$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft File: OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft (raw, json) Hash identifier: 2KRNn8fmR9wt3nq6uYPCYdcoiu9D9tDDRjVKo8JCpoA= Subject key identifier: 9A:D2:AB:6A:25:F2:03:84:2D:0A:62:A3:81:98:59:43:E8:E8:E4:00 Authority key identifier: 3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 Certificate issuer: /CN=A91D318A/serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft Manifest number: 0128 Signing time: Sun 15 Jun 2025 03:49:59 +0000 Manifest this update: Sun 15 Jun 2025 03:49:59 +0000 Manifest next update: Sun 22 Jun 2025 03:49:59 +0000 Files and hashes: 1: OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl (hash: m0v3KdgCVuai8x0TsRRaExz9V6VQ9zXo5XNQ+rq75SA=) 2: 67CB8C7287E711EEAC6C0B48C4F9AE02.roa (hash: F1mmz33PgwMDoRRZC6GtV9seLtgQSAErXHweDotrVWA=) 3: C1BECCFC68ED11EF85713047C4F9AE02.roa (hash: Sezt6J9wGq2uA81TOBF7C4CUuNihzkNfNyFAuKq+xQc=) 4: 675EE9DC87E711EEAC6C0B48C4F9AE02.roa (hash: drw42sYp0Yh/VWP9xaFHuMDcqO3Tii4R1NV32pLiPSM=) 5: 08310D28339011EFA4FD915FC4F9AE02.roa (hash: SpJu5nU/KENpOPLXjRvExSZV1G2bbDwfeZ2+Dj1X+E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 03:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=3A1543BDF3772A98D294EB90023803DDDDF11E62 Validity Not Before: Jun 15 03:49:59 2025 GMT Not After : Jun 22 03:49:59 2025 GMT Subject: CN=684e42e7-f12c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:64:b2:c9:28:c0:1a:56:98:d5:40:3f:6c:88: 10:e3:f9:18:ba:51:99:ab:dc:a1:e4:5c:4f:0a:7b: 03:2c:35:8f:1a:3e:ee:58:f4:1c:51:26:c7:57:63: 8c:ad:16:56:86:8d:8f:a6:30:86:90:e8:67:b8:f2: e9:23:e0:7a:14:9e:5f:da:13:6f:79:48:0a:1f:da: 4d:be:8e:22:6e:f5:26:56:41:25:1e:f4:a1:40:af: 17:bc:49:68:56:f8:96:b2:27:92:bc:3a:38:6e:c3: fa:aa:0f:01:aa:e3:b7:fc:a4:27:75:0f:e5:9e:a5: c6:06:ff:d9:65:c7:a5:62:56:bc:c5:0d:ae:4c:5d: 0f:17:33:5e:5a:80:c1:7a:76:26:9f:d3:3a:1d:ec: db:ab:a6:8f:8a:b2:b2:32:e3:ef:8d:5d:6d:d1:04: b1:64:bc:dc:28:ac:40:18:d2:83:44:42:17:29:48: ed:79:af:98:7f:fb:f1:7c:b1:0f:8a:8b:a9:33:d5: 83:c1:87:2d:dd:20:0a:2d:92:4e:f6:9c:52:b7:ff: 59:9e:50:5c:11:99:49:35:a2:63:9a:38:44:ea:4e: 92:6b:ff:4a:2e:bf:10:0a:f7:44:f4:d7:0b:fd:41: 54:61:65:36:cb:99:5d:b4:a5:36:36:a3:1e:84:13: a1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D2:AB:6A:25:F2:03:84:2D:0A:62:A3:81:98:59:43:E8:E8:E4:00 X509v3 Authority Key Identifier: keyid:3A:15:43:BD:F3:77:2A:98:D2:94:EB:90:02:38:03:DD:DD:F1:1E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OhVDvfN3KpjSlOuQAjgD3d3xHmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/ECFF2AF887E611EE97E6C746C4F9AE02/OhVDvfN3KpjSlOuQAjgD3d3xHmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:b3:d1:dd:65:95:56:4d:51:f6:68:bb:3b:0a:ae:13:bb:c8: b9:72:0a:de:a1:fc:68:88:fc:ce:ac:d6:69:2d:ef:11:ab:71: fc:ec:ca:11:e3:d5:d9:b3:1d:da:62:a5:c5:e1:77:0e:90:bd: 6c:c8:da:9f:5d:a3:05:14:35:5a:f1:0d:65:ec:39:8a:2e:c2: 3f:43:9d:63:1b:b5:6b:b1:52:96:08:83:1f:c5:dc:ca:e5:f7: 3a:88:55:00:3e:ed:f4:19:d6:be:48:bc:fa:3b:5f:c1:b7:f7: fb:5f:70:4e:7a:0a:7e:8b:07:c7:a5:a9:b4:50:16:2c:68:cd: d1:9c:f7:ee:5d:b2:b2:19:40:e7:81:1f:08:b1:d3:1e:5e:8a: 50:3e:36:84:3f:ed:87:fb:b7:4d:ef:03:e8:4a:0c:6b:83:d9: c1:7c:da:02:c1:34:21:f0:4c:52:5d:45:54:d9:4f:d6:e1:57: c8:29:41:26:ce:11:22:c8:39:aa:9a:d4:d4:a9:81:e6:46:ab: d3:b3:67:d9:3b:c5:83:4d:6f:62:cc:9d:96:bc:30:6b:80:e3: 25:59:cd:ef:9b:4c:77:17:2b:fb:36:b1:e9:39:22:07:55:01: 56:1f:b0:df:d3:64:38:f0:6b:49:9b:2c:fd:7c:fb:e7:87:4b: 76:f3:ef:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDNBMTU0M0JERjM3NzJBOThEMjk0RUI5MDAyMzgwM0RE RERGMTFFNjIwHhcNMjUwNjE1MDM0OTU5WhcNMjUwNjIyMDM0OTU5WjAYMRYwFAYD VQQDEw02ODRlNDJlNy1mMTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmSyySjAGlaY1UA/bIgQ4/kYulGZq9yh5FxPCnsDLDWPGj7uWPQcUSbHV2OM rRZWho2PpjCGkOhnuPLpI+B6FJ5f2hNveUgKH9pNvo4ibvUmVkElHvShQK8XvElo VviWsieSvDo4bsP6qg8BquO3/KQndQ/lnqXGBv/ZZcelYla8xQ2uTF0PFzNeWoDB enYmn9M6Hezbq6aPirKyMuPvjV1t0QSxZLzcKKxAGNKDREIXKUjtea+Yf/vxfLEP ioupM9WDwYct3SAKLZJO9pxSt/9ZnlBcEZlJNaJjmjhE6k6Sa/9KLr8QCvdE9NcL /UFUYWU2y5ldtKU2NqMehBOhFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrSq2ol 8gOELQpio4GYWUPo6OQAMB8GA1UdIwQYMBaAFDoVQ73zdyqY0pTrkAI4A93d8R5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9FQ0ZGMkFGODg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0twalNsT3VRQWpnRDNkM3hI bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09oVkR2Zk4zS3BqU2xPdVFBamdEM2QzeEhtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9FQ0ZGMkFGODg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9PaFZEdmZOM0tw alNsT3VRQWpnRDNkM3hIbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAs9HdZZVWTVH2aLs7Cq4Tu8i5cgreofxoiPzOrNZpLe8Rq3H87MoR 49XZsx3aYqXF4XcOkL1syNqfXaMFFDVa8Q1l7DmKLsI/Q51jG7VrsVKWCIMfxdzK 5fc6iFUAPu30Gda+SLz6O1/Bt/f7X3BOegp+iwfHpam0UBYsaM3RnPfuXbKyGUDn gR8IsdMeXopQPjaEP+2H+7dN7wPoSgxrg9nBfNoCwTQh8ExSXUVU2U/W4VfIKUEm zhEiyDmqmtTUqYHmRqvTs2fZO8WDTW9izJ2WvDBrgOMlWc3vm0x3Fyv7NrHpOSIH VQFWH7Df02Q48GtJmyz9fPvnh0t28+/j -----END CERTIFICATE-----Generated at Mon Jun 16 06:18:39 2025 by rpki-client