$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: F4KnjIk43HrpmeP1siVjOsfA5iwgeD661uVDRaIOS6c= Subject key identifier: 8E:08:A2:BA:CD:87:7F:02:84:48:AF:89:17:C8:3E:2E:BC:9E:6D:AC Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 0127 Signing time: Thu 03 Jul 2025 04:44:34 +0000 Manifest this update: Thu 03 Jul 2025 04:44:33 +0000 Manifest next update: Thu 10 Jul 2025 04:44:33 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: ZLMAt94cMHVRiYOrF6Msw949FsxaOhTa5bzAUKppreg=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Jul 3 04:44:33 2025 GMT Not After : Jul 10 04:44:33 2025 GMT Subject: CN=68660ab2-e936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:43:cb:4a:86:c5:09:d5:1d:b5:e5:ab:9b:e2: 20:38:f1:d2:1a:91:c1:d6:78:99:ce:fb:0e:65:4c: 27:c2:8b:23:ed:f7:ba:e0:e6:6b:3b:64:f2:3b:d1: fd:2a:81:b1:aa:e5:9f:25:1b:04:6d:01:49:91:fd: 9a:cb:e2:5c:11:b6:39:9e:84:92:47:d1:2f:66:28: 02:e3:46:f3:63:0b:f1:b1:a1:be:6e:f2:73:0f:c9: 43:b8:40:c2:6a:8c:b2:5b:63:4c:de:da:b9:3f:e7: 57:37:96:de:ed:0e:55:2d:e4:cd:21:f6:01:23:99: 92:3d:3a:dd:97:e7:09:a4:64:9e:3b:59:fa:15:88: 3d:83:6c:9a:8b:0f:42:42:1d:c3:47:43:65:28:9e: 6b:1a:18:87:3d:74:f3:cf:cd:a2:ad:df:17:72:41: 7e:98:64:97:22:45:4f:e9:28:46:0e:8e:ef:32:40: a8:3a:a9:d2:b9:51:b8:09:f5:b5:40:d3:03:8d:f6: 28:0d:f7:18:27:38:06:26:7c:eb:7c:8e:d9:a5:de: 3d:da:c5:83:aa:ac:86:94:3c:95:de:75:9e:d4:04: 15:a1:b0:cf:91:88:a2:9e:81:28:e6:75:f6:9c:49: ef:74:ca:fc:71:68:ca:1f:7b:a0:05:97:9f:ce:a5: 13:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:08:A2:BA:CD:87:7F:02:84:48:AF:89:17:C8:3E:2E:BC:9E:6D:AC X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:43:55:36:0b:bb:df:f3:e0:1b:78:6a:63:aa:49:ee:96:fe: 76:8e:c1:c6:b5:fa:c5:c9:47:33:fa:95:72:c7:4d:a1:da:0b: 38:7f:a7:69:d7:86:5c:80:13:a4:1b:f5:71:e6:a1:2f:40:c0: f4:ff:84:0a:bf:f8:b3:db:cc:2d:50:99:5a:3e:df:19:91:6d: c9:35:2b:27:a8:5c:73:bd:63:1f:76:75:6a:75:0a:c3:f0:03: 01:a2:d5:0d:1c:95:d7:f5:a3:33:f2:b4:ce:72:46:1e:4a:5e: eb:b3:86:60:88:64:da:5f:4f:8f:35:ec:57:40:7b:1d:12:db: 21:7e:0e:51:6c:3f:1d:49:1f:65:43:42:fc:d0:e5:e6:21:0b: e1:71:4a:2c:c2:55:ef:9c:0a:b0:7c:d9:95:17:02:83:49:26: 9e:67:08:1e:fb:c1:1e:bc:d2:e8:a4:1d:93:80:6c:32:68:1a: a0:d2:02:25:76:f7:d9:b2:f8:a7:e1:ad:68:07:a4:79:12:cb: 52:3a:96:c6:8e:cd:ff:fa:8a:d3:7a:23:87:ec:fd:b6:e5:36: 55:b0:49:a8:8c:2c:44:55:b1:b7:35:c4:aa:1f:70:ce:d1:1b: 18:ff:05:43:db:3a:fe:76:c7:1b:45:ec:44:20:87:12:39:e0: 49:32:f7:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUwNzAzMDQ0NDMzWhcNMjUwNzEwMDQ0NDMzWjAYMRYwFAYD VQQDEw02ODY2MGFiMi1lOTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4EPLSobFCdUdteWrm+IgOPHSGpHB1niZzvsOZUwnwosj7fe64OZrO2TyO9H9 KoGxquWfJRsEbQFJkf2ay+JcEbY5noSSR9EvZigC40bzYwvxsaG+bvJzD8lDuEDC aoyyW2NM3tq5P+dXN5be7Q5VLeTNIfYBI5mSPTrdl+cJpGSeO1n6FYg9g2yaiw9C Qh3DR0NlKJ5rGhiHPXTzz82ird8XckF+mGSXIkVP6ShGDo7vMkCoOqnSuVG4CfW1 QNMDjfYoDfcYJzgGJnzrfI7Zpd492sWDqqyGlDyV3nWe1AQVobDPkYiinoEo5nX2 nEnvdMr8cWjKH3ugBZefzqUTiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4IorrN h38ChEiviRfIPi68nm2sMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABQ1U2C7vf8+AbeGpjqknulv52jsHGtfrFyUcz+pVyx02h2gs4f6dp 14ZcgBOkG/Vx5qEvQMD0/4QKv/iz28wtUJlaPt8ZkW3JNSsnqFxzvWMfdnVqdQrD 8AMBotUNHJXX9aMz8rTOckYeSl7rs4ZgiGTaX0+PNexXQHsdEtshfg5RbD8dSR9l Q0L80OXmIQvhcUoswlXvnAqwfNmVFwKDSSaeZwge+8EevNLopB2TgGwyaBqg0gIl dvfZsvin4a1oB6R5EstSOpbGjs3/+orTeiOH7P225TZVsEmojCxEVbG3NcSqH3DO 0RsY/wVD2zr+dscbRexEIIcSOeBJMvcc -----END CERTIFICATE-----Generated at Thu Jul 3 21:19:00 2025 by rpki-client