$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: KMV5oRoRLr9u3gOR0I7ky+VmiSNtD4sG5GU0nh7FFu4= Subject key identifier: 3D:B4:37:29:8E:E2:DD:22:45:24:63:C5:91:09:77:22:77:EE:A5:AD Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: 4C Signing time: Sun 15 Jun 2025 06:35:00 +0000 Manifest this update: Sun 15 Jun 2025 06:34:59 +0000 Manifest next update: Sun 22 Jun 2025 06:34:59 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: Y76Sq7IeOytM02heUh2ZDkbijGudsCxNPxif+RVskNY=) 2: 7F9864BC278511F08A309E80C4F9AE02.roa (hash: Qmy+i9C5Rc4mKmMkW3mFXP5ni+MgnYfnd/vlrjppwOw=) 3: 965254F8278811F09217002CC4F9AE02.roa (hash: 43x78k+dzhsv7ZCDVrgKApUESFB1ajmPRMXQlcEBmxQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 06:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Jun 15 06:34:59 2025 GMT Not After : Jun 22 06:34:59 2025 GMT Subject: CN=684e6994-9518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d9:e6:bd:33:c8:e3:f4:35:05:93:61:18:d7: 7b:48:7a:12:67:64:96:ce:e8:99:5b:aa:2d:52:05: 23:27:f0:fc:46:3b:d8:db:b8:aa:1c:ed:fe:6e:99: 9b:98:01:cf:f0:4e:1e:be:e5:7b:e4:c3:d8:ba:8b: 68:61:1f:2c:2a:a6:42:85:e1:b8:5c:c5:5b:fb:2f: 1e:51:c0:46:85:a0:51:7a:e5:bc:38:43:76:41:59: 82:b3:3e:c9:f0:8f:00:5c:9a:01:f2:5e:a4:98:08: e4:cb:06:60:39:fe:4b:2f:5d:f1:a6:81:48:5a:f4: f8:ab:98:eb:54:47:8b:b6:a3:88:7b:58:07:cb:b7: 1c:84:b1:ed:05:a8:28:b6:69:42:3e:e3:2e:53:8c: 92:19:f8:6e:49:52:7f:fc:bf:4b:a9:b3:ed:3c:b1: 57:6b:b0:61:02:ac:f2:95:73:80:76:34:ef:80:06: 19:c0:4b:41:91:fd:22:32:fa:77:15:16:a3:77:02: 86:18:55:e6:a1:fe:d1:92:84:2e:1b:c5:ec:a0:64: 57:4e:4e:b9:bd:53:4b:c1:57:27:db:91:06:f5:24: fb:b9:98:73:f1:57:a9:a2:d0:3e:e2:af:04:5c:f5: a2:c8:00:eb:53:2c:0e:8e:8b:31:b1:99:db:f3:d4: 5a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B4:37:29:8E:E2:DD:22:45:24:63:C5:91:09:77:22:77:EE:A5:AD X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:5e:78:ac:f5:4b:c8:a4:55:eb:99:88:b4:25:0e:6a:3c:fc: 5a:2c:79:db:9b:fc:35:b3:36:bb:99:52:5f:c3:f2:25:d9:f2: 65:b1:98:3e:7f:93:72:ca:55:a3:b8:5e:2d:e9:45:d3:6d:d7: f2:30:df:0c:99:c2:7c:a0:ee:4c:cb:55:cf:84:04:2d:8c:1f: 3b:63:b9:b7:cf:94:79:3e:c3:ee:c6:cb:d6:f5:73:35:ca:e1: 80:f1:ab:d3:48:ad:cf:24:19:67:3e:23:94:c1:35:85:97:cf: b6:0d:f2:82:64:fb:a2:12:76:4e:49:5b:9d:b9:64:60:35:52: 3c:0f:4c:2c:3b:10:c1:f8:4d:a3:0d:3c:e8:7b:a7:ac:b5:b7: 1d:74:d3:0f:d5:da:7a:b7:65:9a:21:08:3f:24:ae:ca:00:d5: 91:ce:45:85:02:13:1c:37:de:9a:95:98:bb:59:99:f2:94:ac: d6:33:b3:dc:98:1b:1f:4b:24:71:f6:7e:65:7b:8e:be:31:24: f4:5a:89:37:a8:7d:21:c2:4a:34:94:01:a7:1f:ee:cf:3b:2e: e7:a6:bf:f1:95:60:e2:e1:32:69:fa:6d:fe:c0:b0:f1:c0:66: ce:d9:b2:7d:62:a5:6a:5e:31:af:a6:8c:ab:38:8b:5c:e0:67: 20:4c:b6:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjY4QzExMC8GA1UEBRMoQTIyODhGODk2NEQ2MTY5QTg3OTVGMkY0RUYwNUUwRDVF NkUxM0IwOTAeFw0yNTA2MTUwNjM0NTlaFw0yNTA2MjIwNjM0NTlaMBgxFjAUBgNV BAMTDTY4NGU2OTk0LTk1MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC12ea9M8jj9DUFk2EY13tIehJnZJbO6Jlbqi1SBSMn8PxGO9jbuKoc7f5umZuY Ac/wTh6+5Xvkw9i6i2hhHywqpkKF4bhcxVv7Lx5RwEaFoFF65bw4Q3ZBWYKzPsnw jwBcmgHyXqSYCOTLBmA5/ksvXfGmgUha9PirmOtUR4u2o4h7WAfLtxyEse0FqCi2 aUI+4y5TjJIZ+G5JUn/8v0ups+08sVdrsGECrPKVc4B2NO+ABhnAS0GR/SIy+ncV FqN3AoYYVeah/tGShC4bxeygZFdOTrm9U0vBVyfbkQb1JPu5mHPxV6mi0D7irwRc 9aLIAOtTLA6OizGxmdvz1FoHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPbQ3KY7i 3SJFJGPFkQl3Infupa0wHwYDVR0jBBgwFoAUoiiPiWTWFpqHlfL07wXg1ebhOwkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNjhDLzE3RDEwM0E4RUFC MjExRUY4NDZGMTMzN0M0RjlBRTAyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2lpUGlXVFdGcHFIbGZMMDd3WGcxZWJoT3drLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC NjhDLzE3RDEwM0E4RUFCMjExRUY4NDZGMTMzN0M0RjlBRTAyL29paVBpV1RXRnBx SGxmTDA3d1hnMWViaE93ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFFeeKz1S8ikVeuZiLQlDmo8/Fosedub/DWzNruZUl/D8iXZ8mWxmD5/ k3LKVaO4Xi3pRdNt1/Iw3wyZwnyg7kzLVc+EBC2MHztjubfPlHk+w+7Gy9b1czXK 4YDxq9NIrc8kGWc+I5TBNYWXz7YN8oJk+6ISdk5JW525ZGA1UjwPTCw7EMH4TaMN POh7p6y1tx100w/V2nq3ZZohCD8krsoA1ZHORYUCExw33pqVmLtZmfKUrNYzs9yY Gx9LJHH2fmV7jr4xJPRaiTeofSHCSjSUAacf7s87Luemv/GVYOLhMmn6bf7AsPHA Zs7Zsn1ipWpeMa+mjKs4i1zgZyBMtsA= -----END CERTIFICATE-----Generated at Sun Jun 15 20:49:30 2025 by rpki-client