$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: EezY1v7nbn3Es/3uKNYTcg1++OzZ152WbwLvFYbDohQ= Subject key identifier: 10:E2:FC:A7:4F:74:EF:95:06:87:CA:26:45:CB:83:35:7C:A0:2D:CB Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 0798 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 0793 Signing time: Wed 18 Jun 2025 21:13:01 +0000 Manifest this update: Wed 18 Jun 2025 21:13:00 +0000 Manifest next update: Wed 25 Jun 2025 21:13:00 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: 5e7hLB512+XcuyKcWxlEvk1CD6H4fVBk8SPsZYkjBno=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1944 (0x798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Jun 18 21:13:00 2025 GMT Not After : Jun 25 21:13:00 2025 GMT Subject: CN=68532bdc-4577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:40:34:6c:0e:a2:88:e5:51:f4:cd:fa:91:e1: 30:95:cc:74:70:44:f2:42:f1:4d:89:04:6d:ac:a4: 61:78:4c:91:b1:b7:27:9f:12:32:c8:6b:ac:82:27: e9:c5:46:8b:9d:52:0e:8e:e6:0a:1b:99:13:30:b3: 40:6b:79:b8:4d:84:49:cc:38:69:7d:fc:f3:75:78: 12:22:0e:ea:3d:c7:f0:93:97:71:97:45:7a:17:49: c8:cf:27:6e:73:65:f1:4d:a6:6d:be:ce:57:83:1a: c8:7e:08:73:3d:9d:c1:5a:82:77:1e:71:ea:9f:d6: a9:b9:b7:d8:28:71:1b:64:cf:a3:4d:73:7d:a5:a5: ef:98:18:e8:1b:40:9e:b7:9c:4e:79:d6:db:57:87: 39:7f:08:42:20:90:5b:4a:4e:ac:41:ff:67:af:a0: 89:aa:1b:13:d6:e2:45:6a:22:0d:de:0a:23:c1:05: 7a:1e:c5:3f:62:2e:84:1f:3e:bb:4f:a0:c2:51:0e: 15:ca:53:af:23:5b:65:a5:41:8f:25:f3:fd:56:58: a9:11:e2:07:ba:61:b9:df:c8:a8:d7:31:32:34:e3: 42:69:85:27:00:87:de:7f:1f:d2:73:f3:59:e1:2d: 16:4b:42:65:a2:9c:e6:a0:06:fa:4c:ec:76:0b:da: c1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:E2:FC:A7:4F:74:EF:95:06:87:CA:26:45:CB:83:35:7C:A0:2D:CB X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:0b:c6:b1:f7:a2:f5:d5:25:3e:18:0c:f4:e9:c5:1f:d3:52: 87:70:74:32:a7:91:1b:28:79:68:63:3d:0f:c0:93:eb:58:2a: 91:25:94:5e:68:19:5f:77:61:a1:46:35:6a:1c:0b:28:e2:a1: d2:9e:6c:a5:4f:b6:d2:e7:fc:a3:d3:ce:3b:f9:d6:7c:ec:fd: 0e:83:86:89:95:ec:52:3b:ec:81:70:48:64:df:e6:c9:28:a1: ad:09:82:00:5c:24:e9:5f:2f:d2:b6:bb:33:8a:16:e5:c0:57: 13:77:99:4b:7c:f1:12:40:37:93:63:92:53:b7:79:11:3b:c6: fe:cc:88:ed:45:7e:67:67:78:87:39:6f:b3:0f:05:c9:18:6b: 20:dd:e8:09:56:f3:e1:84:65:79:be:a5:ff:38:c0:8c:50:da: 8d:0f:1b:a5:96:34:1c:06:d2:10:4e:d7:d5:25:f6:78:e1:95: 89:f6:9e:9c:f8:9a:78:a4:9e:13:9a:7d:53:3e:17:1e:be:f5: b1:00:9e:ca:77:11:34:27:82:25:53:86:1b:ac:a6:91:b7:e6: 59:1b:ae:e8:10:08:44:a9:0a:30:57:fa:d0:f1:b1:11:62:8f: 8f:80:e2:ec:be:c4:47:b5:40:82:05:97:39:86:9a:15:4d:43: 28:1d:e9:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUwNjE4MjExMzAwWhcNMjUwNjI1MjExMzAwWjAYMRYwFAYD VQQDEw02ODUzMmJkYy00NTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7UA0bA6iiOVR9M36keEwlcx0cETyQvFNiQRtrKRheEyRsbcnnxIyyGusgifp xUaLnVIOjuYKG5kTMLNAa3m4TYRJzDhpffzzdXgSIg7qPcfwk5dxl0V6F0nIzydu c2XxTaZtvs5XgxrIfghzPZ3BWoJ3HnHqn9apubfYKHEbZM+jTXN9paXvmBjoG0Ce t5xOedbbV4c5fwhCIJBbSk6sQf9nr6CJqhsT1uJFaiIN3gojwQV6HsU/Yi6EHz67 T6DCUQ4VylOvI1tlpUGPJfP9VlipEeIHumG538io1zEyNONCaYUnAIfefx/Sc/NZ 4S0WS0JlopzmoAb6TOx2C9rBXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDi/KdP dO+VBofKJkXLgzV8oC3LMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaC8ax96L11SU+GAz06cUf01KHcHQyp5EbKHloYz0PwJPrWCqRJZRe aBlfd2GhRjVqHAso4qHSnmylT7bS5/yj0847+dZ87P0Og4aJlexSO+yBcEhk3+bJ KKGtCYIAXCTpXy/StrszihblwFcTd5lLfPESQDeTY5JTt3kRO8b+zIjtRX5nZ3iH OW+zDwXJGGsg3egJVvPhhGV5vqX/OMCMUNqNDxulljQcBtIQTtfVJfZ44ZWJ9p6c +Jp4pJ4Tmn1TPhcevvWxAJ7KdxE0J4IlU4YbrKaRt+ZZG67oEAhEqQowV/rQ8bER Yo+PgOLsvsRHtUCCBZc5hpoVTUMoHenL -----END CERTIFICATE-----Generated at Fri Jun 20 11:28:08 2025 by rpki-client