$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: SSk0uI7DexT4l7Cm2vEzcth6TYUVB8E5riKfClpdWGk= Subject key identifier: BF:7E:12:19:23:E1:EF:6D:72:7A:41:EC:F0:2C:1A:BC:FF:F3:5D:F8 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 01F1 Signing time: Thu 19 Jun 2025 01:59:07 +0000 Manifest this update: Thu 19 Jun 2025 01:59:07 +0000 Manifest next update: Thu 26 Jun 2025 01:59:07 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: xoqt49RocVF6hjrEe2c/64l0h0IJlksn4/AWYLcHcHQ=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Jun 19 01:59:07 2025 GMT Not After : Jun 26 01:59:07 2025 GMT Subject: CN=68536eeb-5c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3b:db:61:40:cb:da:0b:12:31:8b:5a:a3:ec: 40:f2:eb:06:18:6c:5b:7e:f9:17:19:fc:e6:94:11: dd:f3:56:6c:46:59:85:e5:59:33:c5:8a:c8:df:5b: 4b:1e:2c:2d:84:32:92:99:07:f3:8a:68:e5:71:5b: e3:d2:56:b0:c8:38:47:f4:92:7f:d5:8e:e2:ce:4e: 50:45:33:d3:b3:7d:88:c3:0a:00:d3:12:56:ed:72: 91:42:94:42:db:37:07:bb:5b:69:ed:24:67:b6:41: 63:ab:64:fe:76:92:ce:67:33:4c:84:f0:1d:14:5a: 10:81:06:c8:ea:85:89:cd:a1:aa:62:61:03:a9:c1: 6f:7e:f9:4f:46:11:d9:97:f8:c4:15:22:08:63:9c: da:6d:b1:31:e1:3e:d1:15:4f:0e:3e:fd:1a:50:1d: c1:c6:a2:9b:15:3e:0f:2e:78:0c:95:73:d0:ce:44: e0:35:e0:7d:61:11:c2:53:81:4a:4b:c9:e4:47:4e: a4:6e:64:de:e3:5e:62:b6:a3:89:d7:17:6d:fb:5d: 45:0f:c9:98:61:ee:c4:a3:87:87:e1:ae:e6:4e:c5: a1:08:e2:e8:97:d1:e1:41:70:29:d4:07:d4:d7:e5: f0:01:cd:70:ed:4f:c1:27:97:7e:ea:f3:3f:f4:1f: c9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:7E:12:19:23:E1:EF:6D:72:7A:41:EC:F0:2C:1A:BC:FF:F3:5D:F8 X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:be:5f:45:24:ae:e0:77:e9:14:da:f3:b2:1a:3a:96:a9:aa: 5f:ef:7a:98:83:13:e1:4c:d1:d8:59:58:9b:25:2c:05:e3:53: c6:6a:62:dd:82:ea:4e:6f:ab:83:39:df:8a:c4:ad:33:e2:01: 86:9d:d2:a5:c6:39:e1:60:28:9b:5a:1d:0f:48:34:34:6f:fb: 68:af:db:35:65:24:18:4c:12:e5:b4:8c:f0:16:f5:3c:a7:5f: da:95:59:b8:1a:ba:f7:7d:25:29:17:76:a2:f9:8a:2b:89:f6: c9:41:b3:8c:82:d3:b5:85:a2:e1:5c:9f:57:60:b8:56:5d:85: 21:9c:aa:b0:e3:47:44:90:a9:d3:3c:df:93:34:73:e3:4a:2f: c9:c5:8f:17:7e:b3:b4:27:58:46:cc:05:85:98:ee:c7:51:b0: 6f:fb:45:3a:9a:57:7f:a6:ad:1f:1e:72:31:b4:96:bb:9b:9b: 7e:c8:e3:6c:40:07:20:6f:b9:53:5f:15:32:61:f3:9d:b4:20: d5:d1:39:63:4e:46:c7:29:e7:95:e3:78:96:c6:b5:3e:24:30: 49:bd:cd:84:6f:4a:88:64:7f:5d:57:7e:05:aa:9b:d5:93:21: 1e:a8:e4:74:6e:de:c5:aa:1c:4a:a6:4f:d2:81:e7:1e:13:63: be:ec:23:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUwNjE5MDE1OTA3WhcNMjUwNjI2MDE1OTA3WjAYMRYwFAYD VQQDEw02ODUzNmVlYi01YzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjvbYUDL2gsSMYtao+xA8usGGGxbfvkXGfzmlBHd81ZsRlmF5VkzxYrI31tL HiwthDKSmQfzimjlcVvj0lawyDhH9JJ/1Y7izk5QRTPTs32IwwoA0xJW7XKRQpRC 2zcHu1tp7SRntkFjq2T+dpLOZzNMhPAdFFoQgQbI6oWJzaGqYmEDqcFvfvlPRhHZ l/jEFSIIY5zabbEx4T7RFU8OPv0aUB3BxqKbFT4PLngMlXPQzkTgNeB9YRHCU4FK S8nkR06kbmTe415itqOJ1xdt+11FD8mYYe7Eo4eH4a7mTsWhCOLol9HhQXAp1AfU 1+XwAc1w7U/BJ5d+6vM/9B/J8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9+Ehkj 4e9tcnpB7PAsGrz/8134MB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCevl9FJK7gd+kU2vOyGjqWqapf73qYgxPhTNHYWVibJSwF41PGamLd gupOb6uDOd+KxK0z4gGGndKlxjnhYCibWh0PSDQ0b/tor9s1ZSQYTBLltIzwFvU8 p1/alVm4Grr3fSUpF3ai+YorifbJQbOMgtO1haLhXJ9XYLhWXYUhnKqw40dEkKnT PN+TNHPjSi/JxY8XfrO0J1hGzAWFmO7HUbBv+0U6mld/pq0fHnIxtJa7m5t+yONs QAcgb7lTXxUyYfOdtCDV0TljTkbHKeeV43iWxrU+JDBJvc2Eb0qIZH9dV34FqpvV kyEeqOR0bt7FqhxKpk/SgeceE2O+7COe -----END CERTIFICATE-----Generated at Thu Jun 19 07:44:29 2025 by rpki-client