$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: 2pE5kLe+hAKT4o3PaWAuOC5u9fOxsXK8IH3MfNzhQlE= Subject key identifier: 57:77:34:BD:29:91:28:56:C7:24:50:42:0F:72:D8:D7:93:98:1E:44 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 011D Signing time: Fri 13 Jun 2025 03:42:47 +0000 Manifest this update: Fri 13 Jun 2025 03:42:46 +0000 Manifest next update: Fri 20 Jun 2025 03:42:46 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: Arf10sazY7o3mkpEf3XgbT/w0xXucTrZ82CMtnYWwCQ=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Jun 13 03:42:46 2025 GMT Not After : Jun 20 03:42:46 2025 GMT Subject: CN=684b9e37-919d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b7:dd:29:36:2d:ce:5b:60:fe:d8:3e:61:85: 05:40:b7:6f:63:db:0d:b2:45:d0:80:19:18:82:ba: 2e:10:48:06:a3:79:5f:96:af:0f:37:42:15:bf:0a: a2:45:a4:d4:18:ff:77:82:e7:7b:21:8b:a6:93:99: d0:c0:39:c8:2c:b9:3f:dc:07:3f:33:b1:7a:e5:48: c9:e3:ed:71:c3:88:f9:85:1c:5c:e9:74:f7:36:d7: b7:a4:42:5c:d0:db:9f:5f:d2:d7:67:44:89:f2:0b: 0e:0e:9d:7e:6e:a5:e0:ea:1e:ee:6a:3e:67:a1:67: 79:c8:03:38:d7:d3:56:49:36:11:db:d8:6f:71:a3: b0:90:98:91:3a:31:a6:84:9f:57:ef:76:a8:8f:ae: 75:66:24:c0:17:8b:9f:5f:ca:aa:08:1d:97:c9:cd: 5e:b4:d7:e3:63:0d:99:a0:7a:5b:e5:48:c1:2b:53: 07:7b:3b:af:a9:1c:e8:79:cc:95:8d:b1:54:54:07: 6a:12:85:7f:21:93:c3:f6:d0:55:e2:42:0a:da:c6: 2f:e6:40:1a:9f:7f:ea:ac:33:aa:3d:49:62:1c:dd: 0c:7c:99:a3:62:d7:b8:ad:fc:35:a6:e3:b0:75:e0: 32:b9:91:c0:c7:ac:e0:fe:e4:ca:06:87:23:53:7d: 00:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:77:34:BD:29:91:28:56:C7:24:50:42:0F:72:D8:D7:93:98:1E:44 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:b6:ff:9a:32:38:77:c7:35:55:f1:8a:8c:6e:62:92:43:86: 68:14:a9:31:35:f6:04:e7:ef:90:d6:a1:ac:ae:9d:2c:1d:bd: 14:7b:71:8b:9d:2c:de:4d:0d:f7:83:cd:8d:c9:9a:2f:55:e4: bb:06:29:35:a7:47:f3:a0:01:d9:5e:c8:f2:60:2c:90:58:b3: 64:1d:e5:0a:41:a3:d1:99:bf:8d:8b:d2:4a:e2:50:62:0a:8a: d0:8e:3b:e0:6b:62:08:01:23:4e:62:5c:d1:0b:6a:fa:94:1e: 51:51:28:71:c6:22:68:24:22:6e:1d:56:37:7c:c3:3b:69:49: ce:e5:f8:90:d1:fd:62:2e:14:38:ee:93:53:22:59:ce:cd:de: 66:1c:d2:7e:0f:a6:5d:d9:6e:95:48:cc:bd:0a:4d:6d:c3:ca: 3e:71:ea:24:b9:f3:3e:81:34:6b:a8:20:43:22:88:98:9d:9e: 51:ec:76:0e:cf:c5:61:a5:d1:91:dd:2e:ef:4e:30:f8:40:76: 7b:84:2f:03:90:d7:d1:f1:9d:01:ed:d2:06:94:e5:48:4f:a7: 4e:a3:19:ae:13:ca:2a:7a:2e:50:9e:d8:07:90:e5:9a:56:15: 26:5a:fd:b6:83:f1:dc:37:51:43:6b:04:e9:4e:49:c8:21:d1: b3:18:b3:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUwNjEzMDM0MjQ2WhcNMjUwNjIwMDM0MjQ2WjAYMRYwFAYD VQQDEw02ODRiOWUzNy05MTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rfdKTYtzltg/tg+YYUFQLdvY9sNskXQgBkYgrouEEgGo3lflq8PN0IVvwqi RaTUGP93gud7IYumk5nQwDnILLk/3Ac/M7F65UjJ4+1xw4j5hRxc6XT3Nte3pEJc 0NufX9LXZ0SJ8gsODp1+bqXg6h7uaj5noWd5yAM419NWSTYR29hvcaOwkJiROjGm hJ9X73aoj651ZiTAF4ufX8qqCB2Xyc1etNfjYw2ZoHpb5UjBK1MHezuvqRzoecyV jbFUVAdqEoV/IZPD9tBV4kIK2sYv5kAan3/qrDOqPUliHN0MfJmjYte4rfw1puOw deAyuZHAx6zg/uTKBocjU30ADQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFd3NL0p kShWxyRQQg9y2NeTmB5EMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQActv+aMjh3xzVV8YqMbmKSQ4ZoFKkxNfYE5++Q1qGsrp0sHb0Ue3GL nSzeTQ33g82NyZovVeS7Bik1p0fzoAHZXsjyYCyQWLNkHeUKQaPRmb+Ni9JK4lBi CorQjjvga2IIASNOYlzRC2r6lB5RUShxxiJoJCJuHVY3fMM7aUnO5fiQ0f1iLhQ4 7pNTIlnOzd5mHNJ+D6Zd2W6VSMy9Ck1tw8o+ceokufM+gTRrqCBDIoiYnZ5R7HYO z8VhpdGR3S7vTjD4QHZ7hC8DkNfR8Z0B7dIGlOVIT6dOoxmuE8oqei5QntgHkOWa VhUmWv22g/HcN1FDawTpTknIIdGzGLNc -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:40 2025 by rpki-client