$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft File: Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft (raw, json) Hash identifier: GwMDOHNjGY9hyWO9OTolenbbBlcOz7Y7G8eUUfD/LH8= Subject key identifier: 7A:D1:4C:94:36:64:16:F9:44:85:66:04:F3:EA:D9:F2:C0:3F:19:52 Authority key identifier: 3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D Certificate issuer: /CN=A91F8E3D/serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Certificate serial: 0482 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft Manifest number: 046F Signing time: Thu 03 Jul 2025 00:32:43 +0000 Manifest this update: Thu 03 Jul 2025 00:32:42 +0000 Manifest next update: Thu 10 Jul 2025 00:32:42 +0000 Files and hashes: 1: Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl (hash: /yYB05SWHXUUtUcEK3S9GwSx7V4+AKMqbRIz+yC0Xao=) 2: FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa (hash: p5RWbmc3OrbusuGd87uXwNNKECyHXGRqb7DFbO3Zzjc=) 3: 451AF9F2E3DC11ECB9410B43C4F9AE02.roa (hash: PvyXkvk9rsG65qDLSBUO/zxV1I1w1ViEmt67rzLWH3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1154 (0x482) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E3D, serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Validity Not Before: Jul 3 00:32:42 2025 GMT Not After : Jul 10 00:32:42 2025 GMT Subject: CN=6865cfaa-d44a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f1:3f:a7:44:b0:c9:93:c0:b9:07:87:af:a1: 09:6f:69:98:62:bd:a8:fe:95:8e:bc:32:f7:26:00: a9:d9:a7:2e:84:ad:cf:3a:f7:46:b1:2d:e2:43:35: 06:83:78:61:aa:5b:8c:09:ef:11:c3:1b:0c:2b:f1: bf:1f:52:2e:39:9b:73:fb:3d:34:aa:b4:21:88:57: 75:71:35:7d:e1:11:dc:57:43:aa:45:3b:38:3f:58: 54:2f:73:3a:7e:d9:73:e2:d2:a3:3b:ee:5b:e7:d3: 36:37:4d:9d:b4:ec:5e:e9:1b:65:18:3c:4b:76:1c: f2:d6:35:cb:e7:a3:bf:24:0b:c2:0a:69:a1:34:3a: 69:55:72:0e:fb:cb:9e:d3:da:fa:95:35:b3:3c:70: a1:8a:6e:5f:93:b1:6d:cd:f0:ad:f4:b4:44:55:f6: 10:78:7b:85:57:04:80:e8:a4:43:2e:4d:e8:6b:3c: 96:a7:25:e8:fb:d4:e0:79:1c:3e:28:6b:8a:74:fe: 72:5a:7c:ea:05:6a:06:7a:81:66:0c:06:3a:5b:7c: 00:76:20:f9:3b:2e:a8:78:e1:30:1a:88:c1:0a:96: b8:8d:32:d7:e1:2a:1c:62:43:da:0c:17:51:61:0b: 17:9f:eb:61:d7:13:cd:da:c9:44:3f:c5:75:af:17: 51:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D1:4C:94:36:64:16:F9:44:85:66:04:F3:EA:D9:F2:C0:3F:19:52 X509v3 Authority Key Identifier: keyid:3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:79:a5:46:86:68:23:f9:c0:82:e3:3e:76:2c:cb:14:2b:91: 56:43:91:1c:cf:e1:8e:d5:29:3c:95:cd:8b:8b:30:2a:ec:65: 83:23:bc:34:0d:88:83:78:2e:61:ac:d3:43:3c:c3:43:04:1d: d5:63:61:34:ae:b5:f7:e6:f0:68:a3:dc:f8:84:69:ac:db:52: 2c:1e:23:40:df:ad:30:6f:79:55:4e:32:9b:a2:f2:1c:a2:94: c7:2f:05:b5:76:9c:ff:b4:01:8b:7e:42:d9:4c:8b:28:4d:0f: fe:f2:5c:5d:15:0f:9c:12:33:33:aa:8b:36:5c:85:ca:fe:36: 8d:62:bf:ce:4c:48:c5:ce:64:21:f0:4d:8f:df:e9:fd:7d:18: 6c:e1:1d:4e:07:ed:f2:5a:41:70:a0:13:a5:f2:46:3e:b9:91: c8:db:2b:24:04:e5:a2:37:f7:e0:0c:16:48:8e:19:8c:4c:0f: d4:c8:b7:66:7b:e5:24:d6:29:ed:31:de:a3:a8:6c:f5:54:17: 01:dd:71:e0:f4:82:96:93:ea:31:24:29:9d:e1:75:f7:2e:a1: ef:7b:d8:04:b2:92:92:bf:b9:f6:0e:3c:2a:07:ef:4e:0e:90: 91:ea:64:98:e8:33:4b:6f:80:d0:7e:77:5c:6b:23:e6:2e:4e: 31:5e:42:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFM0QxMTAvBgNVBAUTKDNBQUZGQkI3RUE0QTYwRDc3QkI0NDI4NEFDQkYyNUMz OThCQTlBNkQwHhcNMjUwNzAzMDAzMjQyWhcNMjUwNzEwMDAzMjQyWjAYMRYwFAYD VQQDEw02ODY1Y2ZhYS1kNDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvE/p0SwyZPAuQeHr6EJb2mYYr2o/pWOvDL3JgCp2acuhK3POvdGsS3iQzUG g3hhqluMCe8RwxsMK/G/H1IuOZtz+z00qrQhiFd1cTV94RHcV0OqRTs4P1hUL3M6 ftlz4tKjO+5b59M2N02dtOxe6RtlGDxLdhzy1jXL56O/JAvCCmmhNDppVXIO+8ue 09r6lTWzPHChim5fk7FtzfCt9LREVfYQeHuFVwSA6KRDLk3oazyWpyXo+9TgeRw+ KGuKdP5yWnzqBWoGeoFmDAY6W3wAdiD5Oy6oeOEwGojBCpa4jTLX4SocYkPaDBdR YQsXn+th1xPN2slEP8V1rxdRcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrRTJQ2 ZBb5RIVmBPPq2fLAPxlSMB8GA1UdIwQYMBaAFDqv+7fqSmDXe7RChKy/JcOYuppt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUzRC8wQUI0Mzg2QTU4 NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lOZDd0RUtFckw4bHc1aTZt bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xXzd0LXBLWU5kN3RFS0VyTDhsdzVpNm1tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUzRC8wQUI0Mzg2QTU4NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lO ZDd0RUtFckw4bHc1aTZtbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAceaVGhmgj+cCC4z52LMsUK5FWQ5Ecz+GO1Sk8lc2LizAq7GWDI7w0 DYiDeC5hrNNDPMNDBB3VY2E0rrX35vBoo9z4hGms21IsHiNA360wb3lVTjKbovIc opTHLwW1dpz/tAGLfkLZTIsoTQ/+8lxdFQ+cEjMzqos2XIXK/jaNYr/OTEjFzmQh 8E2P3+n9fRhs4R1OB+3yWkFwoBOl8kY+uZHI2yskBOWiN/fgDBZIjhmMTA/UyLdm e+Uk1intMd6jqGz1VBcB3XHg9IKWk+oxJCmd4XX3LqHve9gEspKSv7n2DjwqB+9O DpCR6mSY6DNLb4DQfndcayPmLk4xXkJX -----END CERTIFICATE-----Generated at Thu Jul 3 12:29:43 2025 by rpki-client