$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft File: OGxcstbg7GFBrrc_STUhsFIKPPo.mft (raw, json) Hash identifier: hS6w2mNIphYrywpK6zYk5n78OJfvdTY9CVNxkrp8v2A= Subject key identifier: B4:7A:A2:4A:57:DD:AC:51:C9:42:1B:BD:B0:D8:C4:A2:AD:F4:C6:E1 Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1D67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft Manifest number: 1D58 Signing time: Fri 08 Aug 2025 16:16:53 +0000 Manifest this update: Fri 08 Aug 2025 16:16:53 +0000 Manifest next update: Fri 15 Aug 2025 16:16:53 +0000 Files and hashes: 1: OGxcstbg7GFBrrc_STUhsFIKPPo.crl (hash: 2ytBuGUyJWUiOpf34srAbU+gBbsg6f24675jqQ49Yxw=) 2: DE5B018C8D8B11EBB959991DC4F9AE02.roa (hash: GTYplA3+/oqNyhCsSIMGIT62xAe/H3EJbhvf29oZLZM=) 3: DD9C07828D8B11EBB959991DC4F9AE02.roa (hash: KcmqJfHxUpDuc0ECvYHJhDG4s7ZruYPj6RgZ3nxOtpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7527 (0x1d67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4, serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Aug 8 16:16:53 2025 GMT Not After : Aug 15 16:16:53 2025 GMT Subject: CN=689622f5-6ba1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:10:56:be:09:8d:32:fb:00:04:8c:49:5d:ca: 95:fd:00:04:76:46:35:b8:0d:e9:73:26:28:a4:93: b3:1e:b1:a0:c5:c5:27:3e:04:4e:db:e6:35:2c:45: d4:4e:85:68:04:92:9e:2e:4a:55:ec:c8:59:30:ce: b0:01:41:0a:3f:07:ba:2c:18:c8:ad:25:a2:26:ac: b9:b7:89:80:f8:54:f6:a3:b9:8e:13:c3:95:41:7a: 10:fa:22:8a:77:a6:3f:1f:54:a4:1c:02:50:f4:41: 36:c9:2c:8d:c7:23:8d:07:28:7c:42:58:d2:53:48: d6:d9:ba:52:99:84:0b:5e:50:f1:5d:db:a5:a2:c0: e6:2e:77:c0:b2:a5:38:48:70:70:d5:7a:71:29:a0: 29:ef:18:5b:ba:49:de:cd:25:ab:32:bb:30:15:55: 61:15:51:de:9c:ed:21:44:17:e3:a8:9c:2f:f9:52: 40:e9:c1:cb:cd:71:e8:9b:ab:bf:33:9e:37:b2:11: 49:c1:85:2f:58:e2:b3:df:3a:0c:12:bb:9a:d0:a0: 71:ef:f2:fc:29:c3:16:34:27:13:7b:57:51:38:2e: c3:0f:d7:38:7d:a6:51:e4:4d:e5:73:d4:39:68:9e: 01:04:43:65:d2:58:b0:76:25:60:d1:61:4b:09:ab: ca:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:7A:A2:4A:57:DD:AC:51:C9:42:1B:BD:B0:D8:C4:A2:AD:F4:C6:E1 X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e5:49:71:b1:fa:a7:cf:c6:48:b8:b7:63:64:50:a6:d5:e4: c3:bb:ec:ab:cc:db:af:68:5b:14:b3:2b:bf:97:91:01:f6:4f: 3b:ac:38:ab:8a:19:3f:24:09:0f:86:17:b1:6a:d0:1f:2d:2b: 41:d3:64:66:fc:09:5d:42:03:fe:e5:f3:0c:4f:95:6d:df:31: 1a:6e:ea:cf:6c:5f:28:b0:04:d1:47:e0:67:83:df:26:95:a9: 25:e0:f6:be:f0:cf:d3:18:6f:85:59:92:0d:9c:d7:93:d1:24: fd:62:1d:bd:62:41:aa:ca:4c:c7:10:06:d1:53:73:03:b9:3c: 9c:66:c6:50:dc:ce:fc:be:b4:cb:00:92:26:66:69:fb:d6:1f: 4e:ac:bd:d3:ef:15:2a:5a:7e:53:eb:e3:db:8c:18:a4:2d:5c: 4f:ee:b6:f4:32:ee:13:a1:50:eb:40:72:c0:ed:10:26:ca:7b: 18:ae:e6:c5:09:53:56:cf:86:84:39:8c:4c:24:e2:a4:a6:18: 14:95:98:73:6f:dc:27:ff:59:e1:0d:d0:53:54:4b:ce:32:b9: 88:d1:47:10:c0:38:aa:ce:4e:96:d9:77:4d:91:02:9b:90:df: ea:fb:92:d0:22:91:f7:5c:85:78:f8:93:69:50:b0:19:7b:7e: e3:d1:3f:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjUwODA4MTYxNjUzWhcNMjUwODE1MTYxNjUzWjAYMRYwFAYD VQQDEw02ODk2MjJmNS02YmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhBWvgmNMvsABIxJXcqV/QAEdkY1uA3pcyYopJOzHrGgxcUnPgRO2+Y1LEXU ToVoBJKeLkpV7MhZMM6wAUEKPwe6LBjIrSWiJqy5t4mA+FT2o7mOE8OVQXoQ+iKK d6Y/H1SkHAJQ9EE2ySyNxyONByh8QljSU0jW2bpSmYQLXlDxXdulosDmLnfAsqU4 SHBw1XpxKaAp7xhbuknezSWrMrswFVVhFVHenO0hRBfjqJwv+VJA6cHLzXHom6u/ M543shFJwYUvWOKz3zoMErua0KBx7/L8KcMWNCcTe1dROC7DD9c4faZR5E3lc9Q5 aJ4BBENl0liwdiVg0WFLCavKrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLR6okpX 3axRyUIbvbDYxKKt9MbhMB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0FCNC8xRkIwNDBBMEIxNzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdH RkJycmNfU1RVaHNGSUtQUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS5Ulxsfqnz8ZIuLdjZFCm1eTDu+yrzNuvaFsUsyu/l5EB9k87rDir ihk/JAkPhhexatAfLStB02Rm/AldQgP+5fMMT5Vt3zEaburPbF8osATRR+Bng98m lakl4Pa+8M/TGG+FWZINnNeT0ST9Yh29YkGqykzHEAbRU3MDuTycZsZQ3M78vrTL AJImZmn71h9OrL3T7xUqWn5T6+PbjBikLVxP7rb0Mu4ToVDrQHLA7RAmynsYrubF CVNWz4aEOYxMJOKkphgUlZhzb9wn/1nhDdBTVEvOMrmI0UcQwDiqzk6W2XdNkQKb kN/q+5LQIpH3XIV4+JNpULAZe37j0T9G -----END CERTIFICATE-----Generated at Sun Aug 10 04:45:22 2025 by rpki-client