$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft File: OLX3py9k7NJYhfi0dYUC4j2oOLs.mft (raw, json) Hash identifier: h/ZSvN+kDz6E7F7z0L5lZSgG2ROQwOkf/A3c6hhWj8c= Subject key identifier: A9:16:DF:62:2E:E7:3A:F5:FA:8B:16:CC:AC:7A:29:92:6E:8C:4A:59 Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Certificate serial: 0A2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft Manifest number: 0A15 Signing time: Thu 12 Jun 2025 19:38:38 +0000 Manifest this update: Thu 12 Jun 2025 19:38:37 +0000 Manifest next update: Thu 19 Jun 2025 19:38:37 +0000 Files and hashes: 1: OLX3py9k7NJYhfi0dYUC4j2oOLs.crl (hash: MKOKb4XPmoW1ETnNsu9NmnL3aIrkbpC8E+CZGWMH5hU=) 2: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (hash: +OxVgsTFeHXtInD93OSVx4VoDwnGKpFnWPCaCB5ImQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2602 (0xa2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C039, serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Validity Not Before: Jun 12 19:38:37 2025 GMT Not After : Jun 19 19:38:37 2025 GMT Subject: CN=684b2cbe-d1e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8c:ec:aa:2f:27:13:05:72:fa:37:6d:db:c5: 8b:5c:20:a2:38:33:f3:02:41:e8:b5:c1:d5:69:a2: f7:f4:35:05:cb:05:23:d3:1b:f5:17:c4:88:af:f9: e7:a7:f5:ea:b8:79:81:45:5f:73:d1:d3:03:84:17: b4:61:e2:b6:6e:44:b8:54:2d:9b:66:d5:c6:7a:4f: 26:fd:57:b2:3e:ad:00:17:c8:d6:c6:e7:f1:12:96: d3:b4:24:df:f9:60:02:65:8f:37:11:ba:cd:62:90: 5f:73:a5:4f:b2:e0:b5:49:68:d1:6a:df:5f:17:f2: c5:f6:65:bd:be:d0:75:c4:07:e4:38:48:3a:2f:18: a8:d2:91:68:a9:5b:3d:b0:4c:27:0b:aa:5b:72:a9: 9f:56:e5:b1:33:10:52:bf:9d:7b:c9:f3:e8:ae:ce: b2:36:eb:2a:7c:25:68:74:62:f5:bb:64:06:6b:ac: d2:6b:66:8a:5a:2d:80:b8:57:6d:f6:50:3d:4e:c1: 70:84:df:d3:e8:9c:c7:0e:f7:fb:3f:54:b9:75:b2: 74:48:24:26:55:1f:4d:57:5e:91:f4:e3:1b:2b:ce: d7:8f:d2:84:c9:2c:f6:94:0c:30:18:47:ba:ae:4b: 9b:ee:7e:b6:9f:b1:8b:d0:49:cb:18:c1:b0:a9:6d: 32:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:16:DF:62:2E:E7:3A:F5:FA:8B:16:CC:AC:7A:29:92:6E:8C:4A:59 X509v3 Authority Key Identifier: keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:bc:34:32:60:e0:ff:c4:98:ab:bd:42:77:2b:64:c0:c2:29: b7:67:62:29:34:43:7f:a6:c7:aa:15:77:ed:02:32:09:f9:b8: 2b:b1:c7:8e:f4:36:19:22:9b:32:df:d8:22:ea:a9:14:84:a2: ba:88:cf:7b:a7:cb:89:b2:f3:c2:e7:86:8f:94:fc:2c:3c:87: 31:23:82:f3:a8:3b:68:50:ee:9d:1f:26:4d:de:1f:54:ea:2e: 53:3b:08:c5:25:52:98:58:02:b9:33:2c:62:25:8c:ca:b6:06: 03:a0:98:21:b7:f4:72:4c:d7:43:9a:30:d4:cb:57:61:a1:a1: 39:29:f3:55:2f:95:d7:91:ca:28:f4:e3:24:3b:28:28:f5:83: ea:74:39:5e:37:17:46:7f:05:04:4e:80:5d:c3:6e:5e:30:24: 32:66:cd:f2:8d:a6:00:10:8a:26:0b:0d:5a:be:7b:b1:d7:26: b6:dc:6c:6d:76:87:4d:6f:c9:86:01:34:8c:e0:31:b3:bd:5a: 1f:e9:41:54:a2:1b:e8:63:d0:31:ff:bf:8d:07:96:67:ef:21: 70:4f:c5:c4:a8:59:dc:10:40:d4:25:ad:85:60:df:a9:53:1b: 79:7b:40:3f:f3:49:d2:8b:99:53:e0:da:39:88:7e:39:12:7b: 4a:99:1f:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwMzkxMTAvBgNVBAUTKDM4QjVGN0E3MkY2NEVDRDI1ODg1RjhCNDc1ODUwMkUy M0RBODM4QkIwHhcNMjUwNjEyMTkzODM3WhcNMjUwNjE5MTkzODM3WjAYMRYwFAYD VQQDEw02ODRiMmNiZS1kMWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Yzsqi8nEwVy+jdt28WLXCCiODPzAkHotcHVaaL39DUFywUj0xv1F8SIr/nn p/XquHmBRV9z0dMDhBe0YeK2bkS4VC2bZtXGek8m/VeyPq0AF8jWxufxEpbTtCTf +WACZY83EbrNYpBfc6VPsuC1SWjRat9fF/LF9mW9vtB1xAfkOEg6Lxio0pFoqVs9 sEwnC6pbcqmfVuWxMxBSv517yfPors6yNusqfCVodGL1u2QGa6zSa2aKWi2AuFdt 9lA9TsFwhN/T6JzHDvf7P1S5dbJ0SCQmVR9NV16R9OMbK87Xj9KEySz2lAwwGEe6 rkub7n62n7GL0EnLGMGwqW0yMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkW32Iu 5zr1+osWzKx6KZJujEpZMB8GA1UdIwQYMBaAFDi196cvZOzSWIX4tHWFAuI9qDi7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzAzOS9DMjVEMDJGRTc4 OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdOSlloZmkwZFlVQzRqMm9P THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09MWDNweTlrN05KWWhmaTBkWVVDNGoyb09Mcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzAzOS9DMjVEMDJGRTc4OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdO SlloZmkwZFlVQzRqMm9PTHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjvDQyYOD/xJirvUJ3K2TAwim3Z2IpNEN/pseqFXftAjIJ+bgrsceO 9DYZIpsy39gi6qkUhKK6iM97p8uJsvPC54aPlPwsPIcxI4LzqDtoUO6dHyZN3h9U 6i5TOwjFJVKYWAK5MyxiJYzKtgYDoJght/RyTNdDmjDUy1dhoaE5KfNVL5XXkcoo 9OMkOygo9YPqdDleNxdGfwUEToBdw25eMCQyZs3yjaYAEIomCw1avnux1ya23Gxt dodNb8mGATSM4DGzvVof6UFUohvoY9Ax/7+NB5Zn7yFwT8XEqFncEEDUJa2FYN+p Uxt5e0A/80nSi5lT4No5iH45EntKmR/N -----END CERTIFICATE-----Generated at Sat Jun 14 18:55:10 2025 by rpki-client