$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: W7RjpPIdF0Keb9usVG6v1ETsxR8kEeHGnHxWuAVu51E= Subject key identifier: 84:3C:89:4C:5A:9F:DB:4C:16:E5:6A:22:4B:D5:0E:65:13:7F:CD:9B Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: 65 Signing time: Fri 13 Jun 2025 05:56:33 +0000 Manifest this update: Fri 13 Jun 2025 05:56:33 +0000 Manifest next update: Fri 20 Jun 2025 05:56:33 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: kigNZAe/QACcNj+lASDVM3XS0cF8JgkYQguFlperRvQ=) 2: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 7A02Qe5tU1BaVkRNS6N9PAYKa4qN0Lgazu0at/u/nBw=) 3: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: ELgn79sVAW9E3JP6Gcqdp6NoM1aGV5NXuDSvgrgOR0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:56:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Jun 13 05:56:33 2025 GMT Not After : Jun 20 05:56:33 2025 GMT Subject: CN=684bbd91-c54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:15:d3:f6:59:b1:83:32:90:a7:45:dd:a3:61: de:93:18:f7:2e:8f:1c:c3:3f:be:94:f1:ef:fa:d1: f2:2d:9a:57:0a:93:60:d7:71:da:d3:0a:a7:b2:f8: 1a:43:19:33:89:06:76:9b:aa:73:26:91:2f:88:ff: bf:46:51:3c:3a:2a:be:c1:89:58:69:89:4d:81:9b: 3f:41:62:54:be:3c:d0:21:d2:3a:87:ae:10:4a:a9: f6:4c:e9:fc:e5:74:57:fd:7b:2b:37:19:66:1f:90: e4:bc:3e:a1:f1:28:83:90:ba:73:bd:ab:f4:e3:b6: 38:51:34:6a:de:08:71:79:fd:03:eb:8c:ea:37:5c: 1f:a4:06:c6:c2:77:0f:13:20:76:00:2c:69:fc:28: 8a:2a:24:b9:1d:59:77:ee:91:36:2d:df:21:6d:c3: 91:20:84:15:7b:e5:b8:b4:bf:ed:0c:44:ca:10:02: 6b:f8:31:e7:d0:9a:ef:87:a8:16:b0:9c:5a:ea:9d: 0d:d5:4e:d8:ee:05:01:85:9d:30:d2:5a:a2:d4:be: de:87:df:b8:a5:37:9f:8c:42:fc:72:b6:9e:0f:bc: 49:83:5c:b3:80:dc:f9:80:2b:be:f6:97:d9:b7:f5: 46:66:ba:35:ba:77:8d:ee:b8:1b:c8:49:a2:a1:67: 67:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:3C:89:4C:5A:9F:DB:4C:16:E5:6A:22:4B:D5:0E:65:13:7F:CD:9B X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:17:60:47:74:01:cd:16:6b:55:31:30:f3:d9:6d:2e:db:aa: 6e:df:7f:0b:a2:13:9d:48:7e:80:5c:88:24:e3:7f:60:95:06: 44:e7:55:a5:f4:01:a0:96:a3:b4:d5:c5:dc:e1:3a:98:95:db: 6f:7e:40:f2:30:be:77:24:18:4f:87:36:84:b9:f5:7b:6f:94: e9:fa:e8:05:25:9e:ec:f6:de:18:4d:00:a6:85:cc:b0:4c:26: e3:6f:31:82:9e:57:98:2a:f2:65:28:da:1a:f6:1d:90:ba:88: f1:00:32:45:3d:e2:68:40:2c:2d:23:f0:92:a4:3a:2b:90:13: 0e:fd:96:52:c0:82:fe:a2:2a:41:6d:d1:88:65:f7:df:bd:53: ff:c4:9e:73:7a:48:1d:3a:ff:4b:09:2f:6d:22:ea:e4:91:42: 80:ba:74:5a:c5:3c:e6:8d:42:24:90:87:ec:1d:40:97:f4:2b: 41:c1:e9:cb:2a:e6:43:59:79:c2:5e:a9:ea:d3:c3:56:20:6c: 11:78:a8:d4:69:b5:05:5c:0f:5b:23:84:da:97:c3:1c:41:37: e6:e8:ed:dd:cb:e1:6c:47:2e:5f:44:be:0a:09:55:7f:ea:cb: a6:2f:fd:7f:2b:1a:aa:bc:e6:70:a9:df:31:7c:f6:80:f5:20: 4c:de:01:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTVFNTExMC8GA1UEBRMoQTAwRTAyREM3ODNGOTA4NDAyMURGOTRGNzU4NjI2NEVD NDdEMzQzODAeFw0yNTA2MTMwNTU2MzNaFw0yNTA2MjAwNTU2MzNaMBgxFjAUBgNV BAMTDTY4NGJiZDkxLWM1NGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3FdP2WbGDMpCnRd2jYd6TGPcujxzDP76U8e/60fItmlcKk2DXcdrTCqey+BpD GTOJBnabqnMmkS+I/79GUTw6Kr7BiVhpiU2Bmz9BYlS+PNAh0jqHrhBKqfZM6fzl dFf9eys3GWYfkOS8PqHxKIOQunO9q/TjtjhRNGreCHF5/QPrjOo3XB+kBsbCdw8T IHYALGn8KIoqJLkdWXfukTYt3yFtw5EghBV75bi0v+0MRMoQAmv4MefQmu+HqBaw nFrqnQ3VTtjuBQGFnTDSWqLUvt6H37ilN5+MQvxytp4PvEmDXLOA3PmAK772l9m3 9UZmujW6d43uuBvISaKhZ2eZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhDyJTFqf 20wW5WoiS9UOZRN/zZswHwYDVR0jBBgwFoAUoA4C3Hg/kIQCHflPdYYmTsR9NDgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFNUU1L0Y5N0JDMzAyQUZC RjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5E Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb0E0QzNIZ19rSVFDSGZsUGRZWW1Uc1I5TkRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF NUU1L0Y5N0JDMzAyQUZCRjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lR Q0hmbFBkWVltVHNSOU5EZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD8XYEd0Ac0Wa1UxMPPZbS7bqm7ffwuiE51IfoBciCTjf2CVBkTnVaX0 AaCWo7TVxdzhOpiV229+QPIwvnckGE+HNoS59XtvlOn66AUlnuz23hhNAKaFzLBM JuNvMYKeV5gq8mUo2hr2HZC6iPEAMkU94mhALC0j8JKkOiuQEw79llLAgv6iKkFt 0Yhl99+9U//EnnN6SB06/0sJL20i6uSRQoC6dFrFPOaNQiSQh+wdQJf0K0HB6csq 5kNZecJeqerTw1YgbBF4qNRptQVcD1sjhNqXwxxBN+bo7d3L4WxHLl9EvgoJVX/q y6Yv/X8rGqq85nCp3zF89oD1IEzeAZ0= -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:48 2025 by rpki-client