$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: V2eZFyOUjJdzaQbtFuO4JcsdEUOjwh4AQ04Nq9ZeSFY= Subject key identifier: A7:22:69:F0:9B:8C:CC:BF:58:8E:2C:3C:1C:FA:5A:E6:01:C3:62:DF Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 0816 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 080F Signing time: Thu 12 Jun 2025 20:36:58 +0000 Manifest this update: Thu 12 Jun 2025 20:36:57 +0000 Manifest next update: Thu 19 Jun 2025 20:36:57 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: TlsPGwO0XS4uNvxDFv2HqN1cvhNzEEfGFiGRDrx+bIw=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: OwVRnVKX5TIRRxRa7tYPZCkquxRI/+jnc5rYmXmYkKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: Jun 12 20:36:57 2025 GMT Not After : Jun 19 20:36:57 2025 GMT Subject: CN=684b3a69-66c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ed:80:c6:a7:3a:16:2d:63:1c:73:99:9c:34: a4:73:f4:76:4b:fb:53:e5:60:dc:92:64:09:10:a8: 38:8a:77:22:c3:4e:ce:1f:a4:0d:4f:8e:3c:00:b7: 10:b8:47:6a:ad:4e:3a:b0:3b:51:91:af:28:73:fc: a8:56:6c:00:c2:9a:07:07:21:1b:3e:cd:74:78:04: 12:1c:fd:fa:d9:23:5c:be:b8:16:c6:43:b9:33:84: 99:1e:81:cd:90:26:fb:05:30:5e:57:56:0c:87:0e: 3d:f7:70:7f:50:17:3b:5b:c6:38:37:20:c7:7d:2d: dc:7f:2e:c4:c7:38:44:1b:49:f0:14:d1:99:73:11: 06:18:95:66:4a:94:cc:1e:51:cf:21:4a:03:11:63: ab:26:4e:8c:b4:5d:71:e6:1a:22:b0:a9:54:30:38: c3:82:c7:cf:9f:c6:70:13:9b:af:b2:07:b0:00:1c: c1:76:25:a1:75:79:55:27:91:9a:f9:0d:a8:41:be: 13:c5:f7:87:c4:8e:01:09:6c:17:27:d6:68:72:4b: 86:b6:99:e5:32:74:d1:66:00:8a:4b:6d:c2:3e:27: 65:fa:0e:50:8a:8b:f8:3c:a4:42:92:69:7d:51:d2: 5e:98:96:c7:56:9f:64:d6:93:1d:47:be:12:6a:96: 29:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:22:69:F0:9B:8C:CC:BF:58:8E:2C:3C:1C:FA:5A:E6:01:C3:62:DF X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:f1:cc:83:c6:09:73:b9:6f:5c:74:8f:d0:e4:4f:86:eb:d3: 7c:83:54:b3:a8:70:97:d6:f0:0d:69:ec:a0:37:cd:40:e8:29: aa:ca:30:c6:ce:dc:f2:36:f4:74:f9:75:21:fe:ae:de:4d:58: 64:a8:36:06:c7:57:b2:8f:6b:64:c4:41:56:49:29:ec:6e:92: 3a:00:0b:e4:e9:c5:16:c6:e0:4e:0a:57:4f:ea:03:39:0d:68: b1:7d:8d:bb:d1:8d:d4:9f:64:ea:1c:fc:cb:55:df:79:f3:d2: a9:e4:a0:cc:95:b4:b1:79:4c:7e:b1:a0:5d:d5:a3:d3:3d:45: 70:2e:26:3d:3f:a1:cf:a3:83:26:39:a5:91:6b:a3:cb:76:7c: ce:90:d1:0c:64:9d:cb:b4:21:aa:2a:72:a0:19:95:80:fd:4a: e1:6e:7c:8c:a2:17:4f:98:91:eb:da:3a:fe:ad:7a:05:c1:d0: 72:ee:dd:64:8d:6e:ff:36:7e:c3:f5:7e:20:1c:69:4f:dc:b1: 9c:ad:21:f0:3c:8f:a6:00:e5:44:f6:c2:1d:2e:aa:be:32:f4: 41:b8:7b:73:f1:91:6e:08:e7:e0:6e:4d:d7:00:1f:59:82:af: cf:df:e1:c3:08:56:fc:f0:c8:7d:d9:59:ee:8a:72:7d:54:57: 4f:21:ff:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjUwNjEyMjAzNjU3WhcNMjUwNjE5MjAzNjU3WjAYMRYwFAYD VQQDEw02ODRiM2E2OS02NmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoO2Axqc6Fi1jHHOZnDSkc/R2S/tT5WDckmQJEKg4inciw07OH6QNT448ALcQ uEdqrU46sDtRka8oc/yoVmwAwpoHByEbPs10eAQSHP362SNcvrgWxkO5M4SZHoHN kCb7BTBeV1YMhw4993B/UBc7W8Y4NyDHfS3cfy7ExzhEG0nwFNGZcxEGGJVmSpTM HlHPIUoDEWOrJk6MtF1x5hoisKlUMDjDgsfPn8ZwE5uvsgewABzBdiWhdXlVJ5Ga +Q2oQb4TxfeHxI4BCWwXJ9ZockuGtpnlMnTRZgCKS23CPidl+g5Qiov4PKRCkml9 UdJemJbHVp9k1pMdR74SapYpiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKciafCb jMy/WI4sPBz6WuYBw2LfMB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk8cyDxglzuW9cdI/Q5E+G69N8g1SzqHCX1vANaeygN81A6CmqyjDG ztzyNvR0+XUh/q7eTVhkqDYGx1eyj2tkxEFWSSnsbpI6AAvk6cUWxuBOCldP6gM5 DWixfY270Y3Un2TqHPzLVd9589Kp5KDMlbSxeUx+saBd1aPTPUVwLiY9P6HPo4Mm OaWRa6PLdnzOkNEMZJ3LtCGqKnKgGZWA/UrhbnyMohdPmJHr2jr+rXoFwdBy7t1k jW7/Nn7D9X4gHGlP3LGcrSHwPI+mAOVE9sIdLqq+MvRBuHtz8ZFuCOfgbk3XAB9Z gq/P3+HDCFb88Mh92VnuinJ9VFdPIf+U -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:04 2025 by rpki-client