$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft File: rOKNq-U2SWN_puTjId4bY0Y7g88.mft (raw, json) Hash identifier: s7SQSA4WaAU+iLpl2GRhjx+ujV/Z65E24EIRN3bCTvs= Subject key identifier: 34:F5:3B:04:E9:47:A2:87:CE:D6:62:7C:1B:B1:B2:CD:75:65:3D:03 Authority key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF Certificate issuer: /CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft Manifest number: 0100 Signing time: Tue 01 Jul 2025 05:40:34 +0000 Manifest this update: Tue 01 Jul 2025 05:40:33 +0000 Manifest next update: Tue 08 Jul 2025 05:40:33 +0000 Files and hashes: 1: rOKNq-U2SWN_puTjId4bY0Y7g88.crl (hash: VTTlSs9sCOGPacaJyfuNgWbdppn+G+aeTgUkVUrzO0g=) 2: E7F6D15AD17411EE87F7325DC4F9AE02.roa (hash: roB5hg8LbgyHBq3NzG2BxN4ORRxykj532WnJpDlGnj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Validity Not Before: Jul 1 05:40:33 2025 GMT Not After : Jul 8 05:40:33 2025 GMT Subject: CN=686374d1-bfaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:54:3d:df:01:bf:61:bb:ef:f6:ab:d5:8e:de: 9c:d0:cc:88:5c:fc:d7:6f:c2:e8:70:5a:ff:cd:5e: 27:7a:e2:01:e0:fc:36:8c:cc:aa:ab:2d:eb:ac:2b: 76:c8:6e:ef:27:59:74:d1:a2:73:ec:cf:8f:4e:65: 7e:c1:c3:c2:a8:44:ee:23:f3:a5:e4:56:07:25:86: 34:b0:b5:05:9b:6c:26:46:30:30:79:15:f1:36:a9: ef:23:71:aa:5c:8d:73:03:bc:8b:1a:8a:ae:57:5d: 63:ff:1e:27:99:79:75:d5:c2:07:f8:d9:0a:f2:a5: 0a:2f:0c:ba:97:19:d1:7b:42:30:27:d0:c7:df:75: 40:7f:cf:8d:4b:2e:23:08:32:f9:da:c7:2a:f4:37: 09:ea:7b:60:1d:69:56:4a:66:a1:a1:fe:0e:a0:bc: 2a:ec:ba:a4:72:f0:dc:c4:a1:1b:bf:88:05:62:40: 4d:c8:2f:c8:22:b8:d8:29:88:07:bc:b2:25:83:7b: 58:2e:33:f6:e8:31:ba:ea:3d:3d:ef:19:c8:eb:b0: ef:49:03:c6:ba:34:57:7d:a2:96:f8:8f:d1:94:d3: b3:5a:3b:9b:0e:9f:48:69:1c:a4:2e:5a:ed:b3:dc: 79:ca:95:f2:20:a6:28:cf:19:fd:7c:8b:6b:2e:5a: c2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F5:3B:04:E9:47:A2:87:CE:D6:62:7C:1B:B1:B2:CD:75:65:3D:03 X509v3 Authority Key Identifier: keyid:AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:0f:f5:a1:64:bc:c1:f0:48:53:d4:ea:f2:a3:bf:05:72:a4: 2f:7d:39:b4:3f:2d:e9:a2:6f:36:bc:aa:91:b6:1c:0f:4e:f2: 3f:4b:6b:f6:2f:35:0f:f0:f1:0c:84:83:0c:9f:cb:b6:f0:55: 60:65:31:72:ee:e1:62:39:12:60:d3:78:37:6f:09:c5:0a:84: a6:d3:24:c9:4b:f3:c6:fe:c8:59:9c:af:ad:07:88:34:79:be: 69:d8:a6:e1:57:56:f6:ba:69:21:6a:fa:cb:a4:95:a0:97:ac: e5:c9:86:1c:5d:95:f2:d1:73:a1:17:63:82:4d:97:e6:0b:bf: 1c:cf:be:76:70:0c:ff:6c:29:75:e3:ac:ad:ba:34:9e:d7:82: 0c:97:da:4e:b2:92:7f:d6:ee:fb:18:95:2f:89:95:3f:e9:2a: a9:0d:3c:d1:f3:d1:87:9d:0c:4a:21:3f:ee:19:95:45:d6:1a: 8e:7a:24:6b:35:73:9c:4e:76:ef:6d:d2:14:6f:23:3e:e4:ae: 2d:c1:e0:f2:8b:fb:f3:d8:81:37:2b:4f:f3:cb:b0:fa:2c:0f: de:11:a4:f1:df:36:af:94:83:98:13:10:9b:7d:4c:ef:40:75: 40:bf:2a:e0:76:ab:33:53:2c:ed:80:81:1a:ee:68:8b:4e:68: 7e:8b:f6:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKEFDRTI4REFCRTUzNjQ5NjM3RkE2RTRFMzIxREUxQjYz NDYzQjgzQ0YwHhcNMjUwNzAxMDU0MDMzWhcNMjUwNzA4MDU0MDMzWjAYMRYwFAYD VQQDEw02ODYzNzRkMS1iZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lQ93wG/Ybvv9qvVjt6c0MyIXPzXb8LocFr/zV4neuIB4Pw2jMyqqy3rrCt2 yG7vJ1l00aJz7M+PTmV+wcPCqETuI/Ol5FYHJYY0sLUFm2wmRjAweRXxNqnvI3Gq XI1zA7yLGoquV11j/x4nmXl11cIH+NkK8qUKLwy6lxnRe0IwJ9DH33VAf8+NSy4j CDL52scq9DcJ6ntgHWlWSmahof4OoLwq7LqkcvDcxKEbv4gFYkBNyC/IIrjYKYgH vLIlg3tYLjP26DG66j097xnI67DvSQPGujRXfaKW+I/RlNOzWjubDp9IaRykLlrt s9x5ypXyIKYozxn9fItrLlrCdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDT1OwTp R6KHztZifBuxss11ZT0DMB8GA1UdIwQYMBaAFKzijavlNkljf6bk4yHeG2NGO4PP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS9BMUYyMzQzQ0Qx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNXTl9wdVRqSWQ0YlkwWTdn ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPS05xLVUyU1dOX3B1VGpJZDRiWTBZN2c4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS9BMUYyMzQzQ0QxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNX Tl9wdVRqSWQ0YlkwWTdnODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdD/WhZLzB8EhT1Oryo78FcqQvfTm0Py3pom82vKqRthwPTvI/S2v2 LzUP8PEMhIMMn8u28FVgZTFy7uFiORJg03g3bwnFCoSm0yTJS/PG/shZnK+tB4g0 eb5p2KbhV1b2umkhavrLpJWgl6zlyYYcXZXy0XOhF2OCTZfmC78cz752cAz/bCl1 46ytujSe14IMl9pOspJ/1u77GJUviZU/6SqpDTzR89GHnQxKIT/uGZVF1hqOeiRr NXOcTnbvbdIUbyM+5K4tweDyi/vz2IE3K0/zy7D6LA/eEaTx3zavlIOYExCbfUzv QHVAvyrgdqszUyztgIEa7miLTmh+i/bi -----END CERTIFICATE-----Generated at Thu Jul 3 00:24:10 2025 by rpki-client