$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft File: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft (raw, json) Hash identifier: KyKR4Gz8o1qMRWaDBOzjct/eCicIY6BgGE2lkmRThP0= Subject key identifier: 05:50:A8:BE:A4:CF:29:31:22:9A:14:88:89:83:2F:F8:64:BE:EB:E9 Authority key identifier: D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 Certificate issuer: /CN=A91AAE16/serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Certificate serial: 0FBF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft Manifest number: 0FB6 Signing time: Wed 02 Jul 2025 17:43:26 +0000 Manifest this update: Wed 02 Jul 2025 17:43:26 +0000 Manifest next update: Wed 09 Jul 2025 17:43:26 +0000 Files and hashes: 1: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl (hash: 2wxSjJbQXg8sE+UKyp5BiI5g48f0rjz0rxe/fO4xahM=) 2: 682B76C05BB211E9BF474F16C4F9AE02.roa (hash: vKLtsTjRDQmvaoDy2+JZ+X/edFfE0cROOj6FdGkYWZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:43:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4031 (0xfbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Validity Not Before: Jul 2 17:43:26 2025 GMT Not After : Jul 9 17:43:26 2025 GMT Subject: CN=68656fbe-ff9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e0:e9:03:92:5c:3b:9f:e8:e9:97:47:a8:0b: fb:fe:36:c8:e0:02:e0:46:65:9f:a5:d0:6b:6a:88: 9d:bc:00:2b:a9:10:3c:ec:0d:05:0c:52:f0:23:58: 0a:46:32:43:f1:30:94:44:c2:69:d7:d2:c5:89:4e: ee:f9:7d:9d:7e:2d:ab:46:c1:db:a9:38:03:a8:d1: 82:e8:30:1c:cc:9a:fc:0f:24:94:c7:0a:92:2b:b2: f8:7b:71:7a:21:50:03:bb:a7:98:37:4e:a9:38:d5: 71:6f:eb:27:48:bb:d9:36:bd:1a:bf:36:69:fa:07: eb:8d:4a:9a:76:9f:08:2f:f4:0f:9a:1b:80:dd:33: 65:86:bb:00:86:41:53:41:cb:0e:50:d8:88:32:f8: ff:04:66:e0:c3:d5:9e:14:91:be:02:52:52:0f:43: 5c:fa:e9:43:a2:e5:4c:45:cd:9a:d6:8e:c6:f9:d4: ba:5e:cc:da:d0:fa:59:e1:b6:4c:6e:f0:20:de:4d: 85:64:b4:80:50:b8:86:f0:3d:d8:5a:ca:fa:4a:e8: f4:42:bf:80:b6:4e:4b:5e:95:fb:c0:2c:53:60:3d: 3d:74:b4:b5:ee:18:69:8c:d1:80:75:92:e0:35:33: da:47:f0:21:6b:4e:bc:98:da:2e:06:cf:39:9f:8f: 61:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:50:A8:BE:A4:CF:29:31:22:9A:14:88:89:83:2F:F8:64:BE:EB:E9 X509v3 Authority Key Identifier: keyid:D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:87:11:72:da:5b:f7:7e:82:61:02:15:dc:7b:5f:4f:8d:0d: 1e:f3:44:01:26:44:7c:8a:5a:c2:51:33:5f:55:22:61:7c:17: ea:9d:3a:a0:a8:1a:d3:17:bc:4f:06:0e:2c:01:77:94:c0:3a: 00:d3:9d:7c:a2:03:10:35:46:57:14:ba:00:37:5a:3a:ca:c7: d1:d1:b7:7f:c2:28:8d:a8:12:92:c6:34:1e:3d:00:c9:04:bc: fe:0a:fc:2e:df:cd:96:29:c3:79:33:1b:fb:6b:d8:27:53:dc: c2:e1:27:0c:61:3e:d2:cc:21:e9:05:e4:19:a9:b9:ba:a5:56: 20:b9:e2:da:2c:fb:2f:25:85:44:5c:d2:73:31:bc:a2:c2:ae: 35:90:80:3d:13:49:0b:f8:cb:41:d6:84:a0:84:e0:eb:c7:b8: 8d:47:c4:2b:d4:ae:ac:e3:c9:ff:aa:35:22:e4:72:62:36:d4: bb:3d:71:e0:d6:e6:90:b9:cf:17:83:35:dc:eb:5f:e1:59:49: ce:3f:6e:4e:24:9b:67:51:0a:68:f7:85:52:f6:62:1f:28:db: 92:72:d8:e1:e5:df:ef:44:c3:32:15:e3:48:f7:d7:88:4d:11: 47:b2:39:61:d7:c5:e7:45:6c:d5:68:5f:e7:ff:00:23:a2:90: dd:5c:bd:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKEQ2ODBCRjNBNzk2QTM1NUIxMjVBNjAyQzc0NjZCOUE1 NkQzNDQyNTQwHhcNMjUwNzAyMTc0MzI2WhcNMjUwNzA5MTc0MzI2WjAYMRYwFAYD VQQDEw02ODY1NmZiZS1mZjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eDpA5JcO5/o6ZdHqAv7/jbI4ALgRmWfpdBraoidvAArqRA87A0FDFLwI1gK RjJD8TCURMJp19LFiU7u+X2dfi2rRsHbqTgDqNGC6DAczJr8DySUxwqSK7L4e3F6 IVADu6eYN06pONVxb+snSLvZNr0avzZp+gfrjUqadp8IL/QPmhuA3TNlhrsAhkFT QcsOUNiIMvj/BGbgw9WeFJG+AlJSD0Nc+ulDouVMRc2a1o7G+dS6Xsza0PpZ4bZM bvAg3k2FZLSAULiG8D3YWsr6Suj0Qr+Atk5LXpX7wCxTYD09dLS17hhpjNGAdZLg NTPaR/Aha068mNouBs85n49hAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVQqL6k zykxIpoUiImDL/hkvuvpMB8GA1UdIwQYMBaAFNaAvzp5ajVbElpgLHRmuaVtNEJU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8wRUFDRjgyQzVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5Wc1NXbUFzZEdhNXBXMDBR bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFvQ19PbmxxTlZzU1dtQXNkR2E1cFcwMFFsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8wRUFDRjgyQzVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5W c1NXbUFzZEdhNXBXMDBRbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhhxFy2lv3foJhAhXce19PjQ0e80QBJkR8ilrCUTNfVSJhfBfqnTqg qBrTF7xPBg4sAXeUwDoA0518ogMQNUZXFLoAN1o6ysfR0bd/wiiNqBKSxjQePQDJ BLz+Cvwu382WKcN5Mxv7a9gnU9zC4ScMYT7SzCHpBeQZqbm6pVYgueLaLPsvJYVE XNJzMbyiwq41kIA9E0kL+MtB1oSghODrx7iNR8Qr1K6s48n/qjUi5HJiNtS7PXHg 1uaQuc8XgzXc61/hWUnOP25OJJtnUQpo94VS9mIfKNuSctjh5d/vRMMyFeNI99eI TRFHsjlh18XnRWzVaF/n/wAjopDdXL1J -----END CERTIFICATE-----Generated at Thu Jul 3 07:09:39 2025 by rpki-client