$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: 5HLN8a830Kgpduuw1EmlljVZNJaHkapMJxbcnRqUM34= Subject key identifier: 2B:78:D9:E4:F2:35:9E:24:CA:12:32:FE:BF:75:99:0A:B9:C3:7F:63 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 305D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 302F Signing time: Sat 14 Jun 2025 15:26:20 +0000 Manifest this update: Sat 14 Jun 2025 15:26:20 +0000 Manifest next update: Sat 21 Jun 2025 15:26:20 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: NP7EszMm4kcHDouVYYW8naXPFIz0vjdrI4P6v5xRz/k=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: J9SJ4DIJ/7Jqarub1sf8j6PHgZAGlGGdRbRsMiv9apI=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: 9deMiuArgkPyt65CV7Ht+L/9JKrWYVcP+qJb8LKGzOI=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: 2+WTGnYcaeWw8w6rtvBrYx7uq+JHkK1rDrCVxpG+T+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12381 (0x305d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Jun 14 15:26:20 2025 GMT Not After : Jun 21 15:26:20 2025 GMT Subject: CN=684d949c-db65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f7:75:e2:e1:12:91:d3:67:3b:61:af:17:b1: ea:1c:39:12:cb:24:82:4a:cf:4f:42:0c:e4:1d:d8: c5:5f:36:32:25:63:6d:a4:aa:10:1c:bc:56:06:56: c5:c5:90:f6:e6:29:3e:60:34:3f:1e:51:21:96:13: d3:ca:c2:8b:35:15:94:43:a9:21:da:e9:86:3c:de: c5:7c:75:91:af:a3:e8:24:ca:90:48:78:e1:95:35: 1e:38:aa:de:e8:fc:ab:f4:2f:1d:3c:bd:e1:0e:d8: 0f:3e:fe:ba:32:76:0e:a5:af:9a:e8:0e:42:60:ec: 99:3e:9a:07:e9:ea:7c:54:04:36:2c:82:66:35:41: 8e:fa:06:7b:ca:ea:12:f6:a7:be:10:40:b5:dc:98: 7a:6a:dc:15:f8:03:74:6f:9b:bf:ad:6b:c4:08:37: d1:86:f3:eb:86:cc:52:1f:23:66:ee:28:57:82:2a: dc:e0:fc:34:70:a9:33:65:02:89:87:5c:b5:da:47: 26:0f:24:cc:a6:24:d3:64:96:19:9c:d0:8d:57:f3: 55:27:66:39:4c:4d:bf:4a:75:80:4f:06:88:6c:bb: 6b:b4:32:35:c5:01:39:0f:33:78:d1:26:3e:84:16: b7:e0:c6:e1:96:a8:54:22:fd:86:2c:6a:0c:fb:ed: 8a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:78:D9:E4:F2:35:9E:24:CA:12:32:FE:BF:75:99:0A:B9:C3:7F:63 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:69:b7:e0:7a:a0:38:14:9d:9b:80:ff:ac:28:9a:3d:39:6f: 41:a7:bd:3f:e5:c8:0e:a0:49:3d:9e:6c:6a:26:a5:39:f2:4c: 8b:29:67:9b:65:b8:a3:94:9a:2f:f0:9c:92:02:c5:0e:66:21: 00:d1:86:89:d0:9d:b2:e2:c9:ca:8e:97:bc:f3:d4:c2:1b:58: 96:37:c0:ec:3a:ff:73:17:72:76:75:ab:33:39:7e:1f:73:e2: 5f:f3:3c:b4:b9:d7:3f:8a:0e:a9:65:e9:df:6e:ab:9b:87:59: 8c:2e:73:bc:a2:a5:b0:8a:31:15:42:f7:c7:26:52:96:ff:7d: 2a:fd:fd:82:b7:31:4b:38:0b:46:f5:80:22:2d:7a:f5:15:24: 4e:e6:8d:e7:88:6b:14:ee:b9:8c:8c:3c:f0:ee:7a:cd:fc:85: 05:48:7d:48:1f:55:d8:6b:ea:73:b8:e0:24:2c:06:32:7c:98: 72:50:bd:3b:08:2e:06:21:41:0d:df:3d:78:d5:94:d1:b7:c9: 95:9c:77:1d:f1:8d:b6:49:39:f5:a2:4c:c6:d6:ff:93:6d:d4: d8:1b:27:3c:5b:62:a5:74:bd:77:61:c3:3a:05:8e:60:90:9e: 9f:ab:e3:e6:73:c7:e7:6e:a1:d9:5d:76:93:89:37:80:d9:29: 22:8c:64:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUwNjE0MTUyNjIwWhcNMjUwNjIxMTUyNjIwWjAYMRYwFAYD VQQDEw02ODRkOTQ5Yy1kYjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/d14uESkdNnO2GvF7HqHDkSyySCSs9PQgzkHdjFXzYyJWNtpKoQHLxWBlbF xZD25ik+YDQ/HlEhlhPTysKLNRWUQ6kh2umGPN7FfHWRr6PoJMqQSHjhlTUeOKre 6Pyr9C8dPL3hDtgPPv66MnYOpa+a6A5CYOyZPpoH6ep8VAQ2LIJmNUGO+gZ7yuoS 9qe+EEC13Jh6atwV+AN0b5u/rWvECDfRhvPrhsxSHyNm7ihXgirc4Pw0cKkzZQKJ h1y12kcmDyTMpiTTZJYZnNCNV/NVJ2Y5TE2/SnWATwaIbLtrtDI1xQE5DzN40SY+ hBa34MbhlqhUIv2GLGoM++2KUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCt42eTy NZ4kyhIy/r91mQq5w39jMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjabfgeqA4FJ2bgP+sKJo9OW9Bp70/5cgOoEk9nmxqJqU58kyLKWeb ZbijlJov8JySAsUOZiEA0YaJ0J2y4snKjpe889TCG1iWN8DsOv9zF3J2daszOX4f c+Jf8zy0udc/ig6pZenfbqubh1mMLnO8oqWwijEVQvfHJlKW/30q/f2CtzFLOAtG 9YAiLXr1FSRO5o3niGsU7rmMjDzw7nrN/IUFSH1IH1XYa+pzuOAkLAYyfJhyUL07 CC4GIUEN3z141ZTRt8mVnHcd8Y22STn1okzG1v+TbdTYGyc8W2KldL13YcM6BY5g kJ6fq+Pmc8fnbqHZXXaTiTeA2SkijGRd -----END CERTIFICATE-----Generated at Sun Jun 15 09:53:52 2025 by rpki-client