$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: U9wIHQU8OF1iif5qG0IlqPFytUMPP4ei2BxeTjHhy/Y= Subject key identifier: FD:40:5B:94:FC:AE:60:D8:0F:E1:62:42:A4:70:9C:F4:48:5E:38:39 Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0A87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0A7E Signing time: Sat 14 Jun 2025 19:26:49 +0000 Manifest this update: Sat 14 Jun 2025 19:26:48 +0000 Manifest next update: Sat 21 Jun 2025 19:26:48 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: ZZdTpjnXuIysVeYku+d7Gpqo5P2/Vq4cuUdK0oXV+DI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2695 (0xa87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Jun 14 19:26:48 2025 GMT Not After : Jun 21 19:26:48 2025 GMT Subject: CN=684dccf8-b86a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e2:28:3b:d9:75:dd:63:61:ff:07:e4:9d:de: cd:58:5a:8a:ba:3e:7c:31:bc:4d:8f:6c:cb:5f:27: 2f:cb:45:d7:80:46:3c:4d:64:96:f2:58:a8:ea:ad: 5d:c7:b3:c4:bb:0d:c0:1c:86:38:f6:56:4e:fe:43: 25:33:f6:68:a0:1e:65:86:0b:1d:66:66:1a:c6:06: 55:06:0c:47:cd:69:3e:b8:bd:0c:0c:1d:b4:d0:ff: f3:5f:53:5d:dc:6d:53:ac:dc:d0:c5:37:af:7e:6f: a2:35:32:82:9d:96:80:94:f7:4a:c8:59:39:64:8a: f8:6e:a0:95:d1:85:f2:b4:c1:fb:df:9f:d8:19:fb: 3b:5f:20:3e:9a:69:3b:25:be:99:1f:33:ee:97:b5: 82:cb:5e:c5:20:cf:15:f9:71:ef:7c:d7:69:c4:06: ef:1b:29:a2:78:60:b5:b9:d3:41:d1:1c:53:db:4e: 97:06:64:9a:35:c6:44:90:c9:d2:79:9f:1d:48:e7: 6b:a1:03:6f:b9:f5:84:9a:55:b3:4f:3d:49:1a:ef: 29:f2:0c:25:36:4d:a8:c3:c4:13:39:2c:f6:6f:2c: 48:99:e0:d6:df:ba:71:7e:45:1c:5c:69:0c:60:19: 8b:65:20:2f:24:61:ba:8d:b8:5f:b9:53:97:1d:06: 11:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:40:5B:94:FC:AE:60:D8:0F:E1:62:42:A4:70:9C:F4:48:5E:38:39 X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:7d:c9:1b:07:76:14:0b:d8:5c:ca:06:82:b5:bf:6b:56:0f: 83:e2:52:f6:e7:60:48:f4:f5:56:98:44:e2:0b:85:5e:88:a9: d7:85:1e:fc:af:e1:40:43:62:c9:42:b0:6d:80:a8:49:4c:76: fb:c0:6b:24:ec:29:c5:9b:41:a2:e1:70:61:fe:10:21:d9:5a: 51:ca:35:43:ee:26:25:83:49:94:8d:8c:13:f7:c4:87:3a:d5: 6f:91:bf:f4:97:3d:62:86:e3:84:bb:29:f3:05:f8:60:d1:1f: 21:55:b7:bf:5e:6e:4e:c3:f0:2f:1b:b5:7b:ea:5b:24:c9:e0: 1a:5f:f4:35:94:b7:f8:d0:c1:bc:72:5a:01:d2:da:38:ce:d8: ab:7d:fc:b4:65:fa:8a:f2:15:2c:00:3c:a2:8b:c0:0f:1c:2b: d6:b8:46:1d:eb:f4:49:90:58:b9:23:4b:8e:ff:15:db:19:89: f9:c3:06:40:c0:5c:66:8d:3b:10:e6:e1:83:d6:15:7f:3c:fb: 96:de:51:f7:77:2b:fd:1d:81:30:77:7f:13:1a:ab:6c:86:1d: 60:3a:8c:e6:0e:5d:f8:7b:f8:b7:c0:98:a2:43:45:af:e5:c3: 12:39:e3:56:b7:6a:24:6f:07:ca:5c:04:cb:86:35:06:23:a1: 20:3b:b1:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUwNjE0MTkyNjQ4WhcNMjUwNjIxMTkyNjQ4WjAYMRYwFAYD VQQDEw02ODRkY2NmOC1iODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uIoO9l13WNh/wfknd7NWFqKuj58MbxNj2zLXycvy0XXgEY8TWSW8lio6q1d x7PEuw3AHIY49lZO/kMlM/ZooB5lhgsdZmYaxgZVBgxHzWk+uL0MDB200P/zX1Nd 3G1TrNzQxTevfm+iNTKCnZaAlPdKyFk5ZIr4bqCV0YXytMH735/YGfs7XyA+mmk7 Jb6ZHzPul7WCy17FIM8V+XHvfNdpxAbvGymieGC1udNB0RxT206XBmSaNcZEkMnS eZ8dSOdroQNvufWEmlWzTz1JGu8p8gwlNk2ow8QTOSz2byxImeDW37pxfkUcXGkM YBmLZSAvJGG6jbhfuVOXHQYRXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1AW5T8 rmDYD+FiQqRwnPRIXjg5MB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmfckbB3YUC9hcygaCtb9rVg+D4lL252BI9PVWmETiC4VeiKnXhR78 r+FAQ2LJQrBtgKhJTHb7wGsk7CnFm0Gi4XBh/hAh2VpRyjVD7iYlg0mUjYwT98SH OtVvkb/0lz1ihuOEuynzBfhg0R8hVbe/Xm5Ow/AvG7V76lskyeAaX/Q1lLf40MG8 cloB0to4ztirffy0ZfqK8hUsADyii8APHCvWuEYd6/RJkFi5I0uO/xXbGYn5wwZA wFxmjTsQ5uGD1hV/PPuW3lH3dyv9HYEwd38TGqtshh1gOozmDl34e/i3wJiiQ0Wv 5cMSOeNWt2okbwfKXATLhjUGI6EgO7FS -----END CERTIFICATE-----Generated at Sun Jun 15 08:04:27 2025 by rpki-client