$ rpki-client -vvf rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft File: o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft (raw, json) Hash identifier: bvbavUKf542iNrtR6+K1ZucM2zUSmB0vQyzO+ZKmISM= Subject key identifier: 9D:E6:ED:7C:E1:7F:70:4D:D3:BC:59:96:5A:EC:DA:DE:92:CC:C5:1D Authority key identifier: A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF Certificate issuer: /CN=A91C913E/serialNumber=A3471C31533B88D1BF8A40A32A7DDE3BA0BB1CBF Certificate serial: 0342 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft Manifest number: 033D Signing time: Thu 03 Jul 2025 01:25:23 +0000 Manifest this update: Thu 03 Jul 2025 01:25:22 +0000 Manifest next update: Thu 10 Jul 2025 01:25:22 +0000 Files and hashes: 1: o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl (hash: E7WcVaQD03DkCCwTK8Za9qMZsmVVyKVjHcIP97MChaA=) 2: 24578ECED56A11EFB764F716C4F9AE02.roa (hash: t5WMcFCD2OO+gp845WzQi07gNbar1uWW5UXsijptYhw=) 3: 1445557CC6C011EC9D09EF1DC4F9AE02.roa (hash: JL3deikXqirsZKv5Pglr4MkJVud4y4Ww4HTgjluu/lA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 834 (0x342) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C913E, serialNumber=A3471C31533B88D1BF8A40A32A7DDE3BA0BB1CBF Validity Not Before: Jul 3 01:25:22 2025 GMT Not After : Jul 10 01:25:22 2025 GMT Subject: CN=6865dc02-f858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:7b:f8:4e:ba:2b:12:b2:03:38:3c:c6:5c:c2: ec:9e:7f:0c:db:76:a3:30:0c:7b:7c:70:21:11:ba: d8:28:42:6e:b4:a6:d0:74:a1:2f:51:3b:4d:6f:73: 71:1a:a7:7b:71:f1:8a:d1:5e:19:c8:45:87:bd:d1: af:27:c0:bc:c0:44:a6:9d:8a:b2:bc:10:e5:55:fa: 7d:d6:2a:b2:b9:a5:0e:1b:92:f1:27:37:e7:16:0d: 88:7c:44:32:80:bf:1e:ac:c7:63:5a:5f:f0:3e:3e: 7c:1a:27:75:ce:52:2c:db:22:9b:71:f1:14:71:b1: ed:bf:83:ef:bc:87:f3:0b:6b:70:07:65:f3:02:71: 05:4a:eb:e3:2b:3e:ae:92:c2:98:dc:43:78:d1:8d: 5e:90:12:e2:7f:db:7b:59:64:dd:e6:d6:10:96:4e: de:8c:6b:81:e4:89:dc:c8:20:03:3d:76:64:ba:de: 48:82:48:ae:bb:c5:57:7a:3d:9c:0c:af:ed:bd:65: 30:2e:c8:f8:79:bf:8a:11:84:28:8e:66:67:10:3a: e2:6e:c3:0a:76:6a:5b:0a:dc:73:bd:63:bc:f9:6e: 6f:56:6e:ec:bf:2c:27:47:aa:51:63:7c:43:a9:a7: 98:bc:40:0f:3f:02:d9:80:55:be:37:56:64:ee:74: 00:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E6:ED:7C:E1:7F:70:4D:D3:BC:59:96:5A:EC:DA:DE:92:CC:C5:1D X509v3 Authority Key Identifier: keyid:A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:f0:e7:76:e3:ba:fb:3e:ef:97:31:50:bd:9d:23:dd:c7:08: 47:ec:f1:f6:9c:b6:be:4f:7b:3e:17:21:29:a0:af:c2:22:4d: 4c:c5:aa:72:d1:6d:e0:26:86:66:dd:98:a3:07:c5:e9:a4:76: af:03:db:52:46:09:e9:12:19:8b:c7:38:bc:ca:d7:19:eb:be: ef:04:f0:e5:4d:63:cd:22:3c:63:c1:0e:11:52:45:2c:cd:74: fe:58:9a:18:9f:02:e3:86:27:58:2c:a7:cf:71:d3:95:ac:4d: 70:f5:87:8a:12:88:2f:41:8b:cc:6d:55:f6:b6:1a:bd:83:06: 31:c7:67:c8:54:7a:fb:db:b0:d2:fb:14:0f:80:1f:59:7f:e9: 14:70:12:41:78:89:37:45:15:9a:20:87:8d:a5:17:64:e7:58: f5:7e:d2:09:70:a4:ec:dc:03:c0:47:91:18:a8:68:bc:f9:e3: 9d:3c:02:3c:f2:f0:dc:d7:64:b7:38:41:9a:b3:91:66:72:ff: d8:7f:cd:b9:69:cf:ff:44:65:15:50:0c:12:e6:21:7e:ee:b6: 1e:c2:9a:c9:7e:78:3d:c3:b3:0a:89:d3:46:ab:15:95:fe:6a: 26:38:e8:7c:b6:c9:8e:0e:f8:c7:af:02:53:b5:55:83:e2:40: e1:55:e2:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkxM0UxMTAvBgNVBAUTKEEzNDcxQzMxNTMzQjg4RDFCRjhBNDBBMzJBN0RERTNC QTBCQjFDQkYwHhcNMjUwNzAzMDEyNTIyWhcNMjUwNzEwMDEyNTIyWjAYMRYwFAYD VQQDEw02ODY1ZGMwMi1mODU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Xv4TrorErIDODzGXMLsnn8M23ajMAx7fHAhEbrYKEJutKbQdKEvUTtNb3Nx Gqd7cfGK0V4ZyEWHvdGvJ8C8wESmnYqyvBDlVfp91iqyuaUOG5LxJzfnFg2IfEQy gL8erMdjWl/wPj58Gid1zlIs2yKbcfEUcbHtv4PvvIfzC2twB2XzAnEFSuvjKz6u ksKY3EN40Y1ekBLif9t7WWTd5tYQlk7ejGuB5IncyCADPXZkut5Igkiuu8VXej2c DK/tvWUwLsj4eb+KEYQojmZnEDribsMKdmpbCtxzvWO8+W5vVm7svywnR6pRY3xD qaeYvEAPPwLZgFW+N1Zk7nQAHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3m7Xzh f3BN07xZllrs2t6SzMUdMB8GA1UdIwQYMBaAFKNHHDFTO4jRv4pAoyp93juguxy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTEzRS9ERDA4OThGMEM2 QkQxMUVDODk2Mzc0MURDNEY5QUUwMi9vMGNjTVZNN2lOR19pa0NqS24zZU82QzdI TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wY2NNVk03aU5HX2lrQ2pLbjNlTzZDN0hMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTEzRS9ERDA4OThGMEM2QkQxMUVDODk2Mzc0MURDNEY5QUUwMi9vMGNjTVZNN2lO R19pa0NqS24zZU82QzdITDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM8Od247r7Pu+XMVC9nSPdxwhH7PH2nLa+T3s+FyEpoK/CIk1Mxapy 0W3gJoZm3ZijB8XppHavA9tSRgnpEhmLxzi8ytcZ677vBPDlTWPNIjxjwQ4RUkUs zXT+WJoYnwLjhidYLKfPcdOVrE1w9YeKEogvQYvMbVX2thq9gwYxx2fIVHr727DS +xQPgB9Zf+kUcBJBeIk3RRWaIIeNpRdk51j1ftIJcKTs3APAR5EYqGi8+eOdPAI8 8vDc12S3OEGas5Fmcv/Yf825ac//RGUVUAwS5iF+7rYewprJfng9w7MKidNGqxWV /momOOh8tsmODvjHrwJTtVWD4kDhVeI0 -----END CERTIFICATE-----Generated at Fri Jul 4 18:10:29 2025 by rpki-client