$ rpki-client -vvf rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft File: OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft (raw, json) Hash identifier: 0D9jtUGvRVaDVvcwt3DwdQ38VuHQMHbIReNtYu+/fj8= Subject key identifier: 42:8F:F3:FA:3D:35:2D:4D:07:6D:32:26:3D:20:4A:14:CC:CD:84:42 Authority key identifier: 38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 Certificate issuer: /CN=A9151638/serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Certificate serial: 049E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft Manifest number: 0498 Signing time: Thu 07 Aug 2025 00:30:57 +0000 Manifest this update: Thu 07 Aug 2025 00:30:57 +0000 Manifest next update: Thu 14 Aug 2025 00:30:57 +0000 Files and hashes: 1: OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl (hash: VH7EC1UvCrQmFafl6RNe+A+1HU0ifeH+rSKWHEoUTls=) 2: 2404BA68477011EC8A31B762C4F9AE02.roa (hash: LZSDyQE8pTBtNGB8AYE8ckz2kTeKfiBGL7LhbO/Zt7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151638, serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Validity Not Before: Aug 7 00:30:57 2025 GMT Not After : Aug 14 00:30:57 2025 GMT Subject: CN=6893f3c1-80eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f1:60:a6:97:53:28:78:85:34:ad:9d:af:84: c9:5e:ac:26:f9:e2:22:2e:19:95:84:85:98:64:9e: ba:01:65:03:c8:88:67:20:47:6e:9f:20:28:16:3d: 9f:25:d9:b2:04:b3:d5:5b:0a:9b:f2:6b:3c:02:b6: 19:f7:8e:23:92:ea:22:a4:da:da:be:95:3d:49:c5: 88:e6:64:5e:01:c0:86:b8:66:38:05:7a:fb:e3:10: 06:74:8a:d2:31:ad:5b:2d:97:b6:ad:5f:ec:ba:64: 13:6f:9e:0f:a8:10:78:92:4b:d7:49:69:b5:f5:90: 13:12:9e:cf:01:32:f4:a1:3d:cb:17:da:7f:0e:b4: 67:fc:ad:3e:50:04:1b:63:91:46:21:3d:39:3e:ec: d2:9f:ab:57:0e:44:34:2f:0a:5c:7c:02:d9:c8:5a: 57:95:54:90:76:87:5e:0b:95:04:93:df:53:71:a6: 0f:a0:5a:7a:8f:9f:95:00:64:7e:2d:cf:19:59:37: df:12:d8:3b:6e:12:9a:3d:cb:f1:ac:61:81:08:ed: 28:ee:df:4c:f4:80:fc:7d:8d:10:cb:36:07:f1:d2: d8:5f:ca:a4:22:95:f1:25:23:35:7d:85:d2:77:72: df:19:15:a0:f0:ab:95:25:79:9e:c1:54:83:56:0d: 1a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8F:F3:FA:3D:35:2D:4D:07:6D:32:26:3D:20:4A:14:CC:CD:84:42 X509v3 Authority Key Identifier: keyid:38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:3a:62:28:67:0f:aa:c7:61:11:8e:e7:20:ba:90:fe:be:ee: 62:f5:73:08:fa:3a:46:78:39:26:79:96:e2:d1:6f:f9:d8:71: be:ef:21:29:1f:8a:5b:bc:d8:06:23:36:ac:d3:b3:ba:da:16: 82:eb:24:ec:b8:da:a4:b6:0b:1c:09:5c:70:e5:22:48:c8:54: 46:a7:b3:33:64:6a:90:77:0f:e1:60:0f:51:70:8b:51:94:7c: 67:09:a2:ce:e9:de:c5:d4:bc:89:c0:d5:e0:b0:5e:1a:df:44: 55:e7:01:db:b1:a5:6a:87:8f:df:3d:9e:ff:8f:2b:1e:25:cc: 92:ae:6e:59:5a:f8:e8:e9:0f:36:53:ff:a7:7e:49:2a:d9:2c: 0f:43:00:49:fb:6c:e0:71:05:f9:65:34:f8:c4:02:92:da:b6: f9:aa:89:62:ea:cd:98:00:04:75:2f:cb:5c:c7:c7:2e:d7:cf: a1:10:dc:c7:0c:71:3d:89:cd:9b:68:80:8c:3c:7d:61:e4:c0: 57:94:5f:23:92:99:2c:98:59:7a:b0:be:af:79:10:a2:cb:78: a0:eb:26:d9:79:40:25:d2:d3:3f:fd:07:7a:8e:9a:99:88:1e: ea:42:5e:bc:87:e4:27:c0:89:5d:93:07:06:cf:f5:00:2a:e1: 6f:21:5e:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2MzgxMTAvBgNVBAUTKDM4NTkyRjA1NkY4M0NDRDQwQTYyQUUxMTYwMjkyNjk0 Mjg1QTJDRjQwHhcNMjUwODA3MDAzMDU3WhcNMjUwODE0MDAzMDU3WjAYMRYwFAYD VQQDEw02ODkzZjNjMS04MGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfFgppdTKHiFNK2dr4TJXqwm+eIiLhmVhIWYZJ66AWUDyIhnIEdunyAoFj2f JdmyBLPVWwqb8ms8ArYZ944jkuoipNravpU9ScWI5mReAcCGuGY4BXr74xAGdIrS Ma1bLZe2rV/sumQTb54PqBB4kkvXSWm19ZATEp7PATL0oT3LF9p/DrRn/K0+UAQb Y5FGIT05PuzSn6tXDkQ0LwpcfALZyFpXlVSQdodeC5UEk99TcaYPoFp6j5+VAGR+ Lc8ZWTffEtg7bhKaPcvxrGGBCO0o7t9M9ID8fY0QyzYH8dLYX8qkIpXxJSM1fYXS d3LfGRWg8KuVJXmewVSDVg0aFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKP8/o9 NS1NB20yJj0gShTMzYRCMB8GA1UdIwQYMBaAFDhZLwVvg8zUCmKuEWApJpQoWiz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTYzOC8xMjcxMTczMjQ3 NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpOUUtZcTRSWUNrbWxDaGFM UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Ga3ZCVy1Eek5RS1lxNFJZQ2ttbENoYUxQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTYzOC8xMjcxMTczMjQ3NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpO UUtZcTRSWUNrbWxDaGFMUFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtOmIoZw+qx2ERjucgupD+vu5i9XMI+jpGeDkmeZbi0W/52HG+7yEp H4pbvNgGIzas07O62haC6yTsuNqktgscCVxw5SJIyFRGp7MzZGqQdw/hYA9RcItR lHxnCaLO6d7F1LyJwNXgsF4a30RV5wHbsaVqh4/fPZ7/jyseJcySrm5ZWvjo6Q82 U/+nfkkq2SwPQwBJ+2zgcQX5ZTT4xAKS2rb5qoli6s2YAAR1L8tcx8cu18+hENzH DHE9ic2baICMPH1h5MBXlF8jkpksmFl6sL6veRCiy3ig6ybZeUAl0tM//Qd6jpqZ iB7qQl68h+QnwIldkwcGz/UAKuFvIV5z -----END CERTIFICATE-----Generated at Thu Aug 7 04:33:18 2025 by rpki-client