$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: yJAdqFb8FU7oA25IjBPnHv1sZ2Ek5DOaJHT0MI0c0Z0= Subject key identifier: 51:FD:E8:E6:FA:FF:50:6E:48:94:AD:25:C2:30:1B:99:69:34:D9:24 Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 07B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 07AF Signing time: Tue 12 Aug 2025 21:36:43 +0000 Manifest this update: Tue 12 Aug 2025 21:36:43 +0000 Manifest next update: Tue 19 Aug 2025 21:36:43 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: IvK9KmXuvzF4ZCSJltbdLLhzzDgxekcKhBjyklwbai8=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 21:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1972 (0x7b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Aug 12 21:36:43 2025 GMT Not After : Aug 19 21:36:43 2025 GMT Subject: CN=689bb3eb-1e8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f7:c5:d3:27:56:90:25:d3:e3:bd:ac:e2:44: fd:69:16:e9:da:be:f5:4c:55:b2:4b:38:9c:e8:86: ce:61:b9:81:1d:18:54:70:a6:45:92:c3:ea:b2:3c: ce:0e:58:ca:38:35:35:0e:82:c7:d5:b3:0d:56:6c: 4b:18:e1:03:ef:48:ae:7a:8d:99:71:8a:eb:84:20: 3b:aa:9e:a3:b8:2c:b5:eb:ae:c9:77:58:68:6b:6e: c6:b0:6f:a1:cc:4f:e9:20:0e:58:4e:ed:07:5b:5d: f0:48:66:91:3e:98:6e:28:b4:c3:56:9d:d3:e3:ef: 15:fd:2d:32:6c:7f:a5:73:b6:f7:b4:78:53:4f:c0: 71:44:63:fe:04:28:29:52:34:be:81:26:cb:54:76: 94:ce:80:3d:31:91:e8:73:8f:6b:4c:3d:70:b4:5f: 96:30:0d:18:0e:f6:a4:c6:1d:b2:80:ca:f5:b5:89: 2e:bd:b1:ad:2e:a3:d0:f6:8c:a7:e6:ce:1b:3c:79: 3b:93:4b:8c:6c:72:37:e6:4a:cb:97:89:b4:89:00: 42:2d:ba:ab:f8:06:5c:ac:7f:0e:fe:7b:9f:c7:02: 93:2d:51:3b:49:96:bc:de:9a:7c:db:e6:b5:41:72: f5:5f:3e:20:81:fd:a4:1f:d8:ee:2c:9a:40:83:62: a7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:FD:E8:E6:FA:FF:50:6E:48:94:AD:25:C2:30:1B:99:69:34:D9:24 X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:52:05:6e:6e:ec:f7:7b:96:0f:41:6d:84:14:ea:d5:cc:05: 1e:d3:88:a5:e8:e6:15:f1:46:61:77:36:ce:c9:7e:5f:79:4b: 53:8c:1f:b9:11:79:e1:d6:44:b8:7a:40:63:6f:81:ba:50:f3: db:7d:28:25:cc:6a:19:a0:6d:57:be:fe:96:81:cd:ad:d2:31: 7a:26:2c:36:16:73:87:e5:81:74:c8:4f:4c:af:b5:be:49:18: d0:16:6e:36:60:46:33:63:f0:7c:3c:9c:71:26:bd:5a:a9:3a: 5c:1b:fe:ab:07:c1:3c:13:9f:dd:88:94:02:79:7f:bd:ee:4b: 61:38:4b:15:75:06:9b:40:f8:73:30:ad:d9:5a:e7:54:17:ca: fe:6b:a8:a2:87:2c:70:35:7e:0a:ab:d6:b1:e4:03:66:9e:8a: 3a:9d:f3:24:29:98:6f:55:40:03:2e:02:c1:cb:39:09:08:7b: b6:ca:ad:04:b7:b3:85:3f:62:c1:dc:ef:ba:72:c3:c9:c4:1d: 90:7c:b2:db:4a:80:db:e3:2c:b4:5e:61:16:fe:8a:95:a9:6e: 0b:6d:ee:43:0b:59:6a:4c:e6:ed:b2:6d:47:18:7d:14:3c:64: 75:6c:46:ed:7b:f9:c9:06:1d:0e:32:22:92:fb:fc:d8:7f:55: 20:a0:a7:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUwODEyMjEzNjQzWhcNMjUwODE5MjEzNjQzWjAYMRYwFAYD VQQDEw02ODliYjNlYi0xZThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuffF0ydWkCXT472s4kT9aRbp2r71TFWySzic6IbOYbmBHRhUcKZFksPqsjzO DljKODU1DoLH1bMNVmxLGOED70iueo2ZcYrrhCA7qp6juCy1667Jd1hoa27GsG+h zE/pIA5YTu0HW13wSGaRPphuKLTDVp3T4+8V/S0ybH+lc7b3tHhTT8BxRGP+BCgp UjS+gSbLVHaUzoA9MZHoc49rTD1wtF+WMA0YDvakxh2ygMr1tYkuvbGtLqPQ9oyn 5s4bPHk7k0uMbHI35krLl4m0iQBCLbqr+AZcrH8O/nufxwKTLVE7SZa83pp82+a1 QXL1Xz4ggf2kH9juLJpAg2KnEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFH96Ob6 /1BuSJStJcIwG5lpNNkkMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnUgVubuz3e5YPQW2EFOrVzAUe04il6OYV8UZhdzbOyX5feUtTjB+5 EXnh1kS4ekBjb4G6UPPbfSglzGoZoG1Xvv6Wgc2t0jF6Jiw2FnOH5YF0yE9Mr7W+ SRjQFm42YEYzY/B8PJxxJr1aqTpcG/6rB8E8E5/diJQCeX+97kthOEsVdQabQPhz MK3ZWudUF8r+a6iihyxwNX4Kq9ax5ANmnoo6nfMkKZhvVUADLgLByzkJCHu2yq0E t7OFP2LB3O+6csPJxB2QfLLbSoDb4yy0XmEW/oqVqW4Lbe5DC1lqTObtsm1HGH0U PGR1bEbte/nJBh0OMiKS+/zYf1UgoKe8 -----END CERTIFICATE-----Generated at Wed Aug 13 00:32:22 2025 by rpki-client