$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: qI13YEFml/c39l9j04lkVw74PoG0gBeph8t4fYE6UT0= Subject key identifier: A9:00:22:66:76:B2:C3:9E:6D:D9:19:13:4E:C6:89:60:BE:77:82:2C Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 03CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 03C6 Signing time: Tue 01 Jul 2025 01:13:38 +0000 Manifest this update: Tue 01 Jul 2025 01:13:37 +0000 Manifest next update: Tue 08 Jul 2025 01:13:37 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: rW3gZ6lkDizS89wKZP5vlLR85lXproUMt0l6yq+wEzA=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: CfbtaxsbT8QkNpB+dr8l4I71elKTP/TaO4DWd5BrJjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Jul 1 01:13:37 2025 GMT Not After : Jul 8 01:13:37 2025 GMT Subject: CN=68633642-b187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:53:d2:93:bc:df:17:2f:1e:2a:93:b8:ec:db: 9c:0e:47:9c:71:d4:34:a7:1b:d1:ec:a2:0b:d7:63: 97:44:90:9f:b6:7b:8d:af:a3:39:66:9e:d1:97:cb: 3d:af:0d:28:f7:e2:aa:51:9c:89:45:dc:8d:0b:a1: ad:e4:dc:4b:2a:3e:f0:4d:8d:27:a7:7f:6b:39:b1: bd:d4:9c:ef:8b:02:d5:8c:4b:00:94:41:64:cc:35: c0:d5:0a:07:ef:b6:78:c8:3a:cb:ad:8f:dc:a3:60: 35:73:9e:ad:cd:70:2a:9c:a6:55:6e:23:95:c3:e8: 24:d7:4a:fa:50:45:64:d7:6f:7c:56:82:27:ff:5e: f7:ff:1c:8d:97:c9:1d:29:5e:5c:69:31:10:f7:5c: 31:42:2e:20:bc:d9:ae:98:bc:fa:ff:92:48:00:12: 13:b9:cd:9a:87:c5:2d:b7:9c:2d:05:00:49:0a:ea: c6:e2:ab:a0:c4:e9:36:45:64:1b:19:f8:f4:34:90: e1:f3:ed:12:da:06:78:ed:55:4d:4b:54:a6:a5:57: f4:f4:5e:2b:4b:98:6e:57:61:b7:d3:34:47:95:3f: f1:13:2a:62:e9:cc:b8:91:76:5b:98:df:f9:f2:0e: 30:99:b7:22:17:2b:67:c7:ca:9e:3e:eb:4b:91:84: 77:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:00:22:66:76:B2:C3:9E:6D:D9:19:13:4E:C6:89:60:BE:77:82:2C X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:94:3b:7c:66:96:de:b1:25:b7:3e:6d:31:dc:9a:8c:1d:3f: 6a:65:fa:88:8a:7f:0f:fd:83:19:b2:9a:4d:78:07:61:ef:bb: 2f:5a:4d:1e:77:67:95:0e:69:19:18:0f:63:41:02:d2:9e:61: b3:b9:b9:34:67:85:ab:de:f7:3d:ad:9f:f8:79:51:4b:10:99: d4:10:49:a8:46:8d:e5:00:08:e9:d5:1e:cf:08:4f:9a:d8:b6: 5f:9b:29:ae:be:54:4e:ee:22:56:54:1d:40:61:da:f0:a0:63: 9c:ea:cd:19:f8:19:c7:79:5d:b2:18:34:86:12:68:64:ec:eb: e0:4e:94:94:2f:b5:2c:c7:a6:cb:b3:83:2f:d0:f9:be:05:c5: b7:21:55:84:1c:6a:97:20:2f:44:8e:96:ba:35:1f:d8:8c:e8: 24:80:53:bc:b6:b6:a1:30:d5:58:bd:19:f1:ad:e8:f1:a7:41: 8a:33:95:5e:ee:0c:58:4f:ad:a3:45:9a:17:db:7d:ce:03:55: 06:4d:0b:0f:de:01:7b:f0:29:ff:d6:7a:92:f1:61:14:c4:f6: 1e:ff:43:55:64:5a:f2:14:bc:29:45:e3:45:36:ab:19:46:72: 9a:7c:fc:5b:83:a2:30:5d:15:4e:ca:01:f8:50:be:1d:e9:89: c2:17:b6:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUwNzAxMDExMzM3WhcNMjUwNzA4MDExMzM3WjAYMRYwFAYD VQQDEw02ODYzMzY0Mi1iMTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lPSk7zfFy8eKpO47NucDkeccdQ0pxvR7KIL12OXRJCftnuNr6M5Zp7Rl8s9 rw0o9+KqUZyJRdyNC6Gt5NxLKj7wTY0np39rObG91JzviwLVjEsAlEFkzDXA1QoH 77Z4yDrLrY/co2A1c56tzXAqnKZVbiOVw+gk10r6UEVk1298VoIn/173/xyNl8kd KV5caTEQ91wxQi4gvNmumLz6/5JIABITuc2ah8Utt5wtBQBJCurG4qugxOk2RWQb Gfj0NJDh8+0S2gZ47VVNS1SmpVf09F4rS5huV2G30zRHlT/xEypi6cy4kXZbmN/5 8g4wmbciFytnx8qePutLkYR34QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkAImZ2 ssOebdkZE07GiWC+d4IsMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJlDt8ZpbesSW3Pm0x3JqMHT9qZfqIin8P/YMZsppNeAdh77svWk0e d2eVDmkZGA9jQQLSnmGzubk0Z4Wr3vc9rZ/4eVFLEJnUEEmoRo3lAAjp1R7PCE+a 2LZfmymuvlRO7iJWVB1AYdrwoGOc6s0Z+BnHeV2yGDSGEmhk7OvgTpSUL7Usx6bL s4Mv0Pm+BcW3IVWEHGqXIC9Ejpa6NR/YjOgkgFO8trahMNVYvRnxrejxp0GKM5Ve 7gxYT62jRZoX233OA1UGTQsP3gF78Cn/1nqS8WEUxPYe/0NVZFryFLwpReNFNqsZ RnKafPxbg6IwXRVOygH4UL4d6YnCF7a4 -----END CERTIFICATE-----Generated at Tue Jul 1 10:35:51 2025 by rpki-client