$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: FwtrOQPEAQ0/4W2z2EEYpUps+LDOXQxd6+K8cb/Ht8w= Subject key identifier: 8A:29:1D:3D:50:3A:2E:6A:A0:C5:6E:D8:D1:87:82:B1:D5:47:B0:2A Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 4F Signing time: Fri 13 Jun 2025 06:10:39 +0000 Manifest this update: Fri 13 Jun 2025 06:10:39 +0000 Manifest next update: Fri 20 Jun 2025 06:10:39 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: joQqjSK9ZS4ABvH5c8q1cmVLStyx2p60SpQlcgHzXgU=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Jun 13 06:10:39 2025 GMT Not After : Jun 20 06:10:39 2025 GMT Subject: CN=684bc0df-ed7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:1a:d8:d5:8f:f7:f6:d6:bf:86:15:24:c3: 10:d5:a3:90:1a:9a:cc:c5:4b:a0:62:27:57:b0:f3: 8b:2f:10:71:9f:f6:12:7e:05:62:6d:88:18:c5:8b: e2:8d:b3:64:96:f7:56:83:9c:22:04:76:bc:95:75: d0:61:6d:f0:39:e2:1c:a7:cc:25:c0:82:63:d9:b4: e4:86:13:d4:3b:a0:00:4b:dd:5a:5b:d8:cd:ca:b9: c4:13:bb:3b:20:ae:d8:b4:c4:b8:93:cd:16:a0:b6: 28:43:76:6b:0b:1b:c4:7b:e5:eb:70:12:9c:90:b7: 13:c4:6e:21:93:7c:b3:7b:8a:15:63:84:49:97:f9: 61:fa:ac:49:bc:8f:e2:c4:da:76:78:7e:6b:99:3a: 9b:b4:a2:0c:36:49:b2:f5:a9:e9:4a:b8:36:fe:52: 28:11:2e:9f:61:fb:91:2a:34:b5:23:d2:47:36:0c: 6b:29:d9:11:06:af:25:01:1a:7d:06:c5:cc:62:af: 15:08:9b:59:ef:66:16:06:4c:54:11:6f:04:d2:fe: 24:36:2d:c0:d1:e9:c7:b8:96:64:31:cc:52:3a:d7: 1f:24:27:b9:31:75:f8:f6:b4:65:ed:e7:9c:39:16: 03:2e:d4:11:06:40:6d:23:23:6c:76:06:86:2d:fa: 48:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:29:1D:3D:50:3A:2E:6A:A0:C5:6E:D8:D1:87:82:B1:D5:47:B0:2A X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:1e:6f:84:fa:01:6e:d6:64:8b:7d:55:8d:98:9f:47:cc:f5: 2f:84:02:d3:aa:75:ca:a8:50:6a:6c:07:78:61:5b:9d:31:05: a0:a7:d4:8f:7d:a9:39:bd:68:d0:73:2c:c6:8e:d6:71:32:2d: 36:57:17:20:58:4c:b4:b3:56:c1:cd:bd:bb:e0:9a:e3:a7:36: 25:53:ee:7a:fb:ee:e2:dc:ac:09:5d:38:8f:ec:fd:36:c4:55: 34:d3:21:93:a2:45:12:e4:8a:3d:54:5b:8e:42:e6:7b:24:84: c8:ec:d8:ed:93:b9:d9:85:82:6c:04:a4:b1:bb:3f:90:23:37: 9a:ff:a5:8b:53:c6:1a:b6:8c:26:01:8c:75:3a:67:ec:4c:11: d7:37:0f:d4:bd:ba:e8:4d:a7:4e:76:f7:4b:e7:7d:5d:d9:06: 08:d5:cc:a7:fe:ae:46:d6:03:19:68:bb:08:aa:a1:92:4f:ce: 6b:af:1f:26:c2:5a:63:d9:a9:76:a5:aa:95:35:91:85:fa:78: 30:1a:f1:32:8a:91:26:d8:48:e4:c7:13:80:17:c6:7d:c8:cf: 56:e2:00:68:2a:3d:f9:48:00:5b:d4:b5:1f:07:33:43:8e:9c: 79:22:85:a7:9b:b2:70:b0:b9:5e:d7:9f:48:f8:f3:ea:2e:13: 8d:87:f0:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTA2MTMwNjEwMzlaFw0yNTA2MjAwNjEwMzlaMBgxFjAUBgNV BAMTDTY4NGJjMGRmLWVkN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvgRrY1Y/39ta/hhUkwxDVo5AamszFS6BiJ1ew84svEHGf9hJ+BWJtiBjFi+KN s2SW91aDnCIEdryVddBhbfA54hynzCXAgmPZtOSGE9Q7oABL3Vpb2M3KucQTuzsg rti0xLiTzRagtihDdmsLG8R75etwEpyQtxPEbiGTfLN7ihVjhEmX+WH6rEm8j+LE 2nZ4fmuZOpu0ogw2SbL1qelKuDb+UigRLp9h+5EqNLUj0kc2DGsp2REGryUBGn0G xcxirxUIm1nvZhYGTFQRbwTS/iQ2LcDR6ce4lmQxzFI61x8kJ7kxdfj2tGXt55w5 FgMu1BEGQG0jI2x2BoYt+khPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiikdPVA6 LmqgxW7Y0YeCsdVHsCowHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGUeb4T6AW7WZIt9VY2Yn0fM9S+EAtOqdcqoUGpsB3hhW50xBaCn1I99 qTm9aNBzLMaO1nEyLTZXFyBYTLSzVsHNvbvgmuOnNiVT7nr77uLcrAldOI/s/TbE VTTTIZOiRRLkij1UW45C5nskhMjs2O2TudmFgmwEpLG7P5AjN5r/pYtTxhq2jCYB jHU6Z+xMEdc3D9S9uuhNp05290vnfV3ZBgjVzKf+rkbWAxlouwiqoZJPzmuvHybC WmPZqXalqpU1kYX6eDAa8TKKkSbYSOTHE4AXxn3Iz1biAGgqPflIAFvUtR8HM0OO nHkihaebsnCwuV7Xn0j48+ouE42H8BU= -----END CERTIFICATE-----Generated at Sat Jun 14 19:40:47 2025 by rpki-client