$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: Si3q9zGbVz4v74s+7iRAO1asR5B6BC+QiAMgBwSR0vg= Subject key identifier: 63:6C:F6:62:DB:F3:40:2E:80:5B:9E:FB:F4:27:8B:02:C8:59:BF:C6 Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 017C Signing time: Fri 13 Jun 2025 03:04:30 +0000 Manifest this update: Fri 13 Jun 2025 03:04:29 +0000 Manifest next update: Fri 20 Jun 2025 03:04:29 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: 9YZ77UgzidwuVxJ5vTzBjTUVl8/SpmYcWZenoBj7eJI=) 2: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: F8BQEsLxz2XO34zN3GNH3AuMPZU87rOGItPVHiqWabQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390, serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: Jun 13 03:04:29 2025 GMT Not After : Jun 20 03:04:29 2025 GMT Subject: CN=684b953d-e01d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:73:3b:52:92:3e:02:7d:23:7c:f7:35:39:b5: 9c:52:1f:79:48:e0:cf:68:a8:32:df:55:f4:d5:be: 00:95:89:c4:01:d4:e6:96:e8:ca:4c:a0:04:2a:0f: 4b:07:30:ac:df:d2:ff:b5:7a:87:26:9e:4b:b8:ef: 63:a5:dc:3e:61:fe:5e:b6:1f:98:71:4d:94:9b:43: a9:f2:73:34:18:fa:e9:e1:88:89:a6:77:cc:36:15: fb:58:92:32:5d:0a:ef:c2:f2:a3:64:e1:dd:bd:f2: 9d:8f:9a:d0:42:4a:49:c0:03:24:82:02:f0:4e:ad: a4:1b:16:57:c8:1e:86:80:bf:50:18:72:e4:85:f7: 22:8d:15:f0:e5:b9:de:67:b0:dc:48:60:49:d8:60: 8a:b7:1d:f0:af:52:8d:71:f2:34:8e:31:62:ca:71: d9:06:31:bb:56:52:c5:d9:b7:15:49:80:7c:3f:c0: 03:1a:db:7d:3b:42:6b:89:2a:79:4c:51:20:74:8e: 1b:1d:04:0d:c0:4b:92:21:bb:3a:81:cb:3e:b9:0c: 51:f2:9a:04:ab:2a:41:7f:9a:6f:38:e1:85:14:ab: 22:57:a9:19:b7:15:4f:ee:f6:2b:89:be:ae:c6:60: 49:c4:c7:f0:eb:8e:25:7d:6e:f8:c2:81:fb:ea:58: 85:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:6C:F6:62:DB:F3:40:2E:80:5B:9E:FB:F4:27:8B:02:C8:59:BF:C6 X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:23:8e:a8:5b:a4:c0:ae:61:ec:39:0c:af:ae:ad:e1:8c:2e: 5a:db:12:de:50:0a:96:1f:9c:7e:30:cd:4e:96:d1:b0:66:f2: 22:64:ee:75:45:ba:b2:a6:2d:3a:8e:ab:a6:dc:ce:d2:ec:f7: 0a:54:03:7e:08:ed:f0:e4:9d:fa:48:35:89:7d:07:62:e7:3b: f5:b4:2d:67:fa:45:fb:0f:5a:b7:c0:86:b7:43:75:f5:75:ec: 92:df:27:e0:d8:54:ac:39:e7:01:82:7d:ac:a3:e1:c9:15:22: 85:7f:45:bb:ae:5a:1f:5e:ed:1d:62:c7:f5:5f:1f:23:dd:f2: ac:53:fa:39:95:59:bd:e3:88:ee:79:87:ae:10:ba:13:f8:1a: db:c6:bf:eb:46:7c:bf:b8:f6:09:80:b8:71:a2:9d:ac:3b:47: f9:0a:5e:fb:a7:96:33:8e:6e:50:02:42:d2:21:a7:95:94:3f: 7d:6e:46:46:32:eb:0c:68:5e:70:5c:42:a1:68:84:c8:28:b0: a6:42:eb:aa:e8:6e:1c:eb:d1:35:61:7f:95:24:b7:cd:5b:76: 06:8f:73:04:37:13:38:03:d5:a8:4f:d6:dc:d0:20:af:fa:8e: 61:ca:9d:21:d1:03:e2:2b:d8:40:4c:61:d9:70:b0:b2:0e:55: 40:d1:5f:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjUwNjEzMDMwNDI5WhcNMjUwNjIwMDMwNDI5WjAYMRYwFAYD VQQDEw02ODRiOTUzZC1lMDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HM7UpI+An0jfPc1ObWcUh95SODPaKgy31X01b4AlYnEAdTmlujKTKAEKg9L BzCs39L/tXqHJp5LuO9jpdw+Yf5eth+YcU2Um0Op8nM0GPrp4YiJpnfMNhX7WJIy XQrvwvKjZOHdvfKdj5rQQkpJwAMkggLwTq2kGxZXyB6GgL9QGHLkhfcijRXw5bne Z7DcSGBJ2GCKtx3wr1KNcfI0jjFiynHZBjG7VlLF2bcVSYB8P8ADGtt9O0JriSp5 TFEgdI4bHQQNwEuSIbs6gcs+uQxR8poEqypBf5pvOOGFFKsiV6kZtxVP7vYrib6u xmBJxMfw644lfW74woH76liFgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNs9mLb 80AugFue+/QniwLIWb/GMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqI46oW6TArmHsOQyvrq3hjC5a2xLeUAqWH5x+MM1OltGwZvIiZO51 Rbqypi06jqum3M7S7PcKVAN+CO3w5J36SDWJfQdi5zv1tC1n+kX7D1q3wIa3Q3X1 deyS3yfg2FSsOecBgn2so+HJFSKFf0W7rlofXu0dYsf1Xx8j3fKsU/o5lVm944ju eYeuELoT+Brbxr/rRny/uPYJgLhxop2sO0f5Cl77p5Yzjm5QAkLSIaeVlD99bkZG MusMaF5wXEKhaITIKLCmQuuq6G4c69E1YX+VJLfNW3YGj3MENxM4A9WoT9bc0CCv +o5hyp0h0QPiK9hATGHZcLCyDlVA0V/E -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:55 2025 by rpki-client