$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: VmKaOyilM/fjUdUfjmVfQY8czRh9dkqV8QcqSjLnsAI= Subject key identifier: C8:1E:9E:BA:CB:D4:C4:92:39:07:A3:DC:C0:58:64:61:9A:11:D9:8F Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 0130 Signing time: Thu 03 Jul 2025 04:55:52 +0000 Manifest this update: Thu 03 Jul 2025 04:55:52 +0000 Manifest next update: Thu 10 Jul 2025 04:55:52 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: 4h3/Qvnl0s430WhMfCFwZ241TfWQ4P0k3R9RYfdVzko=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: NmyQHlBil47JzTSCPQYz/6ZBa9AnAtiDqsHIcZPO3dA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: Jul 3 04:55:52 2025 GMT Not After : Jul 10 04:55:52 2025 GMT Subject: CN=68660d58-ef34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a8:65:a3:db:a2:70:ac:f5:99:2b:f1:69:97: c6:86:39:a7:d9:4d:bd:da:30:68:5f:93:e4:38:93: 01:4d:6e:6f:be:20:4b:1b:eb:81:0c:d0:cd:1c:26: b0:87:65:4f:0c:d8:6e:e5:27:59:34:b1:43:5c:0c: 37:9e:fd:e7:7b:23:62:28:57:9f:52:a5:45:e8:1c: 51:2f:f7:88:cd:fb:80:73:63:80:8b:90:f3:f9:d8: a9:d8:61:cc:1a:dd:12:f4:b5:02:55:4e:95:ab:10: c7:98:90:8c:00:2e:c9:71:ea:c0:ea:81:14:31:fa: fb:5d:5c:c3:94:2b:bb:7a:55:d2:81:d2:63:3e:ec: 4e:c5:ca:2e:aa:75:bc:36:e9:8f:c4:7b:7e:85:78: 9d:23:cf:75:d9:6c:51:26:33:a7:25:ae:79:ca:e5: 8d:09:67:d7:39:6e:50:0f:a4:57:3f:79:29:72:4d: 2d:3c:d1:fe:c7:98:b7:ec:1a:bb:4a:34:c3:e1:77: 29:5c:7a:05:a6:7c:c9:ff:4d:d5:08:60:c9:a0:75: e7:a3:43:d5:31:78:c9:f3:a8:9a:6e:25:ec:5d:6c: d6:d9:d5:17:ac:34:21:fb:87:46:e6:b9:90:41:9a: 75:2b:39:25:2e:dc:40:8f:47:a8:72:94:41:53:f0: 33:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:1E:9E:BA:CB:D4:C4:92:39:07:A3:DC:C0:58:64:61:9A:11:D9:8F X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:6e:ee:8d:b7:3b:e3:36:87:59:cd:40:90:69:98:ab:e9:2c: b4:c0:2b:69:22:12:e7:50:9c:a8:de:45:2e:6a:ec:35:36:c5: eb:94:8e:d3:86:ea:ba:ed:36:ce:2f:97:6b:d2:f9:95:3f:6c: 53:33:cd:a1:7a:66:06:b6:07:2d:0c:cf:dc:d1:0f:ac:42:c7: 74:3f:18:9a:42:03:8b:aa:a1:1d:08:c7:95:ce:9e:b3:2e:70: 13:2c:96:0b:da:9d:e9:0e:26:a7:ec:b2:a6:fa:b6:03:e0:4f: b6:e3:9d:c4:9f:69:33:e6:53:34:af:6b:50:a0:f0:02:ee:65: 63:14:e2:5b:05:97:cd:ed:38:e4:2a:85:e8:a9:c8:e6:43:9b: 3e:21:01:57:a3:65:08:03:06:68:e9:25:c7:8a:49:21:b3:91: 4b:70:7c:16:00:3a:a3:3e:e1:f1:a2:b5:ee:0b:aa:7e:ab:5c: ea:a1:8f:ec:d8:fb:e5:48:a0:7d:f3:bc:e5:af:d0:b1:e8:72: 4c:de:0e:b5:35:0c:1d:ed:61:1d:48:d3:9b:ba:b7:a8:47:85: f6:1d:ae:59:e1:b1:07:b8:3d:c0:9f:58:55:84:36:51:de:cf: 1e:dc:cd:e1:aa:ad:6c:fe:cb:3d:a1:b9:53:8b:ed:dc:4e:b4: cb:d2:12:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjUwNzAzMDQ1NTUyWhcNMjUwNzEwMDQ1NTUyWjAYMRYwFAYD VQQDEw02ODY2MGQ1OC1lZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA56hlo9uicKz1mSvxaZfGhjmn2U292jBoX5PkOJMBTW5vviBLG+uBDNDNHCaw h2VPDNhu5SdZNLFDXAw3nv3neyNiKFefUqVF6BxRL/eIzfuAc2OAi5Dz+dip2GHM Gt0S9LUCVU6VqxDHmJCMAC7JcerA6oEUMfr7XVzDlCu7elXSgdJjPuxOxcouqnW8 NumPxHt+hXidI8912WxRJjOnJa55yuWNCWfXOW5QD6RXP3kpck0tPNH+x5i37Bq7 SjTD4XcpXHoFpnzJ/03VCGDJoHXno0PVMXjJ86iabiXsXWzW2dUXrDQh+4dG5rmQ QZp1KzklLtxAj0eocpRBU/AzAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgenrrL 1MSSOQej3MBYZGGaEdmPMB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlCMC8xNEM5NDk2RTlGM0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0x T1BYSkdqU3piT2NZZWQyMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvbu6NtzvjNodZzUCQaZir6Sy0wCtpIhLnUJyo3kUuauw1NsXrlI7T huq67TbOL5dr0vmVP2xTM82hemYGtgctDM/c0Q+sQsd0PxiaQgOLqqEdCMeVzp6z LnATLJYL2p3pDian7LKm+rYD4E+2453En2kz5lM0r2tQoPAC7mVjFOJbBZfN7Tjk KoXoqcjmQ5s+IQFXo2UIAwZo6SXHikkhs5FLcHwWADqjPuHxorXuC6p+q1zqoY/s 2PvlSKB987zlr9Cx6HJM3g61NQwd7WEdSNObureoR4X2Ha5Z4bEHuD3An1hVhDZR 3s8e3M3hqq1s/ss9oblTi+3cTrTL0hK2 -----END CERTIFICATE-----Generated at Thu Jul 3 21:07:39 2025 by rpki-client