$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: IOXabgImjL7An7zKeduBQzIXiN2tf+q1D69R950/bXQ= Subject key identifier: AD:B5:28:85:AF:D0:C1:BC:2C:C2:0B:BA:82:D4:31:02:1D:FF:80:D3 Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 013E Signing time: Sun 29 Jun 2025 03:28:17 +0000 Manifest this update: Sun 29 Jun 2025 03:28:17 +0000 Manifest next update: Sun 06 Jul 2025 03:28:17 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: SHMqDLQ+5rRLmdC0GBediDnwgCQPD0a7S3cwcN7Ok2c=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: QQ5QrwGTURdTMG/7o8+lIRwrf/ztbEh4ekM9cA/bz/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Jun 29 03:28:17 2025 GMT Not After : Jul 6 03:28:17 2025 GMT Subject: CN=6860b2d1-7f00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fc:4c:e1:fa:db:e2:db:e2:44:ab:a0:b7:14: eb:0d:a7:e5:e5:0f:22:ab:83:18:c9:ce:1c:58:06: b2:06:8e:ed:c6:26:0f:3a:7c:27:45:bd:ee:2a:d2: 53:4a:b6:b7:84:3c:ed:5a:e8:04:39:b2:6d:dd:bd: 74:10:02:4c:dd:b1:fd:26:b2:c3:b7:aa:59:1d:1c: ff:83:cd:19:46:53:92:93:39:a2:67:63:b3:4c:25: 7b:5c:88:cd:2d:9b:de:49:17:e9:c6:7a:3b:91:bc: 05:d8:3b:07:f0:84:94:5f:33:a5:27:74:b2:f8:7c: f5:76:d1:40:63:08:4f:b4:4f:24:da:22:86:d4:7e: 97:d0:6b:8b:9b:41:d8:b3:84:f5:c5:18:f9:5c:d5: f5:22:5a:dc:cf:0c:22:53:2d:43:58:37:b1:b0:25: 48:11:dd:39:f8:4b:32:88:22:1f:7e:06:f4:23:ad: 06:cb:fa:4d:e2:73:7d:7e:9f:a3:b7:df:5b:71:b0: 2c:73:9e:dc:7d:91:25:d7:b1:26:0e:0c:73:aa:3c: 38:ac:0d:a6:a8:43:d1:eb:1d:fb:7b:e8:ac:16:4c: 47:d5:52:26:4d:38:c0:9d:a5:da:79:92:3f:ee:78: 05:4a:90:8f:00:68:f4:a1:a9:fb:26:9b:79:f3:3e: 80:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:B5:28:85:AF:D0:C1:BC:2C:C2:0B:BA:82:D4:31:02:1D:FF:80:D3 X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4a:94:d8:44:e0:0e:ac:e3:25:27:a4:a0:bf:ba:5b:b6:60: c0:73:a1:d4:1f:a6:5c:2d:71:04:78:f8:9e:5b:21:d6:f0:00: 65:8b:1d:2c:15:66:cb:d1:db:3d:72:7e:62:36:cf:ce:79:c5: 0e:28:68:a7:54:10:b7:d5:74:25:96:6b:95:18:2e:3e:ab:29: 02:01:ef:3c:d6:2a:ae:ee:83:10:9d:8b:6c:aa:99:ac:8c:66: 10:d2:b0:fe:70:eb:d2:18:a1:45:0d:2c:af:76:88:a4:b9:61: 2b:81:87:28:59:0d:da:e6:b9:52:10:9c:7c:05:a4:9d:e3:10: d1:2d:fb:d2:c9:db:ca:09:c7:1a:a3:7d:f8:c7:25:7e:a5:3f: 16:7c:83:50:e9:0f:2f:35:9f:a2:f3:d8:40:96:f7:0a:5f:f4: 29:b0:d6:2e:4b:30:6a:8c:88:a6:9f:96:b0:d1:08:de:bf:cc: 08:6a:8a:86:39:27:78:82:4c:d1:06:ef:fe:53:86:97:b9:d5: b1:04:2f:90:ff:7f:76:fa:ff:e5:5a:73:e6:9a:1e:d9:4c:0c: d5:0b:37:27:8d:04:18:a3:e6:aa:e2:3c:9f:82:6a:04:05:a5: 08:5e:12:ea:e5:01:17:f1:85:27:e6:7f:88:7c:b7:27:ca:28: c6:40:ac:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjUwNjI5MDMyODE3WhcNMjUwNzA2MDMyODE3WjAYMRYwFAYD VQQDEw02ODYwYjJkMS03ZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PxM4frb4tviRKugtxTrDafl5Q8iq4MYyc4cWAayBo7txiYPOnwnRb3uKtJT Sra3hDztWugEObJt3b10EAJM3bH9JrLDt6pZHRz/g80ZRlOSkzmiZ2OzTCV7XIjN LZveSRfpxno7kbwF2DsH8ISUXzOlJ3Sy+Hz1dtFAYwhPtE8k2iKG1H6X0GuLm0HY s4T1xRj5XNX1IlrczwwiUy1DWDexsCVIEd05+EsyiCIffgb0I60Gy/pN4nN9fp+j t99bcbAsc57cfZEl17EmDgxzqjw4rA2mqEPR6x37e+isFkxH1VImTTjAnaXaeZI/ 7ngFSpCPAGj0oan7Jpt58z6A8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK21KIWv 0MG8LMILuoLUMQId/4DTMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvSpTYROAOrOMlJ6Sgv7pbtmDAc6HUH6ZcLXEEePieWyHW8ABlix0s FWbL0ds9cn5iNs/OecUOKGinVBC31XQllmuVGC4+qykCAe881iqu7oMQnYtsqpms jGYQ0rD+cOvSGKFFDSyvdoikuWErgYcoWQ3a5rlSEJx8BaSd4xDRLfvSydvKCcca o334xyV+pT8WfINQ6Q8vNZ+i89hAlvcKX/QpsNYuSzBqjIimn5aw0Qjev8wIaoqG OSd4gkzRBu/+U4aXudWxBC+Q/392+v/lWnPmmh7ZTAzVCzcnjQQYo+aq4jyfgmoE BaUIXhLq5QEX8YUn5n+IfLcnyijGQKy7 -----END CERTIFICATE-----Generated at Sun Jun 29 15:56:32 2025 by rpki-client