$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: L/yvQVD7ajFAC3x3a8N4wDVWL27KQnaDfMmiZO/csQ4= Subject key identifier: 7F:EC:57:45:FE:48:98:EA:60:E9:E6:23:9F:12:33:DA:BB:5F:19:D5 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 1371 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 1365 Signing time: Fri 20 Jun 2025 17:00:17 +0000 Manifest this update: Fri 20 Jun 2025 17:00:16 +0000 Manifest next update: Fri 27 Jun 2025 17:00:16 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: 2nkNqqhx3hvUih2qp6cWgSFE+uDPUrtFNksDbBdIeu0=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 17:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4977 (0x1371) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Jun 20 17:00:16 2025 GMT Not After : Jun 27 17:00:16 2025 GMT Subject: CN=685593a1-ce74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:85:c3:a2:88:bd:5d:95:4e:f0:ef:2b:98:5e: 37:82:19:e5:87:47:35:07:81:5a:cf:4f:0c:01:df: 12:65:15:ec:cf:a0:4b:bb:04:b7:91:b2:7d:09:34: 98:46:b9:10:15:55:bf:ce:f4:53:85:a9:da:f5:29: 55:e3:10:16:ea:20:8f:e2:08:6a:dd:f8:40:6b:2e: 05:e2:fb:d0:fb:f8:c4:a4:ee:5b:d7:f3:91:1f:4c: b0:19:c1:d5:4c:92:19:48:03:02:7b:b7:35:0b:ae: 08:de:e6:e8:f6:ea:d8:17:0c:5f:2a:5c:1a:32:b6: 32:f3:ae:38:f9:37:89:50:7b:2c:91:6d:be:fc:f3: dc:00:ea:c0:ce:ab:f4:27:f1:b9:cf:a6:58:1a:a2: 5b:a6:99:3f:ba:34:5e:3c:c0:43:fb:c8:bd:dd:bc: 31:92:67:5f:3c:e0:36:f6:51:bf:01:ab:c3:65:80: 1c:e9:58:d2:36:2f:2f:66:43:58:f0:1c:28:4a:e1: e2:03:76:74:f3:f1:da:0c:f5:06:68:4b:1d:72:7d: b1:8f:53:ca:33:7f:14:7b:be:ac:e1:33:73:8b:bc: 85:de:e7:ae:c6:1b:7f:f8:2e:f0:70:90:dc:6d:44: ab:92:69:c3:12:b6:41:e0:0c:d6:68:f5:4d:dd:bd: dd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:EC:57:45:FE:48:98:EA:60:E9:E6:23:9F:12:33:DA:BB:5F:19:D5 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:36:72:47:a4:2d:1c:a4:d9:48:c5:10:16:05:00:71:7c:06: 88:2a:56:7b:ea:cf:b1:19:b5:8e:09:48:e5:de:87:4b:2f:ff: 26:57:f6:47:6c:65:3a:e7:12:c8:56:ca:4b:55:21:b3:95:35: 20:c3:29:2d:54:c2:c4:89:2b:40:25:61:19:dc:68:5d:64:3e: 45:3f:14:82:3a:34:64:7a:16:bf:83:db:08:6c:1e:37:a8:30: 2b:a3:61:88:85:8b:3a:24:87:4e:7d:05:fa:7c:ab:7a:ba:6c: 76:3c:2b:4a:b5:01:e8:60:c5:3b:56:ec:f5:34:b8:43:9e:0d: 5e:6b:e8:d8:c7:ea:07:03:52:a9:37:b5:63:3d:70:4c:bc:20: 95:c9:e9:16:0d:8b:4c:7a:bc:3f:31:af:ba:47:c4:2d:26:20: 58:56:d9:d3:69:b1:12:83:93:40:0d:ba:60:19:29:84:4b:32: 15:5c:19:4a:d0:49:61:96:d4:3d:06:29:83:29:52:d3:24:af: d3:68:37:fa:b1:71:35:b2:0c:ab:cd:c3:19:9c:e6:6c:e9:17: 81:59:db:23:b1:68:0a:6b:60:d4:6a:f7:df:09:bd:19:e7:8a: 6b:ff:c2:cb:a3:0f:fb:08:6a:7d:60:a7:a9:73:02:cf:73:0f: af:98:64:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUwNjIwMTcwMDE2WhcNMjUwNjI3MTcwMDE2WjAYMRYwFAYD VQQDEw02ODU1OTNhMS1jZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IXDooi9XZVO8O8rmF43ghnlh0c1B4Faz08MAd8SZRXsz6BLuwS3kbJ9CTSY RrkQFVW/zvRThana9SlV4xAW6iCP4ghq3fhAay4F4vvQ+/jEpO5b1/ORH0ywGcHV TJIZSAMCe7c1C64I3ubo9urYFwxfKlwaMrYy8644+TeJUHsskW2+/PPcAOrAzqv0 J/G5z6ZYGqJbppk/ujRePMBD+8i93bwxkmdfPOA29lG/AavDZYAc6VjSNi8vZkNY 8BwoSuHiA3Z08/HaDPUGaEsdcn2xj1PKM38Ue76s4TNzi7yF3ueuxht/+C7wcJDc bUSrkmnDErZB4AzWaPVN3b3dvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/sV0X+ SJjqYOnmI58SM9q7XxnVMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJNnJHpC0cpNlIxRAWBQBxfAaIKlZ76s+xGbWOCUjl3odLL/8mV/ZH bGU65xLIVspLVSGzlTUgwyktVMLEiStAJWEZ3GhdZD5FPxSCOjRkeha/g9sIbB43 qDAro2GIhYs6JIdOfQX6fKt6umx2PCtKtQHoYMU7Vuz1NLhDng1ea+jYx+oHA1Kp N7VjPXBMvCCVyekWDYtMerw/Ma+6R8QtJiBYVtnTabESg5NADbpgGSmESzIVXBlK 0ElhltQ9BimDKVLTJK/TaDf6sXE1sgyrzcMZnOZs6ReBWdsjsWgKa2DUavffCb0Z 54pr/8LLow/7CGp9YKepcwLPcw+vmGSD -----END CERTIFICATE-----Generated at Fri Jun 20 21:01:50 2025 by rpki-client