$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft File: OQo4N6umkSos8p5hDaSVVd8sb6U.mft (raw, json) Hash identifier: RhLaYLXH3PRdrN5JPyblqPaGHHGoQzd2vQHgDEwYL6c= Subject key identifier: 69:AC:67:A5:5E:61:C2:09:2B:F7:CA:81:BB:26:C9:75:37:7F:97:14 Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft Manifest number: 5F Signing time: Thu 03 Jul 2025 07:19:48 +0000 Manifest this update: Thu 03 Jul 2025 07:19:47 +0000 Manifest next update: Thu 10 Jul 2025 07:19:47 +0000 Files and hashes: 1: OQo4N6umkSos8p5hDaSVVd8sb6U.crl (hash: OpSpnRmDBZu4UKlJweRpgmheNasBjAJr4eLJuuerhD8=) 2: 571DF22E39AD11F0B50C1612C4F9AE02.roa (hash: a79vg+iiqwtcC42le/daCT5dQ7SbqCfDRhfIVdAwtYQ=) 3: 56B4DCD039AD11F0B50C1612C4F9AE02.roa (hash: vuKzESxfL6KPMKp9BJFrs+559Jkr7A+7rgOLiDzyq7A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Jul 3 07:19:47 2025 GMT Not After : Jul 10 07:19:47 2025 GMT Subject: CN=68662f14-810d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:01:d8:f1:93:7d:ac:b6:37:8e:cb:71:3b:d7: 7e:dc:17:11:6f:3c:af:bc:24:48:26:7b:65:87:96: 98:2c:46:1b:26:e0:89:b1:7a:e8:06:de:57:72:5f: 98:f1:15:49:1c:fa:d1:a7:65:4b:cf:68:51:25:73: c5:32:f3:49:6e:c7:97:23:91:a2:d3:aa:52:cc:df: 03:fd:2a:cf:7d:9d:21:db:c0:b0:c8:3c:f6:8f:9c: 7e:b1:a5:af:31:3a:b7:18:8c:fd:4b:e1:2a:36:bc: d0:7b:f6:12:72:a7:fd:87:c3:5d:52:ec:96:d6:92: cd:7b:f5:fa:35:7e:04:d7:2d:3f:c5:25:83:cc:84: 6a:a2:86:7e:72:d2:50:ba:53:03:8e:47:3b:f1:ee: 53:82:15:59:5b:46:16:e3:26:37:5e:23:5f:69:05: 4e:e4:33:79:4c:53:22:0c:cc:db:b9:2c:b4:42:4c: 94:b0:2a:c9:dd:d2:7c:8c:19:fd:55:b9:be:c6:d1: 1a:52:5d:d5:3e:46:70:64:54:0f:32:c8:22:db:77: 6a:83:09:6f:7f:90:bc:e4:94:bf:d4:bb:3c:9f:b5: ac:3a:a5:8b:1d:0f:2c:4a:41:01:62:7a:fe:24:6f: 96:23:c2:2d:f8:81:d8:02:98:81:79:7d:58:f0:7e: 8b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:AC:67:A5:5E:61:C2:09:2B:F7:CA:81:BB:26:C9:75:37:7F:97:14 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:93:57:62:5f:6b:bf:8e:6b:45:b9:b1:36:47:6f:e3:bd:1d: 97:c5:af:14:df:96:8d:64:c2:b1:22:7a:51:13:ea:b9:9c:43: 22:83:8b:65:4d:15:4d:2a:79:aa:91:8d:8f:58:1d:3d:37:87: ef:26:2f:4b:e4:33:e8:15:d4:39:99:8f:df:70:ac:99:78:12: b7:34:a4:c8:02:f2:29:1f:aa:97:7d:f3:9d:95:d5:af:7d:7d: 3c:9d:d9:40:7d:12:03:e4:a5:04:2c:80:c6:06:da:e7:74:8f: 39:0f:43:ce:61:16:1e:49:ac:03:a8:e5:09:0c:18:18:6e:02: 63:d0:a1:07:4d:37:30:a2:b0:18:1e:64:dd:05:bb:1a:e3:5e: 20:aa:40:4b:9a:b5:4b:43:8c:70:38:f1:77:6c:c5:d4:a4:88: 18:64:d7:7b:cd:aa:44:f4:ea:d9:6b:57:a9:f0:00:1a:bf:38: 42:5e:53:68:f7:4f:33:c0:49:64:6c:e8:2d:2a:46:7e:8f:9b: b3:1d:ca:27:84:d5:1c:2a:11:bf:13:a5:d9:e0:11:9a:aa:51: e6:2c:3d:e2:94:cd:bd:bc:ee:79:8a:ff:b1:40:1f:86:a2:b6: bf:e8:a0:85:ba:a1:fb:50:56:c6:b9:ca:d8:e5:1e:64:7b:df: 47:86:38:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJCNjExMC8GA1UEBRMoMzkwQTM4MzdBQkE2OTEyQTJDRjI5RTYxMERBNDk1NTVE RjJDNkZBNTAeFw0yNTA3MDMwNzE5NDdaFw0yNTA3MTAwNzE5NDdaMBgxFjAUBgNV BAMTDTY4NjYyZjE0LTgxMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuAdjxk32stjeOy3E7137cFxFvPK+8JEgme2WHlpgsRhsm4ImxeugG3ldyX5jx FUkc+tGnZUvPaFElc8Uy80lux5cjkaLTqlLM3wP9Ks99nSHbwLDIPPaPnH6xpa8x OrcYjP1L4So2vNB79hJyp/2Hw11S7JbWks179fo1fgTXLT/FJYPMhGqihn5y0lC6 UwOORzvx7lOCFVlbRhbjJjdeI19pBU7kM3lMUyIMzNu5LLRCTJSwKsnd0nyMGf1V ub7G0RpSXdU+RnBkVA8yyCLbd2qDCW9/kLzklL/Uuzyftaw6pYsdDyxKQQFiev4k b5Yjwi34gdgCmIF5fVjwfotTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaaxnpV5h wgkr98qBuybJdTd/lxQwHwYDVR0jBBgwFoAUOQo4N6umkSos8p5hDaSVVd8sb6Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkI2L0RFN0UzMjFFQ0I1 OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1FvNE42dW1rU29zOHA1aERhU1ZWZDhzYjZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MkI2L0RFN0UzMjFFQ0I1OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1Nv czhwNWhEYVNWVmQ4c2I2VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJWTV2Jfa7+Oa0W5sTZHb+O9HZfFrxTflo1kwrEielET6rmcQyKDi2VN FU0qeaqRjY9YHT03h+8mL0vkM+gV1DmZj99wrJl4Erc0pMgC8ikfqpd9852V1a99 fTyd2UB9EgPkpQQsgMYG2ud0jzkPQ85hFh5JrAOo5QkMGBhuAmPQoQdNNzCisBge ZN0FuxrjXiCqQEuatUtDjHA48XdsxdSkiBhk13vNqkT06tlrV6nwABq/OEJeU2j3 TzPASWRs6C0qRn6Pm7MdyieE1RwqEb8TpdngEZqqUeYsPeKUzb287nmK/7FAH4ai tr/ooIW6oftQVsa5ytjlHmR730eGOEE= -----END CERTIFICATE-----Generated at Fri Jul 4 07:47:35 2025 by rpki-client