$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: OQzu76MTqmZ5iuyQceDZ9i34oHcBAx70TeEMBudLhn4= Subject key identifier: 49:D4:16:11:F2:CA:06:6D:F5:93:75:64:59:E0:EF:5F:81:0A:E2:56 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 0187 Signing time: Sun 15 Jun 2025 02:49:57 +0000 Manifest this update: Sun 15 Jun 2025 02:49:56 +0000 Manifest next update: Sun 22 Jun 2025 02:49:56 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: lu0gM8sZKhqcrhIU104sauRLjg4RSZhvF0+L9ePdui4=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Jun 15 02:49:56 2025 GMT Not After : Jun 22 02:49:56 2025 GMT Subject: CN=684e34d5-0921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:dc:c3:e0:e9:62:ac:b5:50:8d:f6:3e:b6:ec: de:cb:d8:1a:b1:3e:2f:28:8a:ca:72:03:96:1a:e5: 4f:30:31:05:78:d6:07:6e:8f:13:9e:b8:db:ea:70: d1:c1:73:75:11:4f:1e:8e:d7:cf:32:1d:da:99:e7: 4d:6d:a3:eb:8f:df:10:45:93:a4:2f:f7:5c:d4:e8: 7b:be:8f:3a:72:5b:5a:f1:c8:95:fc:d2:f8:ca:e4: 27:cd:9c:88:78:cb:cc:7f:c4:d3:5a:33:85:69:cb: f0:d9:2c:6e:5a:0f:0c:83:a9:8e:f3:2b:ef:7f:76: bd:c7:b8:d4:32:23:bb:1f:0a:30:a9:9a:7c:b3:92: a2:6c:0c:45:3c:61:59:fa:03:b6:87:d4:5f:70:1f: 50:92:18:c6:d0:e3:cb:c2:e0:78:7b:6b:72:ee:3b: 99:00:11:78:f9:4a:b6:87:c7:56:b5:97:39:b3:cb: 60:4a:2b:35:4d:a1:0c:9d:30:0e:58:8c:d6:e5:13: d0:5d:33:01:65:a5:97:80:de:54:18:e6:f8:3c:09: 51:8e:39:76:2a:42:51:55:12:3f:42:9d:3e:0b:4b: 24:e2:53:f1:77:ae:a0:44:24:f6:21:77:18:3a:2a: 44:00:3d:14:de:2e:2f:3e:f5:69:79:87:74:3a:63: e0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D4:16:11:F2:CA:06:6D:F5:93:75:64:59:E0:EF:5F:81:0A:E2:56 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:44:af:8b:ce:2e:bb:ab:fe:9f:71:1c:26:a9:7a:fd:cf:df: dd:59:88:c9:42:48:ce:cb:21:a9:3a:f3:a6:89:7c:a8:3a:41: 10:3d:e4:64:a5:8e:9a:d2:5a:08:35:1e:3d:1e:55:de:d3:38: 4e:5c:08:50:1f:bf:e5:be:f1:27:a0:97:4b:79:39:6c:76:ec: b6:e5:f6:35:ac:b5:63:da:a0:b9:5d:4c:6e:a2:26:e3:27:f0: 64:b8:a9:4e:6a:d8:1b:88:83:b6:5e:37:36:d1:87:7a:d2:bb: ae:92:a9:1d:5e:cf:d0:01:e0:9f:93:82:0d:01:a8:ed:32:bb: a0:8f:61:4d:22:7b:35:16:d9:c7:b3:3d:90:e4:ee:09:4f:6c: ff:9e:95:ee:2a:35:d7:fb:97:ae:3b:94:c2:4c:6a:f1:b5:d2: d1:f4:db:2d:cf:a1:80:61:55:43:f3:2b:dd:ad:2d:cb:e8:33: 5d:cc:18:ea:d8:d8:7f:6d:3f:60:c9:24:be:98:19:09:db:1a: 0f:48:37:23:f1:cd:d2:79:41:83:18:82:e2:b2:ea:d2:51:6e: 02:30:d1:a7:ed:f2:73:4c:32:30:d7:7b:a6:79:96:24:b0:eb: 57:d9:ab:00:b1:3c:8e:a2:0e:ff:eb:0c:e7:da:80:29:9b:88: 0c:57:59:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUwNjE1MDI0OTU2WhcNMjUwNjIyMDI0OTU2WjAYMRYwFAYD VQQDEw02ODRlMzRkNS0wOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNzD4OlirLVQjfY+tuzey9gasT4vKIrKcgOWGuVPMDEFeNYHbo8Tnrjb6nDR wXN1EU8ejtfPMh3amedNbaPrj98QRZOkL/dc1Oh7vo86clta8ciV/NL4yuQnzZyI eMvMf8TTWjOFacvw2SxuWg8Mg6mO8yvvf3a9x7jUMiO7HwowqZp8s5KibAxFPGFZ +gO2h9RfcB9QkhjG0OPLwuB4e2ty7juZABF4+Uq2h8dWtZc5s8tgSis1TaEMnTAO WIzW5RPQXTMBZaWXgN5UGOb4PAlRjjl2KkJRVRI/Qp0+C0sk4lPxd66gRCT2IXcY OipEAD0U3i4vPvVpeYd0OmPg8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnUFhHy ygZt9ZN1ZFng71+BCuJWMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlRK+Lzi67q/6fcRwmqXr9z9/dWYjJQkjOyyGpOvOmiXyoOkEQPeRk pY6a0loINR49HlXe0zhOXAhQH7/lvvEnoJdLeTlsduy25fY1rLVj2qC5XUxuoibj J/BkuKlOatgbiIO2Xjc20Yd60ruukqkdXs/QAeCfk4INAajtMrugj2FNIns1FtnH sz2Q5O4JT2z/npXuKjXX+5euO5TCTGrxtdLR9Nstz6GAYVVD8yvdrS3L6DNdzBjq 2Nh/bT9gySS+mBkJ2xoPSDcj8c3SeUGDGILisurSUW4CMNGn7fJzTDIw13umeZYk sOtX2asAsTyOog7/6wzn2oApm4gMV1lZ -----END CERTIFICATE-----Generated at Sun Jun 15 09:31:42 2025 by rpki-client