$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: MVbFh2Rt9y1xelJa/4uBfKTsmgGOpJmpa7rzTu4zYRo= Subject key identifier: A1:D9:FD:D3:43:01:EC:54:C1:F8:E1:80:D4:B9:3B:4A:1A:84:55:80 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 026F Signing time: Sun 29 Jun 2025 01:16:07 +0000 Manifest this update: Sun 29 Jun 2025 01:16:07 +0000 Manifest next update: Sun 06 Jul 2025 01:16:07 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: n+hcQ5db567QjMIK8HYqCN1qEqapyXkQMoef9Yz/tnQ=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 00Bb5TLyF/J2CWzHDjxZA81Dz6rMiVp4bUBC6ncoYxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 01:16:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Jun 29 01:16:07 2025 GMT Not After : Jul 6 01:16:07 2025 GMT Subject: CN=686093d7-4cfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:17:c0:a2:13:74:8d:37:dd:22:f2:18:0b:ec: f5:b5:44:3c:92:9c:76:69:c1:9c:d4:e0:eb:a7:9d: 9f:49:5e:36:c8:b0:04:5f:61:f3:9a:f0:76:4e:c6: d4:76:c3:aa:73:3b:70:a3:ab:ca:ca:d9:c3:42:b3: 56:13:91:e3:ed:30:90:28:d6:be:b2:12:6f:9a:4b: 5b:b9:2a:a4:0f:31:f5:cf:7f:d3:d5:f6:aa:36:6b: 38:b2:02:f2:34:da:02:1d:cf:26:eb:7a:8f:24:44: 2b:6e:32:f2:b9:c7:d1:6d:f9:b3:86:d3:d6:33:6f: a6:54:91:0c:fc:23:b2:42:dc:24:9f:fd:3e:27:69: 37:b7:77:b2:47:fd:73:1f:7f:f8:80:96:47:b9:2a: 1f:92:8c:e8:ac:3b:a6:7c:c8:0b:7e:7c:ad:0b:75: d4:cc:70:a1:31:14:72:52:2a:5a:0c:5b:c8:5f:b2: be:d7:2b:90:e3:62:05:26:a4:66:20:c0:38:82:ed: be:c9:dc:b1:50:33:c9:0e:82:b9:90:0a:86:cb:99: bf:01:4e:fb:d4:d6:71:cf:b8:05:94:e5:a1:2d:e3: 71:df:37:85:d2:a4:c0:9d:d6:c9:35:5b:0e:7c:ed: 23:0a:29:0f:d1:53:37:26:08:3f:da:09:c6:94:98: f4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D9:FD:D3:43:01:EC:54:C1:F8:E1:80:D4:B9:3B:4A:1A:84:55:80 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:24:2b:3e:e6:dd:31:d0:38:c8:8f:e9:bb:9e:04:9e:1c:2e: 88:87:8a:62:5b:29:5d:67:2c:ed:7a:ac:ee:22:9e:94:7c:db: 2b:ca:f4:c8:c4:4b:a7:fd:2f:2e:9b:9f:6a:4d:8e:d3:af:91: c1:ab:29:b8:19:75:1e:35:c9:dc:eb:47:02:2f:3e:c4:59:89: 7e:e0:54:db:f6:0e:c3:7b:cb:fe:20:d1:05:6c:e1:b9:15:dc: 56:bf:c9:86:9d:70:ff:31:7d:02:96:0a:c1:af:f3:55:87:68: 7e:c5:ff:e1:1c:d5:51:a4:5e:fc:4a:43:e0:3b:00:86:71:7f: 97:ed:39:34:7d:a4:f3:2e:76:d6:27:9c:b7:65:6e:9c:17:2e: 48:4a:f1:87:f1:fc:3f:8b:0d:e9:c1:95:3b:9c:85:08:70:94: f6:1a:db:ba:6c:61:b4:85:eb:8b:42:20:6d:68:a8:c0:3b:31: 4a:4f:db:1c:95:d0:79:b3:60:31:43:87:0c:32:26:75:cf:c6: 72:10:1b:66:c0:57:94:c4:14:49:32:93:51:a8:49:52:28:c6: 37:c2:92:a9:7b:d1:1f:f0:8a:d1:2f:93:7e:a5:8c:7f:63:ea: b1:68:41:7d:20:6b:e8:23:9c:8b:ad:d8:be:a7:e1:38:d4:36: 1d:48:dc:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUwNjI5MDExNjA3WhcNMjUwNzA2MDExNjA3WjAYMRYwFAYD VQQDEw02ODYwOTNkNy00Y2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxfAohN0jTfdIvIYC+z1tUQ8kpx2acGc1ODrp52fSV42yLAEX2HzmvB2TsbU dsOqcztwo6vKytnDQrNWE5Hj7TCQKNa+shJvmktbuSqkDzH1z3/T1faqNms4sgLy NNoCHc8m63qPJEQrbjLyucfRbfmzhtPWM2+mVJEM/COyQtwkn/0+J2k3t3eyR/1z H3/4gJZHuSofkozorDumfMgLfnytC3XUzHChMRRyUipaDFvIX7K+1yuQ42IFJqRm IMA4gu2+ydyxUDPJDoK5kAqGy5m/AU771NZxz7gFlOWhLeNx3zeF0qTAndbJNVsO fO0jCikP0VM3Jgg/2gnGlJj03wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHZ/dND AexUwfjhgNS5O0oahFWAMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwJCs+5t0x0DjIj+m7ngSeHC6Ih4piWyldZyzteqzuIp6UfNsryvTI xEun/S8um59qTY7Tr5HBqym4GXUeNcnc60cCLz7EWYl+4FTb9g7De8v+INEFbOG5 FdxWv8mGnXD/MX0ClgrBr/NVh2h+xf/hHNVRpF78SkPgOwCGcX+X7Tk0faTzLnbW J5y3ZW6cFy5ISvGH8fw/iw3pwZU7nIUIcJT2Gtu6bGG0heuLQiBtaKjAOzFKT9sc ldB5s2AxQ4cMMiZ1z8ZyEBtmwFeUxBRJMpNRqElSKMY3wpKpe9Ef8IrRL5N+pYx/ Y+qxaEF9IGvoI5yLrdi+p+E41DYdSNww -----END CERTIFICATE-----Generated at Sun Jun 29 20:09:41 2025 by rpki-client