$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft File: oUDUgGrgz2DnP-FYvyQvOag60AU.mft (raw, json) Hash identifier: VavBmnb6jLuLg7V1KbK7ZsSJPzr0ZLDpC3YGS0qjd3U= Subject key identifier: 4F:53:A6:9F:17:9A:5C:5F:66:53:E3:F4:12:F7:2C:FA:0B:18:1C:92 Authority key identifier: A1:40:D4:80:6A:E0:CF:60:E7:3F:E1:58:BF:24:2F:39:A8:3A:D0:05 Certificate issuer: /CN=A91E1B78/serialNumber=A140D4806AE0CF60E73FE158BF242F39A83AD005 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft Manifest number: 30 Signing time: Thu 03 Jul 2025 07:59:35 +0000 Manifest this update: Thu 03 Jul 2025 07:59:34 +0000 Manifest next update: Thu 10 Jul 2025 07:59:34 +0000 Files and hashes: 1: oUDUgGrgz2DnP-FYvyQvOag60AU.crl (hash: HfuJi+pnbV0+O1K96cl0cvNy/HpuvUmw6dCe1SU1Y20=) 2: 47131A44145511F082FDAA7AC4F9AE02.roa (hash: btGSbXlYPwUm6r4aT9dqMB2WqeFs4xBX2s74blUbTR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.crl rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1B78, serialNumber=A140D4806AE0CF60E73FE158BF242F39A83AD005 Validity Not Before: Jul 3 07:59:34 2025 GMT Not After : Jul 10 07:59:34 2025 GMT Subject: CN=68663866-35ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7f:7c:b4:cb:17:43:d6:61:0d:f5:b3:89:57: 24:d6:ef:34:45:e6:de:54:5d:ef:67:8d:b6:10:a9: 74:96:9b:b7:ce:da:5c:12:58:ad:11:34:5b:da:9f: 76:db:e5:d6:9c:a5:10:73:cd:70:27:5f:ad:ed:84: 13:5f:35:7f:30:64:8c:ab:e0:73:62:51:7c:5c:3b: d1:2c:56:e2:2d:27:a8:28:4c:02:d5:5d:97:ed:83: 30:16:9d:5e:f1:b2:8b:2b:d4:82:17:4c:02:3f:36: ed:38:a0:18:3c:8a:c4:d2:cc:c0:67:6e:3d:b3:2b: df:49:f1:e7:ea:ac:88:42:ff:6f:32:97:30:1e:58: 3b:b7:29:b5:51:84:af:c0:d7:55:51:79:63:53:75: 0a:d5:48:77:46:5f:35:cf:f8:87:76:00:04:35:bb: 36:65:bd:5a:70:ec:59:14:36:61:c5:e7:5c:6c:a7: 8e:37:78:b6:6c:25:5c:30:b9:7a:7a:16:3a:eb:e1: 53:7d:e5:a0:d9:2c:46:ba:12:e4:07:b3:1e:44:0b: 50:ad:51:39:18:c4:c8:90:ed:0c:b5:49:a0:2f:51: 04:57:be:6a:f8:93:8a:14:90:fb:c2:f6:60:5f:a6: 32:65:37:4f:36:62:4a:a5:20:a3:3c:0d:e5:84:2e: f4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:53:A6:9F:17:9A:5C:5F:66:53:E3:F4:12:F7:2C:FA:0B:18:1C:92 X509v3 Authority Key Identifier: keyid:A1:40:D4:80:6A:E0:CF:60:E7:3F:E1:58:BF:24:2F:39:A8:3A:D0:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:f7:91:f7:c5:b5:e0:b4:6e:fd:21:67:ea:bf:37:9f:f2:33: 55:d9:b4:27:0b:71:87:9f:1b:9a:ba:38:fa:a4:3e:b5:89:e0: eb:f9:c6:3b:61:1a:e4:5e:8c:89:0d:1d:55:8c:f4:60:e9:96: 9e:20:f2:cd:d5:e0:90:af:90:97:15:b2:11:0a:a8:3c:6a:38: a9:c2:d6:88:85:e0:93:07:0a:f2:6e:b1:6c:79:72:10:1e:85: 1d:d6:0d:30:01:61:83:db:b3:79:fb:ed:d9:17:36:75:f8:82: 71:78:34:0d:29:1a:f7:e5:35:dd:f9:8a:61:ee:64:dc:36:3c: b4:39:7f:d1:43:4d:1a:fa:8c:8c:72:13:cd:39:c3:fd:b6:3e: b5:ce:03:af:6a:a6:6d:40:20:4c:b4:df:6c:ce:c7:8b:db:60: 08:35:9a:ae:87:de:5f:df:22:e9:3d:a5:32:56:12:c7:3f:9f: 71:c1:79:3d:a3:1a:2b:1f:08:74:f7:bd:52:43:9f:38:73:15: 93:ad:e6:7b:5b:de:33:c9:fd:a8:a6:d4:5b:a7:6e:2f:b2:9d: 33:b2:de:3c:ad:45:8a:91:24:b9:9e:3e:2f:0a:f8:3b:c3:e3: 1c:91:92:e0:ed:7d:37:1f:f0:c5:01:4c:a3:d9:0e:7d:01:6b: 13:c3:54:84 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUI3ODExMC8GA1UEBRMoQTE0MEQ0ODA2QUUwQ0Y2MEU3M0ZFMTU4QkYyNDJGMzlB ODNBRDAwNTAeFw0yNTA3MDMwNzU5MzRaFw0yNTA3MTAwNzU5MzRaMBgxFjAUBgNV BAMTDTY4NjYzODY2LTM1Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTf3y0yxdD1mEN9bOJVyTW7zRF5t5UXe9njbYQqXSWm7fO2lwSWK0RNFvan3bb 5dacpRBzzXAnX63thBNfNX8wZIyr4HNiUXxcO9EsVuItJ6goTALVXZftgzAWnV7x sosr1IIXTAI/Nu04oBg8isTSzMBnbj2zK99J8efqrIhC/28ylzAeWDu3KbVRhK/A 11VReWNTdQrVSHdGXzXP+Id2AAQ1uzZlvVpw7FkUNmHF51xsp443eLZsJVwwuXp6 Fjrr4VN95aDZLEa6EuQHsx5EC1CtUTkYxMiQ7Qy1SaAvUQRXvmr4k4oUkPvC9mBf pjJlN082YkqlIKM8DeWELvQbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT1Omnxea XF9mU+P0Evcs+gsYHJIwHwYDVR0jBBgwFoAUoUDUgGrgz2DnP+FYvyQvOag60AUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxQjc4L0M4REY0MUFDMTQ1 NDExRjBCM0I3QzY3OUM0RjlBRTAyL29VRFVnR3JnejJEblAtRll2eVF2T2FnNjBB VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1VEVWdHcmd6MkRuUC1GWXZ5UXZPYWc2MEFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx Qjc4L0M4REY0MUFDMTQ1NDExRjBCM0I3QzY3OUM0RjlBRTAyL29VRFVnR3JnejJE blAtRll2eVF2T2FnNjBBVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKL3kffFteC0bv0hZ+q/N5/yM1XZtCcLcYefG5q6OPqkPrWJ4Ov5xjth GuRejIkNHVWM9GDplp4g8s3V4JCvkJcVshEKqDxqOKnC1oiF4JMHCvJusWx5chAe hR3WDTABYYPbs3n77dkXNnX4gnF4NA0pGvflNd35imHuZNw2PLQ5f9FDTRr6jIxy E805w/22PrXOA69qpm1AIEy032zOx4vbYAg1mq6H3l/fIuk9pTJWEsc/n3HBeT2j GisfCHT3vVJDnzhzFZOt5ntb3jPJ/aim1Funbi+ynTOy3jytRYqRJLmePi8K+DvD 4xyRkuDtfTcf8MUBTKPZDn0BaxPDVIQ= -----END CERTIFICATE-----Generated at Fri Jul 4 08:29:57 2025 by rpki-client