$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: gke2JgFDBqT5dC8/PwkomYtndjKYzoMW01snXaHNIlk= Subject key identifier: BC:F3:48:8E:CF:85:09:BB:E4:1E:09:77:34:DB:A1:F9:71:8F:AB:79 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0A5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0A55 Signing time: Wed 18 Jun 2025 19:33:12 +0000 Manifest this update: Wed 18 Jun 2025 19:33:11 +0000 Manifest next update: Wed 25 Jun 2025 19:33:11 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: FyxECr+CN90yT+//ou7JacZXi/+aLGh8fNCo4ez0mak=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: aNxxH/k6H9pUK4+Yh6tMJ5W3Dxa/fkGC+OopIVqyBEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2650 (0xa5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Jun 18 19:33:11 2025 GMT Not After : Jun 25 19:33:11 2025 GMT Subject: CN=68531478-b474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3a:c1:a1:30:6d:f2:ab:bf:3b:5e:db:1e:cb: 75:1b:90:a1:dd:cc:f1:33:ed:72:dc:ce:34:7a:f7: 0e:21:42:07:78:73:ef:39:d8:03:a0:e2:02:79:22: f5:76:79:65:bd:7b:c3:71:fa:30:15:b7:a3:4e:f2: 75:c4:71:41:84:e6:ed:fc:77:3d:20:a8:0f:2c:ea: 20:6f:35:19:a0:25:d0:a6:4a:71:01:37:b9:06:3c: 33:e2:f4:92:f7:45:b7:ca:f8:a2:47:c7:bd:a6:34: 7c:9e:40:ef:02:e0:a9:0f:1b:27:c9:ec:ad:b3:04: fc:56:81:5c:1c:7c:14:05:0e:f6:3f:06:7a:b4:4e: 65:d0:a1:ae:f9:06:33:c2:53:90:ff:04:06:58:f2: 3c:ff:8a:7f:53:d2:e8:98:b3:7c:29:0a:79:78:dc: 93:4e:ed:17:1c:8d:5d:e3:44:a2:5c:45:2f:ad:02: de:24:4a:cf:a9:50:5b:db:17:ba:b9:1a:84:a4:69: d6:36:54:29:f7:7c:ea:4d:ad:5a:f3:b4:ac:e0:24: fe:e1:7d:ef:fb:ec:28:1a:eb:11:8b:88:f8:20:4d: ef:53:a0:4b:ad:bc:aa:ba:79:f7:a4:2f:c8:0e:19: 5a:ed:32:7a:d7:23:ab:90:77:b6:57:f3:08:c2:8e: ac:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F3:48:8E:CF:85:09:BB:E4:1E:09:77:34:DB:A1:F9:71:8F:AB:79 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e5:56:bc:d9:51:ad:59:a9:8e:22:a7:36:7f:a6:98:18:93: 21:6b:4b:a0:d1:92:8a:51:e1:bb:9d:11:37:02:8c:ef:41:f8: 40:e5:57:01:73:73:3a:85:02:fd:a4:30:5c:c1:ca:bd:5e:7b: 2c:5c:c9:cd:29:4d:9a:c8:81:a1:be:d4:b3:2e:34:7a:db:9c: c1:e4:cf:4f:f1:9a:b5:e6:5c:4e:0f:f1:ca:a2:6d:a8:6f:0e: 63:e4:2e:ee:45:30:23:19:94:57:47:2c:6e:32:fc:7a:af:94: 0b:d0:ec:76:a3:21:a3:05:95:45:2e:f1:e7:2c:ff:2b:be:ef: e9:4a:b5:97:80:49:b4:58:05:f0:62:85:c5:9e:d4:fb:c9:f4: 62:5e:65:e2:28:ff:fc:c0:b4:40:d1:dd:60:a2:44:69:00:30: e1:cf:7e:00:ea:79:7d:31:64:d2:bd:c0:04:ef:a9:3a:fc:a8: 52:55:de:e3:7f:6c:e3:f7:37:f2:c7:b0:5c:29:5b:fe:cf:a0: 37:30:7e:29:b9:93:8a:76:6b:dc:63:ab:b2:a4:bf:49:4f:8f: fc:8a:b2:15:3f:0e:eb:d9:e5:66:18:0d:39:68:b1:5a:c8:d5: bc:33:6f:17:a6:a5:2d:50:5d:9f:07:df:36:d6:11:1a:02:82: 82:60:c7:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjUwNjE4MTkzMzExWhcNMjUwNjI1MTkzMzExWjAYMRYwFAYD VQQDEw02ODUzMTQ3OC1iNDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TrBoTBt8qu/O17bHst1G5Ch3czxM+1y3M40evcOIUIHeHPvOdgDoOICeSL1 dnllvXvDcfowFbejTvJ1xHFBhObt/Hc9IKgPLOogbzUZoCXQpkpxATe5Bjwz4vSS 90W3yviiR8e9pjR8nkDvAuCpDxsnyeytswT8VoFcHHwUBQ72PwZ6tE5l0KGu+QYz wlOQ/wQGWPI8/4p/U9LomLN8KQp5eNyTTu0XHI1d40SiXEUvrQLeJErPqVBb2xe6 uRqEpGnWNlQp93zqTa1a87Ss4CT+4X3v++woGusRi4j4IE3vU6BLrbyqunn3pC/I Dhla7TJ61yOrkHe2V/MIwo6sowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzzSI7P hQm75B4JdzTboflxj6t5MB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr5Va82VGtWamOIqc2f6aYGJMha0ug0ZKKUeG7nRE3AozvQfhA5VcB c3M6hQL9pDBcwcq9XnssXMnNKU2ayIGhvtSzLjR625zB5M9P8Zq15lxOD/HKom2o bw5j5C7uRTAjGZRXRyxuMvx6r5QL0Ox2oyGjBZVFLvHnLP8rvu/pSrWXgEm0WAXw YoXFntT7yfRiXmXiKP/8wLRA0d1gokRpADDhz34A6nl9MWTSvcAE76k6/KhSVd7j f2zj9zfyx7BcKVv+z6A3MH4puZOKdmvcY6uypL9JT4/8irIVPw7r2eVmGA05aLFa yNW8M28XpqUtUF2fB9821hEaAoKCYMdI -----END CERTIFICATE-----Generated at Fri Jun 20 14:55:28 2025 by rpki-client