$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft File: OvCdKMpIepMmYxpr6b2b26oY2nU.mft (raw, json) Hash identifier: /ZIKg3TX9kyVmFWp4y2LnQMhiBIvgLXLuAoqTBROKQo= Subject key identifier: 8A:B9:C6:3B:4E:09:71:04:D8:80:17:62:ED:CF:F4:59:E9:24:12:59 Authority key identifier: 3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 Certificate issuer: /CN=A91AB74D/serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Certificate serial: 0624 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft Manifest number: 0619 Signing time: Wed 02 Jul 2025 23:06:24 +0000 Manifest this update: Wed 02 Jul 2025 23:06:24 +0000 Manifest next update: Wed 09 Jul 2025 23:06:24 +0000 Files and hashes: 1: OvCdKMpIepMmYxpr6b2b26oY2nU.crl (hash: pGCcpiP2+y7SOwC8m7+mbi3pZ3wS4rmTK1YoJGlggY8=) 2: 1A704D8CADB511EBB5CFE734C4F9AE02.roa (hash: vcP/S0izUQbA7Z/0jbMqfJjGpHZIaNp2jddGsZhjHPI=) 3: 1B16F1A0ADB511EBB5CFE734C4F9AE02.roa (hash: EoEXlCI1GOehyvV1dOn2OebjZ7e0VJ5M5h2oFDhhyXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1572 (0x624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Validity Not Before: Jul 2 23:06:24 2025 GMT Not After : Jul 9 23:06:24 2025 GMT Subject: CN=6865bb70-6fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:09:8a:bc:a8:f2:4e:78:87:9c:a1:30:42:66: a9:24:66:b3:f3:10:67:a7:8b:33:ca:4a:be:81:9a: ab:fe:45:76:96:a4:80:a4:ed:97:65:e8:fe:93:ca: a7:d5:00:35:d0:7c:48:47:0d:90:6b:42:46:a2:40: 1d:a5:32:05:98:ae:88:a4:d1:43:5e:27:fd:5b:a1: e6:ed:bf:3d:7c:f8:05:64:93:36:28:85:d7:46:02: 39:17:67:db:f7:82:42:16:19:9e:08:f8:39:71:e4: 1f:16:1f:aa:f2:d3:0a:96:cc:0e:7b:df:3f:49:44: 67:05:ea:c6:91:cd:25:cc:fd:5c:94:a3:bc:15:ae: 84:e2:54:9f:81:fd:bb:8d:2c:76:3d:13:f8:ae:8e: 15:ea:05:58:97:2a:d2:33:e7:47:2b:b7:5a:a7:56: 50:3c:8e:8d:09:74:eb:86:03:3f:75:39:0e:69:09: 4a:65:7d:ef:e4:76:67:c4:ef:c5:0e:a2:11:77:7c: fa:0f:0e:c6:52:ee:8f:a8:2a:0a:75:3a:64:63:f6: 94:61:c6:e7:3c:bc:d7:e6:c5:3d:c2:d2:cf:e6:bb: a1:d1:33:57:a4:88:11:7f:a8:04:88:23:c3:12:cb: fd:c8:f3:cb:e2:b0:ba:a7:11:89:8d:a9:e6:7e:50: c9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B9:C6:3B:4E:09:71:04:D8:80:17:62:ED:CF:F4:59:E9:24:12:59 X509v3 Authority Key Identifier: keyid:3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:8b:87:10:a3:7c:33:c0:6c:95:2e:7d:8b:68:2e:34:d7:ce: be:38:6f:0d:11:2b:b4:db:cc:9e:0e:1c:f1:5a:6f:ab:e7:23: fb:e2:3c:9c:62:69:03:e2:e0:4a:de:81:6b:34:40:c9:67:71: df:b2:bb:03:f5:f2:7a:9a:49:3f:d5:c9:28:27:87:7c:f8:8c: 70:41:79:f7:26:1e:f8:d1:ad:8e:d4:69:c9:c4:3d:a0:0d:e9: 84:3c:a2:83:b5:f2:44:0e:77:9b:e4:f6:12:8e:55:36:a1:1b: 8c:be:a2:9a:90:73:6b:fa:bf:28:91:6f:11:7f:59:38:f1:37: e4:8b:a9:1c:91:68:c3:83:e5:8f:56:87:01:6e:89:aa:1e:c6: b5:88:11:bd:1e:80:28:09:8c:ca:f6:87:f1:fe:ba:b9:b5:04: 07:1f:dc:24:c8:c9:b5:8b:7d:19:61:cb:56:6b:aa:43:6a:d9: 31:3e:76:8e:e0:a3:63:c0:60:de:3b:5a:97:8c:72:bd:95:58: 33:08:01:96:64:d7:24:cc:58:7b:77:52:02:2d:60:2e:17:9f: 62:aa:ec:dd:f6:44:b4:7a:9d:6a:13:9b:c6:b0:87:b2:89:32: 23:f1:87:b7:cd:87:02:5a:79:37:e2:19:16:8b:40:55:93:be: 03:fc:4d:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKDNBRjA5RDI4Q0E0ODdBOTMyNjYzMUE2QkU5QkQ5QkRC QUExOERBNzUwHhcNMjUwNzAyMjMwNjI0WhcNMjUwNzA5MjMwNjI0WjAYMRYwFAYD VQQDEw02ODY1YmI3MC02ZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wmKvKjyTniHnKEwQmapJGaz8xBnp4szykq+gZqr/kV2lqSApO2XZej+k8qn 1QA10HxIRw2Qa0JGokAdpTIFmK6IpNFDXif9W6Hm7b89fPgFZJM2KIXXRgI5F2fb 94JCFhmeCPg5ceQfFh+q8tMKlswOe98/SURnBerGkc0lzP1clKO8Fa6E4lSfgf27 jSx2PRP4ro4V6gVYlyrSM+dHK7dap1ZQPI6NCXTrhgM/dTkOaQlKZX3v5HZnxO/F DqIRd3z6Dw7GUu6PqCoKdTpkY/aUYcbnPLzX5sU9wtLP5ruh0TNXpIgRf6gEiCPD Esv9yPPL4rC6pxGJjanmflDJ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIq5xjtO CXEE2IAXYu3P9FnpJBJZMB8GA1UdIwQYMBaAFDrwnSjKSHqTJmMaa+m9m9uqGNp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC9EMzU5NTY4Q0E4 REMxMUVCOTc5REE1MEVDNEY5QUUwMi9PdkNkS01wSWVwTW1ZeHByNmIyYjI2b1ky blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL092Q2RLTXBJZXBNbVl4cHI2YjJiMjZvWTJuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC9EMzU5NTY4Q0E4REMxMUVCOTc5REE1MEVDNEY5QUUwMi9PdkNkS01wSWVw TW1ZeHByNmIyYjI2b1kyblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJi4cQo3wzwGyVLn2LaC40186+OG8NESu028yeDhzxWm+r5yP74jyc YmkD4uBK3oFrNEDJZ3HfsrsD9fJ6mkk/1ckoJ4d8+IxwQXn3Jh740a2O1GnJxD2g DemEPKKDtfJEDneb5PYSjlU2oRuMvqKakHNr+r8okW8Rf1k48Tfki6kckWjDg+WP VocBbomqHsa1iBG9HoAoCYzK9ofx/rq5tQQHH9wkyMm1i30ZYctWa6pDatkxPnaO 4KNjwGDeO1qXjHK9lVgzCAGWZNckzFh7d1ICLWAuF59iquzd9kS0ep1qE5vGsIey iTIj8Ye3zYcCWnk34hkWi0BVk74D/E3A -----END CERTIFICATE-----Generated at Thu Jul 3 22:49:38 2025 by rpki-client