$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: oW6EMP/E9AO5x/by0OHZOnCD1SNO+x++CyE2rG4HBpQ= Subject key identifier: 45:58:64:42:39:A2:A2:6F:F0:EA:B7:81:12:92:E0:F6:4A:13:BD:9F Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0CCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0CC4 Signing time: Sun 10 Aug 2025 18:27:32 +0000 Manifest this update: Sun 10 Aug 2025 18:27:32 +0000 Manifest next update: Sun 17 Aug 2025 18:27:32 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: ahmwRj23otGd7Sc/H8AoGQX5C9MoK2bYtPdC9eldvKo=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: Lgb8GqRFfTjU3W3z9LRFwwnC1h3FLvp4weLwp44Pmyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3278 (0xcce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Aug 10 18:27:32 2025 GMT Not After : Aug 17 18:27:32 2025 GMT Subject: CN=6898e494-6511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:62:5f:cd:50:81:e8:b7:c1:c6:2f:bb:0a:3a: bb:ed:ef:77:39:77:af:3a:89:a9:88:d4:30:d5:60: 2c:e0:6d:d7:f9:d4:ce:1d:e0:c8:0a:43:e6:82:d8: 92:25:43:93:07:6c:9e:96:2e:03:7f:71:46:74:59: 3a:8a:14:04:b3:00:08:19:84:63:42:83:57:24:6c: 9d:ab:59:aa:f1:f8:cc:16:b0:cd:69:9d:4b:c1:f4: 24:0f:02:66:16:16:eb:5d:25:37:5b:72:94:49:c7: 68:3d:d1:d3:73:33:9c:d0:5b:e7:af:ea:f9:32:39: e1:6e:09:29:b4:6b:e4:2e:d9:70:cf:96:5c:f3:de: 2b:29:a6:9d:48:10:fb:6c:39:ba:f4:30:0a:21:27: 7c:7e:c0:11:79:50:01:5e:dc:16:2d:bc:1d:38:e7: bf:8a:4a:a8:58:4d:7c:73:bd:f7:0b:10:d0:9d:bb: a7:22:0d:e7:68:e3:c8:d2:ea:3b:fa:50:63:58:5e: 6d:3f:8f:d6:18:3e:da:c9:09:3f:3e:fd:65:1c:66: 11:ef:14:49:4f:26:20:03:77:ce:22:48:32:52:a7: 69:81:99:0e:68:69:90:05:49:00:1e:ae:93:e6:e3: 1a:75:1b:d2:d1:8f:b9:a6:c0:24:c9:72:34:6f:4a: 7c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:58:64:42:39:A2:A2:6F:F0:EA:B7:81:12:92:E0:F6:4A:13:BD:9F X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ac:72:d4:06:3e:8f:71:0d:04:b8:cc:54:98:5e:13:c0:6d: b6:93:81:95:20:ad:90:d0:b0:43:2d:df:97:f1:4f:7b:72:cb: fe:cd:17:78:40:ef:da:05:ab:33:08:8a:60:20:30:55:6b:83: 96:06:0e:58:ca:9c:36:49:da:e9:02:a1:6d:fc:35:d0:d6:f2: 02:0e:1d:70:b9:0d:01:1f:c6:d1:b7:81:39:f7:d7:86:df:45: c9:05:42:50:1b:97:f0:d8:cd:79:91:f0:72:b2:a7:eb:c0:15: 45:7c:ea:52:1e:f7:82:0f:d5:9c:d2:c1:8e:56:f0:fa:13:a8: ff:05:b2:27:b1:93:36:53:53:85:5b:86:c5:0e:c2:23:87:de: 48:6f:d3:69:73:2c:bb:03:a4:31:6f:d4:c6:61:ce:6c:6d:75: 68:61:93:1b:91:31:72:ea:76:a0:f2:29:7b:71:cd:a5:a7:ab: 70:c6:68:69:45:82:b8:25:dd:e9:6f:0a:96:cc:9f:99:4b:6f: b2:0b:f0:9a:3b:00:51:43:66:d5:59:dc:4a:e9:8a:e3:6c:40: 6f:ac:9d:0b:e6:b6:f9:2d:13:f3:d6:cc:81:ea:20:29:86:59: a9:ba:5f:13:e7:bf:e6:58:df:f2:4e:7f:53:6c:c1:fd:83:13: 6a:82:16:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwODEwMTgyNzMyWhcNMjUwODE3MTgyNzMyWjAYMRYwFAYD VQQDEw02ODk4ZTQ5NC02NTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmJfzVCB6LfBxi+7Cjq77e93OXevOompiNQw1WAs4G3X+dTOHeDICkPmgtiS JUOTB2yeli4Df3FGdFk6ihQEswAIGYRjQoNXJGydq1mq8fjMFrDNaZ1LwfQkDwJm FhbrXSU3W3KUScdoPdHTczOc0Fvnr+r5MjnhbgkptGvkLtlwz5Zc894rKaadSBD7 bDm69DAKISd8fsAReVABXtwWLbwdOOe/ikqoWE18c733CxDQnbunIg3naOPI0uo7 +lBjWF5tP4/WGD7ayQk/Pv1lHGYR7xRJTyYgA3fOIkgyUqdpgZkOaGmQBUkAHq6T 5uMadRvS0Y+5psAkyXI0b0p80QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVYZEI5 oqJv8Oq3gRKS4PZKE72fMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+rHLUBj6PcQ0EuMxUmF4TwG22k4GVIK2Q0LBDLd+X8U97csv+zRd4 QO/aBaszCIpgIDBVa4OWBg5Yypw2SdrpAqFt/DXQ1vICDh1wuQ0BH8bRt4E599eG 30XJBUJQG5fw2M15kfBysqfrwBVFfOpSHveCD9Wc0sGOVvD6E6j/BbInsZM2U1OF W4bFDsIjh95Ib9Npcyy7A6Qxb9TGYc5sbXVoYZMbkTFy6nag8il7cc2lp6twxmhp RYK4Jd3pbwqWzJ+ZS2+yC/CaOwBRQ2bVWdxK6YrjbEBvrJ0L5rb5LRPz1syB6iAp hlmpul8T57/mWN/yTn9TbMH9gxNqghau -----END CERTIFICATE-----Generated at Mon Aug 11 10:00:52 2025 by rpki-client