$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: 8H/e0HoIEKSMzTJaHYZo+CVqblzFPmT1AIqD2MnJSD4= Subject key identifier: B2:25:B7:AC:60:8E:DD:F8:DE:B3:EF:26:25:81:1E:35:D4:0D:F6:50 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0AA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0A9A Signing time: Fri 08 Aug 2025 19:51:52 +0000 Manifest this update: Fri 08 Aug 2025 19:51:51 +0000 Manifest next update: Fri 15 Aug 2025 19:51:51 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: EOIUvpuH4DpTPc74W85yVEKcx78SbxyPOP8C6zGKzaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Aug 8 19:51:51 2025 GMT Not After : Aug 15 19:51:51 2025 GMT Subject: CN=68965558-fab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2d:5d:2c:e6:51:86:24:63:3b:0d:47:b8:fb: 05:c4:2d:fa:18:73:2e:ea:b4:e6:ba:dc:b2:41:13: ca:f8:77:be:4e:20:27:f5:e7:92:35:11:7e:5d:75: 83:71:e4:33:ba:b1:a9:06:d1:06:08:8f:75:b7:75: 8d:10:ae:64:a3:c1:1c:08:01:ae:58:71:8a:d8:8c: cd:70:72:8f:0d:8c:6e:30:8e:6d:a3:5a:9d:74:58: 5b:97:46:4d:da:5c:23:00:fc:23:2e:81:b3:09:1f: 93:20:e4:25:e4:95:73:48:da:ef:90:59:55:0b:d2: d0:97:12:33:4c:3a:cc:34:b0:cd:28:ba:56:66:ef: 77:24:56:69:3b:78:95:fc:b5:ae:38:31:d4:6c:43: eb:51:e9:7a:bf:f6:61:1e:a0:be:15:97:b3:fd:0c: 70:69:58:02:40:c3:59:66:bb:e5:d4:09:7d:73:70: 1c:df:a2:5c:de:0d:b4:4b:b5:bb:18:b3:4a:8e:df: ff:f1:00:19:0c:af:99:f3:53:d6:6e:03:c3:88:b5: bf:af:60:67:03:49:d3:91:0c:77:5b:ff:22:1a:f0: 52:fc:50:91:78:29:c7:80:87:14:f0:72:2f:0f:a0: 9b:96:85:c8:ff:6f:1b:73:e0:7d:cf:96:1e:54:df: e6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:25:B7:AC:60:8E:DD:F8:DE:B3:EF:26:25:81:1E:35:D4:0D:F6:50 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:28:1a:15:59:a5:8e:87:f5:4d:62:b4:46:6a:77:5a:02:23: 47:af:11:48:2e:af:01:cd:e7:ca:b9:aa:36:55:10:11:6c:7e: 50:dd:1e:13:f8:6e:9b:9d:62:91:57:b7:3c:c6:c8:02:bf:48: 45:33:fd:17:2f:05:e7:eb:41:7e:14:3b:ba:e5:48:8d:9e:93: 2d:e3:32:9c:be:3d:d7:4f:cf:b7:08:72:21:5d:2a:dd:16:f8: 2a:65:ea:ce:3c:e9:b2:dc:6c:8f:88:23:ec:d7:3b:d5:92:c6: 27:26:c4:38:f3:89:ae:09:08:77:ec:b9:a1:50:3d:c6:c7:b8: 5f:4b:8c:b5:c1:ef:05:03:37:3f:5c:e6:c1:bc:9c:e2:ce:e0: 85:96:41:bf:1e:ed:21:53:74:84:e0:65:6e:2b:6b:9a:94:a1: 3d:57:80:5a:15:43:4b:61:2f:fa:33:5a:47:de:da:8c:8a:28: cc:af:e8:44:78:61:6a:45:5d:c2:d1:fe:0d:0f:e8:ca:de:b2: 3b:a1:db:ba:28:95:01:d2:fa:b3:06:ae:d2:7d:40:55:ae:5f: 5a:c8:23:e0:f4:68:78:92:52:cf:eb:1e:86:7f:f6:99:b9:a3: 23:74:78:17:9c:07:b0:e7:56:b7:be:59:08:20:80:97:21:8d: 31:7f:74:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUwODA4MTk1MTUxWhcNMjUwODE1MTk1MTUxWjAYMRYwFAYD VQQDEw02ODk2NTU1OC1mYWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvC1dLOZRhiRjOw1HuPsFxC36GHMu6rTmutyyQRPK+He+TiAn9eeSNRF+XXWD ceQzurGpBtEGCI91t3WNEK5ko8EcCAGuWHGK2IzNcHKPDYxuMI5to1qddFhbl0ZN 2lwjAPwjLoGzCR+TIOQl5JVzSNrvkFlVC9LQlxIzTDrMNLDNKLpWZu93JFZpO3iV /LWuODHUbEPrUel6v/ZhHqC+FZez/QxwaVgCQMNZZrvl1Al9c3Ac36Jc3g20S7W7 GLNKjt//8QAZDK+Z81PWbgPDiLW/r2BnA0nTkQx3W/8iGvBS/FCReCnHgIcU8HIv D6CbloXI/28bc+B9z5YeVN/mqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIlt6xg jt343rPvJiWBHjXUDfZQMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1KBoVWaWOh/VNYrRGandaAiNHrxFILq8BzefKuao2VRARbH5Q3R4T +G6bnWKRV7c8xsgCv0hFM/0XLwXn60F+FDu65UiNnpMt4zKcvj3XT8+3CHIhXSrd FvgqZerOPOmy3GyPiCPs1zvVksYnJsQ484muCQh37LmhUD3Gx7hfS4y1we8FAzc/ XObBvJzizuCFlkG/Hu0hU3SE4GVuK2ualKE9V4BaFUNLYS/6M1pH3tqMiijMr+hE eGFqRV3C0f4ND+jK3rI7odu6KJUB0vqzBq7SfUBVrl9ayCPg9Gh4klLP6x6Gf/aZ uaMjdHgXnAew51a3vlkIIICXIY0xf3Rs -----END CERTIFICATE-----Generated at Sat Aug 9 02:51:32 2025 by rpki-client