$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: Okh1UAgkkoael+0gPwzx4xd8nUjzMu58qtAI+wDRG58= Subject key identifier: B1:72:C8:35:64:13:E8:35:2E:56:C2:28:1D:76:55:1E:2A:A7:09:22 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 01F7 Signing time: Tue 01 Jul 2025 02:51:16 +0000 Manifest this update: Tue 01 Jul 2025 02:51:15 +0000 Manifest next update: Tue 08 Jul 2025 02:51:15 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: JD0Y+ALDIZhKo4RckplbGQwzNCG0XFg/1HjSOvQZk7o=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Jul 1 02:51:15 2025 GMT Not After : Jul 8 02:51:15 2025 GMT Subject: CN=68634d24-f0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:48:29:5c:b4:06:d4:9c:bd:d6:1f:4f:b7: f6:a0:02:eb:d8:48:0c:52:0e:0b:17:c8:92:3e:9b: 02:d4:80:a1:79:f3:d2:3f:ce:85:5a:fb:07:75:e0: 25:ca:be:9e:66:4a:25:f8:dd:61:ec:73:e4:5c:d5: eb:e7:79:29:b2:a4:7a:37:d8:0b:c4:d5:6d:92:d2: e4:af:16:95:7e:f1:38:5e:e0:85:ce:06:c0:6a:22: a9:0a:f5:1d:a2:5c:90:5a:5e:6a:47:d1:b3:86:4e: 33:a9:36:6e:34:d0:5e:35:91:13:06:42:ab:70:18: 5e:fd:e5:a3:da:b6:0a:8f:cb:fc:04:1e:fe:f5:4a: 48:99:e6:03:6f:30:b8:4f:88:8c:20:a3:be:30:5d: 08:c2:c4:2b:e5:8d:da:16:18:95:80:9d:e1:8d:c4: 82:89:68:25:c9:e2:24:0d:ab:e2:8a:aa:e0:6b:ce: 61:3a:9b:cf:d7:05:37:04:68:f6:c6:bc:f6:71:07: 69:72:81:47:b7:6a:74:c2:92:e9:fa:c3:ec:7f:9d: f7:a4:c4:5b:0b:44:be:fb:51:45:2b:85:1a:ea:93: 67:5f:7f:a5:55:7b:b9:68:41:c7:cf:aa:8c:71:7a: d1:51:fa:5b:4b:b5:a0:48:bf:eb:66:c1:dc:2a:7b: 79:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:72:C8:35:64:13:E8:35:2E:56:C2:28:1D:76:55:1E:2A:A7:09:22 X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:23:a8:b8:0d:70:97:27:a0:10:2f:7d:57:bb:e9:b3:83:93: e7:e9:31:9d:be:d2:70:36:58:1f:2c:73:e3:ed:36:d4:0d:cf: 65:0f:14:05:c4:44:f0:40:ac:36:c0:bb:dd:3f:37:19:ee:3c: 45:df:3c:7f:35:69:8b:74:2e:4c:86:81:30:d5:56:50:fd:84: 54:ec:d9:33:a4:3d:6b:8c:72:d4:6f:ab:91:d4:7c:b2:70:8b: e8:2e:cc:8f:da:aa:0d:23:a3:a6:e5:0d:6f:70:84:5b:ab:8a: b4:56:b6:24:9e:ec:1f:26:2b:cf:9f:e3:a5:52:a1:87:b8:81: 58:24:11:e8:95:29:1c:f9:71:b8:ff:00:a6:fc:18:ef:43:24: c3:a1:c2:4e:75:29:bd:bf:ee:7e:75:73:36:8c:bc:0f:cb:18: a8:6e:1c:fe:0b:a8:1f:32:d9:66:6a:fc:81:8b:4b:2d:2a:de: 90:1c:7c:d4:0d:6f:5c:f2:9b:ab:57:85:39:59:70:ec:57:3c: 54:9b:00:f5:66:89:e0:20:19:95:87:d9:43:ad:9f:c4:a4:dd: da:2c:80:03:a3:22:13:b9:e5:d5:59:06:eb:18:93:5e:47:af: 1e:5a:47:25:e3:8d:5a:b1:31:bd:91:1a:77:b0:0d:4c:85:86: df:ec:3a:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUwNzAxMDI1MTE1WhcNMjUwNzA4MDI1MTE1WjAYMRYwFAYD VQQDEw02ODYzNGQyNC1mMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAxIKVy0BtScvdYfT7f2oALr2EgMUg4LF8iSPpsC1IChefPSP86FWvsHdeAl yr6eZkol+N1h7HPkXNXr53kpsqR6N9gLxNVtktLkrxaVfvE4XuCFzgbAaiKpCvUd olyQWl5qR9Gzhk4zqTZuNNBeNZETBkKrcBhe/eWj2rYKj8v8BB7+9UpImeYDbzC4 T4iMIKO+MF0IwsQr5Y3aFhiVgJ3hjcSCiWglyeIkDaviiqrga85hOpvP1wU3BGj2 xrz2cQdpcoFHt2p0wpLp+sPsf533pMRbC0S++1FFK4Ua6pNnX3+lVXu5aEHHz6qM cXrRUfpbS7WgSL/rZsHcKnt5CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFyyDVk E+g1LlbCKB12VR4qpwkiMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEI6i4DXCXJ6AQL31Xu+mzg5Pn6TGdvtJwNlgfLHPj7TbUDc9lDxQF xETwQKw2wLvdPzcZ7jxF3zx/NWmLdC5MhoEw1VZQ/YRU7NkzpD1rjHLUb6uR1Hyy cIvoLsyP2qoNI6Om5Q1vcIRbq4q0VrYknuwfJivPn+OlUqGHuIFYJBHolSkc+XG4 /wCm/BjvQyTDocJOdSm9v+5+dXM2jLwPyxiobhz+C6gfMtlmavyBi0stKt6QHHzU DW9c8purV4U5WXDsVzxUmwD1ZongIBmVh9lDrZ/EpN3aLIADoyITueXVWQbrGJNe R68eWkcl441asTG9kRp3sA1MhYbf7Dos -----END CERTIFICATE-----Generated at Thu Jul 3 00:52:27 2025 by rpki-client