$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: tz24ekfS+X/rLoU/q5OnU/Lfoiv+y9Pfl5J8YEY8HG4= Subject key identifier: 25:0C:75:29:7D:F0:45:20:CB:53:B0:D5:A5:24:B1:07:3E:6F:C9:34 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 02AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 02A0 Signing time: Thu 19 Jun 2025 01:24:04 +0000 Manifest this update: Thu 19 Jun 2025 01:24:04 +0000 Manifest next update: Thu 26 Jun 2025 01:24:04 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: qrmfU0TbJk8fLEXjKP+Eut0Y6PhXtjJdhNZuD1VqXVo=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Jun 19 01:24:04 2025 GMT Not After : Jun 26 01:24:04 2025 GMT Subject: CN=685366b4-98ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2e:6e:5d:6f:41:83:b6:71:05:02:10:6e:9c: 38:b5:80:1a:28:43:d3:a2:41:a6:f2:9f:b6:86:38: 6a:0b:f1:27:9f:97:e7:b6:27:ea:9f:de:44:ce:17: 8c:4e:cf:0e:a4:c1:7c:0f:ea:75:05:39:8a:82:3f: f7:34:88:27:56:46:09:12:d3:78:d5:b8:85:5f:d8: 4a:f1:83:bd:24:5a:22:0d:e6:33:45:22:84:0f:77: df:07:84:e7:47:1e:16:56:29:6f:c2:71:1d:ef:ac: b1:4a:d1:db:fe:16:4d:09:38:c8:42:a8:22:36:d2: 64:bc:7d:35:58:a2:e7:dd:bb:40:1f:a9:be:93:3a: 8a:88:7d:09:6a:3e:22:35:2c:ac:04:0c:89:76:01: 85:93:4a:60:d9:9d:c3:05:71:06:fa:cb:6c:86:07: f3:e6:d1:ac:8e:d5:f9:0c:cb:a7:17:ff:d5:4a:8d: dc:b4:79:bf:d6:5e:61:d1:bf:fa:84:c4:25:8b:0a: bd:5c:01:3e:61:4d:d8:4c:32:a3:5b:01:c7:38:1c: a2:ff:bb:0b:4c:33:02:79:17:e8:63:51:2d:61:76: bf:ed:c6:32:42:cf:7a:6c:2b:a7:66:0a:45:05:f2: d0:fa:6c:5f:cc:f0:3b:9b:e4:3c:14:9e:5e:cb:74: 73:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0C:75:29:7D:F0:45:20:CB:53:B0:D5:A5:24:B1:07:3E:6F:C9:34 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:06:45:94:fd:24:1b:09:c4:e4:a7:6e:6c:ed:5f:1a:95:7e: 2a:41:7a:e6:86:d2:09:ea:82:0e:fc:70:50:d0:64:74:48:02: 01:88:8b:b8:4a:67:71:c8:87:bb:aa:80:f2:35:af:2b:cc:ba: f9:01:83:8c:2a:52:6e:2f:81:9b:d5:06:6a:91:4d:fa:22:4a: 07:19:3b:1d:46:fc:8a:b5:76:2d:99:37:ec:a2:a6:60:71:6e: ff:d5:51:60:a7:fa:b3:e4:58:a2:06:60:ad:83:fc:42:9c:99: 81:2e:25:f0:27:b4:7a:a2:d5:06:7b:f8:ba:ff:fd:99:8a:23: ee:2d:53:3b:8d:96:6b:9b:22:1d:57:62:69:88:61:f2:9b:13: fb:06:88:42:7b:ae:b4:21:6b:21:7a:6c:98:c5:f8:e4:83:2c: ae:f4:ea:2f:17:8d:b5:a7:b6:7d:99:46:2b:05:61:93:aa:00: 27:96:06:6a:0d:9f:d9:80:5c:56:f6:52:24:87:33:32:5f:f2: 97:bf:90:51:d1:bb:dc:1e:2a:6e:31:65:5a:28:b2:e6:6a:bc: cc:5a:56:ac:21:ae:73:84:86:6f:f4:74:df:8c:f1:eb:51:56: 6a:df:8a:65:23:bd:b6:78:6b:96:d7:6f:00:c5:da:39:a3:7e: de:9d:06:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUwNjE5MDEyNDA0WhcNMjUwNjI2MDEyNDA0WjAYMRYwFAYD VQQDEw02ODUzNjZiNC05OGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8C5uXW9Bg7ZxBQIQbpw4tYAaKEPTokGm8p+2hjhqC/Enn5fntifqn95EzheM Ts8OpMF8D+p1BTmKgj/3NIgnVkYJEtN41biFX9hK8YO9JFoiDeYzRSKED3ffB4Tn Rx4WVilvwnEd76yxStHb/hZNCTjIQqgiNtJkvH01WKLn3btAH6m+kzqKiH0Jaj4i NSysBAyJdgGFk0pg2Z3DBXEG+stshgfz5tGsjtX5DMunF//VSo3ctHm/1l5h0b/6 hMQliwq9XAE+YU3YTDKjWwHHOByi/7sLTDMCeRfoY1EtYXa/7cYyQs96bCunZgpF BfLQ+mxfzPA7m+Q8FJ5ey3RzzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUMdSl9 8EUgy1Ow1aUksQc+b8k0MB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOBkWU/SQbCcTkp25s7V8alX4qQXrmhtIJ6oIO/HBQ0GR0SAIBiIu4 SmdxyIe7qoDyNa8rzLr5AYOMKlJuL4Gb1QZqkU36IkoHGTsdRvyKtXYtmTfsoqZg cW7/1VFgp/qz5FiiBmCtg/xCnJmBLiXwJ7R6otUGe/i6//2ZiiPuLVM7jZZrmyId V2JpiGHymxP7BohCe660IWshemyYxfjkgyyu9OovF421p7Z9mUYrBWGTqgAnlgZq DZ/ZgFxW9lIkhzMyX/KXv5BR0bvcHipuMWVaKLLmarzMWlasIa5zhIZv9HTfjPHr UVZq34plI722eGuW128Axdo5o37enQYc -----END CERTIFICATE-----Generated at Thu Jun 19 18:59:43 2025 by rpki-client