$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: 7GWiG5HU1gqHc2hL4ptf2y692DAMvEDg1kDq9XxKATs= Subject key identifier: 48:0F:AC:CA:03:59:B4:8D:F9:12:7C:DB:52:6F:9C:67:3B:2D:D7:5E Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: 53 Signing time: Sun 29 Jun 2025 06:26:01 +0000 Manifest this update: Sun 29 Jun 2025 06:26:01 +0000 Manifest next update: Sun 06 Jul 2025 06:26:01 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: Q9MF7sr7Scn4aGFfoXTpwq9LICdNBUJhQrAgBBmF31Q=) 2: 7F9864BC278511F08A309E80C4F9AE02.roa (hash: Qmy+i9C5Rc4mKmMkW3mFXP5ni+MgnYfnd/vlrjppwOw=) 3: 965254F8278811F09217002CC4F9AE02.roa (hash: 43x78k+dzhsv7ZCDVrgKApUESFB1ajmPRMXQlcEBmxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Jun 29 06:26:01 2025 GMT Not After : Jul 6 06:26:01 2025 GMT Subject: CN=6860dc79-e2d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6a:73:ee:9e:ec:0e:34:64:6f:6e:4d:cd:a6: db:fe:60:eb:ce:dd:2c:63:af:b5:5e:3d:2a:41:3e: e5:3b:74:2b:3d:83:ec:d3:12:4f:fa:f6:14:e7:1c: a9:df:ca:7e:70:0a:c9:92:8f:a1:2c:23:c7:7a:a4: 2e:07:24:36:05:8d:ac:0f:e3:30:33:e4:0e:c9:9d: 6d:94:e3:bd:06:23:a0:38:f5:58:90:c8:6e:b3:4f: b9:9f:e8:1a:59:bd:dc:23:d6:37:36:f6:9e:64:ad: e8:42:15:4d:8b:1a:43:1c:a8:7f:a9:87:73:41:a7: 4b:10:b6:b0:69:27:1a:b2:60:9f:53:f5:f2:11:7d: 6e:6b:27:59:f1:3f:95:07:6e:d7:80:2d:0e:39:78: 60:80:1d:71:c1:aa:ed:fb:c9:c4:16:5d:43:1d:d1: 05:58:13:55:92:a0:99:84:6c:0b:2e:8b:d3:ec:8e: 0f:2e:90:42:21:37:80:92:71:27:9e:1e:6a:8d:cc: cd:a4:30:0e:e7:68:46:0f:65:8d:ab:68:99:ee:6c: 32:0d:bd:db:61:00:e2:34:c6:8c:82:46:2a:ba:84: 15:f4:73:96:06:01:a6:f8:fc:d8:b6:2f:ee:99:8b: ad:c4:d7:53:4e:35:9b:91:cd:a1:2d:57:ec:f9:e2: ca:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0F:AC:CA:03:59:B4:8D:F9:12:7C:DB:52:6F:9C:67:3B:2D:D7:5E X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:53:55:85:91:29:47:07:23:34:3c:84:9c:40:b7:de:27:98: 76:c6:ce:95:aa:0a:59:c4:c4:55:7b:80:28:67:92:61:08:72: a2:6e:5b:86:c2:bc:57:2c:e1:8a:5f:b5:86:0c:9c:79:f5:95: a8:27:50:7a:95:fa:29:11:68:ca:c1:62:37:a5:db:07:67:fe: 9c:fe:20:61:ff:5a:75:ef:8f:27:f7:75:96:1d:00:31:f8:79: 2a:2e:b1:a8:1c:23:d3:ca:9d:42:dd:28:e2:13:5f:6c:03:99: 77:69:79:4f:df:5d:6e:26:96:b2:0c:11:15:00:4a:e5:3c:de: 66:ee:c8:3b:00:41:83:e1:7a:12:47:07:10:bb:49:01:68:f1: 70:23:cf:a0:10:d2:e2:d1:6f:30:be:86:f9:89:59:46:95:1d: f5:1e:9c:ea:1f:f5:d2:c5:74:3f:cf:fa:8a:23:89:41:ca:17: 7f:25:31:a8:a3:bd:34:a2:1a:5f:42:2e:1d:82:eb:fb:12:50: 96:67:cf:5c:d3:63:fd:9b:d3:cc:4e:75:dd:12:57:56:54:91: cc:02:63:6e:f8:f3:e1:77:59:a2:2f:15:9d:cc:bf:20:24:ca: 16:c3:5e:0c:50:42:ec:77:48:06:86:7f:9f:94:6c:dd:36:98: 26:d2:92:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjY4QzExMC8GA1UEBRMoQTIyODhGODk2NEQ2MTY5QTg3OTVGMkY0RUYwNUUwRDVF NkUxM0IwOTAeFw0yNTA2MjkwNjI2MDFaFw0yNTA3MDYwNjI2MDFaMBgxFjAUBgNV BAMTDTY4NjBkYzc5LWUyZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6anPunuwONGRvbk3Nptv+YOvO3Sxjr7VePSpBPuU7dCs9g+zTEk/69hTnHKnf yn5wCsmSj6EsI8d6pC4HJDYFjawP4zAz5A7JnW2U470GI6A49ViQyG6zT7mf6BpZ vdwj1jc29p5krehCFU2LGkMcqH+ph3NBp0sQtrBpJxqyYJ9T9fIRfW5rJ1nxP5UH bteALQ45eGCAHXHBqu37ycQWXUMd0QVYE1WSoJmEbAsui9Psjg8ukEIhN4CScSee HmqNzM2kMA7naEYPZY2raJnubDINvdthAOI0xoyCRiq6hBX0c5YGAab4/Ni2L+6Z i63E11NONZuRzaEtV+z54srxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSA+sygNZ tI35EnzbUm+cZzst114wHwYDVR0jBBgwFoAUoiiPiWTWFpqHlfL07wXg1ebhOwkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNjhDLzE3RDEwM0E4RUFC MjExRUY4NDZGMTMzN0M0RjlBRTAyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2lpUGlXVFdGcHFIbGZMMDd3WGcxZWJoT3drLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC NjhDLzE3RDEwM0E4RUFCMjExRUY4NDZGMTMzN0M0RjlBRTAyL29paVBpV1RXRnBx SGxmTDA3d1hnMWViaE93ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHVTVYWRKUcHIzQ8hJxAt94nmHbGzpWqClnExFV7gChnkmEIcqJuW4bC vFcs4YpftYYMnHn1lagnUHqV+ikRaMrBYjel2wdn/pz+IGH/WnXvjyf3dZYdADH4 eSousagcI9PKnULdKOITX2wDmXdpeU/fXW4mlrIMERUASuU83mbuyDsAQYPhehJH BxC7SQFo8XAjz6AQ0uLRbzC+hvmJWUaVHfUenOof9dLFdD/P+oojiUHKF38lMaij vTSiGl9CLh2C6/sSUJZnz1zTY/2b08xOdd0SV1ZUkcwCY2748+F3WaIvFZ3MvyAk yhbDXgxQQux3SAaGf5+UbN02mCbSkj0= -----END CERTIFICATE-----Generated at Mon Jun 30 17:39:56 2025 by rpki-client