$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: Dtow6Bxhcfiz2ZUS/D6QpMbRSBLU+j5F8JiIpmWfjE4= Subject key identifier: C3:33:F8:51:BE:F0:ED:4B:82:71:6F:09:BF:B0:46:5D:CA:37:DE:89 Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 0128 Signing time: Tue 01 Jul 2025 05:11:23 +0000 Manifest this update: Tue 01 Jul 2025 05:11:22 +0000 Manifest next update: Tue 08 Jul 2025 05:11:22 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: 7GUbTnEK7cXlrJvaauMFGtjSQ5NB8OoGnDFOxQMv4Ec=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: gJAOPk4iFoIW/KqNitxUF3g+S02/W0OUx3yJyNEqzJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Jul 1 05:11:22 2025 GMT Not After : Jul 8 05:11:22 2025 GMT Subject: CN=68636dfa-8589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:31:ed:85:9a:9c:33:c3:fd:44:0b:a6:04:05: 97:85:16:ca:de:e0:13:d3:e2:90:65:cc:5b:47:03: 83:98:13:24:db:6b:f5:9c:1a:c3:ac:87:2e:48:88: bc:f5:a2:cb:dc:41:77:7d:f3:09:61:9c:11:3d:ca: cf:dd:5f:f6:b3:2f:61:f3:40:c5:c1:9a:55:1f:57: e5:d2:c2:35:cd:e2:c6:6f:bb:90:6a:b5:d6:8a:b5: 84:45:26:01:3d:c7:52:47:0b:39:11:8d:a7:53:9b: 96:8f:dc:6b:29:45:01:30:98:6f:fe:01:7a:3a:a2: 81:c2:91:52:c3:16:62:b7:da:32:f6:07:0b:cd:c7: c3:70:c1:b7:a6:83:2e:7b:ad:25:85:3e:c4:19:93: 31:33:7a:a4:3b:92:9f:52:bc:aa:79:6c:dd:3f:ca: c8:7f:93:58:73:45:3e:66:32:8b:68:bc:07:11:10: 49:df:31:ce:59:04:af:99:4e:aa:67:a2:7c:9a:77: 40:75:be:3e:7e:ef:8d:94:97:b7:24:e2:06:40:49: 11:d5:56:33:e7:29:9d:4b:30:bf:90:58:1c:68:a7: 45:ee:a8:19:64:38:9e:95:e2:15:b8:87:22:6b:d2: 40:86:6b:a5:4d:6a:6a:86:ca:59:1c:b0:f3:98:65: 41:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:33:F8:51:BE:F0:ED:4B:82:71:6F:09:BF:B0:46:5D:CA:37:DE:89 X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ea:6f:96:5e:a8:cb:f1:57:52:6c:38:bc:09:a3:00:da:81: a8:26:7a:52:48:11:5a:04:c2:41:c5:8c:fd:d1:ff:b3:94:7c: f4:a5:db:8d:16:eb:33:34:f0:6f:b6:98:d1:57:52:a0:7e:85: 2a:b8:47:5c:87:22:2b:30:a9:61:c6:1a:f2:bf:29:bc:fa:93: ef:aa:fb:a2:e8:82:96:f1:de:48:f8:f0:fd:a4:c4:ba:be:9b: ee:5d:37:99:f0:f0:03:58:96:fa:02:fd:4e:f4:6c:ff:a6:6c: 0f:e2:3b:0c:8a:2b:15:fe:11:76:ef:33:42:a3:80:f4:f2:06: 18:20:45:f5:26:9c:ac:20:e4:59:cd:0b:2b:34:4a:08:bb:81: 93:7c:23:5a:22:f4:09:f7:a7:d4:60:8c:c7:89:16:ce:e0:aa: dc:e2:03:9a:eb:7d:ae:10:83:07:2e:a7:cf:22:ab:af:3c:7f: 90:05:27:54:7a:03:fc:72:8a:9c:c6:88:c9:1b:10:46:32:22: b2:1b:ca:80:5e:3a:db:24:e8:35:d8:4c:77:ad:40:1b:fc:17: c9:71:0d:cd:86:1d:4b:d1:ee:b1:31:e0:a5:b2:b1:66:99:2a: 26:f9:62:d5:7b:87:6e:3e:0a:a4:df:a3:c3:62:98:87:5f:81: ce:4d:cd:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUwNzAxMDUxMTIyWhcNMjUwNzA4MDUxMTIyWjAYMRYwFAYD VQQDEw02ODYzNmRmYS04NTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojHthZqcM8P9RAumBAWXhRbK3uAT0+KQZcxbRwODmBMk22v1nBrDrIcuSIi8 9aLL3EF3ffMJYZwRPcrP3V/2sy9h80DFwZpVH1fl0sI1zeLGb7uQarXWirWERSYB PcdSRws5EY2nU5uWj9xrKUUBMJhv/gF6OqKBwpFSwxZit9oy9gcLzcfDcMG3poMu e60lhT7EGZMxM3qkO5KfUryqeWzdP8rIf5NYc0U+ZjKLaLwHERBJ3zHOWQSvmU6q Z6J8mndAdb4+fu+NlJe3JOIGQEkR1VYz5ymdSzC/kFgcaKdF7qgZZDieleIVuIci a9JAhmulTWpqhspZHLDzmGVBUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMz+FG+ 8O1LgnFvCb+wRl3KN96JMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE6m+WXqjL8VdSbDi8CaMA2oGoJnpSSBFaBMJBxYz90f+zlHz0pduN FuszNPBvtpjRV1KgfoUquEdchyIrMKlhxhryvym8+pPvqvui6IKW8d5I+PD9pMS6 vpvuXTeZ8PADWJb6Av1O9Gz/pmwP4jsMiisV/hF27zNCo4D08gYYIEX1JpysIORZ zQsrNEoIu4GTfCNaIvQJ96fUYIzHiRbO4Krc4gOa632uEIMHLqfPIquvPH+QBSdU egP8coqcxojJGxBGMiKyG8qAXjrbJOg12Ex3rUAb/BfJcQ3Nhh1L0e6xMeClsrFm mSom+WLVe4duPgqk36PDYpiHX4HOTc3H -----END CERTIFICATE-----Generated at Tue Jul 1 17:07:31 2025 by rpki-client