$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft File: onKsr-j6pPKpcApvwRQlkIx0PUs.mft (raw, json) Hash identifier: dEe+B2WwlM+HszydMX38byObQDGc0O/RB+eloV1ucHA= Subject key identifier: F7:7A:A6:2C:3A:36:37:44:34:B3:8E:3E:F0:9D:B1:25:15:4C:27:D8 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0ABB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft Manifest number: 0A6A Signing time: Mon 16 Jun 2025 19:36:57 +0000 Manifest this update: Mon 16 Jun 2025 19:36:57 +0000 Manifest next update: Mon 23 Jun 2025 19:36:57 +0000 Files and hashes: 1: onKsr-j6pPKpcApvwRQlkIx0PUs.crl (hash: OJjffQt1uAzWPSh46rkpwUKHqLm/dhHEAjnjGgUsEKs=) 2: 879C6CC6BC0A11EF8387A57BC4F9AE02.roa (hash: GD8TE1iM2Ym7f93p/1VYDkqCG50V4KFtJCkioUpH7AI=) 3: B379B0346F4711EA81200366C4F9AE02.roa (hash: 34aVw5Rt72hNPVd0d/UxB/shSl9fnFPWjJTO5/uz5ZU=) 4: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (hash: 5hsatirdoTAMt8sVP/32NV6rGnCIOasP2d6dKTsMLr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 19:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2747 (0xabb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Jun 16 19:36:57 2025 GMT Not After : Jun 23 19:36:57 2025 GMT Subject: CN=68507259-1c27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f2:bc:20:7f:47:fe:87:8f:1a:c6:e3:8c:84: b2:a9:b5:eb:f7:ef:9a:b1:fc:f9:7a:72:e1:98:5e: 40:e4:03:c2:da:f4:30:42:d5:7d:75:3d:94:56:b1: 11:09:44:6e:ec:6a:6a:00:82:6c:2e:9f:e1:2c:3f: ce:7b:47:d5:46:63:63:60:bf:bd:f5:a4:31:a0:8c: ca:52:29:7f:a0:f4:12:b2:d0:4e:cc:9a:eb:d3:88: 96:28:23:aa:54:cb:a5:ce:35:b9:d9:79:2f:5e:58: d0:41:19:02:c2:a2:31:36:14:cc:1c:9c:aa:a9:bb: d4:a7:3f:b2:ba:fc:2e:71:75:f5:53:a3:3e:1d:26: 0c:5f:02:0a:69:7c:bd:85:0e:96:16:40:74:85:66: 12:28:34:ee:a4:af:8c:ac:09:25:e7:54:6d:ff:5e: 1d:47:e9:58:74:c7:6e:05:11:16:71:97:f2:65:67: 2a:d9:88:0c:a4:76:8f:38:11:db:47:03:79:ff:f4: d3:38:e3:ee:e0:dc:0a:e2:bf:92:c2:8a:79:61:e4: f6:01:8a:bc:aa:e6:2f:5f:67:13:24:d3:74:3f:d0: 74:06:08:c9:04:6c:25:a6:18:a1:69:2c:e8:26:10: db:53:e0:1f:46:c3:14:38:50:9e:cd:22:98:fb:80: da:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7A:A6:2C:3A:36:37:44:34:B3:8E:3E:F0:9D:B1:25:15:4C:27:D8 X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:f9:a7:b9:d5:a9:9c:19:e9:97:1c:58:a9:51:d2:28:29:54: cd:5e:6e:ce:30:2f:92:46:77:b9:cb:4c:be:12:fb:64:7a:3b: d2:3d:a9:58:d6:39:ec:34:6b:97:36:eb:c1:21:bd:e2:60:17: 55:c2:f5:53:7e:dd:9b:1c:7f:1d:a1:99:e5:94:ae:64:ca:9a: 6d:ff:e7:4e:68:f4:0f:49:a4:28:9e:d4:3d:30:60:24:d4:10: 30:e1:3e:27:3c:6b:8f:62:b5:f1:32:39:0d:da:50:7c:a6:85: 9f:4d:14:7a:2d:3f:84:4f:f8:74:82:85:0b:34:38:8a:9d:8d: b0:1f:6e:a1:69:2c:75:19:ea:78:6c:ff:dd:4f:c9:cc:11:01: 3c:a5:38:b9:a5:c1:c5:b4:3d:6d:47:30:ae:e8:65:c6:a8:51: 2c:58:ac:c9:bb:ba:29:d7:2c:ab:ea:df:66:7c:48:e9:d3:a5: 8c:d3:39:39:92:2e:74:36:66:9b:09:16:09:8e:86:6d:07:59: 06:64:1b:ca:17:ba:4c:fd:42:b9:cd:e0:95:41:b1:f7:f8:95: 63:a6:b7:0e:b4:55:df:bf:30:61:cc:20:f8:fb:c4:ba:f4:a4: ef:bb:c4:f2:d2:15:a5:19:cf:12:06:43:b9:38:cb:fd:e0:a4: 5b:d0:d1:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjUwNjE2MTkzNjU3WhcNMjUwNjIzMTkzNjU3WjAYMRYwFAYD VQQDEw02ODUwNzI1OS0xYzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/K8IH9H/oePGsbjjISyqbXr9++asfz5enLhmF5A5APC2vQwQtV9dT2UVrER CURu7GpqAIJsLp/hLD/Oe0fVRmNjYL+99aQxoIzKUil/oPQSstBOzJrr04iWKCOq VMulzjW52XkvXljQQRkCwqIxNhTMHJyqqbvUpz+yuvwucXX1U6M+HSYMXwIKaXy9 hQ6WFkB0hWYSKDTupK+MrAkl51Rt/14dR+lYdMduBREWcZfyZWcq2YgMpHaPOBHb RwN5//TTOOPu4NwK4r+Swop5YeT2AYq8quYvX2cTJNN0P9B0BgjJBGwlphihaSzo JhDbU+AfRsMUOFCezSKY+4Da8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPd6piw6 NjdENLOOPvCdsSUVTCfYMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UyNy9GMzg4ODc2NjZGM0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQ S3BjQXB2d1JRbGtJeDBQVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9+ae51amcGemXHFipUdIoKVTNXm7OMC+SRne5y0y+EvtkejvSPalY 1jnsNGuXNuvBIb3iYBdVwvVTft2bHH8doZnllK5kyppt/+dOaPQPSaQontQ9MGAk 1BAw4T4nPGuPYrXxMjkN2lB8poWfTRR6LT+ET/h0goULNDiKnY2wH26haSx1Gep4 bP/dT8nMEQE8pTi5pcHFtD1tRzCu6GXGqFEsWKzJu7op1yyr6t9mfEjp06WM0zk5 ki50NmabCRYJjoZtB1kGZBvKF7pM/UK5zeCVQbH3+JVjprcOtFXfvzBhzCD4+8S6 9KTvu8Ty0hWlGc8SBkO5OMv94KRb0NGs -----END CERTIFICATE-----Generated at Wed Jun 18 10:09:19 2025 by rpki-client