$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: 4VnT9WRNvuWqfrQz4FlKt0beTbAY0LNTm8Az2W1qduk= Subject key identifier: 03:84:71:9D:E1:29:A3:7B:68:D6:A9:69:F1:EE:AD:AC:77:8D:11:1F Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: 57 Signing time: Wed 18 Jun 2025 14:16:11 +0000 Manifest this update: Wed 18 Jun 2025 14:16:11 +0000 Manifest next update: Wed 25 Jun 2025 14:16:11 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: 0Dog81OWAXd32T8+IoPyLWE6yCeLkTRQpIbvEvRaZ/g=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: cA2l4Bz4w9KwEr1hYRA0GBgp3+TMBDk54SQcEyXzSVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Jun 18 14:16:11 2025 GMT Not After : Jun 25 14:16:11 2025 GMT Subject: CN=6852ca2b-01e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1d:36:c0:1b:db:bc:51:67:03:be:f8:15:55: 9b:b1:92:5b:1b:d6:b2:15:0e:d1:10:88:e3:43:1b: 22:d3:12:bd:00:f7:95:f9:d4:f9:d3:8c:4a:58:ff: cd:fd:bf:7b:0d:ad:72:1e:55:bd:50:48:03:bf:e7: 8f:e7:38:99:8e:2e:76:45:83:ce:17:19:db:3f:36: 9e:d8:df:4b:e2:90:00:0d:b8:7e:4a:5d:92:5d:4b: be:2c:c2:1b:53:33:5e:a7:ba:db:a2:c5:62:69:f8: 9b:c0:69:22:09:7d:52:8a:90:86:3d:fe:cc:6f:f5: 94:17:a5:f0:fb:42:33:b7:5c:38:c1:77:e7:c0:c2: 51:e4:7b:47:87:a6:e0:8e:10:2a:bd:7e:70:66:50: e2:13:e1:4e:0f:bc:75:d2:55:8a:1c:9b:32:75:9a: 7e:b7:f1:a6:52:67:8a:d7:06:3c:81:7c:e7:df:a9: 21:39:f1:d9:2c:32:d1:63:4c:5f:c7:4e:7f:59:11: 71:55:aa:6f:a4:7a:5d:0a:ae:e9:52:07:37:05:9b: 99:54:96:99:da:75:cb:ea:db:85:8c:af:e8:2f:fd: 43:ae:68:11:3d:5f:0f:9f:46:9e:7e:03:95:be:25: 21:2c:85:28:20:f4:65:c3:fa:94:fc:65:5e:71:e8: ed:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:84:71:9D:E1:29:A3:7B:68:D6:A9:69:F1:EE:AD:AC:77:8D:11:1F X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:17:3c:45:0a:9c:15:c4:3c:9a:d7:e0:b0:3f:56:1d:79:99: 59:b2:04:28:54:d2:99:d0:f1:58:36:a8:77:e3:5f:92:7e:59: f2:f1:75:f4:f8:0e:98:2c:c6:5d:42:ed:c6:ef:4c:ff:aa:eb: d9:fd:ea:42:11:bc:c5:59:2e:2c:32:84:74:7f:ac:0a:6e:b4: 6e:6a:c0:65:4c:b9:81:7d:2f:f9:0b:04:37:16:7e:ac:6d:52: d6:83:a0:ae:92:0f:e8:1f:7d:7b:13:ec:7a:72:11:7d:d6:01: 40:66:c6:0d:42:fa:77:f5:89:31:7c:67:b9:01:3e:64:69:71: c4:1b:e3:09:47:df:4c:45:b5:de:e8:51:a6:e3:72:d2:91:ab: 8b:08:f0:05:49:8f:22:0c:56:03:c9:e3:c8:52:2d:f4:0e:df: 3b:c3:6f:d0:f9:a9:17:1f:06:7a:df:61:70:42:5a:46:a0:0e: ba:43:bc:ef:9b:5b:b0:1c:e5:2a:89:b6:3e:c4:ac:76:d2:7f: 1b:85:34:93:9d:7e:11:5c:0f:31:b6:cf:e0:ab:b6:5f:4d:8f: 28:52:9b:f6:a7:8f:56:db:c2:20:53:97:52:42:24:64:1f:f6: 61:02:7a:44:0a:9b:e6:71:e6:01:71:32:40:df:64:e0:29:15: ae:e8:e3:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTYyMTExMC8GA1UEBRMoQTAyNzE5NUE0ODIwRjNENzI2NEE0RDU3RUU5QTlENEMy QTEwQzkyMzAeFw0yNTA2MTgxNDE2MTFaFw0yNTA2MjUxNDE2MTFaMBgxFjAUBgNV BAMTDTY4NTJjYTJiLTAxZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfHTbAG9u8UWcDvvgVVZuxklsb1rIVDtEQiONDGyLTEr0A95X51PnTjEpY/839 v3sNrXIeVb1QSAO/54/nOJmOLnZFg84XGds/Np7Y30vikAANuH5KXZJdS74swhtT M16nutuixWJp+JvAaSIJfVKKkIY9/sxv9ZQXpfD7QjO3XDjBd+fAwlHke0eHpuCO ECq9fnBmUOIT4U4PvHXSVYocmzJ1mn638aZSZ4rXBjyBfOffqSE58dksMtFjTF/H Tn9ZEXFVqm+kel0KrulSBzcFm5lUlpnadcvq24WMr+gv/UOuaBE9Xw+fRp5+A5W+ JSEshSgg9GXD+pT8ZV5x6O3rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA4RxneEp o3to1qlp8e6trHeNER8wHwYDVR0jBBgwFoAUoCcZWkgg89cmSk1X7pqdTCoQySMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNjIxLzM1RURBOTJFQ0Yw RDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb0NjWldrZ2c4OWNtU2sxWDdwcWRUQ29ReVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NjIxLzM1RURBOTJFQ0YwRDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODlj bVNrMVg3cHFkVENvUXlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGMXPEUKnBXEPJrX4LA/Vh15mVmyBChU0pnQ8Vg2qHfjX5J+WfLxdfT4 Dpgsxl1C7cbvTP+q69n96kIRvMVZLiwyhHR/rAputG5qwGVMuYF9L/kLBDcWfqxt UtaDoK6SD+gffXsT7HpyEX3WAUBmxg1C+nf1iTF8Z7kBPmRpccQb4wlH30xFtd7o UabjctKRq4sI8AVJjyIMVgPJ48hSLfQO3zvDb9D5qRcfBnrfYXBCWkagDrpDvO+b W7Ac5SqJtj7ErHbSfxuFNJOdfhFcDzG2z+Crtl9NjyhSm/anj1bbwiBTl1JCJGQf 9mECekQKm+Zx5gFxMkDfZOApFa7o4+Y= -----END CERTIFICATE-----Generated at Thu Jun 19 05:10:18 2025 by rpki-client