$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: c+JKgHxtSyjW3QinsExzy3I+bmAXFUdjtI0Gb5STjfc= Subject key identifier: CB:95:2B:FB:19:38:D6:96:A9:92:C9:AA:6B:39:B4:53:2D:A5:4D:FB Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: 77 Signing time: Tue 17 Jun 2025 05:44:41 +0000 Manifest this update: Tue 17 Jun 2025 05:44:40 +0000 Manifest next update: Tue 24 Jun 2025 05:44:40 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: V/bRY9LXkM8EDEz47KPWv+ajv0oqttMWFVo4nC/dBWU=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: X6VArMN74z4tgeDbEQQzHaT88BAEASciUle7rIza6xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: Jun 17 05:44:40 2025 GMT Not After : Jun 24 05:44:40 2025 GMT Subject: CN=685100c9-35d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:48:88:3e:11:b2:2c:93:5e:6c:d5:91:7b:01: 9f:a0:75:41:c3:5e:e8:d7:dc:b4:51:6b:f9:03:2b: b5:45:a8:54:eb:92:a7:0e:5e:fa:93:2e:dc:36:9d: 47:59:e2:5a:52:64:6d:ce:08:4d:b6:db:ae:78:39: 13:ff:04:a6:9f:31:c1:7b:78:37:c1:94:c6:a3:f9: 7d:3f:25:39:60:74:51:c1:d2:b0:c2:1a:6e:68:7e: 2e:21:55:f0:cf:0b:1c:5b:00:e4:6d:0b:8c:ee:1d: a5:a9:e7:00:c8:24:49:26:ee:0e:74:80:0f:0b:45: 7c:c0:b2:db:e0:72:bb:80:56:83:41:76:3e:b0:da: 34:7a:6d:88:42:4f:44:6b:1c:ab:36:b2:10:c6:8e: d1:6e:d3:34:61:64:c0:5c:b7:ef:dc:c3:3d:a4:97: 4f:f4:a2:d6:b0:2e:82:c0:0c:25:c2:9d:21:bd:62: f6:d0:e4:e6:52:84:28:a8:76:44:06:c0:cd:19:5d: 06:13:92:92:f7:72:ff:1f:5d:18:15:41:7d:42:1f: eb:11:bc:84:3c:b0:d2:89:4c:ab:53:f8:51:7b:a7: 7b:20:43:15:fe:92:36:75:81:78:5a:62:f1:36:37: 6f:81:91:42:c5:a8:76:d9:8c:6b:d1:97:33:95:0d: 2b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:95:2B:FB:19:38:D6:96:A9:92:C9:AA:6B:39:B4:53:2D:A5:4D:FB X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:31:39:b0:d2:a0:40:d0:f5:fe:3a:5a:fe:f8:b6:df:83:c5: 30:6b:05:10:64:28:d3:52:77:29:61:23:16:50:60:4a:45:08: 26:42:6d:dd:ef:6f:01:40:2b:36:d9:81:ef:17:fd:d5:85:be: 6f:ec:78:97:97:67:ce:a4:9a:12:fa:dc:ff:5b:0a:22:af:ff: 7e:31:ae:fa:92:00:0e:49:60:fc:d8:6b:84:ca:2b:f0:57:57: 1d:e1:30:ea:20:05:a9:3c:39:fd:2a:05:09:d1:f3:0c:fd:41: 63:77:e2:15:da:ce:12:b5:b1:fc:e0:f7:74:fe:cb:64:9a:17: a8:d0:bf:1b:b0:be:5a:ec:06:40:74:b0:a4:9c:77:b2:b4:18: c2:6f:f1:98:ec:bd:ef:89:1e:30:45:f7:c7:5e:67:e5:39:8b: 73:34:7e:36:52:18:50:3a:ad:58:1b:fb:45:d8:f4:b6:c1:0f: 4c:9d:e0:e1:2c:35:a0:c4:af:8c:62:fc:b1:e8:bf:66:c6:3b: 20:dd:47:5c:5a:a2:6d:33:27:2a:ae:67:f5:fb:05:16:82:56: 68:26:22:08:ed:ec:8f:b2:9e:6c:ef:6d:09:5e:ba:cb:1f:25: d1:e0:a5:f7:6b:6c:a6:65:5e:98:cc:e0:e9:fd:65:c6:ae:ad: fe:3a:df:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTAyNTExMC8GA1UEBRMoMzk5QTdCMUZDNDIwN0VCQTA3MDdBODUxNTE5NUNDNjhF ODM2QUJGODAeFw0yNTA2MTcwNTQ0NDBaFw0yNTA2MjQwNTQ0NDBaMBgxFjAUBgNV BAMTDTY4NTEwMGM5LTM1ZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwSIg+EbIsk15s1ZF7AZ+gdUHDXujX3LRRa/kDK7VFqFTrkqcOXvqTLtw2nUdZ 4lpSZG3OCE222654ORP/BKafMcF7eDfBlMaj+X0/JTlgdFHB0rDCGm5ofi4hVfDP CxxbAORtC4zuHaWp5wDIJEkm7g50gA8LRXzAstvgcruAVoNBdj6w2jR6bYhCT0Rr HKs2shDGjtFu0zRhZMBct+/cwz2kl0/0otawLoLADCXCnSG9YvbQ5OZShCiodkQG wM0ZXQYTkpL3cv8fXRgVQX1CH+sRvIQ8sNKJTKtT+FF7p3sgQxX+kjZ1gXhaYvE2 N2+BkULFqHbZjGvRlzOVDSvxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy5Ur+xk4 1papksmqazm0Uy2lTfswHwYDVR0jBBgwFoAUOZp7H8QgfroHB6hRUZXMaOg2q/gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxMDI1LzhEN0I5QkYyOUQ4 NDExRUY4MTdFMTQyMEM0RjlBRTAyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFf Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1pwN0g4UWdmcm9IQjZoUlVaWE1hT2cycV9nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx MDI1LzhEN0I5QkYyOUQ4NDExRUY4MTdFMTQyMEM0RjlBRTAyL09acDdIOFFnZnJv SEI2aFJVWlhNYU9nMnFfZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEUxObDSoEDQ9f46Wv74tt+DxTBrBRBkKNNSdylhIxZQYEpFCCZCbd3v bwFAKzbZge8X/dWFvm/seJeXZ86kmhL63P9bCiKv/34xrvqSAA5JYPzYa4TKK/BX Vx3hMOogBak8Of0qBQnR8wz9QWN34hXazhK1sfzg93T+y2SaF6jQvxuwvlrsBkB0 sKScd7K0GMJv8Zjsve+JHjBF98deZ+U5i3M0fjZSGFA6rVgb+0XY9LbBD0yd4OEs NaDEr4xi/LHov2bGOyDdR1xaom0zJyquZ/X7BRaCVmgmIgjt7I+ynmzvbQleussf JdHgpfdrbKZlXpjM4On9Zcaurf4636M= -----END CERTIFICATE-----Generated at Thu Jun 19 06:15:05 2025 by rpki-client