$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: dDw/kSr+5bbsyRhuUWItwxIMhkMbFGGA856GCagJQ5c= Subject key identifier: D3:7E:EC:1C:0A:52:4B:E4:51:98:E5:B9:EF:74:06:F7:7D:F2:61:07 Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 0149 Signing time: Tue 17 Jun 2025 03:16:08 +0000 Manifest this update: Tue 17 Jun 2025 03:16:07 +0000 Manifest next update: Tue 24 Jun 2025 03:16:07 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: O2ohrhR5p4AXYkDToFE7jNqBONGN/BM6cXGO4GGybIs=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: z3jylC3bOFS/QeMNqO6FEMdonfOGPmCY4+yy8XOk4xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:16:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Jun 17 03:16:07 2025 GMT Not After : Jun 24 03:16:07 2025 GMT Subject: CN=6850ddf7-cfb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f4:b2:ed:e2:0b:e8:61:b0:55:43:91:69:c4: e9:de:f1:c8:4c:7d:4b:bd:90:3c:96:80:9a:47:9e: b9:c5:18:5a:89:46:ab:60:c6:46:c6:a7:f4:c1:1b: df:3d:bf:5a:01:d7:d4:e8:94:46:97:54:30:d2:c7: c5:d2:5c:d1:52:1a:40:18:08:b3:52:9e:91:fe:fc: 5d:35:fe:5e:4c:a6:4d:a4:8c:47:a0:70:cd:bb:88: 62:a4:3b:45:e7:3a:ef:89:df:69:18:71:9e:8b:05: ed:b7:af:0c:d9:b8:6a:e2:6e:68:49:ea:eb:9e:e7: 32:7a:20:6a:82:a9:a5:b4:62:fb:aa:51:4f:96:9f: db:22:7b:70:84:e0:84:57:b5:11:18:dd:f1:c0:e3: 83:2a:cf:20:35:b9:c9:f9:cc:7c:d6:29:13:be:b1: 51:ac:3c:fa:7a:b1:b7:9e:4d:5e:cf:30:dc:b2:aa: d1:13:b8:3a:80:96:0c:0a:ce:91:81:b6:6e:c4:57: bc:a6:5b:58:f3:5f:ee:f7:3b:d7:0d:83:42:87:c8: 90:20:b6:3a:14:51:b8:5b:a3:aa:39:ac:b6:d5:57: f4:5a:0f:95:91:c0:16:bd:ea:1e:fd:f2:4f:6d:fc: 05:cf:b1:71:84:68:f1:c8:f9:13:d2:99:c4:74:61: a3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:7E:EC:1C:0A:52:4B:E4:51:98:E5:B9:EF:74:06:F7:7D:F2:61:07 X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:91:16:97:65:05:0c:31:65:73:c0:5d:16:71:39:87:5a:30: fe:d5:e4:27:47:b1:09:ee:4e:48:9f:ad:d9:c1:65:1c:b0:b7: 5f:cf:cc:8f:d8:d9:9c:e2:45:81:72:5d:15:d1:03:4e:0b:7d: 9a:e0:a0:72:50:fa:80:35:2e:42:fe:59:7d:40:69:16:54:7a: a1:4f:4a:80:2c:09:86:74:b2:69:a1:5f:d3:ed:d2:c4:83:16: 36:e7:eb:9e:69:93:fe:ca:ab:50:9f:a6:6d:16:0d:b1:f9:15: ad:51:60:2d:fc:94:af:0f:be:c4:e0:12:7d:dd:a7:38:d9:50: 9b:50:f3:9a:52:e8:8a:bc:cb:0b:12:3a:4b:6f:57:94:c6:92: 64:a8:3f:b6:d8:09:e0:3d:5e:4a:ba:45:8c:23:3e:c4:a7:5c: 70:24:d1:18:47:ae:6c:17:4f:a1:82:ef:d8:97:b5:5e:63:19: e6:8c:db:25:a8:a3:98:4f:ca:01:92:a6:eb:75:2e:62:37:66: b1:33:b1:43:65:fe:d7:84:b1:f7:29:ae:fc:ba:5d:99:1f:a4: eb:92:2e:bc:40:da:38:b7:a6:78:b0:76:db:92:fe:ae:83:ed: ae:9a:be:6d:8f:15:39:ad:2b:1c:2f:ba:d1:99:66:68:c6:45: 31:52:70:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjUwNjE3MDMxNjA3WhcNMjUwNjI0MDMxNjA3WjAYMRYwFAYD VQQDEw02ODUwZGRmNy1jZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufSy7eIL6GGwVUORacTp3vHITH1LvZA8loCaR565xRhaiUarYMZGxqf0wRvf Pb9aAdfU6JRGl1Qw0sfF0lzRUhpAGAizUp6R/vxdNf5eTKZNpIxHoHDNu4hipDtF 5zrvid9pGHGeiwXtt68M2bhq4m5oSerrnucyeiBqgqmltGL7qlFPlp/bIntwhOCE V7URGN3xwOODKs8gNbnJ+cx81ikTvrFRrDz6erG3nk1ezzDcsqrRE7g6gJYMCs6R gbZuxFe8pltY81/u9zvXDYNCh8iQILY6FFG4W6OqOay21Vf0Wg+VkcAWveoe/fJP bfwFz7FxhGjxyPkT0pnEdGGjjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNN+7BwK UkvkUZjlue90Bvd98mEHMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0kRaXZQUMMWVzwF0WcTmHWjD+1eQnR7EJ7k5In63ZwWUcsLdfz8yP 2Nmc4kWBcl0V0QNOC32a4KByUPqANS5C/ll9QGkWVHqhT0qALAmGdLJpoV/T7dLE gxY25+ueaZP+yqtQn6ZtFg2x+RWtUWAt/JSvD77E4BJ93ac42VCbUPOaUuiKvMsL EjpLb1eUxpJkqD+22AngPV5KukWMIz7Ep1xwJNEYR65sF0+hgu/Yl7VeYxnmjNsl qKOYT8oBkqbrdS5iN2axM7FDZf7XhLH3Ka78ul2ZH6Trki68QNo4t6Z4sHbbkv6u g+2umr5tjxU5rSscL7rRmWZoxkUxUnCw -----END CERTIFICATE-----Generated at Tue Jun 17 12:20:20 2025 by rpki-client