$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft File: ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft (raw, json) Hash identifier: mcdqloVuU+1rLZQmgMyjhNvpbsZBUQT+1NAA5SNtVek= Subject key identifier: F5:D7:7B:95:A2:FE:3A:C7:F7:38:01:20:C0:A9:71:F1:5F:12:01:1D Authority key identifier: A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 Certificate issuer: /CN=A91EDF00/serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Certificate serial: 046D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft Manifest number: 0469 Signing time: Mon 16 Jun 2025 23:44:50 +0000 Manifest this update: Mon 16 Jun 2025 23:44:49 +0000 Manifest next update: Mon 23 Jun 2025 23:44:49 +0000 Files and hashes: 1: ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl (hash: 2aua4vthq5ZbXxevK5zh1G483Gr/S+D/ZhiWYu7sVV0=) 2: 1B97FEB84E8111ECA3589560C4F9AE02.roa (hash: xAvVS/7W7xtAjphmjIYm8eiwHHWi2VdeCNpBEO7D7og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1133 (0x46d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDF00, serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Validity Not Before: Jun 16 23:44:49 2025 GMT Not After : Jun 23 23:44:49 2025 GMT Subject: CN=6850ac72-3bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:54:3d:92:e6:f1:53:99:15:3c:93:b5:e1:74: 51:bf:1f:ed:d9:42:2b:7e:a2:a6:e1:71:cc:66:b1: a2:0e:76:da:f0:7a:9f:5f:cd:a6:ee:52:a2:55:ad: 32:34:60:e6:7c:70:5f:e6:20:ce:cd:12:25:94:83: 0c:2f:a8:d7:0c:b7:2c:2e:20:ee:39:7a:be:f0:42: a2:8b:e6:19:f1:64:1e:e8:a2:83:bd:c6:cb:ac:97: 2e:d7:fb:b1:fd:d2:eb:72:a2:62:f2:0f:04:23:27: fb:cb:af:c6:a9:d2:6e:ac:33:35:28:e2:07:6f:bc: 02:0e:a7:1d:f7:00:86:89:f0:91:41:f9:5c:15:30: cd:a0:86:d4:b8:b0:ee:fa:5d:f2:26:98:8e:23:65: 03:e4:96:6c:96:8b:b5:64:d5:0d:22:d1:f4:00:c9: dc:7d:d2:97:7f:f3:84:cb:2f:09:ac:86:72:61:df: af:30:c9:e4:a7:c7:30:5f:83:b2:d3:44:a4:96:d2: 5a:8b:53:4e:d7:ea:89:e0:92:6b:03:90:02:57:30: 9e:34:8b:b3:f8:c0:df:05:b3:7f:52:51:76:19:b1: d9:e9:73:08:a2:e2:32:d0:c6:ae:4e:ba:5f:ff:50: 1e:fe:0b:e2:05:57:96:75:04:1e:8b:21:ab:c5:03: e3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D7:7B:95:A2:FE:3A:C7:F7:38:01:20:C0:A9:71:F1:5F:12:01:1D X509v3 Authority Key Identifier: keyid:A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:1e:ec:9b:f1:eb:30:63:a1:ec:f9:cd:3b:09:1c:78:56:57: 79:f8:8b:bb:57:ea:6b:46:38:3b:98:3f:45:69:e5:20:03:0f: 39:36:10:67:7e:19:ea:25:b0:9c:f9:8c:3e:9f:94:6a:f6:03: da:47:aa:0d:9b:bd:ec:89:79:bf:bb:5a:63:23:81:b4:24:25: b7:ba:eb:6c:e5:83:82:77:71:61:3f:2a:0a:1d:bd:40:2a:9f: 61:54:3d:fe:c2:9c:a9:82:9c:f2:58:9e:e9:be:71:fe:92:20: 13:af:05:d6:bd:76:ff:8a:c0:f2:0b:29:2d:04:8a:0b:77:36: a5:13:4d:5f:31:c4:56:e9:2f:52:7b:59:aa:a5:64:7e:18:cc: 92:c9:f7:7d:2f:bb:85:f2:1b:a1:58:60:64:fd:40:98:50:57: 40:04:07:82:b9:5e:ce:9f:fc:a5:19:08:19:18:72:ec:29:47: d4:a8:e6:74:39:0d:d3:34:5f:ba:84:84:32:3f:fe:1a:8f:48: 4a:d7:68:ce:cf:45:9c:d8:a8:0f:06:ff:a2:44:fa:50:24:d7: e8:80:cc:0b:3b:96:82:70:05:77:ba:9b:1e:78:eb:eb:59:bc: df:d0:ef:f0:f3:f0:36:d6:d6:8b:78:0f:f1:45:92:21:ed:56: a3:8e:3d:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURGMDAxMTAvBgNVBAUTKEEzM0NDQTgxQjU1RTA0NjU1RDFCNUE3RTJDRTY4OEMz RTQ2RkM1MzAwHhcNMjUwNjE2MjM0NDQ5WhcNMjUwNjIzMjM0NDQ5WjAYMRYwFAYD VQQDEw02ODUwYWM3Mi0zYmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlQ9kubxU5kVPJO14XRRvx/t2UIrfqKm4XHMZrGiDnba8HqfX82m7lKiVa0y NGDmfHBf5iDOzRIllIMML6jXDLcsLiDuOXq+8EKii+YZ8WQe6KKDvcbLrJcu1/ux /dLrcqJi8g8EIyf7y6/GqdJurDM1KOIHb7wCDqcd9wCGifCRQflcFTDNoIbUuLDu +l3yJpiOI2UD5JZslou1ZNUNItH0AMncfdKXf/OEyy8JrIZyYd+vMMnkp8cwX4Oy 00SkltJai1NO1+qJ4JJrA5ACVzCeNIuz+MDfBbN/UlF2GbHZ6XMIouIy0MauTrpf /1Ae/gviBVeWdQQeiyGrxQPj+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXXe5Wi /jrH9zgBIMCpcfFfEgEdMB8GA1UdIwQYMBaAFKM8yoG1XgRlXRtafizmiMPkb8Uw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREYwMC8zQUUwMDM0QTRF N0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJHVmRHMXAtTE9hSXctUnZ4 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ektnYlZlQkdWZEcxcC1MT2FJdy1SdnhUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REYwMC8zQUUwMDM0QTRFN0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJH VmRHMXAtTE9hSXctUnZ4VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChHuyb8eswY6Hs+c07CRx4Vld5+Iu7V+prRjg7mD9FaeUgAw85NhBn fhnqJbCc+Yw+n5Rq9gPaR6oNm73siXm/u1pjI4G0JCW3uuts5YOCd3FhPyoKHb1A Kp9hVD3+wpypgpzyWJ7pvnH+kiATrwXWvXb/isDyCyktBIoLdzalE01fMcRW6S9S e1mqpWR+GMySyfd9L7uF8huhWGBk/UCYUFdABAeCuV7On/ylGQgZGHLsKUfUqOZ0 OQ3TNF+6hIQyP/4aj0hK12jOz0Wc2KgPBv+iRPpQJNfogMwLO5aCcAV3upseeOvr Wbzf0O/w8/A21taLeA/xRZIh7Vajjj2m -----END CERTIFICATE-----Generated at Tue Jun 17 15:11:37 2025 by rpki-client