$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: 03EYrfbG+ggBPCpYF/AwSCT9NVdpnCiOsNSMnoSSrjY= Subject key identifier: 3A:47:3B:86:32:3B:B5:66:0A:F1:9C:69:61:E3:87:E0:C6:E3:54:E0 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0A61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0A5C Signing time: Wed 02 Jul 2025 19:53:22 +0000 Manifest this update: Wed 02 Jul 2025 19:53:22 +0000 Manifest next update: Wed 09 Jul 2025 19:53:22 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: GUHxvJIcLJ99s9eQT8z9cJY0q7h34kMJ0JSVH5Tc5SU=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: aNxxH/k6H9pUK4+Yh6tMJ5W3Dxa/fkGC+OopIVqyBEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2657 (0xa61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Jul 2 19:53:22 2025 GMT Not After : Jul 9 19:53:22 2025 GMT Subject: CN=68658e32-b288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ba:71:eb:46:40:08:2e:c9:1f:1c:97:3b:97: b0:1f:02:4b:dd:ba:ff:24:25:17:78:a7:9f:2c:03: ef:ab:6e:ee:cf:06:e8:ed:1e:f6:c9:44:53:d2:6f: 89:88:6a:c2:25:43:72:7c:2c:ea:64:79:cd:f8:de: 45:de:1d:99:8c:2f:e0:50:5c:72:78:d3:cf:f8:01: d6:b2:d7:f4:d4:26:1d:f5:b9:b2:86:9e:79:58:f8: 42:9e:69:7b:7f:62:80:a8:b3:84:53:8f:a4:00:62: ba:a9:d3:e3:1a:08:8c:41:fb:f8:43:bc:e9:09:55: ca:54:6f:7d:ca:70:cf:fa:71:99:8a:a2:a3:0e:92: 39:1d:3b:65:5d:08:b4:d6:48:d8:32:fb:7b:c7:38: 12:53:4b:1f:b1:9c:89:35:f1:28:56:d2:37:85:2d: 0d:71:b9:88:50:b5:f9:66:02:68:13:00:ee:75:76: 5c:82:a1:56:8f:78:02:cf:33:b7:09:e3:bb:a8:f0: ef:05:10:5c:d6:8a:05:41:50:94:78:56:20:e6:fa: 56:4b:c0:a4:74:36:d5:93:82:c7:26:96:75:2c:13: ca:f5:a8:9f:ce:2f:76:5d:9e:68:eb:c4:b2:b7:b3: cf:c9:5a:7b:a4:63:02:ab:4a:7f:94:53:d7:3f:a4: 62:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:47:3B:86:32:3B:B5:66:0A:F1:9C:69:61:E3:87:E0:C6:E3:54:E0 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:64:24:d7:5a:04:59:61:0b:46:67:c9:c9:e6:d2:4a:ee:d3: 19:0e:9c:ba:c6:72:70:fa:0e:08:09:b6:5b:1d:ae:3d:fc:d0: fe:37:70:c0:fa:4e:39:95:09:4a:2a:a0:c5:1b:ca:79:b1:d6: a1:6a:31:ca:2c:3b:78:85:4a:7c:4c:4f:f4:ce:62:de:b8:4d: a8:05:c9:81:81:1f:24:fa:60:e9:9f:fb:8d:cf:94:be:60:35: 8d:32:81:ba:b0:2e:91:21:38:48:32:58:36:d3:b5:89:92:4a: a3:30:16:9a:98:64:aa:47:55:6b:92:c0:d5:19:75:f0:46:c4: ce:11:25:a1:48:05:64:8f:27:b5:ce:90:a1:f7:be:6d:97:33: c9:11:74:6b:1d:ef:23:7a:d6:30:98:41:e6:64:2e:67:95:32: 5d:2d:4e:10:55:2f:e1:97:44:5e:fa:02:94:23:75:22:5d:5c: 26:c4:53:57:b5:0e:1e:d8:5d:4b:35:23:eb:59:df:8b:aa:c3: 17:cd:e0:d7:a9:49:fb:2f:5e:5d:38:ef:51:7b:ed:cf:84:44: a8:b6:df:a6:af:c5:c8:1e:bd:32:50:a1:cb:47:ae:06:16:56: b0:dc:65:a8:12:0e:8f:d6:b9:a3:2d:e0:a4:0d:90:5f:ac:a3: c7:1e:6b:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjUwNzAyMTk1MzIyWhcNMjUwNzA5MTk1MzIyWjAYMRYwFAYD VQQDEw02ODY1OGUzMi1iMjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbpx60ZACC7JHxyXO5ewHwJL3br/JCUXeKefLAPvq27uzwbo7R72yURT0m+J iGrCJUNyfCzqZHnN+N5F3h2ZjC/gUFxyeNPP+AHWstf01CYd9bmyhp55WPhCnml7 f2KAqLOEU4+kAGK6qdPjGgiMQfv4Q7zpCVXKVG99ynDP+nGZiqKjDpI5HTtlXQi0 1kjYMvt7xzgSU0sfsZyJNfEoVtI3hS0NcbmIULX5ZgJoEwDudXZcgqFWj3gCzzO3 CeO7qPDvBRBc1ooFQVCUeFYg5vpWS8CkdDbVk4LHJpZ1LBPK9aifzi92XZ5o68Sy t7PPyVp7pGMCq0p/lFPXP6RiGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpHO4Yy O7VmCvGcaWHjh+DG41TgMB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4ZCTXWgRZYQtGZ8nJ5tJK7tMZDpy6xnJw+g4ICbZbHa49/ND+N3DA +k45lQlKKqDFG8p5sdahajHKLDt4hUp8TE/0zmLeuE2oBcmBgR8k+mDpn/uNz5S+ YDWNMoG6sC6RIThIMlg207WJkkqjMBaamGSqR1VrksDVGXXwRsTOESWhSAVkjye1 zpCh975tlzPJEXRrHe8jetYwmEHmZC5nlTJdLU4QVS/hl0Re+gKUI3UiXVwmxFNX tQ4e2F1LNSPrWd+LqsMXzeDXqUn7L15dOO9Re+3PhESott+mr8XIHr0yUKHLR64G Flaw3GWoEg6P1rmjLeCkDZBfrKPHHmtf -----END CERTIFICATE-----Generated at Fri Jul 4 18:46:51 2025 by rpki-client