$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: 7JrFpIqWss3WLaDPQqlvJ7fJO1oz5fueL/S/KZFSz3U= Subject key identifier: 0B:1F:5E:BD:D5:CD:E6:F7:18:5C:8B:CB:12:73:56:B1:CD:39:0D:E1 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 02B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 02A7 Signing time: Thu 03 Jul 2025 01:55:55 +0000 Manifest this update: Thu 03 Jul 2025 01:55:54 +0000 Manifest next update: Thu 10 Jul 2025 01:55:54 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: z4gcRQhYeCzEzGOHYw/CR/fTfdAEr3Z3UC0srV/SYgA=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Jul 3 01:55:54 2025 GMT Not After : Jul 10 01:55:54 2025 GMT Subject: CN=6865e32b-68d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:be:6b:70:cb:2f:3b:f3:0e:09:5d:65:8e:ab: 7a:07:58:cc:d5:c5:a7:90:8a:7a:d2:a5:11:43:4f: 48:46:f1:09:e7:d6:66:ae:b5:4c:33:ea:fb:22:03: e6:ec:58:16:61:5a:f1:87:6c:ea:43:ba:73:c9:15: 85:3f:c4:6d:7b:d1:55:8e:c3:7c:a6:a0:25:7f:2f: 8c:03:60:de:85:00:16:3a:b2:70:28:e8:5a:32:d9: 18:91:61:1b:33:3d:81:f3:2e:28:e4:a7:4a:a5:2a: a9:c8:1a:e0:28:23:95:58:38:a4:01:6a:40:0b:65: e3:fa:88:62:5c:1f:22:57:f2:2e:73:fc:ba:95:28: 63:3a:d2:86:bf:96:23:48:37:5b:72:e5:24:13:61: b9:cd:2e:eb:8b:a7:4f:00:f9:87:72:09:3f:49:83: f2:2a:e3:a1:f2:78:6d:b3:e1:3b:a6:92:b1:49:3d: ee:1a:ae:b0:9a:ae:86:d7:12:8a:03:e4:38:3f:5e: ba:9d:d0:b6:ba:8e:5a:a8:15:21:6b:c3:0c:7e:1d: 8a:a6:3b:de:b7:af:78:22:9d:62:82:80:e6:b1:08: 58:cb:b3:f6:49:84:f9:8c:96:21:7f:7a:6b:4c:e1: 7a:03:5d:cc:04:6e:0c:40:8a:3c:51:53:34:00:a2: e3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1F:5E:BD:D5:CD:E6:F7:18:5C:8B:CB:12:73:56:B1:CD:39:0D:E1 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:c5:8d:e3:be:4e:8b:7a:83:5f:16:02:a3:74:99:1e:98:03: ef:d7:ab:66:07:e3:b0:22:e1:55:7d:d6:63:05:5c:1d:2a:15: e9:5b:fb:53:7e:52:52:9d:a9:c9:f4:89:04:ff:15:ba:8b:fe: e7:2b:3a:e5:13:ea:d4:2e:96:85:8d:fb:7c:f6:96:bf:1e:be: d2:53:bf:6a:46:31:42:c5:cd:b4:f4:4e:06:50:8e:d9:98:35: 4b:76:24:39:65:da:97:9b:21:fe:ac:d5:d2:4d:79:24:95:5b: 7f:da:29:6c:3a:74:15:df:d2:ed:ef:ef:7e:1e:ca:0f:26:b6: 68:ce:80:8c:b4:f4:eb:c0:86:b1:fb:88:45:bb:8d:62:69:d1: 64:68:56:5b:a5:3e:81:51:45:7d:98:70:a5:36:d7:31:c2:56: 13:42:10:ae:8c:c6:15:27:94:ec:08:57:4c:c1:d4:86:ea:b5: f8:9f:81:73:31:46:9d:e1:43:6b:7a:57:0f:d4:15:d0:44:98: 8a:d7:cf:6f:da:a5:65:5e:cb:27:64:99:c5:d3:c2:29:15:7e: 60:24:8e:e0:43:e9:f8:8d:e5:8b:1f:89:91:38:0d:88:1c:9f: 63:51:90:87:43:b4:58:82:d1:ac:28:90:7b:50:5c:17:3e:9a: 5f:1c:0e:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUwNzAzMDE1NTU0WhcNMjUwNzEwMDE1NTU0WjAYMRYwFAYD VQQDEw02ODY1ZTMyYi02OGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyL5rcMsvO/MOCV1ljqt6B1jM1cWnkIp60qURQ09IRvEJ59ZmrrVMM+r7IgPm 7FgWYVrxh2zqQ7pzyRWFP8Rte9FVjsN8pqAlfy+MA2DehQAWOrJwKOhaMtkYkWEb Mz2B8y4o5KdKpSqpyBrgKCOVWDikAWpAC2Xj+ohiXB8iV/Iuc/y6lShjOtKGv5Yj SDdbcuUkE2G5zS7ri6dPAPmHcgk/SYPyKuOh8nhts+E7ppKxST3uGq6wmq6G1xKK A+Q4P166ndC2uo5aqBUha8MMfh2Kpjvet694Ip1igoDmsQhYy7P2SYT5jJYhf3pr TOF6A13MBG4MQIo8UVM0AKLj8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsfXr3V zeb3GFyLyxJzVrHNOQ3hMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATxY3jvk6LeoNfFgKjdJkemAPv16tmB+OwIuFVfdZjBVwdKhXpW/tT flJSnanJ9IkE/xW6i/7nKzrlE+rULpaFjft89pa/Hr7SU79qRjFCxc209E4GUI7Z mDVLdiQ5ZdqXmyH+rNXSTXkklVt/2ilsOnQV39Lt7+9+HsoPJrZozoCMtPTrwIax +4hFu41iadFkaFZbpT6BUUV9mHClNtcxwlYTQhCujMYVJ5TsCFdMwdSG6rX4n4Fz MUad4UNrelcP1BXQRJiK189v2qVlXssnZJnF08IpFX5gJI7gQ+n4jeWLH4mROA2I HJ9jUZCHQ7RYgtGsKJB7UFwXPppfHA5u -----END CERTIFICATE-----Generated at Fri Jul 4 21:23:34 2025 by rpki-client