$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: RhLBChnrv+wG9YVBmRDCzq9SaNpu1Q8gT4wv6Otg/ok= Subject key identifier: AA:13:B9:0F:62:60:B1:C1:19:BC:87:8D:B5:4F:DA:3F:52:7E:02:B3 Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 01D3 Signing time: Sun 15 Jun 2025 02:07:30 +0000 Manifest this update: Sun 15 Jun 2025 02:07:29 +0000 Manifest next update: Sun 22 Jun 2025 02:07:29 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: G7/DUUIAJLOAWv9pxplMgl9dKiRyBp9zC2ZdUSjLffA=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: KfdVVRr1UwfhsTtUMM0Ph6w9qtVR9qcrLdXdVzGndCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Jun 15 02:07:29 2025 GMT Not After : Jun 22 02:07:29 2025 GMT Subject: CN=684e2ae1-0b48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:b2:f6:c8:1d:ee:b3:4d:b4:ab:23:c6:80:4b: e1:58:e1:bc:96:d4:89:e7:4b:b2:51:42:f9:36:5d: 0d:0e:06:c7:f9:09:50:0a:d3:ba:34:18:90:0c:93: b1:f0:dc:a9:ac:f3:d7:3a:7b:f4:99:fb:d4:c3:5b: 21:cf:db:20:09:c8:73:61:98:92:21:94:4e:55:64: 08:a3:f2:e2:2b:96:c7:30:bd:c4:d6:9d:87:63:f5: c7:1c:fb:f0:8c:2a:ab:43:7f:77:72:da:42:fc:c4: c4:07:e0:ce:24:08:08:8a:46:ea:8b:df:a2:2f:e3: 35:78:81:43:b0:be:d6:9f:5a:54:1a:30:72:b0:01: 6d:c2:ed:37:4a:66:81:a0:d9:0e:07:d0:71:39:d0: 89:7e:1d:b9:db:01:5f:de:28:a3:db:e1:1a:48:88: 3f:fa:1e:29:12:b9:00:8f:51:0a:a2:0f:14:b0:4b: 53:ce:16:38:4e:18:78:3c:d2:97:41:b8:f5:17:6c: 2c:7c:cd:bb:c3:b5:dc:0d:f7:f0:0a:aa:a2:12:72: 77:0e:e6:a7:2d:ac:b9:1b:e2:36:2e:c1:f4:1c:48: a6:99:f4:59:c6:de:16:2e:d9:6d:fb:97:9b:53:da: 6b:8d:38:3e:64:03:d8:eb:90:e4:0f:cb:79:75:11: 20:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:13:B9:0F:62:60:B1:C1:19:BC:87:8D:B5:4F:DA:3F:52:7E:02:B3 X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:78:08:31:fc:9e:82:20:43:b5:7a:01:ae:eb:30:87:e3:46: 33:6d:54:f7:2d:0d:24:de:7d:05:df:ba:f0:58:28:66:da:6d: d2:3e:c9:34:bb:96:97:e5:6f:fb:e5:8c:fc:fe:9f:4a:14:41: 8a:00:37:68:12:c9:0d:40:ee:d9:a8:31:29:3e:66:00:c4:e2: 58:18:92:57:2a:5c:56:f3:ca:9e:cf:16:8f:72:1d:9f:5f:1d: a1:9a:a6:82:8d:9d:3d:84:e9:aa:d0:d7:43:e0:e4:68:9a:1e: 90:6a:46:53:d8:b8:37:32:7c:f7:bd:85:dd:b6:c1:90:a0:e6: 6b:22:ee:3c:58:39:12:ae:4a:c7:3e:53:3d:fe:54:8e:13:55: 2d:3e:55:2e:06:e8:80:1d:ce:48:ad:3e:94:77:e1:3e:79:c7: 5b:54:4d:25:c8:0d:ed:b4:a6:a0:57:ba:2a:8d:60:89:ce:0d: 55:4a:f6:a8:ca:cf:df:89:6d:9c:af:1c:5d:49:6d:f2:1c:c9: 07:d3:89:ce:5d:86:19:bc:26:cd:6c:c8:85:9f:39:a9:a7:85: 8b:f2:3e:a9:e3:b2:2d:b4:6d:95:72:e9:35:3e:6f:f4:41:36: 23:8c:6a:c3:22:d3:4c:13:3b:39:88:bf:24:48:97:de:6b:66: fd:2f:fe:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUwNjE1MDIwNzI5WhcNMjUwNjIyMDIwNzI5WjAYMRYwFAYD VQQDEw02ODRlMmFlMS0wYjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+LL2yB3us020qyPGgEvhWOG8ltSJ50uyUUL5Nl0NDgbH+QlQCtO6NBiQDJOx 8NyprPPXOnv0mfvUw1shz9sgCchzYZiSIZROVWQIo/LiK5bHML3E1p2HY/XHHPvw jCqrQ393ctpC/MTEB+DOJAgIikbqi9+iL+M1eIFDsL7Wn1pUGjBysAFtwu03SmaB oNkOB9BxOdCJfh252wFf3iij2+EaSIg/+h4pErkAj1EKog8UsEtTzhY4Thh4PNKX Qbj1F2wsfM27w7XcDffwCqqiEnJ3DuanLay5G+I2LsH0HEimmfRZxt4WLtlt+5eb U9prjTg+ZAPY65DkD8t5dREgdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoTuQ9i YLHBGbyHjbVP2j9SfgKzMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdeAgx/J6CIEO1egGu6zCH40YzbVT3LQ0k3n0F37rwWChm2m3SPsk0 u5aX5W/75Yz8/p9KFEGKADdoEskNQO7ZqDEpPmYAxOJYGJJXKlxW88qezxaPch2f Xx2hmqaCjZ09hOmq0NdD4ORomh6QakZT2Lg3Mnz3vYXdtsGQoOZrIu48WDkSrkrH PlM9/lSOE1UtPlUuBuiAHc5IrT6Ud+E+ecdbVE0lyA3ttKagV7oqjWCJzg1VSvao ys/fiW2crxxdSW3yHMkH04nOXYYZvCbNbMiFnzmpp4WL8j6p47IttG2Vcuk1Pm/0 QTYjjGrDItNMEzs5iL8kSJfea2b9L/5v -----END CERTIFICATE-----Generated at Sun Jun 15 08:47:39 2025 by rpki-client