$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: F9Jhd5HIRxmEIFITlMRGi+9wJs6ldOCd0kaBc9JXUSE= Subject key identifier: 44:84:C7:BA:89:EA:19:21:55:30:D2:1C:68:AB:03:4E:BE:13:6D:76 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 1377 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 136B Signing time: Wed 02 Jul 2025 17:10:48 +0000 Manifest this update: Wed 02 Jul 2025 17:10:47 +0000 Manifest next update: Wed 09 Jul 2025 17:10:47 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: scxANbT64ueGAHY6s2NZMwQiBKu9vQP3oLQjKYzKZr4=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4983 (0x1377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Jul 2 17:10:47 2025 GMT Not After : Jul 9 17:10:47 2025 GMT Subject: CN=68656817-9598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:dd:dc:10:c8:82:75:c1:44:31:23:e8:66:6b: c0:75:f4:64:1a:da:46:7f:22:bc:e1:fa:8b:6d:ae: 80:6a:3a:94:2b:60:9d:8e:5e:73:1d:eb:9a:50:a7: 9f:ea:14:e2:de:31:5d:75:82:16:a6:ee:bc:ae:7f: 76:c7:7e:7f:d4:64:f6:f8:92:89:ca:de:32:fa:ff: 52:f2:38:90:c9:48:79:b0:f7:ad:bd:88:5f:a1:23: d0:68:8f:e3:0f:7e:31:23:fc:92:8f:78:f4:e8:e7: e4:30:16:f5:e3:ca:8e:11:99:c2:a2:df:68:ec:0a: b5:50:c8:45:63:32:e2:1b:aa:32:aa:e9:b8:dd:c8: 18:20:59:c3:a5:21:33:19:2f:7c:b5:ca:63:21:e3: f5:91:43:8b:6a:e7:80:69:4c:67:de:e7:e7:84:57: fb:d2:57:94:4f:45:6a:c6:05:73:14:de:56:e5:c5: 86:d6:15:26:b9:3a:9e:a1:2a:54:36:06:c6:2d:25: 7f:0b:e9:03:71:d9:ad:e2:e3:00:6d:d1:3c:0b:cc: 66:0a:73:a6:22:54:7a:06:57:9c:e8:79:13:f7:ff: 41:0a:5e:33:1f:7a:d4:bf:2f:7f:7d:82:60:20:8f: a1:e5:8b:d2:a8:bc:b9:28:87:93:45:6d:b8:53:68: db:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:84:C7:BA:89:EA:19:21:55:30:D2:1C:68:AB:03:4E:BE:13:6D:76 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:72:98:45:15:26:4b:60:29:5f:23:c6:30:74:a4:c9:cf:b1: 79:1f:dc:88:1d:92:86:0c:57:11:cd:12:13:4e:bb:f2:d5:66: 91:d2:db:e7:d8:29:a5:63:6d:c7:10:42:00:f5:8e:ea:f1:df: 9a:fa:5d:c7:ac:04:db:62:99:60:9f:2c:d8:ed:d8:12:91:03: 02:26:cd:b1:53:13:44:1e:21:1b:1b:9e:56:16:2a:ec:c1:60: e8:b9:16:ef:e5:c4:df:9c:c5:2a:4b:3c:60:b1:ca:8a:88:b3: 04:67:89:9d:c5:b2:01:f3:4b:ae:a9:4f:a7:4b:66:77:5f:4c: a6:fd:76:9a:ab:01:0b:29:80:85:7a:75:47:7a:bd:23:a2:49: af:dc:8b:5d:a3:3e:91:09:de:30:28:ef:6b:c5:8b:35:06:bf: bd:f4:16:95:ad:0a:13:02:75:4f:a6:34:a9:f6:15:9e:0a:d1: 0c:59:53:77:6e:74:41:10:b3:c5:dc:99:18:a6:8c:02:4e:a6: f5:6a:b3:bb:af:05:ef:f4:8d:32:b0:05:d0:5d:50:78:a2:ab: bc:40:41:e3:ca:63:1f:27:ee:03:aa:fe:bd:54:ba:75:7b:0f: 9d:ba:76:05:1a:d6:be:ba:51:8f:e5:b9:64:5f:13:6d:42:00: 0d:03:ac:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUwNzAyMTcxMDQ3WhcNMjUwNzA5MTcxMDQ3WjAYMRYwFAYD VQQDEw02ODY1NjgxNy05NTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8t3cEMiCdcFEMSPoZmvAdfRkGtpGfyK84fqLba6AajqUK2Cdjl5zHeuaUKef 6hTi3jFddYIWpu68rn92x35/1GT2+JKJyt4y+v9S8jiQyUh5sPetvYhfoSPQaI/j D34xI/ySj3j06OfkMBb148qOEZnCot9o7Aq1UMhFYzLiG6oyqum43cgYIFnDpSEz GS98tcpjIeP1kUOLaueAaUxn3ufnhFf70leUT0VqxgVzFN5W5cWG1hUmuTqeoSpU NgbGLSV/C+kDcdmt4uMAbdE8C8xmCnOmIlR6Blec6HkT9/9BCl4zH3rUvy9/fYJg II+h5YvSqLy5KIeTRW24U2jbKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESEx7qJ 6hkhVTDSHGirA06+E212MB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfcphFFSZLYClfI8YwdKTJz7F5H9yIHZKGDFcRzRITTrvy1WaR0tvn 2CmlY23HEEIA9Y7q8d+a+l3HrATbYplgnyzY7dgSkQMCJs2xUxNEHiEbG55WFirs wWDouRbv5cTfnMUqSzxgscqKiLMEZ4mdxbIB80uuqU+nS2Z3X0ym/XaaqwELKYCF enVHer0jokmv3Itdoz6RCd4wKO9rxYs1Br+99BaVrQoTAnVPpjSp9hWeCtEMWVN3 bnRBELPF3JkYpowCTqb1arO7rwXv9I0ysAXQXVB4oqu8QEHjymMfJ+4Dqv69VLp1 ew+dunYFGta+ulGP5blkXxNtQgANA6y5 -----END CERTIFICATE-----Generated at Fri Jul 4 08:22:26 2025 by rpki-client