$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft File: OG9viqHmbFJU6h5HiIwQP0U2Iio.mft (raw, json) Hash identifier: MuK54F2rpts9BNVoyx51yAObRjbpU/Bc6sEUnSoxru4= Subject key identifier: 0D:86:1A:83:69:58:00:87:3D:2D:87:63:D0:C4:39:26:5B:7A:A9:78 Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Certificate serial: 1A94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft Manifest number: 1A5E Signing time: Mon 30 Jun 2025 16:31:10 +0000 Manifest this update: Mon 30 Jun 2025 16:31:09 +0000 Manifest next update: Mon 07 Jul 2025 16:31:09 +0000 Files and hashes: 1: OG9viqHmbFJU6h5HiIwQP0U2Iio.crl (hash: p9ZNFDY2UWl8sMX4ZudEGX2bYma8z/qd4a/gd3l8emg=) 2: 6C897E54597B11EDB603273AC4F9AE02.roa (hash: tECuYiObkHM8+lQ9pAL6rPX0WAXD3+sDD+oT9RLjEFY=) 3: 6E44CE88597B11EDB603273AC4F9AE02.roa (hash: uSAHzBc+YHmREVNWY2QOkLWbks+7w1YPJ8vpHREo1FM=) 4: 63B4F05E482611E7ABDEF831C4F9AE02.roa (hash: UvxhutC//RajTrYueD0iUFQneJ/UQC0+drD5TAjJyFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6804 (0x1a94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB077, serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Validity Not Before: Jun 30 16:31:09 2025 GMT Not After : Jul 7 16:31:09 2025 GMT Subject: CN=6862bbcd-957f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:88:24:88:c4:56:9e:51:3b:9e:13:ad:0a:7f: eb:8e:f1:18:b3:1b:50:87:7d:35:66:f9:52:7e:5d: c3:05:e5:88:42:e7:7c:90:86:64:d3:49:79:92:a5: 7a:c3:e5:d5:97:85:b5:d4:8e:75:5e:27:6f:ee:e7: 4f:dc:a1:e2:cc:6f:db:fa:4b:bb:29:b9:54:c4:a9: 8f:b7:48:e3:7c:85:de:1d:1f:1e:25:88:91:c1:f7: 53:fb:7e:a3:56:93:a3:34:66:42:e8:c3:b3:ad:3f: 6e:5c:44:30:6c:34:6f:9e:7e:88:51:78:86:4f:ef: 4c:89:5c:1d:74:51:99:c3:5e:51:bc:d5:84:20:d4: cc:f9:0b:e8:96:fd:ac:a8:8c:50:d0:0c:6b:02:07: 69:94:42:ff:91:44:63:09:94:58:20:c5:71:b2:be: e7:73:40:96:d9:9b:2e:80:6e:24:ca:d5:bb:2e:9b: 6a:72:b1:54:f9:43:b9:03:b5:58:12:23:ab:20:ca: e4:76:66:cc:e5:cd:22:ea:02:0e:e9:35:7a:8d:6f: 43:ee:9a:8a:f7:57:2e:05:9b:37:34:31:05:d0:67: 97:20:59:15:69:28:f6:8c:91:1c:87:b1:b7:4f:eb: 24:03:62:08:1d:2a:c1:d2:1f:cb:2e:d6:0d:06:1c: 78:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:86:1A:83:69:58:00:87:3D:2D:87:63:D0:C4:39:26:5B:7A:A9:78 X509v3 Authority Key Identifier: keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:94:38:f2:f4:64:95:d0:51:c1:38:9b:47:f4:99:d4:73:30: ae:4d:cf:54:08:1f:a5:b2:60:54:4e:e9:56:ed:fd:3c:cb:5d: 97:a9:6c:8a:a3:cf:39:63:86:ea:fc:d1:8d:ad:e9:74:e8:44: 99:38:ee:44:97:5e:34:b7:8e:1e:01:8f:f4:8e:52:90:32:a5: e7:ba:30:85:c5:62:c9:e0:35:b0:52:49:99:31:37:a3:43:4d: c8:3d:d0:9d:a2:ca:61:64:6d:7c:d5:71:0f:40:70:a7:ef:dd: 54:6f:23:c7:cb:30:05:f9:96:c2:ce:6f:db:b3:e9:17:c4:f2: ae:5f:bb:7e:05:6d:7a:3c:de:13:e0:e4:b7:73:f1:d2:ce:3b: 39:6a:23:bd:11:6a:5a:a0:41:e2:e9:94:15:6d:51:e6:d8:29: c2:c4:33:1a:77:94:0b:ba:e8:4e:5d:14:e0:66:b8:fe:22:8e: ef:26:ea:22:dd:68:a1:c9:27:d9:f0:4d:da:86:7d:e2:f8:eb: 64:e2:43:39:c9:49:97:c7:a8:eb:c3:f7:89:63:2b:d5:bb:4b: 08:7f:21:12:3f:d7:5f:ac:e2:93:54:69:c9:86:67:1b:88:e5: c7:39:2f:33:03:e5:15:a5:6b:3e:1f:0d:b1:95:e6:19:ae:ac: 32:7f:4c:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwNzcxMTAvBgNVBAUTKDM4NkY2RjhBQTFFNjZDNTI1NEVBMUU0Nzg4OEMxMDNG NDUzNjIyMkEwHhcNMjUwNjMwMTYzMTA5WhcNMjUwNzA3MTYzMTA5WjAYMRYwFAYD VQQDEw02ODYyYmJjZC05NTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYgkiMRWnlE7nhOtCn/rjvEYsxtQh301ZvlSfl3DBeWIQud8kIZk00l5kqV6 w+XVl4W11I51Xidv7udP3KHizG/b+ku7KblUxKmPt0jjfIXeHR8eJYiRwfdT+36j VpOjNGZC6MOzrT9uXEQwbDRvnn6IUXiGT+9MiVwddFGZw15RvNWEINTM+Qvolv2s qIxQ0AxrAgdplEL/kURjCZRYIMVxsr7nc0CW2ZsugG4kytW7LptqcrFU+UO5A7VY EiOrIMrkdmbM5c0i6gIO6TV6jW9D7pqK91cuBZs3NDEF0GeXIFkVaSj2jJEch7G3 T+skA2IIHSrB0h/LLtYNBhx4FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2GGoNp WACHPS2HY9DEOSZbeql4MB8GA1UdIwQYMBaAFDhvb4qh5mxSVOoeR4iMED9FNiIq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA3Ny9EQjdCNzAwNjQ4 MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJGSlU2aDVIaUl3UVAwVTJJ aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HOXZpcUhtYkZKVTZoNUhpSXdRUDBVMklpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjA3Ny9EQjdCNzAwNjQ4MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJG SlU2aDVIaUl3UVAwVTJJaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYlDjy9GSV0FHBOJtH9JnUczCuTc9UCB+lsmBUTulW7f08y12XqWyK o885Y4bq/NGNrel06ESZOO5El140t44eAY/0jlKQMqXnujCFxWLJ4DWwUkmZMTej Q03IPdCdosphZG181XEPQHCn791UbyPHyzAF+ZbCzm/bs+kXxPKuX7t+BW16PN4T 4OS3c/HSzjs5aiO9EWpaoEHi6ZQVbVHm2CnCxDMad5QLuuhOXRTgZrj+Io7vJuoi 3WihySfZ8E3ahn3i+Otk4kM5yUmXx6jrw/eJYyvVu0sIfyESP9dfrOKTVGnJhmcb iOXHOS8zA+UVpWs+Hw2xleYZrqwyf0zu -----END CERTIFICATE-----Generated at Tue Jul 1 20:37:59 2025 by rpki-client