$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: oLNF1VEWjsKVrVHtbv9LB1dZ1Y3RBrnuKP1jkf3VUc0= Subject key identifier: 80:63:95:02:3D:96:9E:FE:F0:10:40:D0:9B:9E:E2:3F:8B:16:5C:41 Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 09E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 09CF Signing time: Fri 20 Jun 2025 19:54:03 +0000 Manifest this update: Fri 20 Jun 2025 19:54:02 +0000 Manifest next update: Fri 27 Jun 2025 19:54:02 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: 3B2S+zxfyjsRghH/R5wJZXpkFu9AatHQSky67M3ZjoQ=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: Cf8bqRacvTWl+UzpH6e1kxekXSzzSxIQ9wSazOTj5Ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2529 (0x9e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE, serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: Jun 20 19:54:02 2025 GMT Not After : Jun 27 19:54:02 2025 GMT Subject: CN=6855bc5b-683b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:84:d3:34:87:78:3a:de:94:ad:80:68:26:6f: 90:1e:5a:32:e7:05:61:42:ac:e6:16:d2:54:b9:81: f0:8a:63:6c:f4:ba:8a:88:38:c6:5b:0c:af:b7:4c: 2a:2b:6b:e2:24:78:5c:28:77:b0:4f:9e:c1:a7:50: 78:48:96:a7:b9:90:17:cd:c3:09:94:09:ef:f4:bb: f2:0e:53:6b:27:e0:91:0a:7c:81:91:e4:fa:65:88: a7:68:76:77:62:b5:53:2f:45:62:99:89:11:08:82: f5:c8:f4:b1:08:52:93:36:2b:49:1d:f0:13:98:0e: 3d:90:4c:02:60:90:66:cc:8b:11:72:63:8a:ad:7f: c8:a0:59:27:c8:12:d1:23:85:f2:5f:58:ab:d9:ef: 77:f8:8a:a2:af:9a:59:72:af:0e:ab:fb:52:b3:ca: 21:8a:3f:73:b0:4c:22:ef:3d:5c:c0:fe:ab:58:6f: f1:1b:a2:af:ff:d3:0f:04:4c:c8:7e:36:70:8a:69: 3a:2a:8a:aa:ce:5f:b2:63:48:81:7b:e9:b9:8b:31: fa:21:c9:20:e7:55:27:cb:30:46:88:a9:8d:d3:08: 1c:6d:93:cc:f0:d6:aa:f8:0c:fd:97:15:f8:97:65: 52:e4:af:b6:81:2d:55:32:7c:8c:f7:75:60:b0:10: 42:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:63:95:02:3D:96:9E:FE:F0:10:40:D0:9B:9E:E2:3F:8B:16:5C:41 X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:01:b4:d4:85:5e:7a:18:95:1b:ab:b7:95:8b:fa:b8:cd:b6: 0d:a8:ae:ab:07:f3:0f:94:4d:77:05:0e:a5:ac:bf:ea:33:78: 26:e6:a8:32:50:5b:56:ff:6d:84:7f:2b:c3:6d:5b:b3:a5:37: 66:e2:3b:a9:61:6e:7b:fb:82:94:6b:e9:89:e6:5a:c8:f1:61: cb:b8:93:fe:0e:e8:3a:ca:87:dc:1d:6a:0a:a2:5b:9a:18:e2: 65:ef:01:a2:28:d3:67:db:84:28:1a:57:ba:19:bb:7e:f1:30: b4:8b:3f:d5:e4:ec:d3:0f:8f:b8:b0:16:e5:df:50:14:82:09: f5:98:7d:d2:39:29:3a:47:ac:30:de:70:38:03:85:21:96:48: 26:fd:82:c0:b8:b2:25:ab:8f:03:46:39:be:ed:81:1d:ef:2b: 4b:d2:32:23:38:c0:65:b9:2f:dc:9a:80:7c:e4:8a:88:18:10: dc:10:ba:90:37:f6:47:73:ae:05:8a:2e:89:57:9c:8e:5d:c6: fb:cf:56:3d:60:12:e0:8c:81:24:e6:83:59:52:a2:9d:d2:2d: de:70:c1:8e:87:71:36:b2:29:89:32:8e:6c:b3:f5:5c:74:57: e0:62:b4:7c:f1:05:bf:d6:14:81:27:b5:f4:4e:dc:70:71:32: bc:01:a4:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjUwNjIwMTk1NDAyWhcNMjUwNjI3MTk1NDAyWjAYMRYwFAYD VQQDEw02ODU1YmM1Yi02ODNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4TTNId4Ot6UrYBoJm+QHloy5wVhQqzmFtJUuYHwimNs9LqKiDjGWwyvt0wq K2viJHhcKHewT57Bp1B4SJanuZAXzcMJlAnv9LvyDlNrJ+CRCnyBkeT6ZYinaHZ3 YrVTL0VimYkRCIL1yPSxCFKTNitJHfATmA49kEwCYJBmzIsRcmOKrX/IoFknyBLR I4XyX1ir2e93+Iqir5pZcq8Oq/tSs8ohij9zsEwi7z1cwP6rWG/xG6Kv/9MPBEzI fjZwimk6Koqqzl+yY0iBe+m5izH6Ickg51UnyzBGiKmN0wgcbZPM8Naq+Az9lxX4 l2VS5K+2gS1VMnyM93VgsBBC7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBjlQI9 lp7+8BBA0Jue4j+LFlxBMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4AbTUhV56GJUbq7eVi/q4zbYNqK6rB/MPlE13BQ6lrL/qM3gm5qgy UFtW/22EfyvDbVuzpTdm4jupYW57+4KUa+mJ5lrI8WHLuJP+Dug6yofcHWoKolua GOJl7wGiKNNn24QoGle6Gbt+8TC0iz/V5OzTD4+4sBbl31AUggn1mH3SOSk6R6ww 3nA4A4Uhlkgm/YLAuLIlq48DRjm+7YEd7ytL0jIjOMBluS/cmoB85IqIGBDcELqQ N/ZHc64Fii6JV5yOXcb7z1Y9YBLgjIEk5oNZUqKd0i3ecMGOh3E2simJMo5ss/Vc dFfgYrR88QW/1hSBJ7X0TtxwcTK8AaQL -----END CERTIFICATE-----Generated at Sun Jun 22 05:09:56 2025 by rpki-client