$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: TykLYQ/Bk1Nz5DyjvUa/j4bS1viq7vyBHEvVdNI6QQ8= Subject key identifier: 81:D8:67:46:71:CD:37:D3:D0:0A:E3:E1:82:67:19:E4:BD:39:B8:6F Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: D2 Signing time: Tue 17 Jun 2025 02:34:58 +0000 Manifest this update: Tue 17 Jun 2025 02:34:57 +0000 Manifest next update: Tue 24 Jun 2025 02:34:57 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: ekEBYQQhws6TfoZldUpvcBkv2uUSsywR5S15Yql9c4U=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: kSK29014IOAyTFM0toP6bnTMS2qsqnnHmN7R+iDPlF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Jun 17 02:34:57 2025 GMT Not After : Jun 24 02:34:57 2025 GMT Subject: CN=6850d452-b45b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d0:d3:e6:3d:fc:45:54:67:2d:00:05:38:b9: 6a:f1:11:f4:1b:6a:a4:9a:77:37:ee:9a:6a:8d:c1: 55:89:da:a9:47:c9:0f:3a:e6:40:e5:dd:91:26:e1: e3:d5:cd:8a:90:be:8a:22:d7:50:40:3f:16:b7:49: ba:37:7f:89:b2:e1:ba:88:84:5d:d2:bf:b4:9c:83: f7:9a:ff:a6:4f:29:3d:c5:05:37:bd:88:fc:b0:a2: 74:cc:ba:6c:b9:2b:8d:87:bf:55:79:d0:91:e4:7e: 99:86:12:2b:3b:29:07:9a:a9:ba:e7:ad:48:3a:cd: c1:ad:a7:8c:20:4f:08:9f:47:cd:44:b3:11:72:ff: d1:4b:65:17:a3:fe:71:68:95:46:0e:c0:9c:a8:dc: 6b:cb:a6:81:1f:41:b9:aa:e3:c8:53:68:1c:81:40: fe:3e:fc:9e:61:fb:47:12:1a:27:f2:78:f1:05:81: 6d:8b:b6:fc:85:19:83:c3:72:aa:1b:0d:5a:eb:5c: 2d:71:f6:aa:f9:fd:ec:29:a8:f0:a9:b0:6c:42:22: b8:43:2c:ee:f8:ac:76:29:a0:c4:78:80:65:2a:b3: 04:7f:2b:7b:79:f4:89:86:e3:01:99:7c:aa:11:b8: 30:fd:10:01:bd:4d:36:0c:54:bd:3a:cc:62:1e:a4: cb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D8:67:46:71:CD:37:D3:D0:0A:E3:E1:82:67:19:E4:BD:39:B8:6F X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:a1:8e:50:df:d6:a9:ab:1e:0b:01:97:78:c1:7f:bf:3b:53: 8d:57:da:c2:c4:c2:93:a4:e1:81:d9:78:d2:67:0e:7d:d3:e2: 0e:eb:90:6a:6e:55:e1:40:0f:b2:cf:8c:ff:cd:90:f7:b9:98: c0:e2:e4:08:9e:31:e7:8c:ee:fc:14:18:d4:98:2f:50:2f:15: 3d:c7:b0:81:1c:a5:ea:83:c4:4f:94:a5:a8:69:e7:68:16:cd: 08:f4:97:a8:73:01:2c:0e:1e:17:7c:d4:69:f8:2a:9c:be:46: e2:69:36:ed:7a:87:95:e4:74:0f:c8:66:e8:72:77:30:e2:7b: a6:71:c7:8b:10:14:91:86:af:ac:5b:b1:29:f1:58:bb:18:e2: e1:ad:d3:f3:30:71:48:97:b6:a1:7e:72:26:de:05:a8:60:09: f3:4a:58:d7:94:76:19:ce:33:eb:a0:c7:ff:f7:2d:3c:a2:d5: e5:de:db:f1:ac:ad:ed:95:9a:0a:5f:b6:33:b1:81:b5:57:5a: a7:a6:4b:84:97:98:8c:58:fd:b3:21:2d:35:d5:3b:8e:90:1d: 06:24:f0:6a:9c:2f:48:1e:92:7e:d5:8a:0b:da:66:86:6b:a5: 56:64:91:f8:8a:b5:ff:64:9b:08:f8:4c:42:fd:df:3d:9c:8f: 28:39:fa:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwNjE3MDIzNDU3WhcNMjUwNjI0MDIzNDU3WjAYMRYwFAYD VQQDEw02ODUwZDQ1Mi1iNDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NDT5j38RVRnLQAFOLlq8RH0G2qkmnc37ppqjcFVidqpR8kPOuZA5d2RJuHj 1c2KkL6KItdQQD8Wt0m6N3+JsuG6iIRd0r+0nIP3mv+mTyk9xQU3vYj8sKJ0zLps uSuNh79VedCR5H6ZhhIrOykHmqm6561IOs3BraeMIE8In0fNRLMRcv/RS2UXo/5x aJVGDsCcqNxry6aBH0G5quPIU2gcgUD+PvyeYftHEhon8njxBYFti7b8hRmDw3Kq Gw1a61wtcfaq+f3sKajwqbBsQiK4Qyzu+Kx2KaDEeIBlKrMEfyt7efSJhuMBmXyq Ebgw/RABvU02DFS9OsxiHqTLZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHYZ0Zx zTfT0Arj4YJnGeS9ObhvMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFoY5Q39apqx4LAZd4wX+/O1ONV9rCxMKTpOGB2XjSZw590+IO65Bq blXhQA+yz4z/zZD3uZjA4uQInjHnjO78FBjUmC9QLxU9x7CBHKXqg8RPlKWoaedo Fs0I9JeocwEsDh4XfNRp+CqcvkbiaTbteoeV5HQPyGbocncw4numcceLEBSRhq+s W7Ep8Vi7GOLhrdPzMHFIl7ahfnIm3gWoYAnzSljXlHYZzjProMf/9y08otXl3tvx rK3tlZoKX7YzsYG1V1qnpkuEl5iMWP2zIS011TuOkB0GJPBqnC9IHpJ+1YoL2maG a6VWZJH4irX/ZJsI+ExC/d89nI8oOfqs -----END CERTIFICATE-----Generated at Wed Jun 18 20:27:48 2025 by rpki-client