$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft File: OTVm9EF4bZWNinkRjo71b8hy5cU.mft (raw, json) Hash identifier: E5qP5zwf/vDMOdZkyL3rVJoEHjoO67LtFphmH4QKlBs= Subject key identifier: 14:AC:CB:62:44:F4:ED:31:E8:30:FD:4C:BA:C5:F6:D8:68:50:69:29 Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft Manifest number: 0681 Signing time: Mon 30 Jun 2025 22:37:48 +0000 Manifest this update: Mon 30 Jun 2025 22:37:48 +0000 Manifest next update: Mon 07 Jul 2025 22:37:48 +0000 Files and hashes: 1: OTVm9EF4bZWNinkRjo71b8hy5cU.crl (hash: HnaOIRQB0eZ5kwA+plDsQ8BBx8L8/SQi0JukypFbdkw=) 2: CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa (hash: Tn4IiKC/ehOcHKqem3Io6ZVpsXPRVKGONn1yIt6QObo=) 3: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (hash: rBuNfeeoduUd1I0NoD4IRcILjNn1S7GUQ8XAggSqgBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: Jun 30 22:37:48 2025 GMT Not After : Jul 7 22:37:48 2025 GMT Subject: CN=686311bc-e06e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b8:8f:ee:53:ef:58:de:ca:29:ce:b9:76:2f: 35:0a:dc:ee:8a:8f:ca:48:b1:92:76:44:9c:a7:dd: 2d:d8:9c:e6:d5:65:32:f0:de:fb:eb:fc:4a:cb:17: 05:1d:76:e1:fc:67:fc:fb:8e:7f:f9:32:b3:58:c4: ad:b0:1a:69:5c:75:72:90:95:d0:01:d8:87:b2:85: 82:8d:97:57:dd:6c:ac:86:f8:ca:d6:34:f3:b8:72: c5:0e:2c:89:9e:65:84:49:b1:b0:3d:d1:5a:aa:75: 38:c2:95:bb:c9:05:9b:0e:03:6b:8c:34:4d:e4:e6: 85:65:71:f8:39:68:89:18:5c:e9:8f:52:4f:c0:bf: a0:bb:0f:1d:12:0b:c6:f2:c4:dd:67:c1:a5:0b:34: 92:88:c1:fa:a0:eb:48:32:02:c3:c0:3f:da:75:6b: 79:b8:83:6c:cc:d0:05:aa:bc:97:de:0d:6a:22:96: 57:a9:1e:5e:81:db:d6:77:9e:17:bc:00:21:1b:f5: 63:04:a1:fd:3e:17:da:21:98:97:4d:96:06:b3:e7: 13:dd:1f:9c:01:1f:35:15:33:7d:79:11:a5:94:96: e7:46:ca:cb:f8:5f:ab:39:f8:1f:2b:26:97:a3:be: bd:9b:71:d2:a0:84:67:bd:0c:b2:26:ac:72:a2:2e: 4b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AC:CB:62:44:F4:ED:31:E8:30:FD:4C:BA:C5:F6:D8:68:50:69:29 X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:63:71:23:40:c0:fe:18:3e:cc:83:a4:68:52:f3:d6:63:48: c1:47:b3:33:d5:df:fb:b1:16:81:49:09:7f:f8:33:b1:ce:bf: 48:d6:96:84:6f:25:c8:b5:99:98:27:bb:0f:76:44:6e:73:0a: 12:18:f4:49:23:fd:f3:67:c2:ef:2a:1c:fe:51:f4:1f:de:88: 17:5a:ff:ad:c0:a2:ba:65:33:c0:e8:fc:a7:5b:ac:2f:d1:9c: 55:86:98:6f:64:66:ab:db:08:0f:62:d2:3b:f3:de:7c:e3:cf: 2d:98:1a:5a:fa:4a:ee:5d:5a:63:1b:30:2e:f0:07:d7:4c:e7: 63:15:5b:88:c9:12:17:21:46:5b:26:1c:48:5b:c5:ad:af:2a: 66:dd:4b:90:f3:18:9f:30:a8:44:63:1c:2c:81:4f:6f:66:75: 69:13:bc:1b:e9:78:60:81:3a:1d:c4:c4:81:f3:d7:9b:6d:6f: 7c:3c:ee:69:9c:6e:7c:63:59:b2:f7:a8:37:2e:aa:5d:61:91: d0:ed:0b:76:72:07:17:89:05:79:af:cf:70:5e:0c:de:27:bf: c5:93:56:6f:e8:c1:c6:33:5c:a2:77:f8:a7:46:06:76:20:0f: 45:0a:b5:a3:76:e8:42:54:bb:28:2b:f5:9e:a2:c2:94:5e:e9: 8f:39:c7:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjUwNjMwMjIzNzQ4WhcNMjUwNzA3MjIzNzQ4WjAYMRYwFAYD VQQDEw02ODYzMTFiYy1lMDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbiP7lPvWN7KKc65di81Ctzuio/KSLGSdkScp90t2Jzm1WUy8N776/xKyxcF HXbh/Gf8+45/+TKzWMStsBppXHVykJXQAdiHsoWCjZdX3WyshvjK1jTzuHLFDiyJ nmWESbGwPdFaqnU4wpW7yQWbDgNrjDRN5OaFZXH4OWiJGFzpj1JPwL+guw8dEgvG 8sTdZ8GlCzSSiMH6oOtIMgLDwD/adWt5uINszNAFqryX3g1qIpZXqR5egdvWd54X vAAhG/VjBKH9PhfaIZiXTZYGs+cT3R+cAR81FTN9eRGllJbnRsrL+F+rOfgfKyaX o769m3HSoIRnvQyyJqxyoi5L3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSsy2JE 9O0x6DD9TLrF9thoUGkpMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzNFRC80RDhGQTIwRTdENDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJa V05pbmtSam83MWI4aHk1Y1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKY3EjQMD+GD7Mg6RoUvPWY0jBR7Mz1d/7sRaBSQl/+DOxzr9I1paE byXItZmYJ7sPdkRucwoSGPRJI/3zZ8LvKhz+UfQf3ogXWv+twKK6ZTPA6PynW6wv 0ZxVhphvZGar2wgPYtI78958488tmBpa+kruXVpjGzAu8AfXTOdjFVuIyRIXIUZb JhxIW8Wtrypm3UuQ8xifMKhEYxwsgU9vZnVpE7wb6XhggTodxMSB89ebbW98PO5p nG58Y1my96g3LqpdYZHQ7Qt2cgcXiQV5r89wXgzeJ7/Fk1Zv6MHGM1yid/inRgZ2 IA9FCrWjduhCVLsoK/WeosKUXumPOcdg -----END CERTIFICATE-----Generated at Tue Jul 1 18:30:52 2025 by rpki-client