$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: ZmebQcJkeHUHZhonIUCkqBsuVpEWRsfU64L97KLbAYQ= Subject key identifier: 84:ED:86:04:61:B5:E5:7D:60:C6:F0:A8:8D:E2:D9:BE:F3:B5:43:45 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 356F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 3510 Signing time: Wed 02 Jul 2025 14:51:36 +0000 Manifest this update: Wed 02 Jul 2025 14:51:36 +0000 Manifest next update: Wed 09 Jul 2025 14:51:36 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: Qyqk0OshX9zNi5TIna9KtSIpV2q4YAFuwD3s+UWd6j0=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: K9GG+06i99foR/2RXGf0/I8Kvx2roZu5heq1VZdQ+OI=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: VKqO6rf4s4pSFyfrGnTR87o9xy4m/ObtM6kQrJ3USOc=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: JsgxM7O87UBNAKRhO7z2ipB7o5ZRGqkbp9Qr0swNUZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13679 (0x356f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Jul 2 14:51:36 2025 GMT Not After : Jul 9 14:51:36 2025 GMT Subject: CN=68654778-5c27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:38:6e:0a:d6:96:2b:e2:33:5c:31:77:c5:a3: 0e:83:36:b2:c3:00:e3:35:f1:7b:98:c5:22:5e:66: dd:d7:07:e4:96:46:ce:68:32:c7:4f:0b:2a:b2:09: 27:d2:99:3f:d9:4a:ce:26:ef:cf:b8:73:93:ca:f7: 38:7a:ed:b4:26:53:f7:d9:19:db:5b:7d:c9:9e:bb: aa:b5:2b:f2:53:79:be:89:b0:9d:0c:86:4a:ca:d0: 5c:fc:bd:aa:64:bb:b8:f3:46:c0:93:41:fd:d3:8e: 38:53:d9:7b:e7:65:f0:cd:a9:7e:29:4b:7c:2d:1c: d9:c9:6f:d3:34:86:77:89:76:68:43:7c:ae:c2:66: 9f:2d:f0:c4:7c:0d:46:fb:3d:e8:c4:ae:7a:32:1e: b6:34:a9:0f:26:83:ab:fb:6b:9d:00:ee:0a:2b:ce: 39:f3:4e:60:18:99:db:18:cc:22:94:5b:ef:16:42: 68:3a:df:85:04:16:d1:cb:aa:3f:5f:8b:2c:07:1b: 15:aa:88:34:70:18:6e:76:83:83:57:e5:ab:98:ac: 3b:98:07:58:c1:7b:4e:a1:79:35:be:06:01:e1:11: 70:84:bc:9e:be:2f:c2:5f:be:76:64:a1:0f:08:93: c0:15:35:9f:03:09:fe:73:3a:92:c7:b6:d9:3f:2d: 71:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:ED:86:04:61:B5:E5:7D:60:C6:F0:A8:8D:E2:D9:BE:F3:B5:43:45 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:d8:3b:56:62:92:0a:72:78:fa:d5:d3:c5:da:1c:0f:d3:6c: 61:bd:26:a7:43:49:6e:af:b0:e5:de:44:c7:8c:ed:4f:a7:fc: b2:bb:a8:33:ec:32:a0:4a:8c:d6:ef:84:a5:2c:60:ac:49:97: 27:cb:2b:37:b1:2a:0b:0c:64:fd:b5:52:a3:a9:cb:16:9b:9f: 86:43:46:a9:b2:02:4b:c4:2e:e0:aa:9c:27:c3:b2:4b:9b:e3: 44:80:41:50:cb:87:f5:35:a5:b3:16:19:d8:40:d4:92:b4:0d: 7d:4d:d8:ff:50:bc:dc:be:27:0b:bb:02:08:eb:3e:e2:b4:2f: 7a:66:a9:52:7c:52:d8:4b:1a:29:ec:69:e3:63:bd:02:47:9b: c6:19:2c:e0:cb:5d:39:ad:8c:fe:30:f8:f0:ed:c9:21:61:3b: 30:33:ab:49:2b:4f:03:32:2b:da:e2:ae:7e:22:07:85:9d:a1: 88:54:3f:31:a7:24:87:d3:52:d6:df:87:5e:c6:1b:26:83:69: 86:ff:1c:e8:7a:9b:08:e1:d6:2c:74:5b:11:1c:bf:3c:32:84: f9:69:30:de:56:8e:b2:43:12:a9:54:17:56:3b:85:f1:a1:b5: 2c:dc:55:a2:b1:c6:0c:ec:8c:98:16:70:e3:cf:e4:fc:70:67: 33:1c:91:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUwNzAyMTQ1MTM2WhcNMjUwNzA5MTQ1MTM2WjAYMRYwFAYD VQQDEw02ODY1NDc3OC01YzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/ThuCtaWK+IzXDF3xaMOgzaywwDjNfF7mMUiXmbd1wfklkbOaDLHTwsqsgkn 0pk/2UrOJu/PuHOTyvc4eu20JlP32RnbW33JnruqtSvyU3m+ibCdDIZKytBc/L2q ZLu480bAk0H90444U9l752Xwzal+KUt8LRzZyW/TNIZ3iXZoQ3yuwmafLfDEfA1G +z3oxK56Mh62NKkPJoOr+2udAO4KK845805gGJnbGMwilFvvFkJoOt+FBBbRy6o/ X4ssBxsVqog0cBhudoODV+WrmKw7mAdYwXtOoXk1vgYB4RFwhLyevi/CX752ZKEP CJPAFTWfAwn+czqSx7bZPy1xwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITthgRh teV9YMbwqI3i2b7ztUNFMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ2DtWYpIKcnj61dPF2hwP02xhvSanQ0lur7Dl3kTHjO1Pp/yyu6gz 7DKgSozW74SlLGCsSZcnyys3sSoLDGT9tVKjqcsWm5+GQ0apsgJLxC7gqpwnw7JL m+NEgEFQy4f1NaWzFhnYQNSStA19Tdj/ULzcvicLuwII6z7itC96ZqlSfFLYSxop 7GnjY70CR5vGGSzgy105rYz+MPjw7ckhYTswM6tJK08DMiva4q5+IgeFnaGIVD8x pySH01LW34dexhsmg2mG/xzoepsI4dYsdFsRHL88MoT5aTDeVo6yQxKpVBdWO4Xx obUs3FWiscYM7IyYFnDjz+T8cGczHJH6 -----END CERTIFICATE-----Generated at Thu Jul 3 17:34:45 2025 by rpki-client