$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: mX1M4s43EU7f6sdopv6xiIzJzLGiepIcCuSL+0qHdow= Subject key identifier: CD:E8:60:3E:EE:70:5D:8D:DF:14:46:B5:F5:72:C1:FF:C3:BB:A4:35 Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: 72 Signing time: Sun 10 Aug 2025 14:16:13 +0000 Manifest this update: Sun 10 Aug 2025 14:16:12 +0000 Manifest next update: Sun 17 Aug 2025 14:16:12 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: tp4yD8wnWLXCKitXEV+7kJRPKpuiqOs4TJhZrcu8MdA=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: cA2l4Bz4w9KwEr1hYRA0GBgp3+TMBDk54SQcEyXzSVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Aug 10 14:16:12 2025 GMT Not After : Aug 17 14:16:12 2025 GMT Subject: CN=6898a9ad-fc3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e4:3b:cd:87:6b:03:c2:42:6e:9d:20:31:2c: 5f:b8:76:a9:20:f7:57:29:02:2e:36:53:4f:2f:2d: dc:90:e6:6e:30:82:f6:59:03:28:cb:6b:df:db:03: e8:05:ec:fc:59:c6:7f:e9:b1:47:7d:27:0a:24:73: f8:b8:12:0f:29:24:1f:2e:60:a0:fd:39:bb:f2:e1: 68:8c:25:64:e3:1c:a2:1d:99:ba:0a:08:b3:c2:5f: cc:d8:f4:35:88:79:b7:74:80:54:96:2d:f6:5e:86: bc:b4:10:f5:29:77:ee:87:21:bd:a9:f8:22:77:2f: 3b:26:08:be:1e:34:be:fb:69:7e:f2:46:d0:02:9a: 89:91:5e:52:24:0f:a4:33:54:5a:1f:a5:ce:a9:73: a1:d2:0d:9e:53:51:f8:02:f8:8d:d9:2a:ab:18:f2: 8c:df:54:80:58:e0:77:c2:af:11:0b:0c:44:0b:89: f8:38:52:12:f1:bd:b0:92:09:36:3b:d2:bb:2a:fd: 6b:ab:13:78:93:5c:a4:fb:5d:52:4c:15:3d:a1:1d: b8:5c:b0:99:2f:19:1b:1d:66:87:4b:b6:39:68:bc: 0e:12:59:82:17:77:5c:92:2f:c8:50:2c:37:25:ea: b3:2a:04:3d:79:fc:88:dc:39:de:3a:e4:8c:48:8e: 8b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E8:60:3E:EE:70:5D:8D:DF:14:46:B5:F5:72:C1:FF:C3:BB:A4:35 X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:e7:81:81:b2:4c:a0:37:1a:12:b7:62:70:c1:c4:0c:2c:cf: e3:aa:bb:8d:a8:21:a8:44:e8:e2:df:8b:f1:ce:a1:4c:d2:5f: 30:e4:a5:9d:10:47:e5:66:a8:f3:a4:cb:26:ca:ef:d2:b2:69: b8:63:77:f7:c2:cf:ef:f5:9e:57:cb:b6:4b:8c:03:e6:9b:1c: 58:26:91:37:fa:4c:96:f5:b8:0b:53:75:96:8a:9e:05:c7:49: 73:b7:e0:f4:97:ec:81:d6:5d:31:9c:ec:2a:c1:27:4b:59:2a: 2f:7c:8b:b4:a2:ff:f6:9d:15:34:b2:8d:07:8f:57:4c:95:2f: f9:fc:2a:5b:af:ee:09:76:0a:7e:37:2c:d7:15:17:02:55:8a: 31:ff:fc:2d:74:44:b3:15:e5:d3:be:60:78:32:46:42:76:f8: 48:7e:9e:24:78:ea:e1:d0:e6:71:87:17:5a:ec:86:f7:3d:9b: cf:92:69:04:d3:11:88:75:36:44:26:24:fe:e2:c0:af:85:45: 87:90:a3:0e:65:37:13:bd:2d:bb:6f:16:fc:2c:b4:0f:12:84: 7b:b5:10:61:1f:c1:38:04:09:2e:5a:f6:92:75:38:99:bb:02: 0f:57:f8:66:a0:fa:c0:92:f1:65:9d:43:b9:75:d4:17:e2:fa: a2:f1:3f:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTYyMTExMC8GA1UEBRMoQTAyNzE5NUE0ODIwRjNENzI2NEE0RDU3RUU5QTlENEMy QTEwQzkyMzAeFw0yNTA4MTAxNDE2MTJaFw0yNTA4MTcxNDE2MTJaMBgxFjAUBgNV BAMTDTY4OThhOWFkLWZjM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx5DvNh2sDwkJunSAxLF+4dqkg91cpAi42U08vLdyQ5m4wgvZZAyjLa9/bA+gF 7PxZxn/psUd9Jwokc/i4Eg8pJB8uYKD9Obvy4WiMJWTjHKIdmboKCLPCX8zY9DWI ebd0gFSWLfZehry0EPUpd+6HIb2p+CJ3LzsmCL4eNL77aX7yRtACmomRXlIkD6Qz VFofpc6pc6HSDZ5TUfgC+I3ZKqsY8ozfVIBY4HfCrxELDEQLifg4UhLxvbCSCTY7 0rsq/WurE3iTXKT7XVJMFT2hHbhcsJkvGRsdZodLtjlovA4SWYIXd1ySL8hQLDcl 6rMqBD15/IjcOd465IxIjosjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzehgPu5w XY3fFEa19XLB/8O7pDUwHwYDVR0jBBgwFoAUoCcZWkgg89cmSk1X7pqdTCoQySMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNjIxLzM1RURBOTJFQ0Yw RDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb0NjWldrZ2c4OWNtU2sxWDdwcWRUQ29ReVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NjIxLzM1RURBOTJFQ0YwRDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODlj bVNrMVg3cHFkVENvUXlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEbngYGyTKA3GhK3YnDBxAwsz+Oqu42oIahE6OLfi/HOoUzSXzDkpZ0Q R+VmqPOkyybK79Kyabhjd/fCz+/1nlfLtkuMA+abHFgmkTf6TJb1uAtTdZaKngXH SXO34PSX7IHWXTGc7CrBJ0tZKi98i7Si//adFTSyjQePV0yVL/n8Kluv7gl2Cn43 LNcVFwJVijH//C10RLMV5dO+YHgyRkJ2+Eh+niR46uHQ5nGHF1rshvc9m8+SaQTT EYh1NkQmJP7iwK+FRYeQow5lNxO9LbtvFvwstA8ShHu1EGEfwTgECS5a9pJ1OJm7 Ag9X+Gag+sCS8WWdQ7l11Bfi+qLxP80= -----END CERTIFICATE-----Generated at Sun Aug 10 18:14:53 2025 by rpki-client