$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: QtAfGJ7aboyUeOxsprYp6EzKhAt4CijKEAkvn8XO5fQ= Subject key identifier: B6:62:06:67:2B:21:27:EF:53:67:ED:1E:EF:76:9D:D7:5E:7D:AE:9D Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 01DB Signing time: Tue 01 Jul 2025 03:09:06 +0000 Manifest this update: Tue 01 Jul 2025 03:09:06 +0000 Manifest next update: Tue 08 Jul 2025 03:09:06 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: QxOFBQIrJrSfA/5onYodGWpVJ1OoMAOVb0hhyWeygeA=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: KfdVVRr1UwfhsTtUMM0Ph6w9qtVR9qcrLdXdVzGndCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Jul 1 03:09:06 2025 GMT Not After : Jul 8 03:09:06 2025 GMT Subject: CN=68635152-7cbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:27:cf:41:c2:07:2c:43:81:3d:e2:9c:cb:87: ba:f5:b7:8d:87:bf:6c:83:72:9d:d2:99:d5:9d:3c: 5b:5e:b7:33:38:55:9f:60:4f:28:94:37:2b:7a:b6: 0b:e4:25:5b:1e:64:a5:59:cc:4a:18:fa:56:dc:25: 57:f4:1b:bd:62:4a:2b:61:9e:72:53:a7:af:bd:02: 41:b4:c6:41:9b:52:36:a7:a1:ba:33:bd:5b:6f:f7: 97:ef:0a:c9:06:51:78:50:07:0d:46:f7:69:2c:74: 49:30:43:61:d4:a0:86:68:43:56:a8:32:49:27:f0: 7b:84:c6:f4:ea:c3:9a:17:b0:71:42:4d:66:da:f6: 4f:68:92:99:28:5b:3f:b6:02:f5:63:5f:57:ce:75: 4f:fd:54:98:bc:23:e8:03:6d:d3:9f:5d:a5:88:ba: 5f:98:c6:b6:fb:18:c6:d9:86:d4:39:11:57:ca:f8: b4:c6:53:4a:4d:de:16:8f:6d:e9:97:56:2d:4d:69: 29:78:70:1f:43:c3:af:4d:d6:9d:4c:50:a5:e4:54: 37:2f:74:49:54:76:60:01:f5:57:28:41:1a:83:5a: 60:2c:70:34:77:02:ff:16:64:a6:8c:f9:bb:be:c4: 4b:07:25:6c:a7:1c:3e:ca:7a:93:a8:02:2a:1f:cb: 3c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:62:06:67:2B:21:27:EF:53:67:ED:1E:EF:76:9D:D7:5E:7D:AE:9D X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:73:f6:14:e5:40:22:07:49:63:61:6b:5f:56:ec:43:6b:49: 0f:70:7c:5a:c7:78:52:1c:c0:a8:89:47:4c:25:4c:b8:60:66: 3a:de:17:1e:7b:ab:17:23:40:65:eb:6e:42:09:6d:8c:fa:3a: bb:64:e4:88:ed:cb:88:d9:e7:1d:0e:d9:bd:ac:da:be:6f:7e: 76:51:c9:35:cb:00:2f:d5:82:51:05:d8:8c:d5:0a:93:31:2a: f9:1e:8a:1c:29:d2:ba:af:cf:38:0b:de:09:d8:b1:1f:20:cc: c6:bb:31:cc:36:26:d7:f2:93:86:cf:4a:73:42:4a:20:37:6d: af:35:60:b5:c6:96:00:0e:2d:46:f7:68:5a:bc:e2:10:7e:58: e0:53:c9:e5:30:85:a1:46:b2:59:bc:aa:33:f1:0a:59:13:0c: 47:e4:6d:cd:df:0c:b0:67:81:49:8f:f2:54:f0:df:f9:d8:4c: 71:34:fb:a7:52:ad:4c:10:85:9f:9b:1f:19:42:11:29:00:f7: ab:51:bf:d4:96:52:ab:18:34:4a:48:f9:2f:34:87:07:a6:da: fa:20:c4:63:ca:f6:9d:c9:40:06:24:cc:a9:9c:da:ff:49:05: a7:f2:79:c0:01:b1:ae:f2:44:24:c1:62:70:f3:d5:24:df:37: b7:fe:fe:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUwNzAxMDMwOTA2WhcNMjUwNzA4MDMwOTA2WjAYMRYwFAYD VQQDEw02ODYzNTE1Mi03Y2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5SfPQcIHLEOBPeKcy4e69beNh79sg3Kd0pnVnTxbXrczOFWfYE8olDcrerYL 5CVbHmSlWcxKGPpW3CVX9Bu9YkorYZ5yU6evvQJBtMZBm1I2p6G6M71bb/eX7wrJ BlF4UAcNRvdpLHRJMENh1KCGaENWqDJJJ/B7hMb06sOaF7BxQk1m2vZPaJKZKFs/ tgL1Y19XznVP/VSYvCPoA23Tn12liLpfmMa2+xjG2YbUORFXyvi0xlNKTd4Wj23p l1YtTWkpeHAfQ8OvTdadTFCl5FQ3L3RJVHZgAfVXKEEag1pgLHA0dwL/FmSmjPm7 vsRLByVspxw+ynqTqAIqH8s8swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZiBmcr ISfvU2ftHu92nddefa6dMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQc/YU5UAiB0ljYWtfVuxDa0kPcHxax3hSHMCoiUdMJUy4YGY63hce e6sXI0Bl625CCW2M+jq7ZOSI7cuI2ecdDtm9rNq+b352Uck1ywAv1YJRBdiM1QqT MSr5HoocKdK6r884C94J2LEfIMzGuzHMNibX8pOGz0pzQkogN22vNWC1xpYADi1G 92havOIQfljgU8nlMIWhRrJZvKoz8QpZEwxH5G3N3wywZ4FJj/JU8N/52ExxNPun Uq1MEIWfmx8ZQhEpAPerUb/UllKrGDRKSPkvNIcHptr6IMRjyvadyUAGJMypnNr/ SQWn8nnAAbGu8kQkwWJw89Uk3ze3/v5P -----END CERTIFICATE-----Generated at Wed Jul 2 22:48:55 2025 by rpki-client