$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: u41mfRruezVJe64OK1H5Oy2daYzBYErpq1Twn+jqIeY= Subject key identifier: 33:DE:81:F3:CF:27:0D:6D:49:C7:C4:D2:C0:8D:0F:CB:77:04:2E:F8 Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 6C Signing time: Sat 09 Aug 2025 07:24:15 +0000 Manifest this update: Sat 09 Aug 2025 07:24:14 +0000 Manifest next update: Sat 16 Aug 2025 07:24:14 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: 9orIRIifNjH8XB8yhAuKphTUZZy/VDE8ZzbTyn/BkMo=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Aug 9 07:24:14 2025 GMT Not After : Aug 16 07:24:14 2025 GMT Subject: CN=6896f79f-2f4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d3:02:a2:f9:d6:ed:60:9e:33:0c:1b:4d:2b: 68:a4:32:61:90:a6:76:d2:72:53:24:c0:6e:ca:6f: 6e:7b:d8:2f:d3:81:42:39:01:8b:a6:11:f5:05:59: 87:4a:c2:27:9f:9c:54:ba:61:de:f2:f4:43:cc:ef: 13:f1:96:fc:42:4f:1d:e7:e9:4c:53:31:5b:3d:5c: 76:5d:90:59:2c:1c:61:6e:fb:09:5d:46:5f:63:66: b0:68:8e:16:fb:ff:60:14:04:a3:60:d9:1e:14:22: b1:0d:b3:f5:ac:c9:00:c5:a2:ee:83:c4:e1:f9:8b: 6d:ad:04:50:c8:af:6d:86:ae:a3:e5:6d:38:0b:1b: 46:67:3f:3c:49:ef:a4:35:6a:7a:1f:2c:cf:23:a1: 81:a2:b3:79:94:65:c9:b4:6a:02:4a:5a:d7:be:af: 56:0b:ab:89:c1:25:89:df:4c:8f:e7:5f:d8:fd:fe: 58:19:20:4d:49:11:18:e7:3e:5d:d1:90:47:d6:53: 7b:54:53:54:73:01:cd:c2:6a:7e:6b:8c:61:07:64: a9:9f:2a:84:8e:22:f5:76:6a:8c:9e:4f:ab:ea:bf: d2:96:d7:bc:e2:a5:9e:6e:44:cd:bc:58:a8:ae:5f: da:bc:6b:7c:a1:aa:e8:25:93:cd:9a:43:10:8e:c9: 5e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:DE:81:F3:CF:27:0D:6D:49:C7:C4:D2:C0:8D:0F:CB:77:04:2E:F8 X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:94:72:2e:72:ef:54:47:e8:97:f5:62:cd:a0:26:d1:31:fd: 29:dd:38:11:c0:b1:8e:0d:e5:08:50:00:47:45:fc:d2:f9:92: ec:e5:af:f9:9d:37:96:fe:36:fb:44:d6:fe:95:1c:65:13:d8: d9:5b:05:79:ce:33:5c:58:1f:34:4a:1d:64:ba:e6:de:73:76: f6:17:f2:1f:f4:18:66:78:5b:1b:3b:29:d7:2b:52:52:2f:a1: 11:56:bf:46:60:10:63:03:47:0a:b1:bf:50:6e:8e:b9:5b:00: 34:de:57:63:c0:f1:a4:8e:47:9b:f2:ac:09:48:e9:25:62:c8: 1c:d6:fa:a6:40:0a:39:bf:40:8b:1f:d1:0b:c1:97:d5:af:2d: ad:13:04:ef:4b:6e:12:15:8c:f3:e4:c5:dd:ff:65:92:36:d6: 01:2d:72:3d:32:5f:56:09:49:da:8c:d6:3e:d8:d5:e3:bc:ee: 5f:aa:88:bb:f3:2f:75:6d:39:0f:8f:8a:4a:e0:a9:82:cc:0c: 8e:32:0b:28:6b:50:54:5f:69:01:a4:8b:ca:89:ea:8e:06:1b: f9:e2:19:c9:c4:a0:e5:11:6b:8c:1f:c7:24:08:ee:8a:8a:00: b6:9c:f1:5c:d4:d1:c3:21:ad:96:6e:4d:90:04:d3:cb:6c:ee: 54:8e:d7:0b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTA4MDkwNzI0MTRaFw0yNTA4MTYwNzI0MTRaMBgxFjAUBgNV BAMTDTY4OTZmNzlmLTJmNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC80wKi+dbtYJ4zDBtNK2ikMmGQpnbSclMkwG7Kb2572C/TgUI5AYumEfUFWYdK wiefnFS6Yd7y9EPM7xPxlvxCTx3n6UxTMVs9XHZdkFksHGFu+wldRl9jZrBojhb7 /2AUBKNg2R4UIrENs/WsyQDFou6DxOH5i22tBFDIr22GrqPlbTgLG0ZnPzxJ76Q1 anofLM8joYGis3mUZcm0agJKWte+r1YLq4nBJYnfTI/nX9j9/lgZIE1JERjnPl3R kEfWU3tUU1RzAc3Can5rjGEHZKmfKoSOIvV2aoyeT6vqv9KW17zipZ5uRM28WKiu X9q8a3yhquglk82aQxCOyV4nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUM96B888n DW1Jx8TSwI0Py3cELvgwHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIyUci5y71RH6Jf1Ys2gJtEx/SndOBHAsY4N5QhQAEdF/NL5kuzlr/md N5b+NvtE1v6VHGUT2NlbBXnOM1xYHzRKHWS65t5zdvYX8h/0GGZ4Wxs7KdcrUlIv oRFWv0ZgEGMDRwqxv1BujrlbADTeV2PA8aSOR5vyrAlI6SViyBzW+qZACjm/QIsf 0QvBl9WvLa0TBO9LbhIVjPPkxd3/ZZI21gEtcj0yX1YJSdqM1j7Y1eO87l+qiLvz L3VtOQ+PikrgqYLMDI4yCyhrUFRfaQGki8qJ6o4GG/niGcnEoOURa4wfxyQI7oqK ALac8VzU0cMhrZZuTZAE08ts7lSO1ws= -----END CERTIFICATE-----Generated at Mon Aug 11 07:39:49 2025 by rpki-client