$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: rMfrS5Sidav6abDNJSGz9OW105tauu9iOrYV5s55tQI= Subject key identifier: FE:FD:71:62:85:A1:D9:9A:7C:B2:86:4C:6E:6F:57:25:1D:4E:61:F8 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 3066 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 3038 Signing time: Wed 02 Jul 2025 15:33:51 +0000 Manifest this update: Wed 02 Jul 2025 15:33:51 +0000 Manifest next update: Wed 09 Jul 2025 15:33:51 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: xayFdGxM5d2SuEef3CIoH+f6q1Tbdl/Q/U4zkZJwiDY=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: J9SJ4DIJ/7Jqarub1sf8j6PHgZAGlGGdRbRsMiv9apI=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: 9deMiuArgkPyt65CV7Ht+L/9JKrWYVcP+qJb8LKGzOI=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: 2+WTGnYcaeWw8w6rtvBrYx7uq+JHkK1rDrCVxpG+T+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12390 (0x3066) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Jul 2 15:33:51 2025 GMT Not After : Jul 9 15:33:51 2025 GMT Subject: CN=6865515f-5a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6c:ff:36:c2:c4:8d:d6:d0:91:b0:8a:98:58: 7f:f3:96:15:05:e7:33:94:d5:e1:fd:ce:36:47:ee: cd:12:d5:0b:35:22:84:98:e9:b9:1c:63:f5:c7:a8: 6e:f6:c2:c2:2f:0e:ca:0c:69:f5:f1:96:c1:fc:d7: 95:f6:b3:fe:46:45:fb:93:86:17:a9:fb:f8:e2:47: 5e:19:98:c8:c8:47:05:23:81:df:40:b1:75:a4:8d: b2:47:c0:b8:ba:a1:26:66:43:06:b5:69:7d:bf:96: b8:63:6f:fa:8d:8f:2d:a6:e1:df:4f:10:3a:c6:d7: e0:b6:fe:c1:36:ab:fc:0f:6a:0b:6e:ec:3d:ae:67: 5b:c7:db:b3:e6:5b:5a:ee:90:26:ad:bf:65:0f:61: 50:23:5b:34:1d:df:dc:eb:50:52:97:aa:fb:19:7c: 75:69:e7:bd:1d:3b:1a:30:de:ee:7e:13:33:bc:13: ee:27:66:02:2b:ff:a2:47:72:02:23:56:c3:f4:c7: 08:83:06:46:81:31:81:e5:bd:ac:e0:e3:3a:29:10: c2:b7:2b:99:0a:13:21:41:94:d9:fa:cd:18:11:f7: 5d:ff:e1:ab:25:5d:11:38:a4:c9:fb:e3:c3:a1:ba: 57:4e:40:26:0b:1d:7f:d8:48:79:31:bf:a6:ad:42: 2f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:FD:71:62:85:A1:D9:9A:7C:B2:86:4C:6E:6F:57:25:1D:4E:61:F8 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:ce:39:38:9f:e5:9b:57:97:84:d0:a4:c7:89:e5:3a:91:5c: b0:2b:d3:9f:59:6c:0f:25:de:43:d5:67:29:fb:7e:1d:72:9d: 5d:28:6f:2b:e5:b5:68:33:9a:28:e8:f7:34:83:6b:67:db:7d: 6a:db:ca:c4:84:8e:f3:fc:c9:cf:10:33:ae:0a:38:98:94:fa: 9e:49:fc:63:66:2b:70:4d:f5:96:a4:31:4d:79:a0:f9:95:6a: bd:d3:9b:f8:d1:e7:ed:6f:2e:9f:a7:fb:07:bf:ec:ac:b4:66: 18:fd:2e:68:03:3b:c8:aa:b7:11:22:50:9e:5c:e0:91:1a:15: 6a:b1:c2:69:39:5c:49:60:11:c6:78:e6:83:93:0a:0a:d0:84: 23:c6:7e:68:34:ab:23:f8:c3:0f:ca:6a:e7:0c:26:06:c3:a0: a5:0f:2c:c8:35:c3:23:32:6c:b4:42:07:21:1b:1f:10:9a:de: 1b:c4:11:df:e8:88:9d:81:82:95:dd:d0:fd:da:58:e2:36:f0: f5:ae:ca:92:de:a2:ff:bc:f9:fd:b3:df:1a:9a:80:8b:c3:b4: 6c:54:91:f1:14:bf:60:7e:83:7d:49:91:10:14:29:d3:31:5c: 13:c5:a9:09:34:59:fa:d8:c5:22:ac:88:4a:4a:50:bd:85:40: de:42:7f:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUwNzAyMTUzMzUxWhcNMjUwNzA5MTUzMzUxWjAYMRYwFAYD VQQDEw02ODY1NTE1Zi01YTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGz/NsLEjdbQkbCKmFh/85YVBeczlNXh/c42R+7NEtULNSKEmOm5HGP1x6hu 9sLCLw7KDGn18ZbB/NeV9rP+RkX7k4YXqfv44kdeGZjIyEcFI4HfQLF1pI2yR8C4 uqEmZkMGtWl9v5a4Y2/6jY8tpuHfTxA6xtfgtv7BNqv8D2oLbuw9rmdbx9uz5lta 7pAmrb9lD2FQI1s0Hd/c61BSl6r7GXx1aee9HTsaMN7ufhMzvBPuJ2YCK/+iR3IC I1bD9McIgwZGgTGB5b2s4OM6KRDCtyuZChMhQZTZ+s0YEfdd/+GrJV0ROKTJ++PD obpXTkAmCx1/2Eh5Mb+mrUIv8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP79cWKF odmafLKGTG5vVyUdTmH4MB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBazjk4n+WbV5eE0KTHieU6kVywK9OfWWwPJd5D1Wcp+34dcp1dKG8r 5bVoM5oo6Pc0g2tn231q28rEhI7z/MnPEDOuCjiYlPqeSfxjZitwTfWWpDFNeaD5 lWq905v40eftby6fp/sHv+ystGYY/S5oAzvIqrcRIlCeXOCRGhVqscJpOVxJYBHG eOaDkwoK0IQjxn5oNKsj+MMPymrnDCYGw6ClDyzINcMjMmy0QgchGx8Qmt4bxBHf 6IidgYKV3dD92ljiNvD1rsqS3qL/vPn9s98amoCLw7RsVJHxFL9gfoN9SZEQFCnT MVwTxakJNFn62MUirIhKSlC9hUDeQn/S -----END CERTIFICATE-----Generated at Thu Jul 3 06:00:53 2025 by rpki-client