$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: yq4te/bt5OMayubFi/yqyRezCAvtfNNwC9LRho/FR1c= Subject key identifier: A6:3D:01:CB:46:1A:2F:FC:08:85:F5:43:DF:95:F7:D9:6A:FE:FC:AF Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0AF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0AEE Signing time: Sat 14 Jun 2025 19:13:29 +0000 Manifest this update: Sat 14 Jun 2025 19:13:29 +0000 Manifest next update: Sat 21 Jun 2025 19:13:29 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: 2+OQz6q77aSxhWX3RaX96Sd9SXOn1ZKvpYuPqqOsST8=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: pPxz0Xj0Q495OhV6+Bhr4ANjqSPrxc3sqmemzntEGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2, serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Jun 14 19:13:29 2025 GMT Not After : Jun 21 19:13:29 2025 GMT Subject: CN=684dc9d9-1876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ae:b3:b0:88:ab:9e:1c:b9:28:25:e9:90:5c: bb:da:d6:0a:29:1b:1f:32:d6:ba:fb:97:2f:5f:a6: 0c:1a:c2:8b:ef:59:6f:da:89:1f:c2:91:e4:9d:b6: c2:a4:10:3f:df:00:d8:ad:fb:bb:18:f3:2f:a4:72: 90:91:3a:9c:13:75:f7:80:34:1f:02:28:95:4f:1a: 86:c3:6a:e1:58:7e:03:42:1d:8a:bf:80:f2:4d:15: 7d:32:76:d9:a3:a0:42:73:2f:45:72:b3:ee:b2:92: 89:f0:85:d7:5c:57:04:bb:e3:02:43:5b:e0:02:f9: 59:a7:1d:bc:77:c6:4e:8f:d6:e5:a0:56:75:85:56: 01:69:e5:c7:b9:97:ac:6e:44:9d:d3:0a:ee:a8:87: 55:14:c6:88:37:d0:d2:3a:57:ea:3b:99:11:23:42: 90:ae:e2:bf:44:7b:79:28:db:be:ae:00:58:d8:d8: 75:54:a9:42:d7:ef:ea:bc:2f:de:e6:9f:cd:c0:68: 0c:25:fc:a0:ba:e2:ad:53:4d:8a:7b:82:58:78:f9: 92:9c:b1:93:5b:fd:29:d5:39:25:d7:a7:18:20:a2: 02:eb:e0:be:13:08:97:b8:57:6a:90:23:60:b1:d6: 3b:14:77:bc:a4:88:55:f1:d4:e0:d6:4e:8a:ad:19: a4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:3D:01:CB:46:1A:2F:FC:08:85:F5:43:DF:95:F7:D9:6A:FE:FC:AF X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:93:4e:48:38:f3:63:79:3b:a1:68:33:99:27:bd:29:61:b1: 28:5e:3c:75:00:1e:80:31:61:e2:7c:b2:79:bd:c9:6a:61:18: 33:1c:2e:7b:57:32:77:45:44:c5:d4:3d:3c:8b:06:4b:89:9c: 12:7f:d4:b0:a7:3d:cb:fd:a8:2e:9a:a2:ed:65:bc:6b:a6:dd: 0a:60:3a:65:0f:e3:b1:2a:79:ba:45:70:65:f2:f6:79:1b:c0: 6e:c2:0e:87:f4:56:d0:ee:e4:17:0e:06:42:2c:d0:a7:0b:59: eb:06:f3:d3:b9:b7:f8:54:5a:db:62:13:61:7e:b4:9c:2d:9a: a2:0e:ca:3f:0c:90:5b:37:6a:10:f5:18:12:78:c2:c2:ae:c4: b1:d6:98:fb:f4:b1:2f:1c:c8:bb:c1:dd:52:6b:09:3a:35:f0: b6:bd:9f:17:7e:c4:91:62:bc:33:22:50:bb:15:f3:05:73:e8: 37:72:13:6d:f1:9c:b8:87:07:1e:e4:51:2c:25:bc:f5:1e:ca: 5e:56:02:30:36:9a:1d:3e:d2:1e:d9:9e:b5:e1:a6:96:68:aa: 4e:70:52:e6:97:05:9b:1c:3f:cd:27:44:59:5d:0a:cb:c1:49: b3:ee:38:75:1e:d0:6d:06:31:65:55:56:d0:a3:0f:4e:4c:df: 80:4d:6b:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjUwNjE0MTkxMzI5WhcNMjUwNjIxMTkxMzI5WjAYMRYwFAYD VQQDEw02ODRkYzlkOS0xODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK6zsIirnhy5KCXpkFy72tYKKRsfMta6+5cvX6YMGsKL71lv2okfwpHknbbC pBA/3wDYrfu7GPMvpHKQkTqcE3X3gDQfAiiVTxqGw2rhWH4DQh2Kv4DyTRV9MnbZ o6BCcy9FcrPuspKJ8IXXXFcEu+MCQ1vgAvlZpx28d8ZOj9bloFZ1hVYBaeXHuZes bkSd0wruqIdVFMaIN9DSOlfqO5kRI0KQruK/RHt5KNu+rgBY2Nh1VKlC1+/qvC/e 5p/NwGgMJfyguuKtU02Ke4JYePmSnLGTW/0p1Tkl16cYIKIC6+C+EwiXuFdqkCNg sdY7FHe8pIhV8dTg1k6KrRmkxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKY9ActG Gi/8CIX1Q9+V99lq/vyvMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZk05IOPNjeTuhaDOZJ70pYbEoXjx1AB6AMWHifLJ5vclqYRgzHC57 VzJ3RUTF1D08iwZLiZwSf9Swpz3L/agumqLtZbxrpt0KYDplD+OxKnm6RXBl8vZ5 G8Buwg6H9FbQ7uQXDgZCLNCnC1nrBvPTubf4VFrbYhNhfrScLZqiDso/DJBbN2oQ 9RgSeMLCrsSx1pj79LEvHMi7wd1Sawk6NfC2vZ8XfsSRYrwzIlC7FfMFc+g3chNt 8Zy4hwce5FEsJbz1HspeVgIwNpodPtIe2Z614aaWaKpOcFLmlwWbHD/NJ0RZXQrL wUmz7jh1HtBtBjFlVVbQow9OTN+ATWuE -----END CERTIFICATE-----Generated at Sun Jun 15 08:06:29 2025 by rpki-client