$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: QsKmwLYvlKbtVJNFtkz5kdtuYzo1OuCIoMiLFjB8qnE= Subject key identifier: 29:B6:46:34:AC:CD:0C:12:50:CF:84:77:3C:89:6E:1D:B2:E5:E2:A6 Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: 5E Signing time: Wed 02 Jul 2025 14:16:16 +0000 Manifest this update: Wed 02 Jul 2025 14:16:15 +0000 Manifest next update: Wed 09 Jul 2025 14:16:15 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: QlkYnc/yAifV8p/vc4DAKhdkR9U0idGiWTfJ4DXbWos=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: cA2l4Bz4w9KwEr1hYRA0GBgp3+TMBDk54SQcEyXzSVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Jul 2 14:16:15 2025 GMT Not After : Jul 9 14:16:15 2025 GMT Subject: CN=68653f30-844f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e1:28:c3:1d:6e:8b:c7:c5:65:ff:20:8f:0c: fa:11:a2:94:1d:aa:97:85:6e:46:d3:42:9e:ee:a1: 94:3b:8f:44:37:46:cf:1c:93:4c:c1:d5:46:43:1b: 02:81:ce:eb:73:f0:72:fb:c3:90:2d:5c:3b:3e:84: 62:ca:86:11:48:be:8d:67:8d:65:da:d6:93:b7:d6: b9:e8:f0:aa:50:f3:5b:b7:55:11:78:95:75:41:b9: 76:e6:e6:e6:a7:02:32:d4:59:7d:d3:fc:68:72:01: 80:1e:06:ab:16:63:97:0f:f9:20:34:fd:88:e9:38: d5:e2:df:e9:40:8b:50:56:2b:f8:43:62:b0:57:42: 7d:68:ee:8c:a3:52:da:0d:07:69:3f:29:5a:b6:aa: 1c:fd:ef:a6:d3:29:07:da:90:96:45:1f:c9:bf:72: f5:d9:1c:8b:7e:19:1c:de:2e:17:9e:64:fb:e4:c2: 43:1d:25:88:b1:31:1a:5a:cc:39:f0:26:cb:fe:37: 19:82:e6:75:07:ca:a8:09:e1:49:8e:60:a0:20:e9: ba:3e:9b:b2:61:78:a0:51:c3:98:62:7f:1d:79:60: b5:c5:c7:85:da:6a:7f:70:6c:df:82:76:27:a1:79: b1:2d:9e:6c:14:b4:75:05:24:cd:ac:b6:46:8e:73: c3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B6:46:34:AC:CD:0C:12:50:CF:84:77:3C:89:6E:1D:B2:E5:E2:A6 X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:cc:5d:fa:8b:ca:18:0e:19:5c:df:ef:dc:9d:73:91:79:90: d9:2f:a7:f5:44:89:ba:be:d4:40:64:c6:75:c3:13:2c:63:9b: 40:57:2b:05:4c:db:b8:a7:76:df:77:b4:cd:2f:bd:d2:cc:2f: 5b:08:ac:2e:89:0e:af:38:0d:39:40:1f:83:d5:a3:3b:21:b4: 1f:c3:cf:a7:93:9c:c0:29:86:ec:a1:0c:a9:0e:ef:2b:b4:09: f8:47:44:eb:f3:7c:71:ac:5c:51:10:8f:d0:20:01:58:da:f6: fd:23:b1:9b:56:fa:96:5b:ee:5d:9e:82:23:fa:2c:ca:b9:20: 45:d1:24:d4:ca:d7:06:98:d7:d7:7f:c8:22:96:58:96:8c:b8: f4:c9:fb:54:87:21:a4:1c:fc:c4:20:ad:ba:63:3e:f5:b4:29: 8c:bd:7b:42:78:28:de:db:b5:26:1a:c9:fc:9d:7a:b9:97:8f: 5d:93:fc:b2:23:c3:f3:9f:80:20:00:5e:44:24:85:f8:18:e8: d4:5a:c8:44:29:4b:e5:0f:0e:0d:3d:45:22:9f:4b:8a:fd:16: 02:b4:43:71:f2:b3:3e:da:b1:4d:a0:91:93:8c:b9:32:a8:4e: 2b:f6:a3:79:1b:55:ed:56:c1:3c:28:04:ec:2a:de:1b:ef:28: 0f:9e:15:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTYyMTExMC8GA1UEBRMoQTAyNzE5NUE0ODIwRjNENzI2NEE0RDU3RUU5QTlENEMy QTEwQzkyMzAeFw0yNTA3MDIxNDE2MTVaFw0yNTA3MDkxNDE2MTVaMBgxFjAUBgNV BAMTDTY4NjUzZjMwLTg0NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG4SjDHW6Lx8Vl/yCPDPoRopQdqpeFbkbTQp7uoZQ7j0Q3Rs8ck0zB1UZDGwKB zutz8HL7w5AtXDs+hGLKhhFIvo1njWXa1pO31rno8KpQ81u3VRF4lXVBuXbm5uan AjLUWX3T/GhyAYAeBqsWY5cP+SA0/YjpONXi3+lAi1BWK/hDYrBXQn1o7oyjUtoN B2k/KVq2qhz976bTKQfakJZFH8m/cvXZHIt+GRzeLheeZPvkwkMdJYixMRpazDnw Jsv+NxmC5nUHyqgJ4UmOYKAg6bo+m7JheKBRw5hifx15YLXFx4Xaan9wbN+Cdieh ebEtnmwUtHUFJM2stkaOc8PTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKbZGNKzN DBJQz4R3PIluHbLl4qYwHwYDVR0jBBgwFoAUoCcZWkgg89cmSk1X7pqdTCoQySMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNjIxLzM1RURBOTJFQ0Yw RDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb0NjWldrZ2c4OWNtU2sxWDdwcWRUQ29ReVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NjIxLzM1RURBOTJFQ0YwRDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODlj bVNrMVg3cHFkVENvUXlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEnMXfqLyhgOGVzf79ydc5F5kNkvp/VEibq+1EBkxnXDEyxjm0BXKwVM 27indt93tM0vvdLML1sIrC6JDq84DTlAH4PVozshtB/Dz6eTnMAphuyhDKkO7yu0 CfhHROvzfHGsXFEQj9AgAVja9v0jsZtW+pZb7l2egiP6LMq5IEXRJNTK1waY19d/ yCKWWJaMuPTJ+1SHIaQc/MQgrbpjPvW0KYy9e0J4KN7btSYayfydermXj12T/LIj w/OfgCAAXkQkhfgY6NRayEQpS+UPDg09RSKfS4r9FgK0Q3Hysz7asU2gkZOMuTKo Tiv2o3kbVe1WwTwoBOwq3hvvKA+eFe8= -----END CERTIFICATE-----Generated at Thu Jul 3 23:33:52 2025 by rpki-client