$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: GZuxfgRy8RerqFmNB4xWVZ0DqpFQOo8OJKujcCjag98= Subject key identifier: 3D:57:E7:42:FE:D1:94:6E:D8:1D:95:04:F4:AC:C2:1F:25:4F:1E:F8 Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 13C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 13BA Signing time: Wed 02 Jul 2025 17:08:43 +0000 Manifest this update: Wed 02 Jul 2025 17:08:43 +0000 Manifest next update: Wed 09 Jul 2025 17:08:43 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: t5ud71o7evjE7cQJx1RrJtsBYvObdUy5vM+H+9Ud6zM=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: M9FXaqMN3xRXkYSG9XQqHpw6Lro8+iU9Ajk3i3+nJw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5061 (0x13c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639, serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: Jul 2 17:08:43 2025 GMT Not After : Jul 9 17:08:43 2025 GMT Subject: CN=6865679b-afaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ac:03:94:c4:62:d9:db:4a:bf:ea:9e:9b:e7: 17:6d:ef:91:cf:b6:35:a3:6d:e3:78:8c:75:d4:28: 63:a2:98:13:ab:c4:82:5d:69:b5:a4:30:43:76:18: ef:af:80:21:4a:05:fa:4f:17:87:47:a9:b5:75:0d: 3e:35:d3:02:ad:f5:89:5b:04:df:98:05:e6:57:0c: 36:d8:87:eb:5e:2c:4d:81:86:5e:8d:c8:05:53:5d: 73:86:db:d2:d9:a8:cc:3a:0b:45:2d:84:75:ce:00: 31:80:d8:b3:ac:37:d0:f3:6c:5a:97:1b:e3:67:dd: 91:66:3f:47:b9:fe:76:1a:6a:ec:7c:ef:c0:de:f9: fb:b1:84:a1:e4:70:af:7d:5d:06:47:3b:d3:82:1e: d8:31:c9:10:59:c1:c1:19:66:87:6e:0f:90:df:c1: d9:8a:3c:f5:d9:3a:b0:ea:d1:f3:4a:81:4b:91:0b: 54:a8:9e:f7:60:1a:e8:18:e6:94:61:3a:3f:a0:d9: 6f:8d:7c:27:b8:e7:d5:d9:28:a2:ea:e7:9e:52:03: 88:96:ec:a9:cf:fb:61:54:ba:62:67:fa:5b:5c:02: 80:b6:8c:73:71:a6:7d:dc:b6:9e:b3:f2:27:65:88: cd:77:b0:74:1a:6e:e9:82:8a:6d:e0:1d:fb:1f:14: 31:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:57:E7:42:FE:D1:94:6E:D8:1D:95:04:F4:AC:C2:1F:25:4F:1E:F8 X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:b1:1a:8d:da:1f:15:0a:7e:3a:15:0a:8d:e6:37:80:cd:d5: 40:d7:78:72:1f:ea:de:f1:ef:42:64:b7:30:36:9e:09:7f:2d: 66:d0:7b:c9:4e:83:5e:b8:5a:db:66:44:10:0f:6e:6a:ec:72: 73:7f:78:5f:14:8b:75:2c:bb:0a:05:58:46:fb:48:46:d2:d2: a6:6c:44:16:0c:0f:22:5c:68:14:b3:55:66:e7:21:86:0f:d0: 1c:21:85:b1:d9:99:47:a7:89:d6:31:ae:48:a8:40:fb:15:24: 6c:d2:6c:57:ad:ee:93:f1:3b:c9:80:38:99:61:9e:64:ec:ba: fd:0e:51:1d:92:89:6f:8b:25:ff:d4:ca:10:7c:68:f0:38:c0: 32:e6:af:29:70:ba:dc:a5:d1:95:e7:a4:55:5c:11:b7:e7:35: b5:05:5b:f2:1a:e2:4f:de:b4:99:a8:f7:9b:93:cb:52:8d:66: 98:94:3f:35:77:f1:05:3e:82:8f:f8:89:e8:5d:b4:59:0d:c9: 52:17:39:d7:69:bd:c5:5e:5d:5e:de:5a:a5:0c:32:77:c8:bf: f9:61:0f:5d:69:af:8b:0e:69:c1:6d:e1:d0:d7:5c:cf:21:f5: 6d:f5:f3:ae:9a:dc:73:ec:15:1a:fc:98:27:a0:49:dc:af:ae: 41:55:ee:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjUwNzAyMTcwODQzWhcNMjUwNzA5MTcwODQzWjAYMRYwFAYD VQQDEw02ODY1Njc5Yi1hZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnawDlMRi2dtKv+qem+cXbe+Rz7Y1o23jeIx11ChjopgTq8SCXWm1pDBDdhjv r4AhSgX6TxeHR6m1dQ0+NdMCrfWJWwTfmAXmVww22IfrXixNgYZejcgFU11zhtvS 2ajMOgtFLYR1zgAxgNizrDfQ82xalxvjZ92RZj9Huf52GmrsfO/A3vn7sYSh5HCv fV0GRzvTgh7YMckQWcHBGWaHbg+Q38HZijz12Tqw6tHzSoFLkQtUqJ73YBroGOaU YTo/oNlvjXwnuOfV2Sii6ueeUgOIluypz/thVLpiZ/pbXAKAtoxzcaZ93Laes/In ZYjNd7B0Gm7pgopt4B37HxQx1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1X50L+ 0ZRu2B2VBPSswh8lTx74MB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJsRqN2h8VCn46FQqN5jeAzdVA13hyH+re8e9CZLcwNp4Jfy1m0HvJ ToNeuFrbZkQQD25q7HJzf3hfFIt1LLsKBVhG+0hG0tKmbEQWDA8iXGgUs1Vm5yGG D9AcIYWx2ZlHp4nWMa5IqED7FSRs0mxXre6T8TvJgDiZYZ5k7Lr9DlEdkolviyX/ 1MoQfGjwOMAy5q8pcLrcpdGV56RVXBG35zW1BVvyGuJP3rSZqPebk8tSjWaYlD81 d/EFPoKP+InoXbRZDclSFznXab3FXl1e3lqlDDJ3yL/5YQ9daa+LDmnBbeHQ11zP IfVt9fOumtxz7BUa/JgnoEncr65BVe52 -----END CERTIFICATE-----Generated at Thu Jul 3 10:34:38 2025 by rpki-client