$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft File: ogavyWamnnC0ibOPEEg9wfpdPiI.mft (raw, json) Hash identifier: b94h5RFfoatnEK9qEbdjKdwXJkb+hLj/8x+Xld4Pf0I= Subject key identifier: B0:CC:94:58:E2:C6:EA:85:F8:B3:E7:AD:8B:D0:8E:E5:E2:92:95:FD Authority key identifier: A2:06:AF:C9:66:A6:9E:70:B4:89:B3:8F:10:48:3D:C1:FA:5D:3E:22 Certificate issuer: /CN=A91E4B6A/serialNumber=A206AFC966A69E70B489B38F10483DC1FA5D3E22 Certificate serial: 03E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft Manifest number: 03E5 Signing time: Thu 03 Jul 2025 00:53:54 +0000 Manifest this update: Thu 03 Jul 2025 00:53:54 +0000 Manifest next update: Thu 10 Jul 2025 00:53:54 +0000 Files and hashes: 1: ogavyWamnnC0ibOPEEg9wfpdPiI.crl (hash: pRaVsAnZ9pbz2uVSTQ5u7aiknrwLpqmuswYeZy21J8k=) 2: F7335D9484D911EC89E5246EC4F9AE02.roa (hash: zIQCvO1cYT9GDGEyMPF0tBOYTt1JAajUXmcBSrFDxrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.crl rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:53:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4B6A, serialNumber=A206AFC966A69E70B489B38F10483DC1FA5D3E22 Validity Not Before: Jul 3 00:53:54 2025 GMT Not After : Jul 10 00:53:54 2025 GMT Subject: CN=6865d4a2-d9a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4c:67:3e:cf:6a:a8:ba:6b:d2:89:58:03:2a: ce:ca:f0:27:2a:9f:da:ec:30:52:1e:0c:d6:b7:c3: 58:81:95:bc:6f:b5:d9:6e:c1:02:da:7c:7f:04:ea: 80:61:60:dc:a3:54:53:a1:ee:dd:ff:06:a4:75:e4: b9:a2:1b:34:c4:eb:34:fb:98:c4:2d:f1:bb:44:f5: 43:93:71:1d:b4:72:47:3e:09:46:48:d6:20:b4:01: c5:2f:58:1e:80:2d:0c:82:6a:7c:a3:3c:e7:ce:fc: 38:70:00:1c:67:0d:aa:68:e2:dc:ba:e0:e9:a3:1a: 25:f5:00:6a:c1:e3:c5:b9:39:bf:55:43:3b:ef:64: 43:b3:9e:11:e8:9c:1b:ff:56:a1:f4:90:c3:36:df: 19:f4:f1:b0:bc:ac:b8:91:cc:1e:ec:74:01:db:fb: 03:74:c0:d0:05:09:8f:02:22:0b:a7:0c:a7:5b:68: 1a:80:de:e0:ea:b3:d5:96:43:03:e6:09:ab:8d:81: d0:1c:46:36:eb:67:7f:67:39:09:c8:0b:4c:e8:8a: a3:44:ba:65:a1:e4:e6:c2:04:0a:ea:79:e4:80:3c: ec:ad:1d:f8:b6:b1:45:94:5f:59:0e:e5:52:3b:fb: 2a:5e:18:1b:45:93:7d:25:56:42:86:06:77:44:6e: 34:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CC:94:58:E2:C6:EA:85:F8:B3:E7:AD:8B:D0:8E:E5:E2:92:95:FD X509v3 Authority Key Identifier: keyid:A2:06:AF:C9:66:A6:9E:70:B4:89:B3:8F:10:48:3D:C1:FA:5D:3E:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:4c:ec:8e:16:83:da:72:29:9c:d0:48:23:38:6d:91:a2:3b: d4:00:35:d4:22:52:9b:31:8d:23:fd:e5:65:89:9b:5d:9f:eb: b0:d1:e6:58:cb:93:c9:c5:84:08:6e:bf:5c:89:ac:50:d8:46: c2:5f:90:18:2f:bf:87:92:e2:3c:38:1e:92:37:1c:bb:f4:c2: 6f:6f:35:ee:18:fe:ba:89:17:c6:2e:5b:c9:f1:2a:67:87:fe: fb:db:8b:b1:d0:03:66:53:cc:34:0b:ea:74:c3:a8:26:27:42: 7f:66:8b:06:14:70:31:04:b8:58:f0:2a:a4:ba:11:40:90:19: bb:5d:f4:f6:8c:a9:7c:9b:0b:80:ac:19:e9:f4:ef:bf:aa:7e: 07:f5:6e:32:d6:63:5d:95:49:ce:07:2a:53:47:8e:fc:cc:01: b4:af:01:bf:d0:4e:21:28:0a:2c:18:04:28:44:d4:fc:fb:b1: d4:7d:bd:1c:a5:8c:68:2c:d5:d8:34:fb:d6:c8:db:db:b6:f4: 32:a0:ca:46:ed:60:f4:53:56:43:64:9c:19:ef:fe:c4:88:92: fc:95:d2:4f:72:4e:cd:4a:3e:93:48:97:43:22:11:d2:90:28: 6d:3c:7e:da:a9:ef:a7:52:66:20:5c:4d:fb:a6:59:f0:9b:e1: 2e:6d:29:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCNkExMTAvBgNVBAUTKEEyMDZBRkM5NjZBNjlFNzBCNDg5QjM4RjEwNDgzREMx RkE1RDNFMjIwHhcNMjUwNzAzMDA1MzU0WhcNMjUwNzEwMDA1MzU0WjAYMRYwFAYD VQQDEw02ODY1ZDRhMi1kOWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukxnPs9qqLpr0olYAyrOyvAnKp/a7DBSHgzWt8NYgZW8b7XZbsEC2nx/BOqA YWDco1RToe7d/wakdeS5ohs0xOs0+5jELfG7RPVDk3EdtHJHPglGSNYgtAHFL1ge gC0Mgmp8ozznzvw4cAAcZw2qaOLcuuDpoxol9QBqwePFuTm/VUM772RDs54R6Jwb /1ah9JDDNt8Z9PGwvKy4kcwe7HQB2/sDdMDQBQmPAiILpwynW2gagN7g6rPVlkMD 5gmrjYHQHEY262d/ZzkJyAtM6IqjRLploeTmwgQK6nnkgDzsrR34trFFlF9ZDuVS O/sqXhgbRZN9JVZChgZ3RG40DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDMlFji xuqF+LPnrYvQjuXikpX9MB8GA1UdIwQYMBaAFKIGr8lmpp5wtImzjxBIPcH6XT4i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEI2QS9CNDgxMzM0Mjg0 RDcxMUVDOEUwNzQxNkRDNEY5QUUwMi9vZ2F2eVdhbW5uQzBpYk9QRUVnOXdmcGRQ aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29nYXZ5V2Ftbm5DMGliT1BFRWc5d2ZwZFBpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEI2QS9CNDgxMzM0Mjg0RDcxMUVDOEUwNzQxNkRDNEY5QUUwMi9vZ2F2eVdhbW5u QzBpYk9QRUVnOXdmcGRQaUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSTOyOFoPacimc0EgjOG2RojvUADXUIlKbMY0j/eVliZtdn+uw0eZY y5PJxYQIbr9ciaxQ2EbCX5AYL7+HkuI8OB6SNxy79MJvbzXuGP66iRfGLlvJ8Spn h/7724ux0ANmU8w0C+p0w6gmJ0J/ZosGFHAxBLhY8CqkuhFAkBm7XfT2jKl8mwuA rBnp9O+/qn4H9W4y1mNdlUnOBypTR478zAG0rwG/0E4hKAosGAQoRNT8+7HUfb0c pYxoLNXYNPvWyNvbtvQyoMpG7WD0U1ZDZJwZ7/7EiJL8ldJPck7NSj6TSJdDIhHS kChtPH7aqe+nUmYgXE37plnwm+EubSlt -----END CERTIFICATE-----Generated at Thu Jul 3 07:51:50 2025 by rpki-client