$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: mGQ6UptINfHodjUjpxZ+o89RnkoVu1++n9BRwegxg7g= Subject key identifier: EF:A5:13:7A:BA:D9:DE:8E:7D:F6:4B:15:75:15:81:0E:2B:5A:85:12 Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 332D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 32D7 Signing time: Wed 02 Jul 2025 15:31:25 +0000 Manifest this update: Wed 02 Jul 2025 15:31:25 +0000 Manifest next update: Wed 09 Jul 2025 15:31:25 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: Ob/wQl0OXg5uaL+CHJLPTBtiJSuKiwWjG/zyt4qGu78=) 2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=) 3: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=) 4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=) 5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13101 (0x332d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Jul 2 15:31:25 2025 GMT Not After : Jul 9 15:31:25 2025 GMT Subject: CN=686550cd-f63d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c3:3d:ad:8c:1a:32:e2:17:c3:23:e6:c3:8c: d6:44:25:6d:ea:94:f3:b3:39:1f:b1:d4:b4:84:a5: cd:f2:19:7d:dc:93:2c:50:cd:b7:c7:11:3d:50:0e: 56:ff:f5:f5:9e:1b:3f:38:cf:ca:7a:b6:b4:1d:c0: a3:8d:23:85:00:0e:38:a6:c4:d8:c1:cc:4f:4c:70: c7:65:ce:0e:58:74:83:6b:b1:c1:9f:bd:d2:51:71: e6:74:4c:b9:dc:2f:56:ea:9d:e6:71:78:5a:b8:d2: 8f:91:0e:b6:41:45:41:69:90:21:39:2a:4b:fd:1c: 65:86:56:9b:b5:71:94:3a:e2:88:3f:d1:54:92:24: 6d:33:ed:93:25:5c:94:41:57:c3:72:f5:8c:38:f4: af:c1:ae:00:14:0e:fa:5a:23:af:a3:ca:2a:e8:4b: c3:95:5b:03:0d:38:5d:7d:3c:b9:67:16:b8:0d:9a: c4:8e:a5:49:81:e0:5e:07:04:76:2b:e6:db:a3:5f: c1:c8:08:e9:49:a6:e8:a1:71:eb:6b:ac:81:4c:14: fa:f1:2d:da:46:78:a1:6f:65:cc:89:e5:83:fe:cb: 06:1e:a6:9a:e1:db:25:af:fa:97:7c:a5:40:8b:8e: 15:fd:3a:42:65:e2:a2:01:bf:85:89:71:7a:bd:a1: 63:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A5:13:7A:BA:D9:DE:8E:7D:F6:4B:15:75:15:81:0E:2B:5A:85:12 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:7a:ae:f0:7e:1e:4b:5f:29:2b:39:fc:5b:be:71:70:ba:86: b7:46:da:94:06:8b:f0:0f:e8:57:a9:c5:44:6c:74:2e:6f:9c: 3d:87:0c:18:7a:48:ba:f0:aa:b7:52:49:db:2c:fb:7e:ee:5d: a8:65:57:f3:04:ec:f7:e0:62:fc:a0:ea:a1:a7:92:37:7b:86: 1f:b7:6b:b7:fa:d0:17:44:ad:e0:9a:cc:9f:f3:04:b4:a3:79: 6f:5b:11:07:82:40:99:18:36:96:31:97:08:ac:d6:bc:0f:fb: 15:f7:f1:37:7d:0b:19:2b:fc:15:46:27:ef:5c:77:2b:f3:88: ce:8b:73:a0:22:d4:8b:13:7c:92:ff:6f:53:f3:1b:de:5a:08: d1:8a:26:64:78:f6:ba:c4:84:8d:ae:c9:d2:fc:76:a7:00:6a: 26:51:10:c7:23:92:37:90:40:bb:f9:d5:35:cd:ed:ee:da:3d: 4d:0a:53:ee:38:0f:73:39:0c:b5:b4:25:71:d1:d7:7e:12:36: b6:85:c2:f4:f9:55:78:18:00:19:fb:d3:95:27:5b:1a:8e:a7: 20:e0:bd:ee:45:d2:79:f1:33:58:fb:16:f0:a2:99:c3:df:7f: 09:c4:64:91:1e:60:30:5f:19:eb:ba:1e:c8:fa:fe:1a:40:97: 88:47:33:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUwNzAyMTUzMTI1WhcNMjUwNzA5MTUzMTI1WjAYMRYwFAYD VQQDEw02ODY1NTBjZC1mNjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMM9rYwaMuIXwyPmw4zWRCVt6pTzszkfsdS0hKXN8hl93JMsUM23xxE9UA5W //X1nhs/OM/Kera0HcCjjSOFAA44psTYwcxPTHDHZc4OWHSDa7HBn73SUXHmdEy5 3C9W6p3mcXhauNKPkQ62QUVBaZAhOSpL/RxlhlabtXGUOuKIP9FUkiRtM+2TJVyU QVfDcvWMOPSvwa4AFA76WiOvo8oq6EvDlVsDDThdfTy5Zxa4DZrEjqVJgeBeBwR2 K+bbo1/ByAjpSabooXHra6yBTBT68S3aRnihb2XMieWD/ssGHqaa4dslr/qXfKVA i44V/TpCZeKiAb+FiXF6vaFjBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+lE3q6 2d6OffZLFXUVgQ4rWoUSMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3eq7wfh5LXykrOfxbvnFwuoa3RtqUBovwD+hXqcVEbHQub5w9hwwY eki68Kq3UknbLPt+7l2oZVfzBOz34GL8oOqhp5I3e4Yft2u3+tAXRK3gmsyf8wS0 o3lvWxEHgkCZGDaWMZcIrNa8D/sV9/E3fQsZK/wVRifvXHcr84jOi3OgItSLE3yS /29T8xveWgjRiiZkePa6xISNrsnS/HanAGomURDHI5I3kEC7+dU1ze3u2j1NClPu OA9zOQy1tCVx0dd+Eja2hcL0+VV4GAAZ+9OVJ1sajqcg4L3uRdJ58TNY+xbwopnD 338JxGSRHmAwXxnruh7I+v4aQJeIRzPB -----END CERTIFICATE-----Generated at Thu Jul 3 16:43:42 2025 by rpki-client