$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: RrF7VCR46akyqZVtUPdzOsZxN+iY/9oZjRp7qQx1K90= Subject key identifier: 90:AF:78:3A:EC:FB:50:1B:21:1B:C2:7C:73:1F:1D:A2:03:C1:F0:5D Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0B11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0B0A Signing time: Fri 08 Aug 2025 19:35:51 +0000 Manifest this update: Fri 08 Aug 2025 19:35:50 +0000 Manifest next update: Fri 15 Aug 2025 19:35:50 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: 8uw2jKMXGTCeazqX0q6QofNCdh1taJN5lmj2QKNNYo0=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: pPxz0Xj0Q495OhV6+Bhr4ANjqSPrxc3sqmemzntEGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2833 (0xb11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2, serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Aug 8 19:35:50 2025 GMT Not After : Aug 15 19:35:50 2025 GMT Subject: CN=68965197-90b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b5:22:02:67:38:72:be:9a:aa:c5:46:ac:02: 55:d5:c3:c9:e7:46:e4:8f:6f:d7:36:8b:3a:f7:5f: 11:bb:02:b9:ac:85:e9:8c:db:e8:18:91:d2:14:6c: 3d:d6:12:76:0b:13:30:bb:b4:da:5e:ce:24:34:ae: 71:e4:ae:f8:29:dc:1b:e5:6e:89:5d:7d:62:9f:91: 71:31:8a:13:28:80:26:b3:1e:f5:a7:f3:e5:d8:ac: b8:2c:65:99:b5:21:49:aa:18:7a:56:1a:f4:f0:bd: fd:c1:26:2f:03:35:38:bf:8d:57:b2:30:08:f0:c3: 84:29:09:2d:e7:27:06:4c:3d:ee:71:49:d8:5e:37: 4d:e1:4a:59:cd:ba:14:11:4e:bc:5e:f0:6d:90:24: 6a:28:d5:32:c4:7e:3d:b0:c4:f6:cc:c1:9e:4d:da: e6:5e:bd:37:c2:45:2a:ed:82:92:ee:69:92:5d:ba: ad:9d:3d:c4:3b:a0:ad:99:bb:2c:30:4a:4a:71:de: 42:be:ac:be:0a:2f:22:fa:f2:59:59:e9:70:81:94: 29:21:2b:27:06:af:c0:94:e0:87:cf:c5:10:32:87: 7e:99:c0:cc:6b:f9:4e:60:61:5b:36:bc:ad:df:bd: 40:fd:84:15:7e:34:3e:c1:2c:9c:96:20:05:3d:67: d1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:AF:78:3A:EC:FB:50:1B:21:1B:C2:7C:73:1F:1D:A2:03:C1:F0:5D X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:1f:51:d2:a1:b7:17:09:f7:34:65:91:26:b1:6a:54:79:50: cc:eb:f5:01:e7:bc:41:d2:b7:69:0b:2c:c3:63:00:20:30:cd: 89:97:88:f2:46:de:0d:2e:c6:9e:51:a3:89:af:bc:23:65:7c: fb:23:d8:cc:ed:2b:4b:7d:a5:0c:61:71:07:69:7f:b1:cc:4f: 4a:a8:02:d4:7c:fc:c5:b6:60:6d:4d:5a:68:a4:94:bb:02:80: d6:ea:5d:51:73:ac:64:01:6d:62:ae:cb:29:9c:c1:e3:59:68: be:95:5b:2b:68:c1:bb:12:37:91:23:ee:30:97:c4:a3:bf:40: fb:61:6a:aa:b9:e8:67:3c:0f:d2:1a:fa:44:d4:4a:0d:0e:9d: ce:13:4d:05:16:92:8f:e6:70:5f:f3:be:36:67:bb:15:8f:cf: ef:32:c1:90:0d:3c:b4:28:a0:a0:81:e5:38:85:c3:d5:96:af: b4:2c:a2:7f:62:54:31:54:d1:05:25:8c:63:3f:b8:e8:32:35: 1a:07:d2:b6:7a:c1:a2:11:24:5e:3f:1c:75:ac:88:22:ec:e2: 0a:78:88:06:4f:40:4a:84:41:c4:d0:c1:37:ce:5e:f9:2d:c2: 0e:e7:46:bd:bf:72:65:f5:4c:78:02:52:ad:1e:2a:c5:87:7b: 64:b8:3f:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjUwODA4MTkzNTUwWhcNMjUwODE1MTkzNTUwWjAYMRYwFAYD VQQDEw02ODk2NTE5Ny05MGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbUiAmc4cr6aqsVGrAJV1cPJ50bkj2/XNos6918RuwK5rIXpjNvoGJHSFGw9 1hJ2CxMwu7TaXs4kNK5x5K74Kdwb5W6JXX1in5FxMYoTKIAmsx71p/Pl2Ky4LGWZ tSFJqhh6Vhr08L39wSYvAzU4v41XsjAI8MOEKQkt5ycGTD3ucUnYXjdN4UpZzboU EU68XvBtkCRqKNUyxH49sMT2zMGeTdrmXr03wkUq7YKS7mmSXbqtnT3EO6Ctmbss MEpKcd5Cvqy+Ci8i+vJZWelwgZQpISsnBq/AlOCHz8UQMod+mcDMa/lOYGFbNryt 371A/YQVfjQ+wSycliAFPWfRUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCveDrs +1AbIRvCfHMfHaIDwfBdMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2H1HSobcXCfc0ZZEmsWpUeVDM6/UB57xB0rdpCyzDYwAgMM2Jl4jy Rt4NLsaeUaOJr7wjZXz7I9jM7StLfaUMYXEHaX+xzE9KqALUfPzFtmBtTVpopJS7 AoDW6l1Rc6xkAW1irsspnMHjWWi+lVsraMG7EjeRI+4wl8Sjv0D7YWqquehnPA/S GvpE1EoNDp3OE00FFpKP5nBf8742Z7sVj8/vMsGQDTy0KKCggeU4hcPVlq+0LKJ/ YlQxVNEFJYxjP7joMjUaB9K2esGiESRePxx1rIgi7OIKeIgGT0BKhEHE0ME3zl75 LcIO50a9v3Jl9Ux4AlKtHirFh3tkuD92 -----END CERTIFICATE-----Generated at Sat Aug 9 05:43:10 2025 by rpki-client