$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: jZ8/mgkraWMaAObDDWcyak06SND7qzYqVRugbBrQOuo= Subject key identifier: B3:DD:37:7D:D4:C0:68:6C:23:77:DF:24:44:15:A5:32:D1:10:FD:7B Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: FE Signing time: Thu 19 Jun 2025 04:30:45 +0000 Manifest this update: Thu 19 Jun 2025 04:30:45 +0000 Manifest next update: Thu 26 Jun 2025 04:30:45 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: Y+lD3cLIQhSptF+1U7L58pemdno1ydTGp1/H/9kjl0Q=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: Emtdf6B32dUyriQRU+z92VLtRvSD7HNe+9gqK+EmXtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1, serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Jun 19 04:30:45 2025 GMT Not After : Jun 26 04:30:45 2025 GMT Subject: CN=68539275-c8c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:61:cc:15:ec:2c:3e:35:ca:52:8b:f6:57:53: d7:77:1d:cc:9f:ac:4b:5a:15:28:05:b8:5c:3a:ce: 5a:82:c7:a4:3f:c3:88:d1:76:0d:ce:f8:5d:23:23: 09:1c:ee:e0:73:ff:d3:73:c4:2c:88:f5:bc:53:69: f5:f3:38:48:ba:da:04:2e:a5:18:17:76:8a:21:5e: 31:70:0d:66:f1:67:2c:19:1c:cd:11:03:9c:c3:32: 83:1d:01:11:7c:17:8d:cb:68:aa:f1:70:de:96:b9: fd:42:4d:f3:51:1e:e7:3a:d2:3d:65:13:2c:ab:cd: 43:f7:a9:4d:f6:74:37:53:be:4c:0b:68:dc:92:3f: de:61:d1:ba:f5:aa:14:15:76:c9:3e:e0:73:f7:9e: 86:10:32:12:d3:23:91:52:d8:bb:94:f4:39:b1:d3: 62:40:74:37:0f:4b:00:db:e1:38:5a:3b:04:58:1a: 10:1e:b4:fb:23:83:fd:cd:09:87:39:ca:e4:01:e4: c5:25:d9:f7:40:ab:2d:1f:7e:66:c2:78:cf:7a:3b: e0:fa:96:dc:42:75:25:3e:0e:6c:88:51:8a:bb:9d: 43:fc:b1:47:d7:49:19:96:eb:c3:a5:b6:d7:6c:2d: 59:34:0c:ae:5b:bf:b4:59:b5:2c:45:44:ec:f2:af: 2e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:DD:37:7D:D4:C0:68:6C:23:77:DF:24:44:15:A5:32:D1:10:FD:7B X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:0f:8a:a0:21:98:ad:6f:4f:0f:ef:71:e2:e9:9a:e0:a8:22: 69:34:db:eb:31:43:76:f9:75:a7:70:6c:0f:86:e6:4e:dc:09: 3d:5f:9e:b4:76:87:cf:23:10:c4:3c:36:f2:54:22:ee:9d:9b: 96:fb:5a:2b:ce:93:39:30:2a:91:60:5e:00:d0:8f:32:23:1f: f6:ae:d7:19:92:d3:4e:a6:c8:26:55:16:42:af:35:fe:ce:7f: 19:1a:0d:c1:d1:6d:88:1b:7a:5f:db:c9:68:dd:d7:60:fb:e8: 90:a0:35:28:00:10:23:25:5c:e3:f5:71:08:52:75:a1:48:a2: e0:12:5b:9e:c8:8d:02:a2:b0:88:da:b2:fe:ab:cd:3c:ce:0d: ba:70:d1:ef:c1:1c:b5:61:94:c0:ac:33:40:fc:41:f1:a9:27: bf:b0:b7:94:3c:24:fe:d0:28:5c:6f:ca:81:0a:11:18:d2:c1: ab:e6:29:28:b0:d2:31:4f:15:92:d2:71:13:a5:08:ac:3a:3a: 15:d3:cd:f3:3f:c1:75:c8:68:2d:e3:b6:e0:d9:14:24:4a:df: bd:53:39:28:c7:a1:71:38:f5:0c:e3:b5:a9:0d:71:5d:9a:4d: cb:77:7a:eb:f0:1c:27:2b:7b:3b:15:ca:c4:f4:bc:1b:a3:ab: cb:04:f9:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjUwNjE5MDQzMDQ1WhcNMjUwNjI2MDQzMDQ1WjAYMRYwFAYD VQQDEw02ODUzOTI3NS1jOGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGHMFewsPjXKUov2V1PXdx3Mn6xLWhUoBbhcOs5agsekP8OI0XYNzvhdIyMJ HO7gc//Tc8QsiPW8U2n18zhIutoELqUYF3aKIV4xcA1m8WcsGRzNEQOcwzKDHQER fBeNy2iq8XDelrn9Qk3zUR7nOtI9ZRMsq81D96lN9nQ3U75MC2jckj/eYdG69aoU FXbJPuBz956GEDIS0yORUti7lPQ5sdNiQHQ3D0sA2+E4WjsEWBoQHrT7I4P9zQmH OcrkAeTFJdn3QKstH35mwnjPejvg+pbcQnUlPg5siFGKu51D/LFH10kZluvDpbbX bC1ZNAyuW7+0WbUsRUTs8q8uBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPdN33U wGhsI3ffJEQVpTLREP17MB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdz bXdiczladVBLS2R3T21PQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0D4qgIZitb08P73Hi6ZrgqCJpNNvrMUN2+XWncGwPhuZO3Ak9X560 dofPIxDEPDbyVCLunZuW+1orzpM5MCqRYF4A0I8yIx/2rtcZktNOpsgmVRZCrzX+ zn8ZGg3B0W2IG3pf28lo3ddg++iQoDUoABAjJVzj9XEIUnWhSKLgElueyI0CorCI 2rL+q808zg26cNHvwRy1YZTArDNA/EHxqSe/sLeUPCT+0Chcb8qBChEY0sGr5iko sNIxTxWS0nETpQisOjoV083zP8F1yGgt47bg2RQkSt+9Uzkox6FxOPUM47WpDXFd mk3Ld3rr8BwnK3s7FcrE9Lwbo6vLBPlL -----END CERTIFICATE-----Generated at Fri Jun 20 07:51:12 2025 by rpki-client