso64BHdsJEJzQ0/lb9bglzcomi6KlKDjOCvJqDdTw1VlQr2l93+DV8 CrvnvkX8J7aXVSKbBS56ru5jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYzaJSd11 1zxB7/Nhj1TZsWbXR28wHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADFxMx9hw0f+q4Cuz5fEHbek4eAZ/d6w38aKsvqpiG22ddf97M5sMVDu faTOQaEPPX2brIg9fxsRv8ixZBC/AOmA1LHHyWy1AhsgfNfoY8zcycYN96xGela2 1cn9irdTQra3PaLH5ePhAmyxCKiYjntIAH4oecgRql4H01IsX0CPcNW2IyXLRiqN 2BsyklQiNuQkddqaoTZo7jSA8xO8rhGCftMUzHl3SW0w512sqFin0gaGM8w/eds/ OCstcmsD3pe5U4Kt8pLvF424267XornMP3bCeDKZ8W1Y7H7bfw8QS8Y7BJ25fZ/Y LdIHyBDwtuQjv81LIdSBI8I4GA/ewck= -----END CERTIFICATE-----Generated at Sat Aug 23 21:39:13 2025 by rpki-client