$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: vQUt/iEDWN1qqGRlvGRgP8XKinq2S0XZq8czp3SZKYA= Subject key identifier: E9:A3:04:2B:07:22:EA:54:6E:47:2C:8E:8F:6F:4F:E7:16:00:D0:0D Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 0120 Signing time: Sun 15 Jun 2025 03:58:36 +0000 Manifest this update: Sun 15 Jun 2025 03:58:36 +0000 Manifest next update: Sun 22 Jun 2025 03:58:36 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: 8sDT+Ctj18SoxB1VmCDJxQjeDhGjGZSS2BheMC2QRyY=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: gJAOPk4iFoIW/KqNitxUF3g+S02/W0OUx3yJyNEqzJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 03:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Jun 15 03:58:36 2025 GMT Not After : Jun 22 03:58:36 2025 GMT Subject: CN=684e44ec-a59f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:da:9c:39:a9:7e:ee:50:0e:5a:e2:1c:fe:b6: 23:c3:49:e6:31:6a:3b:88:0f:88:1e:6f:4c:f0:d1: 9c:33:20:02:89:0f:bc:56:b0:92:48:4f:bf:86:fb: f5:d2:c2:3f:9c:7e:03:a4:10:58:78:f0:ab:cf:3d: 9b:8c:22:14:98:49:01:18:c6:45:87:45:43:7a:c8: fe:e2:dd:40:35:f0:77:ac:fe:a5:03:06:17:b2:12: 56:d8:ed:72:04:57:99:ba:5d:f7:e3:fa:a3:c0:a7: 73:9d:03:6b:d0:29:3a:ed:19:4d:87:e7:48:e1:3b: f9:a4:50:d1:45:f7:3a:a2:c1:b3:7c:ba:84:cb:05: 28:17:70:dc:64:88:da:ca:5d:64:66:44:bf:50:fb: 2d:0d:58:51:61:00:6b:18:5b:bc:43:e0:79:0b:12: ab:94:a8:ef:c1:b5:cb:6b:d7:c2:1a:33:df:18:3c: 76:bf:c8:77:42:b7:5d:96:6a:b1:22:2e:82:d4:a8: 60:c1:95:a8:0a:27:ed:c0:4c:c4:9f:b1:b8:78:e1: 03:13:12:97:49:fc:ee:47:67:7f:6e:c5:71:e2:6c: e1:94:00:fb:4a:fc:31:0b:4a:9b:c6:cd:79:ae:a7: 63:a2:98:3e:c1:76:3d:06:e6:f2:01:2b:73:9a:bd: 9e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A3:04:2B:07:22:EA:54:6E:47:2C:8E:8F:6F:4F:E7:16:00:D0:0D X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:52:1a:75:bf:60:77:18:49:c1:9b:63:5e:02:74:a2:aa:f6: 92:d6:9b:21:f0:71:2b:83:1e:f0:0c:77:21:7d:ea:a1:a8:4a: c6:84:78:73:12:88:bf:cb:d5:ac:d2:be:2b:f5:ef:37:38:a0: f9:c7:51:1f:7e:9a:75:45:a6:d0:62:00:d8:68:07:ec:7e:93: cb:4e:cd:cd:b0:fe:c6:89:17:2a:47:37:5b:09:11:1e:77:54: eb:0a:ab:0c:b8:44:1d:29:f4:fa:c7:f4:d0:0f:18:13:3b:60: 1b:a0:71:4e:7d:22:80:b8:ca:d1:bb:1b:cb:c4:0f:fe:7f:b6: 7c:86:6a:ac:bc:89:36:6c:b7:8b:66:54:d0:fd:28:d2:d9:ae: 80:b0:1f:56:15:d0:96:55:00:aa:04:73:a5:48:67:4a:66:de: 35:a2:52:f6:45:08:3b:f0:00:e8:0f:d3:91:8b:46:cc:12:e5: 98:55:67:0a:cd:6c:1e:32:61:9f:80:98:a5:3c:7a:9c:55:a5: fa:3c:ac:f0:11:b2:35:4d:ee:10:6a:a7:5c:75:28:d6:ad:21: c7:4e:1a:16:8e:00:f8:15:f6:19:f3:c6:c0:9c:dc:8e:57:79: f5:66:9c:7f:64:a4:68:33:ef:5a:dc:ad:b8:f0:ab:ce:cf:23: cb:76:0e:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUwNjE1MDM1ODM2WhcNMjUwNjIyMDM1ODM2WjAYMRYwFAYD VQQDEw02ODRlNDRlYy1hNTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9qcOal+7lAOWuIc/rYjw0nmMWo7iA+IHm9M8NGcMyACiQ+8VrCSSE+/hvv1 0sI/nH4DpBBYePCrzz2bjCIUmEkBGMZFh0VDesj+4t1ANfB3rP6lAwYXshJW2O1y BFeZul334/qjwKdznQNr0Ck67RlNh+dI4Tv5pFDRRfc6osGzfLqEywUoF3DcZIja yl1kZkS/UPstDVhRYQBrGFu8Q+B5CxKrlKjvwbXLa9fCGjPfGDx2v8h3Qrddlmqx Ii6C1KhgwZWoCiftwEzEn7G4eOEDExKXSfzuR2d/bsVx4mzhlAD7SvwxC0qbxs15 rqdjopg+wXY9BubyAStzmr2e1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmjBCsH IupUbkcsjo9vT+cWANANMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+Uhp1v2B3GEnBm2NeAnSiqvaS1psh8HErgx7wDHchfeqhqErGhHhz Eoi/y9Ws0r4r9e83OKD5x1Effpp1RabQYgDYaAfsfpPLTs3NsP7GiRcqRzdbCREe d1TrCqsMuEQdKfT6x/TQDxgTO2AboHFOfSKAuMrRuxvLxA/+f7Z8hmqsvIk2bLeL ZlTQ/SjS2a6AsB9WFdCWVQCqBHOlSGdKZt41olL2RQg78ADoD9ORi0bMEuWYVWcK zWweMmGfgJilPHqcVaX6PKzwEbI1Te4QaqdcdSjWrSHHThoWjgD4FfYZ88bAnNyO V3n1Zpx/ZKRoM+9a3K248KvOzyPLdg5g -----END CERTIFICATE-----Generated at Tue Jun 17 04:04:18 2025 by rpki-client