$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: OWxefWodY2Rz0SVE/fJdO7ojye+QhcLHCFgf14jrnEA= Subject key identifier: 15:2A:E8:3C:79:F1:52:0C:28:F3:84:05:46:12:43:82:7F:99:7F:79 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 07F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 07E8 Signing time: Wed 02 Jul 2025 21:16:21 +0000 Manifest this update: Wed 02 Jul 2025 21:16:21 +0000 Manifest next update: Wed 09 Jul 2025 21:16:21 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: nW5IIFqS46BFH72mizSe/UFEaVomjcygH/Nm/8BccMY=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Jul 2 21:16:21 2025 GMT Not After : Jul 9 21:16:21 2025 GMT Subject: CN=6865a1a5-7304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:23:31:60:0b:e9:62:0e:01:4b:cf:d4:a5:d9: 9a:31:5e:93:8c:63:cc:e9:c8:57:1c:bb:10:e7:ce: 3d:8e:17:e3:dd:f1:43:37:f2:ce:c3:15:83:69:82: af:7e:4a:f4:42:d3:e3:01:83:c9:35:da:47:af:fc: 1f:a1:f7:b0:de:74:9c:25:52:dd:1d:cc:e0:2d:10: 47:4c:22:9f:bf:65:b3:2e:6e:22:93:75:2b:0e:84: 7d:73:e4:59:fb:be:42:d1:a5:86:9d:fe:dc:94:4a: bf:5e:1b:67:df:27:8c:1c:aa:72:b1:44:98:9f:49: 34:11:70:f6:dd:86:8d:dc:8f:b8:7a:9e:e6:05:07: 87:1a:b9:7c:9d:4d:a2:f3:fc:d8:5d:a5:b1:ac:f8: ef:6c:8d:45:8a:f1:e2:8e:09:cf:e6:2d:53:32:90: bc:96:71:69:ce:78:d4:bd:ac:68:11:8d:df:ee:5d: 11:1a:1b:82:f9:46:39:8c:72:21:05:e4:bd:e9:41: 1f:30:f4:09:de:21:c7:d3:f6:70:00:93:82:48:e0: 9e:39:e3:2d:30:93:dd:6c:0b:69:51:ad:aa:46:8c: 91:7f:59:36:da:9e:d6:a0:66:81:3c:4f:89:f0:1a: 6a:e8:3c:60:c5:9d:38:a2:d3:86:a4:92:be:1a:f8: 2f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:2A:E8:3C:79:F1:52:0C:28:F3:84:05:46:12:43:82:7F:99:7F:79 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:5d:e2:1e:cf:24:87:dc:af:d8:ac:f6:1b:14:97:49:73:4c: 53:62:db:ba:10:6c:0b:c4:39:2d:ad:f8:73:aa:0e:5f:1a:06: 7e:a0:1a:47:ae:5d:7c:29:a6:40:78:be:12:5c:9d:ce:2a:0f: d3:27:3b:7b:28:71:bb:75:ca:64:af:d3:58:49:58:ac:e4:17: 54:7e:cb:8e:1c:89:72:95:1e:23:1a:49:db:24:dc:6c:1b:91: c9:4f:a6:f6:b1:67:1f:88:d5:3a:1c:16:48:b0:c1:12:49:13: 7d:7a:02:ab:b2:ad:66:2e:35:73:9a:cd:13:32:53:52:ed:91: 4f:8d:26:07:95:03:5a:cf:7e:46:dd:9c:9c:35:b3:47:56:8e: ef:a1:00:23:fd:af:06:ec:43:18:48:b2:a7:74:93:f0:63:a2: 45:7b:8b:16:36:9e:60:06:cc:57:05:02:7a:b5:e7:9f:d5:73: b4:14:22:e3:e3:6c:a9:1a:39:3c:73:cc:15:ea:f0:6c:40:4d: c2:d6:a8:af:47:db:db:8d:6a:e8:48:84:8f:c5:08:66:37:95: 73:d7:99:1f:07:51:0c:45:da:be:e0:ad:54:00:b6:90:a2:e8: ba:32:26:da:84:70:c8:d7:4d:08:44:cc:12:e3:94:21:4b:71: a6:85:b9:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUwNzAyMjExNjIxWhcNMjUwNzA5MjExNjIxWjAYMRYwFAYD VQQDEw02ODY1YTFhNS03MzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyMxYAvpYg4BS8/UpdmaMV6TjGPM6chXHLsQ5849jhfj3fFDN/LOwxWDaYKv fkr0QtPjAYPJNdpHr/wfofew3nScJVLdHczgLRBHTCKfv2WzLm4ik3UrDoR9c+RZ +75C0aWGnf7clEq/Xhtn3yeMHKpysUSYn0k0EXD23YaN3I+4ep7mBQeHGrl8nU2i 8/zYXaWxrPjvbI1FivHijgnP5i1TMpC8lnFpznjUvaxoEY3f7l0RGhuC+UY5jHIh BeS96UEfMPQJ3iHH0/ZwAJOCSOCeOeMtMJPdbAtpUa2qRoyRf1k22p7WoGaBPE+J 8Bpq6DxgxZ04otOGpJK+GvgvMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUq6Dx5 8VIMKPOEBUYSQ4J/mX95MB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDXeIezySH3K/YrPYbFJdJc0xTYtu6EGwLxDktrfhzqg5fGgZ+oBpH rl18KaZAeL4SXJ3OKg/TJzt7KHG7dcpkr9NYSVis5BdUfsuOHIlylR4jGknbJNxs G5HJT6b2sWcfiNU6HBZIsMESSRN9egKrsq1mLjVzms0TMlNS7ZFPjSYHlQNaz35G 3ZycNbNHVo7voQAj/a8G7EMYSLKndJPwY6JFe4sWNp5gBsxXBQJ6teef1XO0FCLj 42ypGjk8c8wV6vBsQE3C1qivR9vbjWroSISPxQhmN5Vz15kfB1EMRdq+4K1UALaQ oui6MibahHDI100IRMwS45QhS3GmhbnZ -----END CERTIFICATE-----Generated at Thu Jul 3 10:14:28 2025 by rpki-client