$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: +OvYlfrTIsghKZzFTUyNGQr+VIKpAS+jH2uS8tFZnrM= Subject key identifier: 47:0B:C2:F2:06:0D:29:1A:E1:E4:9F:AA:A2:76:15:0B:0D:E0:5C:E8 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 05BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 05B2 Signing time: Thu 12 Jun 2025 22:45:35 +0000 Manifest this update: Thu 12 Jun 2025 22:45:35 +0000 Manifest next update: Thu 19 Jun 2025 22:45:35 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: CeJEy3Bbabc+Rgiec2y3a5/thwWhvHmMC/zez9B1Xss=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: lCYYN1i9IbJqwRctgnEOzzG7AOe1LHSeBCWruRPnC40=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: 8IJ4hd5hgtTMjRCQeFaMZGfRaNHjTczEG5GeSYDk6qI=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: ZotghGiuMfOw+s3uuTOdkshmDTpBWNWmcIBqIc4IVro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Jun 12 22:45:35 2025 GMT Not After : Jun 19 22:45:35 2025 GMT Subject: CN=684b588f-7d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9c:32:b3:c6:85:26:e6:02:95:ae:7a:28:93: 45:4c:d3:91:c5:9f:d9:19:56:80:27:c7:c7:24:66: ef:6a:f6:59:8e:0c:11:be:19:6d:dc:15:93:a4:f3: b8:b4:25:8b:31:7d:93:73:49:8a:33:53:0f:85:7d: 74:a2:d6:f5:8e:5e:6d:f9:47:9c:a2:d3:d4:79:92: d3:4a:22:bb:0f:df:05:63:be:6b:9a:fb:99:59:d3: f1:d2:1a:4c:8e:5e:79:50:e6:61:0b:57:e1:2c:23: e9:58:03:a9:39:b1:c6:49:3b:86:55:de:d8:74:e7: b5:7f:a3:08:51:ab:c9:b5:7d:7d:dd:9c:5a:b1:e1: 9b:62:7b:2e:4b:a8:0b:3e:e8:b2:06:5f:76:83:44: e5:a2:9f:78:ab:68:af:92:8e:cb:30:d5:da:46:8b: 8e:88:5b:a0:87:d0:3d:b2:b9:a4:1c:9a:94:46:78: 8a:f1:02:77:9d:ee:eb:fc:a6:36:ab:69:f9:8f:c1: dd:22:f7:1b:21:24:0b:4b:66:72:2d:8b:93:72:17: 00:c4:3c:61:c0:62:c2:f5:0f:b5:b0:cb:6b:6b:0c: e0:9d:cf:60:d1:55:df:ac:2f:61:81:9c:59:72:23: b8:50:47:db:61:14:57:e5:ef:98:45:65:d7:9e:45: 18:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0B:C2:F2:06:0D:29:1A:E1:E4:9F:AA:A2:76:15:0B:0D:E0:5C:E8 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d6:86:38:13:14:a0:71:0b:89:a8:75:97:24:5f:60:4e:cd: 07:53:c4:f7:e5:18:93:37:a5:3a:8f:73:87:ae:f6:36:40:ac: 19:4d:a7:f8:d8:00:7a:20:77:19:4e:ee:7e:cf:05:56:64:89: 6f:16:b3:1e:90:e6:5e:06:8a:0b:04:94:69:73:d5:df:e7:8f: f8:f7:dc:46:66:78:b8:78:e8:9f:f7:24:b2:64:f9:ba:11:2f: 42:26:cb:ee:98:ce:f1:b2:89:80:4f:14:af:de:48:88:5b:e6: 27:c4:e4:3c:12:3a:60:4c:86:ad:70:5b:5c:af:b2:4b:0f:76: 88:c3:b1:ae:d8:0f:05:1a:6b:51:22:e5:18:72:8b:9c:81:25: 91:50:6d:38:64:ee:b0:30:39:2b:6c:a4:99:23:18:69:4d:30: 7a:6c:9c:2c:ac:3e:4b:1b:37:77:94:05:bd:0b:d3:97:5e:12: 02:4a:d5:04:c4:55:43:b6:8f:a6:b1:0c:65:09:64:12:d3:89: cd:61:1e:dd:d3:02:30:69:18:05:52:82:2e:a8:af:69:1d:19: b2:c6:00:11:3b:09:7e:c8:c4:82:3f:30:56:65:7b:4e:39:e9: 79:34:5e:6e:ad:d5:e0:dc:6d:4d:66:07:2f:e5:6d:80:c0:9c: 9a:e4:a5:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUwNjEyMjI0NTM1WhcNMjUwNjE5MjI0NTM1WjAYMRYwFAYD VQQDEw02ODRiNTg4Zi03ZDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpwys8aFJuYCla56KJNFTNORxZ/ZGVaAJ8fHJGbvavZZjgwRvhlt3BWTpPO4 tCWLMX2Tc0mKM1MPhX10otb1jl5t+UecotPUeZLTSiK7D98FY75rmvuZWdPx0hpM jl55UOZhC1fhLCPpWAOpObHGSTuGVd7YdOe1f6MIUavJtX193ZxaseGbYnsuS6gL PuiyBl92g0Tlop94q2ivko7LMNXaRouOiFugh9A9srmkHJqURniK8QJ3ne7r/KY2 q2n5j8HdIvcbISQLS2ZyLYuTchcAxDxhwGLC9Q+1sMtrawzgnc9g0VXfrC9hgZxZ ciO4UEfbYRRX5e+YRWXXnkUYqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcLwvIG DSka4eSfqqJ2FQsN4FzoMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu1oY4ExSgcQuJqHWXJF9gTs0HU8T35RiTN6U6j3OHrvY2QKwZTaf4 2AB6IHcZTu5+zwVWZIlvFrMekOZeBooLBJRpc9Xf54/499xGZni4eOif9ySyZPm6 ES9CJsvumM7xsomATxSv3kiIW+YnxOQ8EjpgTIatcFtcr7JLD3aIw7Gu2A8FGmtR IuUYcoucgSWRUG04ZO6wMDkrbKSZIxhpTTB6bJwsrD5LGzd3lAW9C9OXXhICStUE xFVDto+msQxlCWQS04nNYR7d0wIwaRgFUoIuqK9pHRmyxgAROwl+yMSCPzBWZXtO Oel5NF5urdXg3G1NZgcv5W2AwJya5KU5 -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:35 2025 by rpki-client