$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft File: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft (raw, json) Hash identifier: k/1oys+esAynTUTfLIseHtLHoiHNn1w76oNM0BvOTJY= Subject key identifier: 46:64:75:67:DD:F5:08:26:6B:54:74:52:08:5B:65:72:60:9E:5E:6E Authority key identifier: A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 Certificate issuer: /CN=A91CE6EC/serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Certificate serial: 25A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft Manifest number: 259B Signing time: Sat 02 Aug 2025 15:54:33 +0000 Manifest this update: Sat 02 Aug 2025 15:54:31 +0000 Manifest next update: Sat 09 Aug 2025 15:54:31 +0000 Files and hashes: 1: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl (hash: DdPdsrZ49CP9CYwwibNzEAAnxWtVkxEJPnOpFjnNTIQ=) 2: 96F26DD8E4A511EF8259C769C4F9AE02.roa (hash: 106BmLtTyVCv8aiEyQESyMsMUTUgBCG4YPN0EmuEMYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 15:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9639 (0x25a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Validity Not Before: Aug 2 15:54:31 2025 GMT Not After : Aug 9 15:54:31 2025 GMT Subject: CN=688e34b8-bcaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f5:ea:38:d7:2b:2b:37:6c:2e:99:02:0b:76: c3:a8:dc:53:0a:26:f5:c8:65:03:aa:5d:b3:1e:ac: 7a:13:28:3a:44:5e:2e:4e:ac:5c:f2:9b:77:dc:23: 02:a4:74:fa:1d:5c:7e:30:98:39:07:95:38:af:51: b9:a5:54:38:6d:d9:62:21:d0:65:9b:20:80:a8:0a: 2c:e0:b4:ee:60:41:6f:bc:1a:0e:7c:3e:10:8b:24: 05:06:4b:a2:a8:41:d3:83:04:1b:10:80:db:af:6e: 50:57:f0:7c:42:cc:d2:7b:f1:29:ef:81:8b:76:6f: 65:98:16:f7:33:ec:6d:43:8b:ad:07:91:57:24:d6: bd:62:80:40:02:f4:77:7c:e5:d2:61:79:aa:ec:7b: 3e:9a:ac:a1:73:1b:43:97:7a:a7:14:bb:e9:c7:a9: f6:e3:42:b0:ec:ff:e1:47:90:61:45:8c:93:fe:eb: f8:69:df:3d:9c:9e:62:13:c9:b4:c2:6b:4e:6e:3e: 8e:51:1d:19:c1:07:a1:70:1c:b0:5b:2a:18:5b:8e: 17:c7:ed:25:c8:84:7e:b5:b1:8f:34:05:c2:4f:a6: b0:a8:fd:d9:9a:a5:1a:02:57:da:31:9a:00:54:29: d9:45:11:98:90:32:d2:5c:e1:df:34:a0:8e:f9:2d: 34:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:64:75:67:DD:F5:08:26:6B:54:74:52:08:5B:65:72:60:9E:5E:6E X509v3 Authority Key Identifier: keyid:A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:55:12:4b:6e:e0:c0:1a:87:56:68:da:44:da:b8:f4:6b:74: 70:3d:7a:e0:2c:36:a7:95:ba:41:07:59:ea:86:5a:00:25:ba: ab:a1:5a:c7:59:3e:d0:7c:ec:fd:0a:26:d5:ff:71:a7:67:91: fa:8d:36:2f:36:86:8d:23:92:8e:64:dd:dc:42:ce:b7:74:f0: 47:5e:f2:90:1d:1a:82:8c:d6:13:ab:ba:47:21:eb:99:12:c0: a6:9e:62:25:3c:77:64:17:ac:c2:6a:57:12:ac:37:10:b8:f5: c1:9e:3a:0b:37:ee:17:3e:06:6b:53:f2:a8:23:40:27:40:12: 05:a5:e9:cc:ff:8e:f6:36:53:f6:e9:6b:6f:c7:3b:b4:e6:e1: 2c:2f:97:4b:84:23:ad:a1:36:e5:b8:61:e7:27:1f:39:f2:b7: 71:c9:16:06:cf:19:b2:ce:4f:73:b3:24:84:5e:06:8f:f6:af: d5:38:f1:98:c7:53:49:55:11:2e:71:68:e9:bf:bb:b7:c4:5e: 1f:13:88:63:a6:d7:c4:e4:96:6c:3e:7f:9d:c1:40:dc:11:54: 72:c3:ee:87:ab:cf:c4:ec:e0:99:74:89:e3:1b:7a:34:98:05: 8f:15:cf:c5:a9:42:cd:52:8b:31:e4:6f:97:78:05:49:ef:87: 86:b7:9a:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKEExQzIzOTY1NzA0MDE3NzI0MjlFQjhDQkIwREY2NjUz RjE2NzhDRjYwHhcNMjUwODAyMTU1NDMxWhcNMjUwODA5MTU1NDMxWjAYMRYwFAYD VQQDEw02ODhlMzRiOC1iY2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPXqONcrKzdsLpkCC3bDqNxTCib1yGUDql2zHqx6Eyg6RF4uTqxc8pt33CMC pHT6HVx+MJg5B5U4r1G5pVQ4bdliIdBlmyCAqAos4LTuYEFvvBoOfD4QiyQFBkui qEHTgwQbEIDbr25QV/B8QszSe/Ep74GLdm9lmBb3M+xtQ4utB5FXJNa9YoBAAvR3 fOXSYXmq7Hs+mqyhcxtDl3qnFLvpx6n240Kw7P/hR5BhRYyT/uv4ad89nJ5iE8m0 wmtObj6OUR0ZwQehcBywWyoYW44Xx+0lyIR+tbGPNAXCT6awqP3ZmqUaAlfaMZoA VCnZRRGYkDLSXOHfNKCO+S00cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZkdWfd 9Qgma1R0UghbZXJgnl5uMB8GA1UdIwQYMBaAFKHCOWVwQBdyQp64y7DfZlPxZ4z2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy9EM0FCNjAxNjE0 QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYzSkNucmpMc045bVVfRm5q UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29jSTVaWEJBRjNKQ25yakxzTjltVV9GbmpQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy9EM0FCNjAxNjE0QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYz SkNucmpMc045bVVfRm5qUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiVRJLbuDAGodWaNpE2rj0a3RwPXrgLDanlbpBB1nqhloAJbqroVrH WT7QfOz9CibV/3GnZ5H6jTYvNoaNI5KOZN3cQs63dPBHXvKQHRqCjNYTq7pHIeuZ EsCmnmIlPHdkF6zCalcSrDcQuPXBnjoLN+4XPgZrU/KoI0AnQBIFpenM/472NlP2 6Wtvxzu05uEsL5dLhCOtoTbluGHnJx858rdxyRYGzxmyzk9zsySEXgaP9q/VOPGY x1NJVREucWjpv7u3xF4fE4hjptfE5JZsPn+dwUDcEVRyw+6Hq8/E7OCZdInjG3o0 mAWPFc/FqULNUosx5G+XeAVJ74eGt5pg -----END CERTIFICATE-----Generated at Mon Aug 4 16:14:08 2025 by rpki-client