$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: ql/hvZXou7XUMCIJSthECIF0bf8sbu6p+94b1TJeDp4= Subject key identifier: 8B:49:8C:EE:C9:53:17:66:AC:5E:DB:EA:8D:5F:68:C2:E5:AF:42:3A Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 7C Signing time: Tue 05 Aug 2025 03:38:44 +0000 Manifest this update: Tue 05 Aug 2025 03:38:43 +0000 Manifest next update: Tue 12 Aug 2025 03:38:43 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: k5H2UuldIj7fnVNz3yxQRYXslbKkZflo5oZ6tZnkCdY=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:38:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Aug 5 03:38:43 2025 GMT Not After : Aug 12 03:38:43 2025 GMT Subject: CN=68917cc4-37f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1f:69:db:08:d6:6a:16:5e:35:79:55:88:70: ed:02:de:32:cf:97:90:36:d9:21:50:4f:56:be:7b: b0:c0:72:85:2d:5b:1f:76:48:1c:24:aa:af:77:a4: cd:c8:8b:92:33:c8:14:d7:07:00:58:1d:10:16:57: 9f:a2:af:a9:6d:7f:0b:0d:a2:1d:28:5c:9b:11:30: c5:1d:4b:42:09:f2:a5:47:8e:01:a9:68:34:7d:40: df:c2:25:99:45:9b:e7:4d:e0:7f:c0:e6:2b:56:f8: 84:2d:3b:c5:98:80:2e:3a:42:42:74:46:c1:f0:95: 81:29:ec:73:5e:ed:e0:ee:93:df:a3:e5:82:0a:e8: 80:7c:77:ee:e5:15:d1:ab:ed:ee:c3:dd:98:af:fc: 50:91:21:3d:59:b4:92:07:70:17:84:fe:d5:fa:92: be:23:71:d2:b2:b5:c2:32:d8:6e:c5:6b:90:71:fb: e1:54:01:be:87:e8:1b:2c:97:a8:78:d3:88:1c:67: 47:33:fe:7f:31:2a:29:7b:29:3a:0c:31:bf:7e:ff: db:e3:fd:fd:ee:4d:23:1c:51:f5:04:7d:39:08:23: 5e:c6:48:4d:db:10:04:29:db:78:90:d0:10:ca:58: ba:69:47:71:65:5e:26:6d:cd:62:59:5e:98:68:fb: cc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:49:8C:EE:C9:53:17:66:AC:5E:DB:EA:8D:5F:68:C2:E5:AF:42:3A X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:6c:5e:f8:d3:9c:1c:28:67:02:6c:27:98:a0:15:49:3e:db: 23:35:b5:61:d7:67:3a:d7:12:d0:60:f5:d7:f9:28:d1:5d:20: 4d:4b:2b:66:06:03:78:36:ea:ab:2a:fa:25:56:23:19:b9:a4: a4:fc:68:87:32:2f:e7:c4:28:23:82:fd:0d:45:d2:de:5c:51: 64:b2:0e:9a:2f:e5:88:d5:85:aa:3b:60:d2:57:7c:6f:6e:b6: 8c:a9:76:5b:64:b2:df:ed:43:fa:f6:47:54:1e:c4:2f:8d:18: 1a:18:5a:f8:92:20:10:ba:a8:cc:98:28:73:e5:a1:65:4e:64: b4:f5:b0:31:7a:cd:59:ea:92:57:d1:c2:e9:74:f9:4e:b5:67: b8:c2:f3:69:a0:61:97:55:9e:8a:cd:15:4f:4e:dc:7e:3e:1b: 7f:bf:35:fc:84:32:80:86:92:09:28:bc:ab:49:66:36:f0:95: aa:d6:21:dc:be:79:d3:78:e9:fc:db:30:c9:f6:21:40:40:4b: 8b:40:74:72:93:35:73:70:8f:68:ba:dc:79:2f:91:50:36:32: 3b:0c:77:9c:39:66:86:b4:27:75:c0:aa:d3:77:2b:61:0a:36: 5d:d6:14:75:69:bb:8d:43:50:bd:46:36:06:84:a4:e5:08:72: ea:3f:94:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTA4MDUwMzM4NDNaFw0yNTA4MTIwMzM4NDNaMBgxFjAUBgNV BAMTDTY4OTE3Y2M0LTM3ZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2H2nbCNZqFl41eVWIcO0C3jLPl5A22SFQT1a+e7DAcoUtWx92SBwkqq93pM3I i5IzyBTXBwBYHRAWV5+ir6ltfwsNoh0oXJsRMMUdS0IJ8qVHjgGpaDR9QN/CJZlF m+dN4H/A5itW+IQtO8WYgC46QkJ0RsHwlYEp7HNe7eDuk9+j5YIK6IB8d+7lFdGr 7e7D3Ziv/FCRIT1ZtJIHcBeE/tX6kr4jcdKytcIy2G7Fa5Bx++FUAb6H6Bssl6h4 04gcZ0cz/n8xKil7KToMMb9+/9vj/f3uTSMcUfUEfTkII17GSE3bEAQp23iQ0BDK WLppR3FlXiZtzWJZXpho+8xzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi0mM7slT F2asXtvqjV9owuWvQjowHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRDRkMwOERBQjc2QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1 UWNmdUtfNjFCMWlRbXFsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIZsXvjTnBwoZwJsJ5igFUk+2yM1tWHXZzrXEtBg9df5KNFdIE1LK2YG A3g26qsq+iVWIxm5pKT8aIcyL+fEKCOC/Q1F0t5cUWSyDpov5YjVhao7YNJXfG9u toypdltkst/tQ/r2R1QexC+NGBoYWviSIBC6qMyYKHPloWVOZLT1sDF6zVnqklfR wul0+U61Z7jC82mgYZdVnorNFU9O3H4+G3+/NfyEMoCGkgkovKtJZjbwlarWIdy+ edN46fzbMMn2IUBAS4tAdHKTNXNwj2i63HkvkVA2MjsMd5w5Zoa0J3XAqtN3K2EK Nl3WFHVpu41DUL1GNgaEpOUIcuo/lDk= -----END CERTIFICATE-----Generated at Thu Aug 7 03:52:06 2025 by rpki-client