$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: NIrP2kjNvEcJuQwsna8ly614gxE9U7k9g97/6BzYrw0= Subject key identifier: 86:8B:9B:9D:C7:1E:49:3C:AE:C5:07:37:F5:22:B7:43:C8:36:49:8F Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 082D Signing time: Sun 10 Aug 2025 20:49:50 +0000 Manifest this update: Sun 10 Aug 2025 20:49:50 +0000 Manifest next update: Sun 17 Aug 2025 20:49:50 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: KE/h59xpLqqEvyx45bQoTULaNytPk/z8qHchlyFCWow=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: OwVRnVKX5TIRRxRa7tYPZCkquxRI/+jnc5rYmXmYkKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: Aug 10 20:49:50 2025 GMT Not After : Aug 17 20:49:50 2025 GMT Subject: CN=689905ee-183d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ce:ba:2d:c8:c1:8a:1e:82:1e:48:a4:0b:76: bc:25:c6:64:6d:ad:9c:62:5a:2a:62:c7:c4:75:33: 21:d2:6a:27:2f:03:69:11:be:3a:53:32:fd:bd:f3: a0:7c:a2:76:7c:5c:d4:1f:6d:9e:5d:d7:8c:3c:5d: 8e:44:fa:68:ed:e7:15:d5:d5:5c:d5:66:f5:2a:58: 27:1d:44:e5:01:9b:17:5c:92:f6:75:48:4c:5c:04: 9d:0d:02:fe:10:2b:ac:42:7b:ba:fc:4f:57:e5:f2: c9:a3:61:b7:f3:92:f1:1d:49:92:a9:b9:00:05:4c: a3:bd:97:83:d3:79:83:ff:f1:1d:ab:92:51:75:a0: fd:99:7e:7a:80:f4:55:4f:71:df:ba:fb:e4:01:52: d1:32:23:57:3b:9d:d9:86:f8:7a:93:77:f5:01:ea: 68:55:26:52:00:82:80:21:c0:ca:3b:e8:e8:56:d7: d8:82:d0:2d:0f:65:02:3e:8a:7e:00:f5:ab:b2:c4: dd:18:e7:66:7e:80:22:5c:68:4a:bb:be:27:1a:a0: 7c:b7:ca:77:b2:30:65:6f:3a:3b:e7:0d:a7:ba:96: 60:d8:d2:0c:80:4b:1f:b4:44:ec:89:61:ca:60:32: 56:a0:48:ff:69:cd:7d:b6:23:32:37:1d:a5:ea:16: 8f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8B:9B:9D:C7:1E:49:3C:AE:C5:07:37:F5:22:B7:43:C8:36:49:8F X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f4:61:03:1b:19:c7:19:87:26:a8:73:52:33:7c:d0:66:c5: 68:a9:54:34:d2:66:a7:07:f3:9d:6b:07:78:53:00:2d:62:2d: d1:16:b9:72:8c:96:df:d5:e3:d1:2f:77:d9:57:95:8b:4c:8b: 4a:02:57:8e:4f:68:42:d1:c4:e1:ea:14:f1:5e:28:e4:12:27: ee:b7:59:21:6e:ca:0e:34:9a:8f:31:d3:74:3c:15:49:79:89: f3:69:57:89:62:ea:f9:c4:38:c4:27:b6:a0:ab:52:46:96:ff: b1:6e:b5:a5:29:b1:a8:f0:c8:df:f5:ba:8c:27:86:7b:64:f7: b5:c0:98:cc:de:a9:06:5c:15:03:68:fd:f9:c6:e5:dd:ff:4a: 3e:ec:c7:a6:7a:70:96:95:1c:12:12:65:c7:01:b7:07:94:7b: 5b:c8:fc:b3:39:97:23:de:c5:99:2b:f5:d1:fb:c4:8f:69:29: a5:52:92:27:34:42:ac:25:94:0a:de:83:20:2d:89:1e:72:5a: 36:e5:09:41:b3:5d:43:8e:c8:4e:7f:7a:dd:f4:9d:97:65:3e: 28:74:59:44:1b:f7:aa:8a:7f:84:2c:ba:55:5e:89:c2:dc:3f: 5a:b6:93:14:ee:80:3d:68:a5:19:d8:33:c8:cd:f1:59:2b:7d: 60:3b:5b:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjUwODEwMjA0OTUwWhcNMjUwODE3MjA0OTUwWjAYMRYwFAYD VQQDEw02ODk5MDVlZS0xODNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv866LcjBih6CHkikC3a8JcZkba2cYloqYsfEdTMh0monLwNpEb46UzL9vfOg fKJ2fFzUH22eXdeMPF2ORPpo7ecV1dVc1Wb1KlgnHUTlAZsXXJL2dUhMXASdDQL+ ECusQnu6/E9X5fLJo2G385LxHUmSqbkABUyjvZeD03mD//Edq5JRdaD9mX56gPRV T3HfuvvkAVLRMiNXO53Zhvh6k3f1AepoVSZSAIKAIcDKO+joVtfYgtAtD2UCPop+ APWrssTdGOdmfoAiXGhKu74nGqB8t8p3sjBlbzo75w2nupZg2NIMgEsftETsiWHK YDJWoEj/ac19tiMyNx2l6haP5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaLm53H Hkk8rsUHN/Uit0PINkmPMB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS9GEDGxnHGYcmqHNSM3zQZsVoqVQ00manB/Odawd4UwAtYi3RFrly jJbf1ePRL3fZV5WLTItKAleOT2hC0cTh6hTxXijkEifut1khbsoONJqPMdN0PBVJ eYnzaVeJYur5xDjEJ7agq1JGlv+xbrWlKbGo8Mjf9bqMJ4Z7ZPe1wJjM3qkGXBUD aP35xuXd/0o+7MemenCWlRwSEmXHAbcHlHtbyPyzOZcj3sWZK/XR+8SPaSmlUpIn NEKsJZQK3oMgLYkeclo25QlBs11DjshOf3rd9J2XZT4odFlEG/eqin+ELLpVXonC 3D9atpMU7oA9aKUZ2DPIzfFZK31gO1u3 -----END CERTIFICATE-----Generated at Mon Aug 11 04:20:09 2025 by rpki-client