$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: sJ9ZqcDuy207mchpYXTanDqklR9eaAYA5ywff1ICfdI= Subject key identifier: CD:88:10:16:3F:59:98:F1:A7:A6:ED:2C:20:AC:FD:63:97:D5:6E:3F Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: 66 Signing time: Tue 05 Aug 2025 07:46:45 +0000 Manifest this update: Tue 05 Aug 2025 07:46:45 +0000 Manifest next update: Tue 12 Aug 2025 07:46:45 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: 7PU30FTh90b3fVli9ga4Kfdv8yiYHasvMdoY6PO7w/s=) 2: 7F9864BC278511F08A309E80C4F9AE02.roa (hash: Qmy+i9C5Rc4mKmMkW3mFXP5ni+MgnYfnd/vlrjppwOw=) 3: 965254F8278811F09217002CC4F9AE02.roa (hash: 43x78k+dzhsv7ZCDVrgKApUESFB1ajmPRMXQlcEBmxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:46:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Aug 5 07:46:45 2025 GMT Not After : Aug 12 07:46:45 2025 GMT Subject: CN=6891b6e5-0aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:33:ef:bf:f4:2b:35:c8:f4:c9:dd:f6:7f:92: 83:ce:d8:59:d5:79:18:f8:7f:78:6d:c9:c0:4d:d5: 6b:ad:bc:39:e3:2b:93:36:fb:19:de:0e:64:34:c3: 70:e0:a4:78:d9:60:5c:d0:b5:19:5e:92:8f:25:26: db:0d:ed:41:36:7c:15:7e:6f:92:c0:cd:f0:c9:05: 4d:15:27:ef:e0:98:8a:37:2c:04:a7:53:89:ad:88: 94:f5:f4:bd:18:a7:b3:ec:75:52:5e:70:36:0f:d0: 4e:aa:13:5f:7f:cf:6a:e7:09:3b:53:a4:d0:41:0b: 67:2d:04:1a:c0:29:70:7a:93:ca:c4:30:59:4b:9c: 69:6c:98:3f:27:36:7f:a5:68:f8:09:7a:ca:e0:d5: 00:93:53:83:bc:ea:75:cd:29:18:1b:9b:08:ce:55: 48:87:fb:5e:6f:1f:e1:f2:5b:bc:9a:07:9c:66:7d: 9c:5a:33:b4:e9:2d:89:98:7d:3c:89:76:6b:e3:88: ce:ad:cd:05:45:1c:05:9e:2c:7c:59:02:3c:87:6b: 8e:09:0a:34:9f:95:f4:54:5a:e4:cd:e5:bd:b8:ad: 3d:2b:3d:f9:e3:d3:3d:35:cf:c1:05:37:57:bb:95: e0:ce:fe:dc:a5:bc:81:70:a0:9e:4e:92:22:73:69: e6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:88:10:16:3F:59:98:F1:A7:A6:ED:2C:20:AC:FD:63:97:D5:6E:3F X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:aa:75:51:e6:d7:59:e0:0e:8d:c6:61:24:ae:0e:1c:08:a6: 78:1a:36:60:02:1e:96:7c:02:a3:f0:09:e4:e1:9f:d4:0d:4e: c1:1f:a6:54:43:2d:11:97:28:a2:61:c3:c2:73:6e:08:15:a7: af:d1:9e:35:39:6e:6f:e4:0a:9a:65:07:0a:e9:9f:2c:01:ff: 90:91:5e:92:d2:b9:30:bb:8a:f3:b5:cf:7a:bc:3e:b6:f8:32: 0e:9a:ab:f6:87:2f:eb:ae:9b:9e:69:bd:0c:88:25:6b:a8:ba: 8a:c0:1e:63:31:55:b5:ec:76:02:3f:84:44:d0:f2:b6:03:4c: 8a:24:cd:b7:7b:a5:d5:a0:f5:b1:da:ad:8a:16:33:d8:fe:64: f7:e9:eb:2b:9a:b2:87:f5:c2:87:90:fc:cb:4e:d8:52:fc:d4: 5e:b4:be:6c:9a:db:47:98:45:6e:16:75:e1:ac:60:98:a2:40: d4:69:81:c6:a7:87:c2:9f:2b:52:d2:4a:4c:4a:2f:4b:a0:6d: ef:a2:96:ec:ac:99:10:d7:b4:b9:93:a9:a6:4b:14:95:67:d1: ae:02:a8:72:77:f5:3e:72:d3:10:cd:29:9b:81:78:79:b6:a2: 2f:5f:33:a0:cc:57:b9:a3:42:8b:b8:0d:db:4a:7f:b2:67:83: af:1e:8d:b3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjY4QzExMC8GA1UEBRMoQTIyODhGODk2NEQ2MTY5QTg3OTVGMkY0RUYwNUUwRDVF NkUxM0IwOTAeFw0yNTA4MDUwNzQ2NDVaFw0yNTA4MTIwNzQ2NDVaMBgxFjAUBgNV BAMTDTY4OTFiNmU1LTBhZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/M++/9Cs1yPTJ3fZ/koPO2FnVeRj4f3htycBN1WutvDnjK5M2+xneDmQ0w3Dg pHjZYFzQtRleko8lJtsN7UE2fBV+b5LAzfDJBU0VJ+/gmIo3LASnU4mtiJT19L0Y p7PsdVJecDYP0E6qE19/z2rnCTtTpNBBC2ctBBrAKXB6k8rEMFlLnGlsmD8nNn+l aPgJesrg1QCTU4O86nXNKRgbmwjOVUiH+15vH+HyW7yaB5xmfZxaM7TpLYmYfTyJ dmvjiM6tzQVFHAWeLHxZAjyHa44JCjSflfRUWuTN5b24rT0rPfnj0z01z8EFN1e7 leDO/tylvIFwoJ5OkiJzaeYbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzYgQFj9Z mPGnpu0sIKz9Y5fVbj8wHwYDVR0jBBgwFoAUoiiPiWTWFpqHlfL07wXg1ebhOwkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNjhDLzE3RDEwM0E4RUFC MjExRUY4NDZGMTMzN0M0RjlBRTAyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2lpUGlXVFdGcHFIbGZMMDd3WGcxZWJoT3drLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC NjhDLzE3RDEwM0E4RUFCMjExRUY4NDZGMTMzN0M0RjlBRTAyL29paVBpV1RXRnBx SGxmTDA3d1hnMWViaE93ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAImqdVHm11ngDo3GYSSuDhwIpngaNmACHpZ8AqPwCeThn9QNTsEfplRD LRGXKKJhw8JzbggVp6/RnjU5bm/kCpplBwrpnywB/5CRXpLSuTC7ivO1z3q8Prb4 Mg6aq/aHL+uum55pvQyIJWuouorAHmMxVbXsdgI/hETQ8rYDTIokzbd7pdWg9bHa rYoWM9j+ZPfp6yuasof1woeQ/MtO2FL81F60vmya20eYRW4WdeGsYJiiQNRpgcan h8KfK1LSSkxKL0ugbe+iluysmRDXtLmTqaZLFJVn0a4CqHJ39T5y0xDNKZuBeHm2 oi9fM6DMV7mjQou4DdtKf7Jng68ejbM= -----END CERTIFICATE-----Generated at Thu Aug 7 01:13:22 2025 by rpki-client