$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: V0JI7zQUhMAhy8cjos1Yd0KJ5PNoCOhKNj2fetxKjE4= Subject key identifier: C3:A9:31:49:D5:D1:D9:71:88:AB:1A:E2:36:77:55:AE:EE:22:41:E4 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: F0 Signing time: Sat 09 Aug 2025 03:32:19 +0000 Manifest this update: Sat 09 Aug 2025 03:32:19 +0000 Manifest next update: Sat 16 Aug 2025 03:32:19 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: xTtBtiU/xTPkhpo6O4Zto/LdPs3I1HyHKzB1Ol+Z6SE=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: nFQQw/dyghkb1sXKy9uupZRqxzdAPtcnxFOFgRiXGi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Aug 9 03:32:19 2025 GMT Not After : Aug 16 03:32:19 2025 GMT Subject: CN=6896c143-fb04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7e:08:ca:e5:49:b2:1a:d9:3d:66:fa:5f:18: 83:a9:01:01:69:83:2c:3c:ad:22:6a:d5:cd:37:d4: e4:a5:2b:d1:26:be:67:69:da:00:e2:c8:78:23:e5: d7:1a:2b:37:bb:47:c5:e3:10:a0:85:b7:0f:59:ce: e5:ec:e3:c2:bb:36:65:0c:29:bd:be:fe:6b:5d:07: 66:fc:59:a6:08:92:62:8a:e1:ca:6a:2a:b6:74:5c: 10:9a:c3:b6:02:e2:84:ab:24:7a:17:cc:82:df:be: 0a:31:0a:d3:c2:b1:fa:b6:28:70:af:58:a6:70:67: 4b:79:1d:77:fa:05:3f:50:f8:15:17:60:e7:c4:85: cf:60:ab:80:0a:77:92:40:3d:cb:d3:04:16:16:64: 96:7d:e2:d6:67:10:98:f3:1a:d6:5b:a5:67:c1:bf: 6e:b3:10:04:d9:6e:c7:fd:15:84:37:07:eb:2b:d4: 32:00:8b:51:68:fc:f1:36:82:6d:2f:8d:5a:7f:bc: 92:ee:a4:d3:ff:44:20:5f:50:db:d0:78:0f:58:3d: 08:98:b3:68:9a:f4:7c:a2:02:5b:be:8e:d7:9a:66: 81:09:2c:d5:fd:c7:a7:17:4b:34:3d:d9:69:5d:92: 4a:07:6b:15:69:5a:43:3a:8a:bb:d7:12:b7:53:09: eb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A9:31:49:D5:D1:D9:71:88:AB:1A:E2:36:77:55:AE:EE:22:41:E4 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:36:b8:77:b2:5c:5b:c8:6a:6e:05:ab:a1:5c:b1:a2:e3:10: 71:b8:85:eb:06:60:7c:b2:7d:28:b4:5a:1f:55:8f:3e:c9:34: bc:88:87:6f:90:8d:3e:c7:c9:aa:68:d8:ef:05:b7:49:84:a6: 62:41:e2:ee:3b:03:96:c0:55:c8:7f:6e:16:d6:02:b8:55:20: e0:51:a2:08:b3:6a:d4:6e:92:e3:f0:d2:a7:fc:73:91:7f:18: 7e:94:d4:f7:77:51:13:97:1c:dc:79:9d:c6:0a:58:fd:f9:f3: a6:be:68:c1:47:22:fe:2f:40:68:ab:d7:04:9b:5f:03:40:e0: 63:e2:3b:46:2b:a0:dc:f4:c8:0c:08:61:6d:19:6a:96:0c:02: fa:74:d4:55:83:69:c0:3b:0c:31:73:33:48:5c:f6:aa:72:0b: da:9d:63:2b:7c:7b:71:37:1d:e0:0a:e4:22:14:b5:4b:6a:38: 86:5b:9a:92:42:c1:25:bf:41:52:48:fb:b8:1b:2b:92:df:3b: aa:59:17:8e:cb:9b:41:69:f9:5e:50:0a:02:2a:8f:08:a7:2c: d5:66:75:e1:23:e4:55:e6:85:45:28:99:4a:0b:0b:0c:53:86: 9d:20:c4:48:55:f8:c6:1e:33:ae:48:fb:30:15:1d:ec:03:cb: cc:f2:75:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwODA5MDMzMjE5WhcNMjUwODE2MDMzMjE5WjAYMRYwFAYD VQQDEw02ODk2YzE0My1mYjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAon4IyuVJshrZPWb6XxiDqQEBaYMsPK0iatXNN9TkpSvRJr5nadoA4sh4I+XX Gis3u0fF4xCghbcPWc7l7OPCuzZlDCm9vv5rXQdm/FmmCJJiiuHKaiq2dFwQmsO2 AuKEqyR6F8yC374KMQrTwrH6tihwr1imcGdLeR13+gU/UPgVF2DnxIXPYKuACneS QD3L0wQWFmSWfeLWZxCY8xrWW6Vnwb9usxAE2W7H/RWENwfrK9QyAItRaPzxNoJt L41af7yS7qTT/0QgX1Db0HgPWD0ImLNomvR8ogJbvo7XmmaBCSzV/cenF0s0Pdlp XZJKB2sVaVpDOoq71xK3Uwnr6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOpMUnV 0dlxiKsa4jZ3Va7uIkHkMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaNrh3slxbyGpuBauhXLGi4xBxuIXrBmB8sn0otFofVY8+yTS8iIdv kI0+x8mqaNjvBbdJhKZiQeLuOwOWwFXIf24W1gK4VSDgUaIIs2rUbpLj8NKn/HOR fxh+lNT3d1ETlxzceZ3GClj9+fOmvmjBRyL+L0Boq9cEm18DQOBj4jtGK6Dc9MgM CGFtGWqWDAL6dNRVg2nAOwwxczNIXPaqcgvanWMrfHtxNx3gCuQiFLVLajiGW5qS QsElv0FSSPu4GyuS3zuqWReOy5tBafleUAoCKo8IpyzVZnXhI+RV5oVFKJlKCwsM U4adIMRIVfjGHjOuSPswFR3sA8vM8nWV -----END CERTIFICATE-----Generated at Sat Aug 9 14:33:16 2025 by rpki-client