$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: w4UDuFUd4glAagPC2X802fqKKCsOhielyc5jYpNahR8= Subject key identifier: 5D:93:D3:15:54:3E:C5:DC:2A:59:F7:E2:1A:8A:7C:95:88:4B:1E:41 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0CB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0CA7 Signing time: Wed 18 Jun 2025 18:05:48 +0000 Manifest this update: Wed 18 Jun 2025 18:05:48 +0000 Manifest next update: Wed 25 Jun 2025 18:05:48 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: kG0vpvInD3W9qCduxf1NMfTYQ+hohORo0zM4ON6W82w=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: B32sLriEZBiwsvO/X5p+YP5+TxaEvkZ8AXqcNmiVRPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3248 (0xcb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Jun 18 18:05:48 2025 GMT Not After : Jun 25 18:05:48 2025 GMT Subject: CN=6852fffc-f7d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:78:de:86:bd:06:fb:88:bb:d4:28:dc:4b:62: 47:1c:71:26:98:6d:41:e7:50:ac:37:1d:7a:25:35: c9:7b:45:d6:70:18:f9:70:62:7f:41:b0:20:4c:da: bf:c7:4d:55:8a:d3:7c:41:00:0b:58:45:28:29:47: 07:9e:a7:e8:68:2c:06:dc:b3:df:2c:48:6c:7e:97: 1a:23:89:f0:40:fd:93:75:a3:c4:98:87:1c:0c:82: 85:28:95:0d:c5:26:0c:26:9a:33:90:2a:5f:f0:2a: bf:7b:da:17:0b:b2:9d:e4:cd:fd:9f:3e:c2:74:af: 1c:b3:49:4e:2d:3a:54:5f:91:ae:ac:48:72:df:4e: a7:a9:0f:b0:55:ef:9c:21:fa:0e:79:07:b5:ff:d1: f2:69:d4:0a:53:39:fb:88:d2:cd:ed:b0:95:fc:b2: 67:4e:0d:32:24:c0:d4:19:89:1b:d7:8d:ee:23:be: 3f:0c:a0:44:c4:28:2a:27:36:a0:b5:67:60:af:d7: d7:5a:be:8d:db:00:65:29:ba:cb:11:61:a8:f7:9f: 79:f4:17:96:a9:65:ec:7b:33:4c:ce:71:a8:e9:ae: 85:1e:1f:be:25:96:25:f0:90:62:fc:89:cc:c3:f5: bb:48:0d:74:63:5e:bb:71:aa:f8:67:eb:c7:34:22: b3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:93:D3:15:54:3E:C5:DC:2A:59:F7:E2:1A:8A:7C:95:88:4B:1E:41 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b7:6a:5d:a3:18:94:a8:b2:b1:c1:f3:62:5e:c6:16:f4:cf: af:df:f6:06:fc:21:da:3a:21:ca:d9:87:6d:04:95:cb:ec:5a: f6:32:4e:dd:b9:39:77:dd:4d:1a:b2:82:ff:76:cf:c3:85:69: cf:43:1b:0c:a1:99:2d:fc:c2:b7:40:f7:02:48:1e:a1:52:a8: 6b:81:ce:c5:d4:88:53:ed:7e:87:82:76:17:73:36:d4:97:5a: a6:2b:ed:93:cf:df:a7:c3:2a:42:46:28:e9:ff:e9:7f:71:99: c9:88:37:3c:ed:88:cb:e1:10:d5:31:76:86:c7:92:94:0d:df: 47:f4:91:62:6a:4e:ef:af:9a:c8:59:11:66:7d:17:4c:ba:9e: 95:21:09:44:2e:37:14:be:52:08:a5:96:cc:5b:ae:37:3f:e0: 9e:0c:b3:04:d9:fb:02:11:a5:c5:76:4e:4e:ff:8d:e0:c7:68: 69:99:4d:65:22:52:1e:bc:dd:c6:a0:54:81:c8:05:ff:d5:74: d3:ef:54:a8:02:8c:f3:1f:e1:cb:5c:ab:aa:3f:c7:3e:0d:f3: 0e:4a:f2:03:cf:f7:5f:79:b0:ce:d7:75:48:40:69:14:a3:59: 86:60:27:61:a0:e4:e9:f1:5a:9d:c1:cc:61:90:a4:b5:0b:88: 53:d3:5a:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwNjE4MTgwNTQ4WhcNMjUwNjI1MTgwNTQ4WjAYMRYwFAYD VQQDEw02ODUyZmZmYy1mN2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHjehr0G+4i71CjcS2JHHHEmmG1B51CsNx16JTXJe0XWcBj5cGJ/QbAgTNq/ x01VitN8QQALWEUoKUcHnqfoaCwG3LPfLEhsfpcaI4nwQP2TdaPEmIccDIKFKJUN xSYMJpozkCpf8Cq/e9oXC7Kd5M39nz7CdK8cs0lOLTpUX5GurEhy306nqQ+wVe+c IfoOeQe1/9HyadQKUzn7iNLN7bCV/LJnTg0yJMDUGYkb143uI74/DKBExCgqJzag tWdgr9fXWr6N2wBlKbrLEWGo95959BeWqWXsezNMznGo6a6FHh++JZYl8JBi/InM w/W7SA10Y167car4Z+vHNCKz/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2T0xVU PsXcKln34hqKfJWISx5BMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6t2pdoxiUqLKxwfNiXsYW9M+v3/YG/CHaOiHK2YdtBJXL7Fr2Mk7d uTl33U0asoL/ds/DhWnPQxsMoZkt/MK3QPcCSB6hUqhrgc7F1IhT7X6HgnYXczbU l1qmK+2Tz9+nwypCRijp/+l/cZnJiDc87YjL4RDVMXaGx5KUDd9H9JFiak7vr5rI WRFmfRdMup6VIQlELjcUvlIIpZbMW643P+CeDLME2fsCEaXFdk5O/43gx2hpmU1l IlIevN3GoFSByAX/1XTT71SoAozzH+HLXKuqP8c+DfMOSvIDz/dfebDO13VIQGkU o1mGYCdhoOTp8VqdwcxhkKS1C4hT01o9 -----END CERTIFICATE-----Generated at Fri Jun 20 17:03:50 2025 by rpki-client