$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: vJ+XeGK4a5IH5UG5LTLPg3dfe9m3/g3Tehk4BpFMUX0= Subject key identifier: 28:02:9D:6F:C9:94:F3:81:E7:A2:6C:36:EC:E1:30:AD:24:A0:8F:CA Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 01A3 Signing time: Sat 09 Aug 2025 03:39:51 +0000 Manifest this update: Sat 09 Aug 2025 03:39:51 +0000 Manifest next update: Sat 16 Aug 2025 03:39:51 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: RbtkhjqYtRmJBEHyDV5oyurU43yxk56EPMvr8cF7crE=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Aug 9 03:39:51 2025 GMT Not After : Aug 16 03:39:51 2025 GMT Subject: CN=6896c307-72fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cd:ed:0b:cf:0c:f0:2b:96:91:9f:8b:2f:5f: f9:d1:76:17:d2:89:6e:38:32:72:3f:75:ee:9c:c0: 35:56:02:9a:63:91:2d:02:4c:02:bd:86:ff:15:4e: d3:e5:f6:80:23:a5:bc:ee:c7:90:cf:72:10:14:f7: 8b:2a:c6:61:ce:c0:23:0c:f7:80:0c:76:a6:ce:c8: ce:74:6e:e2:75:8f:30:89:7b:62:cf:0e:b7:af:c9: d2:f6:0b:6d:25:d7:16:00:4c:3b:bd:1f:e8:3c:59: 83:5f:1e:4c:1e:77:fc:dd:9d:fb:5b:32:d5:0a:df: d5:c0:82:2f:fa:8c:ed:dd:8e:ef:c7:4e:be:8c:a8: d1:c5:7c:1f:d5:d6:e6:bf:a5:73:32:27:47:9d:42: e6:ec:73:a6:16:e9:21:60:24:85:2f:68:ac:96:ef: 5e:6f:79:4c:6c:a9:55:46:4b:2a:cd:bd:80:65:b4: 1a:70:e2:01:50:f0:48:33:42:5e:39:8f:cf:12:89: 14:a8:ec:d7:4e:b1:6d:1f:34:e2:33:15:71:29:c1: 9c:52:f0:47:ad:58:62:98:f7:ed:5b:74:0d:1e:47: ee:af:9e:e8:3d:a9:5d:54:d0:63:8a:d1:e7:68:b0: fc:98:69:4c:14:7f:e7:ba:d1:07:96:b0:76:d0:e3: 0b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:02:9D:6F:C9:94:F3:81:E7:A2:6C:36:EC:E1:30:AD:24:A0:8F:CA X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:98:d6:50:3b:36:bb:42:5e:2d:73:87:fe:f7:e9:53:5d:2d: ab:20:97:3e:ac:f1:45:c1:94:f5:91:e2:ae:d7:c3:2e:58:f3: cc:01:5d:7a:27:f0:81:92:2e:09:fa:33:7b:1c:6b:61:01:ef: 6f:50:c7:ad:bb:d1:40:d2:8a:f5:9b:dc:c5:0c:95:f7:c5:5a: 43:d8:7e:ca:cd:35:15:f9:4c:33:8b:11:1b:68:a8:f4:42:e5: 7d:f0:c6:6b:cf:e7:37:fd:37:2a:ea:6e:26:ce:fa:0c:22:18: d0:cf:b0:68:ca:13:ed:43:5a:13:a6:74:97:24:9e:6e:ec:27: 06:29:97:76:27:8d:be:1a:b1:be:30:81:26:f9:4c:86:a4:2b: 41:c1:f4:ed:5e:8d:21:37:d6:d5:e6:cb:b4:f8:b9:49:bd:e2: ad:c8:5d:93:86:a3:d8:3b:db:cb:48:e1:72:ca:6f:8a:b3:46: 28:30:22:4a:39:23:9b:3e:68:7b:79:f5:27:b3:20:0d:22:44: 48:0c:63:f9:a2:8d:68:f6:2c:39:af:13:67:07:cf:0e:23:46: 07:1c:26:d1:59:d9:c5:89:10:10:bb:6e:12:43:81:8d:1b:f0: 9d:70:07:10:af:26:48:4b:ff:be:2b:9f:b7:4f:76:b4:90:8c: 31:c2:7c:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUwODA5MDMzOTUxWhcNMjUwODE2MDMzOTUxWjAYMRYwFAYD VQQDEw02ODk2YzMwNy03MmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0M3tC88M8CuWkZ+LL1/50XYX0oluODJyP3XunMA1VgKaY5EtAkwCvYb/FU7T 5faAI6W87seQz3IQFPeLKsZhzsAjDPeADHamzsjOdG7idY8wiXtizw63r8nS9gtt JdcWAEw7vR/oPFmDXx5MHnf83Z37WzLVCt/VwIIv+ozt3Y7vx06+jKjRxXwf1dbm v6VzMidHnULm7HOmFukhYCSFL2islu9eb3lMbKlVRksqzb2AZbQacOIBUPBIM0Je OY/PEokUqOzXTrFtHzTiMxVxKcGcUvBHrVhimPftW3QNHkfur57oPaldVNBjitHn aLD8mGlMFH/nutEHlrB20OMLlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgCnW/J lPOB56JsNuzhMK0koI/KMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQmNZQOza7Ql4tc4f+9+lTXS2rIJc+rPFFwZT1keKu18MuWPPMAV16 J/CBki4J+jN7HGthAe9vUMetu9FA0or1m9zFDJX3xVpD2H7KzTUV+UwzixEbaKj0 QuV98MZrz+c3/Tcq6m4mzvoMIhjQz7BoyhPtQ1oTpnSXJJ5u7CcGKZd2J42+GrG+ MIEm+UyGpCtBwfTtXo0hN9bV5su0+LlJveKtyF2ThqPYO9vLSOFyym+Ks0YoMCJK OSObPmh7efUnsyANIkRIDGP5oo1o9iw5rxNnB88OI0YHHCbRWdnFiRAQu24SQ4GN G/CdcAcQryZIS/++K5+3T3a0kIwxwny1 -----END CERTIFICATE-----Generated at Sun Aug 10 04:17:00 2025 by rpki-client