$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft File: OYVAYLL1jUyRnGTapLfrHwzfaDA.mft (raw, json) Hash identifier: tdnCsAvB4vfEtcvZTg7G905rrlHZMXIkOg0Fyaa0XVk= Subject key identifier: 6B:61:2F:1A:B0:B1:FC:B2:76:1C:B0:73:71:7F:45:AE:E9:D7:8B:C3 Authority key identifier: 39:85:40:60:B2:F5:8D:4C:91:9C:64:DA:A4:B7:EB:1F:0C:DF:68:30 Certificate issuer: /CN=A91A1A51/serialNumber=39854060B2F58D4C919C64DAA4B7EB1F0CDF6830 Certificate serial: 0351 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft Manifest number: 0351 Signing time: Sun 15 Jun 2025 00:41:15 +0000 Manifest this update: Sun 15 Jun 2025 00:41:14 +0000 Manifest next update: Sun 22 Jun 2025 00:41:14 +0000 Files and hashes: 1: OYVAYLL1jUyRnGTapLfrHwzfaDA.crl (hash: E06vWixdP6s0PQw1/4neYJ89MIu/LTQO3NWyDZ40T58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.crl rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1A51, serialNumber=39854060B2F58D4C919C64DAA4B7EB1F0CDF6830 Validity Not Before: Jun 15 00:41:14 2025 GMT Not After : Jun 22 00:41:14 2025 GMT Subject: CN=684e16ab-fd37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:95:a2:f3:1f:b5:6b:3d:19:6f:e3:22:1f:ef: 12:f4:fd:a5:65:19:96:d4:32:e5:9d:48:6f:5e:f3: 46:43:22:6e:96:1d:69:56:f6:e6:98:0d:b7:a2:ea: de:52:15:6c:5a:c0:a3:d9:70:76:e8:ce:63:db:46: fc:7b:3a:16:e9:c5:ac:f4:f3:09:fa:f0:de:02:6c: c4:f7:25:2c:46:d9:e5:3a:97:98:aa:68:39:82:38: a4:df:ff:7d:5b:1b:e7:1b:34:d6:aa:c2:0b:ce:dd: 89:57:ac:1f:c4:da:2e:7c:d3:42:f8:b9:02:e2:69: 12:cb:0b:b9:1c:15:5a:9b:85:a7:a1:06:28:17:77: 14:59:74:8a:dd:6f:ea:45:d1:5e:e4:40:17:95:63: d6:19:13:85:50:c7:3a:48:c5:cf:54:0e:ad:96:a6: 0a:32:ff:05:fc:ac:00:1d:c1:5d:7f:e2:c7:6c:08: 07:b9:a0:63:57:e7:48:99:8a:9a:4f:10:ef:64:b7: 6b:cf:bf:5b:09:a5:12:52:75:ce:fd:25:71:ac:d5: b9:4f:b3:66:38:f2:5d:1c:96:fe:36:e9:af:7c:b0: 14:f6:5c:f1:6a:89:77:b2:ae:07:5d:e4:bd:d1:f4: bf:15:b4:59:d2:70:e7:6e:36:93:d3:e3:b8:77:dc: 65:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:61:2F:1A:B0:B1:FC:B2:76:1C:B0:73:71:7F:45:AE:E9:D7:8B:C3 X509v3 Authority Key Identifier: keyid:39:85:40:60:B2:F5:8D:4C:91:9C:64:DA:A4:B7:EB:1F:0C:DF:68:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:9a:1a:32:dc:0c:9c:c7:e2:7f:b8:51:1a:9c:19:da:4f:55: 10:4e:5d:97:5c:49:e0:0d:20:9c:4f:bd:0e:f1:c7:81:42:04: d9:f3:c7:81:d5:6e:72:1d:6e:91:70:68:74:56:9e:a7:38:8b: eb:24:49:fd:80:cd:b3:58:21:4d:47:8a:e1:56:37:bd:11:da: 3e:e5:98:6b:ab:27:87:54:1d:52:56:78:e0:87:fe:01:58:5b: f3:be:1d:ce:d2:dd:00:42:e3:41:3f:48:24:bc:d4:99:18:54: 08:06:87:bb:b0:1b:1d:9c:d9:56:67:81:0d:04:30:10:7d:ad: 4f:13:f6:e3:09:7a:39:87:b7:f0:96:c6:ed:df:93:4f:28:2b: d7:56:66:71:f5:82:24:5f:69:3a:e6:ed:d9:49:10:a3:bc:12: 6b:cf:05:48:ac:67:9d:2d:a2:2e:27:7e:bd:21:6b:26:71:e6: e2:ba:08:cd:46:68:bd:24:e8:5d:8f:bb:7c:d1:fc:45:d1:89: b5:88:af:11:df:a9:75:f7:a4:d0:36:02:78:60:11:c1:51:4b: fa:80:54:39:83:63:1d:63:6e:b8:06:d3:0c:c0:7b:df:48:06: 43:f1:56:61:87:57:1b:92:11:23:f0:6d:e3:63:93:44:2d:31: 99:cc:e8:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFBNTExMTAvBgNVBAUTKDM5ODU0MDYwQjJGNThENEM5MTlDNjREQUE0QjdFQjFG MENERjY4MzAwHhcNMjUwNjE1MDA0MTE0WhcNMjUwNjIyMDA0MTE0WjAYMRYwFAYD VQQDEw02ODRlMTZhYi1mZDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZWi8x+1az0Zb+MiH+8S9P2lZRmW1DLlnUhvXvNGQyJulh1pVvbmmA23oure UhVsWsCj2XB26M5j20b8ezoW6cWs9PMJ+vDeAmzE9yUsRtnlOpeYqmg5gjik3/99 WxvnGzTWqsILzt2JV6wfxNoufNNC+LkC4mkSywu5HBVam4WnoQYoF3cUWXSK3W/q RdFe5EAXlWPWGROFUMc6SMXPVA6tlqYKMv8F/KwAHcFdf+LHbAgHuaBjV+dImYqa TxDvZLdrz79bCaUSUnXO/SVxrNW5T7NmOPJdHJb+NumvfLAU9lzxaol3sq4HXeS9 0fS/FbRZ0nDnbjaT0+O4d9xlawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGthLxqw sfyydhywc3F/Ra7p14vDMB8GA1UdIwQYMBaAFDmFQGCy9Y1MkZxk2qS36x8M32gw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUE1MS9BRjY5MEY2MEI5 MjAxMUVDOTkxNTY3NEZDNEY5QUUwMi9PWVZBWUxMMWpVeVJuR1RhcExmckh3emZh REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ZVkFZTEwxalV5Um5HVGFwTGZySHd6ZmFEQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUE1MS9BRjY5MEY2MEI5MjAxMUVDOTkxNTY3NEZDNEY5QUUwMi9PWVZBWUxMMWpV eVJuR1RhcExmckh3emZhREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvmhoy3Aycx+J/uFEanBnaT1UQTl2XXEngDSCcT70O8ceBQgTZ88eB 1W5yHW6RcGh0Vp6nOIvrJEn9gM2zWCFNR4rhVje9Edo+5ZhrqyeHVB1SVnjgh/4B WFvzvh3O0t0AQuNBP0gkvNSZGFQIBoe7sBsdnNlWZ4ENBDAQfa1PE/bjCXo5h7fw lsbt35NPKCvXVmZx9YIkX2k65u3ZSRCjvBJrzwVIrGedLaIuJ369IWsmcebiugjN Rmi9JOhdj7t80fxF0Ym1iK8R36l196TQNgJ4YBHBUUv6gFQ5g2MdY264BtMMwHvf SAZD8VZhh1cbkhEj8G3jY5NELTGZzOij -----END CERTIFICATE-----Generated at Mon Jun 16 20:05:20 2025 by rpki-client