$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: 1CrmnItOn8J7b3cHK6zMobM+yPX7lrzzPxVzFRsLhyE= Subject key identifier: F7:33:42:E0:44:EA:EF:2C:FA:A6:8E:AF:A3:95:55:14:E6:60:3F:45 Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 59 Signing time: Thu 03 Jul 2025 07:23:20 +0000 Manifest this update: Thu 03 Jul 2025 07:23:19 +0000 Manifest next update: Thu 10 Jul 2025 07:23:19 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: R9yyMIddLMffOLkq7850bEZnmCwNS98ipKYTwlUkUFY=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Jul 3 07:23:19 2025 GMT Not After : Jul 10 07:23:19 2025 GMT Subject: CN=68662fe7-e329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:88:dd:f1:52:b9:74:28:f2:ea:50:5c:ff:a2: 22:b1:7d:ee:93:c6:9d:0f:61:2e:28:7d:7f:5f:a2: 88:06:85:84:ab:01:be:a8:ce:f6:39:3d:1e:5d:26: 67:b0:e0:1f:c2:7e:e8:e1:94:30:8c:ed:a5:85:6a: 66:9f:88:84:86:73:d6:2a:11:f6:e3:a9:ae:92:6c: b7:95:af:74:c9:c0:df:3d:6c:01:7c:4f:89:ef:56: 30:c6:ef:38:c9:73:97:d5:9a:f8:2d:92:d5:e1:e4: 80:38:83:a1:40:46:93:ab:c0:01:42:18:9e:ed:ed: cf:16:5a:56:3a:f0:48:8a:e8:6b:cb:38:c8:f9:1b: a7:bc:b8:78:21:43:d3:e1:c2:85:9a:ac:2f:cf:0a: 50:bd:50:1f:14:83:8e:8d:41:c1:3c:0d:e0:4c:7c: c8:1b:6e:a7:07:4c:72:ec:63:54:f9:8b:cc:ea:cf: f5:a9:f5:4b:dd:74:a9:04:f5:b8:06:90:33:a2:46: f5:d7:01:a2:13:59:b9:37:cc:5d:bb:43:f3:3e:a6: 45:cd:54:bd:03:14:8f:04:f6:39:68:e0:8c:40:9c: 60:ab:97:1b:fe:23:70:ed:09:b8:df:db:c5:19:c0: e6:ad:69:fa:fc:83:0d:6e:0b:2c:f5:41:54:ac:ff: 1f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:33:42:E0:44:EA:EF:2C:FA:A6:8E:AF:A3:95:55:14:E6:60:3F:45 X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:68:bb:8e:16:71:43:be:d4:76:c1:f1:80:45:52:3e:4e:ba: 1c:09:3f:fd:48:e6:4d:38:ba:0c:ff:c7:5a:31:07:0f:16:17: b2:a9:fc:e3:9c:ad:2a:65:3b:76:be:cb:4a:2f:26:72:31:fe: e4:d5:a8:a6:32:5b:55:cd:58:9e:a9:28:49:6e:78:82:62:4d: 4d:f7:80:d3:55:c9:fe:7f:82:eb:71:c7:a7:0f:a6:39:75:cd: 93:a5:87:13:c3:3d:50:9f:fc:d6:12:d5:79:d2:9b:f9:ef:b7: 15:49:69:c5:27:14:b7:cf:c3:f1:f4:cd:15:65:f6:5f:a0:38: 64:bb:ee:ce:f1:62:d8:06:1c:fd:d5:bc:2e:a7:ca:ad:92:39: 87:58:59:0e:ef:ef:5d:c8:58:45:ec:6e:00:6d:f3:e2:ca:3f: 44:7b:16:e1:f1:53:83:99:0c:ee:82:a5:c0:ef:1a:56:c7:7a: cb:03:94:a5:07:77:ad:55:fe:ed:68:71:57:a1:3e:62:93:8e: 63:ce:a2:f6:1f:c6:f3:8d:c3:6f:01:57:0e:51:b1:76:9d:27: e8:07:81:53:c5:d3:e5:44:92:f9:d6:96:ae:ba:ee:8a:b5:2f: 5a:79:48:52:e2:9b:d8:de:c4:5e:7a:8d:8d:49:42:18:f1:5a: e7:bc:e9:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTA3MDMwNzIzMTlaFw0yNTA3MTAwNzIzMTlaMBgxFjAUBgNV BAMTDTY4NjYyZmU3LWUzMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtiN3xUrl0KPLqUFz/oiKxfe6Txp0PYS4ofX9foogGhYSrAb6ozvY5PR5dJmew 4B/CfujhlDCM7aWFamafiISGc9YqEfbjqa6SbLeVr3TJwN89bAF8T4nvVjDG7zjJ c5fVmvgtktXh5IA4g6FARpOrwAFCGJ7t7c8WWlY68EiK6GvLOMj5G6e8uHghQ9Ph woWarC/PClC9UB8Ug46NQcE8DeBMfMgbbqcHTHLsY1T5i8zqz/Wp9UvddKkE9bgG kDOiRvXXAaITWbk3zF27Q/M+pkXNVL0DFI8E9jlo4IxAnGCrlxv+I3DtCbjf28UZ wOatafr8gw1uCyz1QVSs/x+5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9zNC4ETq 7yz6po6vo5VVFOZgP0UwHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA1ou44WcUO+1HbB8YBFUj5OuhwJP/1I5k04ugz/x1oxBw8WF7Kp/OOc rSplO3a+y0ovJnIx/uTVqKYyW1XNWJ6pKElueIJiTU33gNNVyf5/gutxx6cPpjl1 zZOlhxPDPVCf/NYS1XnSm/nvtxVJacUnFLfPw/H0zRVl9l+gOGS77s7xYtgGHP3V vC6nyq2SOYdYWQ7v713IWEXsbgBt8+LKP0R7FuHxU4OZDO6CpcDvGlbHessDlKUH d61V/u1ocVehPmKTjmPOovYfxvONw28BVw5RsXadJ+gHgVPF0+VEkvnWlq667oq1 L1p5SFLim9jexF56jY1JQhjxWue86Qo= -----END CERTIFICATE-----Generated at Fri Jul 4 01:26:06 2025 by rpki-client