$ rpki-client -vvf rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft File: OVr1eRN2M5r53uVtah4TtHq1xGY.mft (raw, json) Hash identifier: oed1QnYXI9QXQWpzCHO5pBcKKEHMV0xKmaqbDnHgN+U= Subject key identifier: 2F:AF:60:72:70:39:19:13:4F:3C:B5:9A:E4:03:3F:E4:05:E5:3E:33 Authority key identifier: 39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 Certificate issuer: /CN=A91316B0/serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft Manifest number: 0535 Signing time: Tue 01 Jul 2025 00:49:11 +0000 Manifest this update: Tue 01 Jul 2025 00:49:11 +0000 Manifest next update: Tue 08 Jul 2025 00:49:11 +0000 Files and hashes: 1: OVr1eRN2M5r53uVtah4TtHq1xGY.crl (hash: a5yxfsox7F+JI4MDdgoq/zHbJd74KVdH8ygRE/fWuzc=) 2: C6EFDF5C0C3311EFB37BD03FC4F9AE02.roa (hash: +baf+FBOvTO91WyGSxfLgP4c75Re+v5ehq0gcaeZq1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:49:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91316B0, serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Validity Not Before: Jul 1 00:49:11 2025 GMT Not After : Jul 8 00:49:11 2025 GMT Subject: CN=68633087-673f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e7:df:f0:9c:fc:cd:3d:8a:49:89:75:a1:02: 8e:77:23:4d:10:16:91:88:61:f7:03:f4:11:dd:8e: 0c:16:e5:5b:03:09:73:84:4c:36:55:cb:67:70:f0: e0:d4:60:c0:97:85:0c:81:0c:6d:02:3c:69:9a:58: a0:be:bf:54:a9:b6:fc:41:60:59:41:f4:93:10:85: 42:5a:e4:4a:df:fa:bd:a6:99:ba:04:c6:4f:1e:5a: ac:81:5e:33:c1:bb:36:ec:e1:c6:c6:c0:34:e5:e3: 4b:2e:03:c8:28:c7:be:a4:bc:97:62:fa:53:27:ca: a9:1f:ec:4e:66:5e:0f:3d:f4:3c:f2:68:6e:85:c0: a6:75:3e:25:b7:a0:f7:1c:78:d5:f8:cd:25:52:ff: 15:4c:96:8f:6f:a7:02:ce:fe:08:be:dc:f1:8f:4d: 79:49:ef:ab:e9:e8:17:94:96:2a:07:8f:d4:cc:75: d8:a9:b8:1e:36:5c:9a:7d:b6:e9:b7:59:7d:a3:71: a4:46:35:76:7c:c7:c7:29:a3:d1:0e:ff:f4:44:16: 78:e6:22:b6:f7:12:0a:b0:c8:fd:59:b8:f7:c6:1f: f2:e5:f8:16:cb:58:29:ff:93:26:3e:8a:35:51:a2: 40:e5:9d:57:73:e8:61:0e:e3:7d:5f:0e:e7:c5:b8: 95:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:AF:60:72:70:39:19:13:4F:3C:B5:9A:E4:03:3F:E4:05:E5:3E:33 X509v3 Authority Key Identifier: keyid:39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:89:f4:da:d7:25:18:20:35:48:12:b6:1d:fe:6e:bb:4f:58: 4e:77:f9:39:de:d5:a6:53:7f:10:f1:66:71:43:f2:b8:35:f4: 13:d2:16:b2:1a:b2:4a:b0:96:7e:22:56:aa:cb:38:2b:cb:7a: 31:73:48:06:24:df:23:3b:64:dd:01:12:d8:3e:96:94:64:04: 02:19:54:5e:76:6f:89:77:80:9e:3f:75:1c:55:38:23:8e:75: c0:68:ef:4d:e5:be:94:d9:29:63:cf:0a:57:5d:1d:8b:fd:d6: e9:e9:17:06:8b:04:8c:d6:dc:ab:37:76:4a:54:35:15:b5:ef: 31:58:e5:45:7d:ec:4d:1c:da:d1:00:78:c5:80:18:41:b4:87: d6:a9:bb:57:f0:f0:05:16:41:3a:f4:92:63:b1:4e:c5:2b:2c: 17:1e:95:3f:f2:21:50:28:7c:61:63:ed:9c:de:14:74:50:7f: 9c:35:3c:fe:75:60:54:c9:0a:9f:e3:b4:31:dd:09:f6:90:d0: aa:65:df:b7:48:44:29:13:5e:c0:9c:e9:f7:35:ff:78:82:7c: 33:9d:9e:b9:3b:dc:2e:c6:34:7c:d5:f7:01:f4:5a:c7:f0:01: 09:73:e4:ed:fa:c2:92:34:22:3c:af:9e:6b:86:13:7b:d5:63: b7:fd:c8:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2QjAxMTAvBgNVBAUTKDM5NUFGNTc5MTM3NjMzOUFGOURFRTU2RDZBMUUxM0I0 N0FCNUM0NjYwHhcNMjUwNzAxMDA0OTExWhcNMjUwNzA4MDA0OTExWjAYMRYwFAYD VQQDEw02ODYzMzA4Ny02NzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9uff8Jz8zT2KSYl1oQKOdyNNEBaRiGH3A/QR3Y4MFuVbAwlzhEw2VctncPDg 1GDAl4UMgQxtAjxpmligvr9Uqbb8QWBZQfSTEIVCWuRK3/q9ppm6BMZPHlqsgV4z wbs27OHGxsA05eNLLgPIKMe+pLyXYvpTJ8qpH+xOZl4PPfQ88mhuhcCmdT4lt6D3 HHjV+M0lUv8VTJaPb6cCzv4Ivtzxj015Se+r6egXlJYqB4/UzHXYqbgeNlyafbbp t1l9o3GkRjV2fMfHKaPRDv/0RBZ45iK29xIKsMj9Wbj3xh/y5fgWy1gp/5MmPoo1 UaJA5Z1Xc+hhDuN9Xw7nxbiVTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+vYHJw ORkTTzy1muQDP+QF5T4zMB8GA1UdIwQYMBaAFDla9XkTdjOa+d7lbWoeE7R6tcRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTZCMC8yMzM3RjIzMjVF M0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01cjUzdVZ0YWg0VHRIcTF4 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09WcjFlUk4yTTVyNTN1VnRhaDRUdEhxMXhHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTZCMC8yMzM3RjIzMjVFM0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01 cjUzdVZ0YWg0VHRIcTF4R1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqifTa1yUYIDVIErYd/m67T1hOd/k53tWmU38Q8WZxQ/K4NfQT0hay GrJKsJZ+Ilaqyzgry3oxc0gGJN8jO2TdARLYPpaUZAQCGVRedm+Jd4CeP3UcVTgj jnXAaO9N5b6U2SljzwpXXR2L/dbp6RcGiwSM1tyrN3ZKVDUVte8xWOVFfexNHNrR AHjFgBhBtIfWqbtX8PAFFkE69JJjsU7FKywXHpU/8iFQKHxhY+2c3hR0UH+cNTz+ dWBUyQqf47Qx3Qn2kNCqZd+3SEQpE17AnOn3Nf94gnwznZ65O9wuxjR81fcB9FrH 8AEJc+Tt+sKSNCI8r55rhhN71WO3/ciR -----END CERTIFICATE-----Generated at Wed Jul 2 20:01:25 2025 by rpki-client