$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: EaamqpsBOfuQC56RI0wb+zgNjVclQwCS7mI0WmGBRWM= Subject key identifier: FE:63:8E:F0:D1:78:82:E8:4A:B8:71:8A:46:FC:15:2B:59:71:3C:7A Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 1510 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 1505 Signing time: Sat 14 Jun 2025 16:46:48 +0000 Manifest this update: Sat 14 Jun 2025 16:46:47 +0000 Manifest next update: Sat 21 Jun 2025 16:46:47 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: MVfI3mRCUQqbLfXF+tZsWEtQUoq1TB9l+6+YCeuDKzI=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: +ky1f68JVI+WJMPyIx0Bvw2IHS7jWAofaiHUOQbQU/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5392 (0x1510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3, serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Jun 14 16:46:47 2025 GMT Not After : Jun 21 16:46:47 2025 GMT Subject: CN=684da778-db21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:bb:5c:8f:4d:11:5b:be:3a:10:6a:93:d3:0c: aa:52:2b:b3:fa:85:7f:90:76:1a:65:c7:56:0c:22: 88:a4:2c:13:59:64:49:65:a1:a2:1b:db:ed:0d:b2: 7c:f7:eb:b5:ab:54:8b:f5:59:04:69:09:ec:b6:4e: ee:2c:48:2b:d7:1f:64:0b:56:41:8f:35:14:b6:61: 94:27:bf:b4:63:17:23:65:bf:c0:80:ee:02:25:72: ca:ee:5f:47:01:7d:5d:6d:8c:2b:6c:ad:13:af:b5: 2c:21:d3:89:b4:0a:c2:be:1c:75:b4:e0:57:11:38: 1c:70:2c:a3:e0:0a:a6:74:79:05:d7:6b:ee:7c:9c: 45:aa:1d:97:43:ca:f0:96:72:8b:af:6f:2f:5a:6c: fd:40:4e:c5:3c:57:cb:d6:cc:92:33:ba:90:9a:cb: 5c:de:86:97:61:79:c0:c5:41:dd:09:4a:a7:77:ab: 9e:11:47:5b:27:b9:61:fe:c5:6d:fd:b7:d0:b6:56: 33:3b:f5:45:99:9c:9e:ab:08:b7:f8:83:6b:2b:55: 6d:9c:85:c0:05:a5:ec:3d:75:ce:fe:e3:8b:20:b2: 7e:99:b5:74:49:34:64:ce:b5:97:40:e0:04:f3:a4: 64:15:c3:7f:ae:aa:cc:a8:f8:79:01:5e:58:d4:01: 69:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:63:8E:F0:D1:78:82:E8:4A:B8:71:8A:46:FC:15:2B:59:71:3C:7A X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:bd:12:3f:7d:83:28:5e:27:99:fd:5e:11:52:74:49:0f:e3: a9:53:60:8d:b8:bd:05:2b:32:95:12:b2:64:bb:cd:a7:35:c8: 6d:b1:34:6f:4e:71:b0:3d:a3:45:6a:17:90:dc:5e:eb:40:a8: 02:21:b0:68:50:6c:d6:b2:f4:10:f0:38:03:36:f9:37:4e:6e: 44:d7:3e:92:82:fb:07:d4:f8:d6:6a:98:ff:e2:77:9d:26:f7: fb:4b:bd:ac:a1:3d:21:81:19:a4:59:5d:a7:a0:c6:81:69:05: 65:ad:68:2b:69:64:4d:aa:a7:55:8b:b7:c2:96:ba:d8:58:13: d1:91:ea:ea:d1:85:84:29:17:f4:fb:64:e8:c1:33:35:50:b1: 97:a5:50:9b:6a:5d:c9:47:90:2e:e1:be:7b:2a:75:41:e7:4d: 99:0f:87:f7:06:ad:9d:c3:b3:9f:31:4c:58:7d:98:37:a1:bf: 4e:4c:ec:a1:a3:b2:4e:b4:f7:11:70:53:53:39:84:aa:50:53: fa:96:5b:bd:61:e7:ea:5f:6c:da:d6:79:9c:bb:04:84:ba:a0: 01:09:cd:77:7d:39:39:32:bf:16:65:0b:34:1d:0e:ed:82:91: fc:b3:ca:68:66:58:b6:96:b6:df:07:b3:f7:b2:a4:e8:81:87: c5:b5:ef:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjUwNjE0MTY0NjQ3WhcNMjUwNjIxMTY0NjQ3WjAYMRYwFAYD VQQDEw02ODRkYTc3OC1kYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ltcj00RW746EGqT0wyqUiuz+oV/kHYaZcdWDCKIpCwTWWRJZaGiG9vtDbJ8 9+u1q1SL9VkEaQnstk7uLEgr1x9kC1ZBjzUUtmGUJ7+0YxcjZb/AgO4CJXLK7l9H AX1dbYwrbK0Tr7UsIdOJtArCvhx1tOBXETgccCyj4AqmdHkF12vufJxFqh2XQ8rw lnKLr28vWmz9QE7FPFfL1sySM7qQmstc3oaXYXnAxUHdCUqnd6ueEUdbJ7lh/sVt /bfQtlYzO/VFmZyeqwi3+INrK1VtnIXABaXsPXXO/uOLILJ+mbV0STRkzrWXQOAE 86RkFcN/rqrMqPh5AV5Y1AFpQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5jjvDR eILoSrhxikb8FStZcTx6MB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhvRI/fYMoXieZ/V4RUnRJD+OpU2CNuL0FKzKVErJku82nNchtsTRv TnGwPaNFaheQ3F7rQKgCIbBoUGzWsvQQ8DgDNvk3Tm5E1z6SgvsH1PjWapj/4ned Jvf7S72soT0hgRmkWV2noMaBaQVlrWgraWRNqqdVi7fClrrYWBPRkerq0YWEKRf0 +2TowTM1ULGXpVCbal3JR5Au4b57KnVB502ZD4f3Bq2dw7OfMUxYfZg3ob9OTOyh o7JOtPcRcFNTOYSqUFP6llu9YefqX2za1nmcuwSEuqABCc13fTk5Mr8WZQs0HQ7t gpH8s8poZli2lrbfB7P3sqTogYfFte/f -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:34 2025 by rpki-client