$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft File: OLX3py9k7NJYhfi0dYUC4j2oOLs.mft (raw, json) Hash identifier: eW6jTZ6YPB9jCXnnt3DmJvJ4RXZAJhm6itiog6wYDSo= Subject key identifier: CB:48:C5:F2:44:FE:D6:29:BB:5D:B4:21:5E:CC:CA:81:88:53:7C:64 Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Certificate serial: 0A46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft Manifest number: 0A31 Signing time: Wed 06 Aug 2025 20:05:14 +0000 Manifest this update: Wed 06 Aug 2025 20:05:14 +0000 Manifest next update: Wed 13 Aug 2025 20:05:14 +0000 Files and hashes: 1: OLX3py9k7NJYhfi0dYUC4j2oOLs.crl (hash: kYGlFIMYTRFkSojyPUtO0y2a7+zleRXUwVoKXPYUAsk=) 2: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (hash: +OxVgsTFeHXtInD93OSVx4VoDwnGKpFnWPCaCB5ImQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2630 (0xa46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C039, serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Validity Not Before: Aug 6 20:05:14 2025 GMT Not After : Aug 13 20:05:14 2025 GMT Subject: CN=6893b57a-c725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2d:36:6a:80:e9:e9:03:ab:99:0e:0c:57:3c: f7:c6:66:fb:5b:a6:0f:90:e8:bf:f8:52:a8:24:57: d6:c9:56:fb:8b:e5:00:b7:99:f3:0c:66:3f:c2:8a: fc:dc:b7:b4:dd:34:d6:62:1e:c9:e0:76:0e:4f:5b: fd:75:c2:0f:3a:84:c6:d1:68:1c:fe:b1:82:e4:70: 8a:ab:06:d0:2f:17:1e:e5:3b:84:42:03:86:a0:85: 54:e1:1b:88:05:d9:2c:8d:3f:a9:77:ae:fa:d0:61: 2d:89:e8:fc:96:58:b2:69:d3:b5:b1:d9:37:56:f8: dc:b8:bf:90:90:3f:21:8d:7f:ff:a5:9f:fd:8c:22: e5:45:bc:d2:9c:0a:b6:7f:7b:6c:14:80:d2:b4:2c: b4:1f:21:98:68:8e:92:13:d7:22:a5:b8:56:33:4e: 1b:8b:02:65:8f:c0:13:eb:78:b6:f3:ce:4f:2b:0e: 5f:7f:88:86:f2:d7:74:07:91:39:7e:55:1b:84:3a: 23:b3:17:13:1e:44:46:46:95:f3:c5:2c:98:33:f5: 34:8d:17:b5:85:5c:f1:a4:a8:60:93:24:cb:a3:82: a5:1a:3d:fb:77:33:12:d2:84:c2:41:f9:de:a7:30: d1:47:9d:2d:6c:c2:0c:9e:39:f6:34:ed:7a:48:2f: 25:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:48:C5:F2:44:FE:D6:29:BB:5D:B4:21:5E:CC:CA:81:88:53:7C:64 X509v3 Authority Key Identifier: keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:49:82:e9:94:b8:f5:fe:aa:4a:70:90:b0:f5:e0:e5:e0:02: 1f:c3:bf:f0:f2:85:e4:36:ab:4f:9a:58:06:f7:eb:3d:9a:7d: 6b:fd:99:58:5f:ef:1e:37:db:c9:83:6c:7c:78:25:fb:4b:6b: e8:59:6f:41:29:b8:b5:ca:7f:7f:d0:9e:84:10:cf:eb:bf:17: c2:1e:4c:5a:8b:e9:0c:ff:40:f4:b9:f9:59:36:a1:65:a4:3d: 87:c3:48:b9:1e:62:ac:28:9c:38:22:74:ff:9b:6b:c0:07:b5: 8c:d3:2b:01:74:f9:77:e9:4d:a2:cc:e1:77:93:28:f6:ea:1e: 39:37:01:54:0a:af:54:1e:1b:39:bb:a8:db:7c:6a:0b:9c:b1: da:9d:a6:09:46:c9:2b:d5:8b:8e:fe:20:b2:c0:9c:02:68:c2: 82:7d:98:64:21:09:92:6e:aa:07:de:21:10:c8:c8:f1:75:8d: 07:ca:df:a9:fd:4e:1c:2d:75:0b:cb:17:01:65:9a:a8:7a:8a: 9a:7e:03:a9:df:ee:45:69:08:72:0f:38:93:7c:81:2f:a2:35: c4:91:96:c0:4b:d3:45:0d:14:40:5a:db:ab:d1:56:ba:10:ab: f2:48:f5:4b:25:13:30:83:d2:b5:3c:cc:37:bf:c5:26:f2:be: 3b:df:ce:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwMzkxMTAvBgNVBAUTKDM4QjVGN0E3MkY2NEVDRDI1ODg1RjhCNDc1ODUwMkUy M0RBODM4QkIwHhcNMjUwODA2MjAwNTE0WhcNMjUwODEzMjAwNTE0WjAYMRYwFAYD VQQDEw02ODkzYjU3YS1jNzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7y02aoDp6QOrmQ4MVzz3xmb7W6YPkOi/+FKoJFfWyVb7i+UAt5nzDGY/wor8 3Le03TTWYh7J4HYOT1v9dcIPOoTG0Wgc/rGC5HCKqwbQLxce5TuEQgOGoIVU4RuI BdksjT+pd6760GEtiej8lliyadO1sdk3VvjcuL+QkD8hjX//pZ/9jCLlRbzSnAq2 f3tsFIDStCy0HyGYaI6SE9cipbhWM04biwJlj8AT63i2885PKw5ff4iG8td0B5E5 flUbhDojsxcTHkRGRpXzxSyYM/U0jRe1hVzxpKhgkyTLo4KlGj37dzMS0oTCQfne pzDRR50tbMIMnjn2NO16SC8lcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtIxfJE /tYpu120IV7MyoGIU3xkMB8GA1UdIwQYMBaAFDi196cvZOzSWIX4tHWFAuI9qDi7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzAzOS9DMjVEMDJGRTc4 OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdOSlloZmkwZFlVQzRqMm9P THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09MWDNweTlrN05KWWhmaTBkWVVDNGoyb09Mcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzAzOS9DMjVEMDJGRTc4OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdO SlloZmkwZFlVQzRqMm9PTHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClSYLplLj1/qpKcJCw9eDl4AIfw7/w8oXkNqtPmlgG9+s9mn1r/ZlY X+8eN9vJg2x8eCX7S2voWW9BKbi1yn9/0J6EEM/rvxfCHkxai+kM/0D0uflZNqFl pD2Hw0i5HmKsKJw4InT/m2vAB7WM0ysBdPl36U2izOF3kyj26h45NwFUCq9UHhs5 u6jbfGoLnLHanaYJRskr1YuO/iCywJwCaMKCfZhkIQmSbqoH3iEQyMjxdY0Hyt+p /U4cLXULyxcBZZqoeoqafgOp3+5FaQhyDziTfIEvojXEkZbAS9NFDRRAWtur0Va6 EKvySPVLJRMwg9K1PMw3v8Um8r47386J -----END CERTIFICATE-----Generated at Thu Aug 7 05:10:24 2025 by rpki-client