$ rpki-client -vvf rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft File: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft (raw, json) Hash identifier: 2LsUQkq8ojOStSoShAScp/cgCJkPJnDF9fOFFu3T1oo= Subject key identifier: E9:AF:4A:89:7F:C0:5B:3A:11:73:3F:5A:E8:BB:71:CA:8D:EF:5A:5A Authority key identifier: 3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 Certificate issuer: /CN=A91498A4/serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft Manifest number: 064D Signing time: Mon 30 Jun 2025 22:55:21 +0000 Manifest this update: Mon 30 Jun 2025 22:55:21 +0000 Manifest next update: Mon 07 Jul 2025 22:55:21 +0000 Files and hashes: 1: OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl (hash: 65g4JZGwthtxevMhN35GfefafruD5N9K73hW6AH/0Uw=) 2: A7A77B96911111EBA69D2641C4F9AE02.roa (hash: GeZswpwVwmpN5JkYUADU3m9LKzzMiHleESILy/kILG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91498A4, serialNumber=3A33A5DADC373726417DDD56E46790FF84BBCED1 Validity Not Before: Jun 30 22:55:21 2025 GMT Not After : Jul 7 22:55:21 2025 GMT Subject: CN=686315d9-186a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:67:90:d2:71:3e:7b:13:35:4c:17:04:11:dc: 6c:8c:c7:27:6d:b9:f9:57:8b:5f:24:28:61:d3:fc: 13:0a:e1:1f:98:2a:40:cd:c8:e1:cb:6a:ec:ac:36: 21:ba:a5:b2:8e:14:28:dd:e1:3e:75:13:19:de:5b: 14:0b:1a:f0:19:c0:74:7a:8a:20:ac:dd:8d:22:80: f4:9a:f3:25:9c:b6:f7:7e:a5:d9:20:b3:32:cf:35: c8:3e:57:a6:0c:ad:76:15:71:77:2f:99:3d:86:8c: 15:fe:39:86:d6:35:26:0c:09:2e:9d:18:f7:c1:ef: c4:84:6c:82:43:d8:6b:80:c3:a9:5e:13:d1:91:95: bb:64:0f:6d:09:73:6c:65:43:94:87:60:82:8b:92: 0d:50:25:47:0c:06:f5:f2:4b:41:23:59:ed:4f:d8: ed:b9:7c:5b:d1:97:1e:1a:14:6d:2a:d5:9f:81:1e: 16:5f:f7:7c:3a:91:c8:45:3b:10:85:97:ff:c7:d2: 22:c8:a1:dd:a4:07:c6:13:c2:5c:97:57:e2:1e:20: 4d:cf:aa:29:7a:4e:ee:8b:cf:e2:af:60:bb:cc:10: 2a:af:61:29:1d:38:e0:b5:92:1e:f5:f3:5f:30:7d: 75:a5:c2:73:b5:d1:7f:1d:58:96:d1:ac:11:a4:75: 00:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:AF:4A:89:7F:C0:5B:3A:11:73:3F:5A:E8:BB:71:CA:8D:EF:5A:5A X509v3 Authority Key Identifier: keyid:3A:33:A5:DA:DC:37:37:26:41:7D:DD:56:E4:67:90:FF:84:BB:CE:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91498A4/ECF30A9E905311EB9CA8721DC4F9AE02/OjOl2tw3NyZBfd1W5GeQ_4S7ztE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:fd:8a:83:75:b8:2c:56:e2:1e:e9:53:48:b4:ff:ca:70:d0: 89:8e:03:76:af:e7:84:60:49:6e:17:e2:91:74:9d:0d:3b:b1: 1c:1f:83:b1:01:30:9b:20:18:07:fb:35:f8:1b:71:70:ae:2a: 56:ea:ed:5f:c6:99:98:74:af:cb:61:a1:a8:dc:d6:60:f8:44: 45:eb:40:72:81:34:2c:71:70:7d:e6:3b:78:13:39:9e:ff:3e: 0f:b9:e2:f8:7a:d7:77:e0:bf:a4:e8:38:b6:44:98:b6:04:cf: 3b:88:a0:d0:6e:58:2c:26:10:59:42:a2:fe:61:3d:c8:d4:8e: 7c:e1:21:a6:62:63:c7:10:8e:66:63:b2:0d:ef:61:0e:f5:1c: ae:d8:f4:d1:e7:c6:bc:aa:ba:d8:93:4b:4f:d9:5f:3c:2c:d4: db:ea:51:45:ca:1a:81:0a:14:6f:36:6a:8b:d9:aa:cd:4b:32: 9f:bf:9d:27:2b:42:e3:48:10:23:94:b3:82:ba:f5:c5:74:cc: bc:09:bf:f9:7d:c3:7c:62:9c:ab:c7:20:a0:45:e5:ea:01:ea: 0d:56:bc:1f:dc:aa:ad:c6:57:68:35:60:0d:70:0d:6e:14:78: 5a:a9:9a:f0:4e:b4:e7:80:9f:ae:62:fb:03:cc:9e:bc:c6:aa: 5b:ae:de:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk4QTQxMTAvBgNVBAUTKDNBMzNBNURBREMzNzM3MjY0MTdEREQ1NkU0Njc5MEZG ODRCQkNFRDEwHhcNMjUwNjMwMjI1NTIxWhcNMjUwNzA3MjI1NTIxWjAYMRYwFAYD VQQDEw02ODYzMTVkOS0xODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2eQ0nE+exM1TBcEEdxsjMcnbbn5V4tfJChh0/wTCuEfmCpAzcjhy2rsrDYh uqWyjhQo3eE+dRMZ3lsUCxrwGcB0eoogrN2NIoD0mvMlnLb3fqXZILMyzzXIPlem DK12FXF3L5k9howV/jmG1jUmDAkunRj3we/EhGyCQ9hrgMOpXhPRkZW7ZA9tCXNs ZUOUh2CCi5INUCVHDAb18ktBI1ntT9jtuXxb0ZceGhRtKtWfgR4WX/d8OpHIRTsQ hZf/x9IiyKHdpAfGE8Jcl1fiHiBNz6opek7ui8/ir2C7zBAqr2EpHTjgtZIe9fNf MH11pcJztdF/HViW0awRpHUA1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmvSol/ wFs6EXM/Wui7ccqN71paMB8GA1UdIwQYMBaAFDozpdrcNzcmQX3dVuRnkP+Eu87R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OThBNC9FQ0YzMEE5RTkw NTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055WkJmZDFXNUdlUV80Uzd6 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09qT2wydHczTnlaQmZkMVc1R2VRXzRTN3p0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OThBNC9FQ0YzMEE5RTkwNTMxMUVCOUNBODcyMURDNEY5QUUwMi9Pak9sMnR3M055 WkJmZDFXNUdlUV80Uzd6dEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9/YqDdbgsVuIe6VNItP/KcNCJjgN2r+eEYEluF+KRdJ0NO7EcH4Ox ATCbIBgH+zX4G3FwripW6u1fxpmYdK/LYaGo3NZg+ERF60BygTQscXB95jt4Ezme /z4PueL4etd34L+k6Di2RJi2BM87iKDQblgsJhBZQqL+YT3I1I584SGmYmPHEI5m Y7IN72EO9Ryu2PTR58a8qrrYk0tP2V88LNTb6lFFyhqBChRvNmqL2arNSzKfv50n K0LjSBAjlLOCuvXFdMy8Cb/5fcN8YpyrxyCgReXqAeoNVrwf3KqtxldoNWANcA1u FHhaqZrwTrTngJ+uYvsDzJ68xqpbrt6p -----END CERTIFICATE-----Generated at Wed Jul 2 21:54:44 2025 by rpki-client