$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: C9htqiCWHWyLGzaHWWskKKV554xOAW3KIa5HZ5a8/1w= Subject key identifier: 50:E3:29:E2:05:29:A1:87:B1:DD:A4:27:0F:D9:A4:DD:27:5C:ED:D1 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 62 Signing time: Sun 15 Jun 2025 02:42:50 +0000 Manifest this update: Sun 15 Jun 2025 02:42:49 +0000 Manifest next update: Sun 22 Jun 2025 02:42:49 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: tE9Q8yhxFaCm43vZHMCCRFOznhGSI3GByhjCtXKm/Aw=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Jun 15 02:42:49 2025 GMT Not After : Jun 22 02:42:49 2025 GMT Subject: CN=684e3329-b66d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:be:d6:75:f1:ed:7e:d9:2b:c7:db:fb:af:49: c2:6b:ac:7a:38:b5:7c:03:9c:2f:9f:08:d9:05:30: 0f:a0:00:df:48:34:da:63:0a:eb:2b:5e:3d:99:1a: f1:f0:7e:d5:9d:80:27:ae:12:ce:33:1f:8d:87:37: b4:e5:4d:ba:5e:9d:f9:3e:93:77:7b:14:4a:24:aa: d3:62:0c:8f:f5:e0:51:47:e9:1e:7b:b0:0c:bf:60: 97:d6:76:31:15:b9:41:fa:40:2e:40:94:c6:d2:12: 85:fb:73:bb:10:72:4b:69:04:af:54:e3:21:0b:94: 9b:50:ed:89:33:87:80:e4:bb:3e:01:20:73:64:34: b3:7c:cb:a2:80:bf:48:91:e5:a7:4a:a3:b3:23:33: 68:e7:6c:bf:da:79:d2:ed:e6:95:bd:fa:5f:71:a6: c3:0a:89:ba:c6:62:73:38:89:3e:6c:d8:3e:5d:f1: 4c:8e:bd:11:30:75:ed:19:d2:02:26:85:c8:5c:74: 72:be:58:a4:97:b1:cb:bf:a1:0e:19:9c:d9:dd:bd: 69:8b:3a:c2:ab:18:6f:85:ff:a3:3a:9f:10:21:d1: 4d:66:55:64:34:10:25:29:64:da:b7:c3:f3:11:dd: b5:90:7d:71:57:02:33:80:ab:a6:ad:9b:77:62:48: 88:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E3:29:E2:05:29:A1:87:B1:DD:A4:27:0F:D9:A4:DD:27:5C:ED:D1 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d2:1f:54:d0:e5:dc:2e:4f:5e:fd:93:d1:cb:aa:9f:35:ac: 4e:7d:0b:e5:16:b8:4b:a8:09:68:e3:b8:60:c9:93:1b:85:5d: b1:24:db:d9:a4:36:5d:25:ca:ca:bd:94:07:29:1f:9b:49:47: 0a:55:78:45:a5:fa:44:9a:f0:30:0f:c4:9b:ff:73:2f:0f:d2: 38:29:fe:78:0a:19:43:13:c1:4b:0e:d6:6c:a3:4b:6f:3c:89: a6:cc:f0:b7:a7:39:bf:77:81:4c:2b:a9:b2:f8:da:ea:de:63: 8f:da:37:07:c9:09:96:4f:be:d5:46:28:4f:42:81:0d:d2:57: 28:64:48:4f:86:a4:07:c6:79:af:d0:44:25:7c:87:11:87:93: 58:9f:bc:05:53:9a:69:b0:79:cc:bd:c9:bb:50:18:d8:30:98: 27:49:32:fb:69:c3:b2:63:51:0b:11:54:af:5a:a7:b3:31:27: 9a:7f:40:70:cd:ad:51:83:1a:a3:c0:8a:74:a0:8c:ff:f4:4b: 4a:ba:76:86:88:0a:4e:f3:a2:ef:da:bf:3f:04:1a:e7:4f:9e: 29:0f:f4:ac:6a:8e:ab:d3:f4:6d:7c:b8:31:7d:74:b8:9e:ee: ad:50:93:87:10:0c:b1:c2:bc:b7:7a:fc:d9:57:bc:68:1d:67: 91:7b:cf:96 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTA2MTUwMjQyNDlaFw0yNTA2MjIwMjQyNDlaMBgxFjAUBgNV BAMTDTY4NGUzMzI5LWI2NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYvtZ18e1+2SvH2/uvScJrrHo4tXwDnC+fCNkFMA+gAN9INNpjCusrXj2ZGvHw ftWdgCeuEs4zH42HN7TlTbpenfk+k3d7FEokqtNiDI/14FFH6R57sAy/YJfWdjEV uUH6QC5AlMbSEoX7c7sQcktpBK9U4yELlJtQ7Ykzh4Dkuz4BIHNkNLN8y6KAv0iR 5adKo7MjM2jnbL/aedLt5pW9+l9xpsMKibrGYnM4iT5s2D5d8UyOvREwde0Z0gIm hchcdHK+WKSXscu/oQ4ZnNndvWmLOsKrGG+F/6M6nxAh0U1mVWQ0ECUpZNq3w/MR 3bWQfXFXAjOAq6atm3diSIj5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUOMp4gUp oYex3aQnD9mk3Sdc7dEwHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRDRkMwOERBQjc2QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1 UWNmdUtfNjFCMWlRbXFsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEjSH1TQ5dwuT179k9HLqp81rE59C+UWuEuoCWjjuGDJkxuFXbEk29mk Nl0lysq9lAcpH5tJRwpVeEWl+kSa8DAPxJv/cy8P0jgp/ngKGUMTwUsO1myjS288 iabM8LenOb93gUwrqbL42ureY4/aNwfJCZZPvtVGKE9CgQ3SVyhkSE+GpAfGea/Q RCV8hxGHk1ifvAVTmmmwecy9ybtQGNgwmCdJMvtpw7JjUQsRVK9ap7MxJ5p/QHDN rVGDGqPAinSgjP/0S0q6doaICk7zou/avz8EGudPnikP9KxqjqvT9G18uDF9dLie 7q1Qk4cQDLHCvLd6/NlXvGgdZ5F7z5Y= -----END CERTIFICATE-----Generated at Tue Jun 17 03:18:39 2025 by rpki-client