$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: a2l5vItY6x0gRtAMrJvfxH9MwmVarw+7IZ5BgAnRSwM= Subject key identifier: 7D:A0:5B:A8:57:8D:71:31:87:B5:66:39:57:EF:BC:D4:0C:5C:62:B8 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 0154 Signing time: Thu 03 Jul 2025 04:14:43 +0000 Manifest this update: Thu 03 Jul 2025 04:14:43 +0000 Manifest next update: Thu 10 Jul 2025 04:14:43 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: SCMQi50Y8q7VPKlgsMWebxjeAAe0FMFMMM/EVhRlpLE=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: RkTUA678ggeVul1y+nwQF7cmzTi/KyCvH3jL9UTL73c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804, serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: Jul 3 04:14:43 2025 GMT Not After : Jul 10 04:14:43 2025 GMT Subject: CN=686603b3-97cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2d:f2:23:e8:0a:b4:0e:00:af:69:24:c1:1e: 5f:62:74:d3:7e:1f:8c:66:2a:d3:5c:d1:c3:61:42: 49:fe:92:98:b1:83:c1:73:3f:87:96:fe:ed:a3:26: b3:7d:8b:6c:e3:03:cb:44:04:ca:43:fc:a0:4c:3e: 0a:27:cb:6b:01:37:42:90:72:41:50:19:8b:1e:87: 86:6f:d4:00:3e:d2:c2:48:0b:c9:da:c5:59:31:a5: 38:bf:24:05:18:e3:49:4a:8c:6c:8d:a7:56:f0:86: b8:ac:41:76:17:11:1f:3e:8c:ed:f8:be:f2:81:a6: 1b:52:a8:b9:7c:aa:7f:30:d2:e5:95:8b:5e:60:8f: 36:a9:1f:fa:17:3c:43:fd:3e:4c:3a:da:20:1b:bf: 57:42:4d:01:23:ae:8d:8f:0e:78:ef:2e:ac:a5:43: c0:e9:a0:0a:f7:46:2c:1a:1e:4b:02:f7:1a:48:4f: 7a:37:42:43:d8:83:f3:0e:af:3b:59:ee:3b:b3:24: be:a7:58:95:55:89:6d:2a:b7:1b:ba:9b:5b:27:d7: fa:89:8f:5b:0b:4a:24:bd:c8:5d:46:b0:72:7b:0e: 7d:0a:25:42:a8:3b:1c:4b:b5:f0:c1:b7:55:53:6f: c4:a4:8f:5d:c2:bf:c1:93:91:12:4a:96:6f:f8:81: 25:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A0:5B:A8:57:8D:71:31:87:B5:66:39:57:EF:BC:D4:0C:5C:62:B8 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:08:07:56:89:28:72:a0:b5:35:cd:a9:22:e5:24:11:a0:85: e3:59:cf:f1:d3:2b:c8:74:4f:d1:f4:45:12:5c:47:ea:5a:89: 69:e8:d3:4c:12:ce:40:ad:f2:16:53:9e:5b:87:02:0b:3d:7f: 7d:b0:2a:29:f5:3a:c6:ce:ff:cc:22:ed:6b:05:fa:9f:14:30: 66:75:a2:93:bf:88:8a:64:82:2a:15:42:0c:be:2f:52:e6:dd: 84:6c:15:cc:25:3c:f3:fb:09:2d:91:e2:38:f1:b6:a2:01:fc: a6:5e:95:21:a2:4a:96:8b:c1:da:81:4e:00:f5:c3:0f:96:76: 6d:63:95:0c:cb:f5:2e:de:67:49:0a:7e:6d:4c:fb:9b:da:ff: c4:9b:83:65:64:2b:50:55:bf:87:60:f2:62:66:d3:bf:cb:1c: 44:d0:46:1a:9f:2c:39:10:af:f0:0b:75:a7:0b:86:80:0e:6b: 28:b0:fd:16:b9:f6:92:b2:39:30:b2:9c:46:51:2a:76:a0:92: 0b:68:1a:fe:15:64:ea:df:72:f3:4e:a7:5e:4b:6f:45:33:10: 39:e9:21:af:4b:93:a2:b2:09:17:05:c7:fc:8a:4f:93:94:d4: 3c:b0:6c:ad:8c:43:b5:3d:48:02:63:81:cc:8b:bc:76:7e:6e: 09:c2:3b:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjUwNzAzMDQxNDQzWhcNMjUwNzEwMDQxNDQzWjAYMRYwFAYD VQQDEw02ODY2MDNiMy05N2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC3yI+gKtA4Ar2kkwR5fYnTTfh+MZirTXNHDYUJJ/pKYsYPBcz+Hlv7toyaz fYts4wPLRATKQ/ygTD4KJ8trATdCkHJBUBmLHoeGb9QAPtLCSAvJ2sVZMaU4vyQF GONJSoxsjadW8Ia4rEF2FxEfPozt+L7ygaYbUqi5fKp/MNLllYteYI82qR/6FzxD /T5MOtogG79XQk0BI66Njw547y6spUPA6aAK90YsGh5LAvcaSE96N0JD2IPzDq87 We47syS+p1iVVYltKrcbuptbJ9f6iY9bC0okvchdRrByew59CiVCqDscS7XwwbdV U2/EpI9dwr/Bk5ESSpZv+IElDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2gW6hX jXExh7VmOVfvvNQMXGK4MB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOCAdWiShyoLU1zaki5SQRoIXjWc/x0yvIdE/R9EUSXEfqWolp6NNM Es5ArfIWU55bhwILPX99sCop9TrGzv/MIu1rBfqfFDBmdaKTv4iKZIIqFUIMvi9S 5t2EbBXMJTzz+wktkeI48baiAfymXpUhokqWi8HagU4A9cMPlnZtY5UMy/Uu3mdJ Cn5tTPub2v/Em4NlZCtQVb+HYPJiZtO/yxxE0EYanyw5EK/wC3WnC4aADmsosP0W ufaSsjkwspxGUSp2oJILaBr+FWTq33LzTqdeS29FMxA56SGvS5OisgkXBcf8ik+T lNQ8sGytjEO1PUgCY4HMi7x2fm4Jwjuv -----END CERTIFICATE-----Generated at Fri Jul 4 08:26:02 2025 by rpki-client