$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft File: o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft (raw, json) Hash identifier: R+Wuo5lX7iJoU47y64bdUmKTuNcYDVCYDEsb+2LB9bo= Subject key identifier: 4B:CC:39:B8:04:60:EC:EC:D3:53:43:8B:47:3F:0E:79:02:CD:C5:0D Authority key identifier: A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 Certificate issuer: /CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Certificate serial: 034A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft Manifest number: 0346 Signing time: Fri 25 Jul 2025 01:27:12 +0000 Manifest this update: Fri 25 Jul 2025 01:27:11 +0000 Manifest next update: Fri 01 Aug 2025 01:27:11 +0000 Files and hashes: 1: o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl (hash: NFH+Qfd384kCuVkHavq2C/8wW0xQzVQYA5E9SjGhsyE=) 2: E2F2A470C76411EC85896F5EC4F9AE02.roa (hash: hSEOk4wSvcqkKWJUmunbhE8NC6T2P49jnE2eWh8/b4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 01:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 842 (0x34a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4B, serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Validity Not Before: Jul 25 01:27:11 2025 GMT Not After : Aug 1 01:27:11 2025 GMT Subject: CN=6882dd70-2483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:9b:a0:82:10:7d:c6:a4:ea:45:c8:10:38:c3: 41:19:b6:30:90:05:4e:da:0d:91:f2:73:59:66:e5: 5e:c3:8e:5c:e2:af:68:fe:17:b1:c4:60:6e:63:75: 4e:0f:5c:8c:7c:f4:54:cd:b0:eb:ce:dd:79:dd:fe: c6:a5:6c:9c:cb:c5:ea:70:cd:fc:37:dd:d6:45:56: a7:db:b2:68:04:d6:fd:c5:69:26:78:d7:84:0c:ac: 42:c1:e4:bc:b1:4b:23:c5:d6:82:94:5f:e7:c7:8a: 4a:25:8a:5e:ab:59:2e:83:15:c3:3a:6e:e4:89:74: 5c:44:f2:91:fb:de:d2:af:a2:74:ad:18:7f:90:53: fa:1a:5a:17:f4:a0:3e:e8:c7:c3:e9:39:09:b0:61: 4c:f3:4a:b0:d2:b6:12:45:5f:af:12:b8:d2:12:46: 9d:e9:21:71:25:ab:5e:85:6b:3a:8a:96:ed:eb:cd: b7:1e:3d:0e:bf:3c:d0:e7:ef:a4:5a:a4:05:10:9c: 38:eb:19:4f:e4:e3:c6:29:3b:93:b3:f4:f4:b2:a4: b3:bc:bc:4a:c5:d3:e4:1f:2f:a8:19:1c:89:d3:65: 22:d9:59:5a:30:37:e0:28:e6:d0:5f:39:e8:b4:b0: e6:9d:58:23:91:ce:77:a0:22:7c:7a:c6:83:e0:71: e0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CC:39:B8:04:60:EC:EC:D3:53:43:8B:47:3F:0E:79:02:CD:C5:0D X509v3 Authority Key Identifier: keyid:A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:67:41:f3:66:ae:24:74:8a:1d:c2:93:33:84:3f:57:84:52: f9:e6:2a:df:a4:d2:58:4d:e1:5d:5b:db:6f:fd:b6:24:7b:db: 14:6e:1b:96:f4:48:a9:4c:a1:e3:52:3a:44:ac:4c:80:ec:f9: e4:1c:f4:86:95:42:c7:7d:d0:02:af:6e:63:54:97:6f:08:4a: 71:3d:ce:3d:ac:b9:10:8c:26:39:74:f9:c8:e2:2b:60:92:d9: 54:fe:ea:3e:f7:dd:0f:bb:5a:97:92:61:82:77:03:fc:f1:ea: 9b:f6:b9:79:c2:92:25:ee:2c:31:28:8a:54:c8:f7:c9:bf:79: 1d:1b:c2:f6:aa:86:3d:79:cd:c5:60:91:3b:81:8f:82:9b:e7: 23:11:d8:4b:86:b9:b4:cb:10:9e:08:9c:c2:61:2e:35:cd:36: c7:0f:06:ae:86:49:25:54:43:34:32:22:0e:1b:1e:21:9b:c6: 9a:50:34:a5:6e:95:da:d2:d7:a4:d0:ec:73:d8:36:50:9f:9e: 02:d0:14:2a:d8:4d:f9:49:11:e8:70:79:e5:1c:2d:a1:15:48: c0:d8:06:84:05:7d:f5:22:ec:4d:3e:76:e4:c2:87:0d:dc:e1: 5b:2a:70:e2:e6:85:7d:c7:18:96:de:f7:e7:ec:c7:19:8f:b3: 84:f0:fd:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEIxMTAvBgNVBAUTKEEzNTU2MURBNDVBOTU1RjAyRDEyMkEwRDg4RThDNzYy MzlFREY5MjAwHhcNMjUwNzI1MDEyNzExWhcNMjUwODAxMDEyNzExWjAYMRYwFAYD VQQDEw02ODgyZGQ3MC0yNDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8JugghB9xqTqRcgQOMNBGbYwkAVO2g2R8nNZZuVew45c4q9o/hexxGBuY3VO D1yMfPRUzbDrzt153f7GpWycy8XqcM38N93WRVan27JoBNb9xWkmeNeEDKxCweS8 sUsjxdaClF/nx4pKJYpeq1kugxXDOm7kiXRcRPKR+97Sr6J0rRh/kFP6GloX9KA+ 6MfD6TkJsGFM80qw0rYSRV+vErjSEkad6SFxJatehWs6ipbt6823Hj0OvzzQ5++k WqQFEJw46xlP5OPGKTuTs/T0sqSzvLxKxdPkHy+oGRyJ02Ui2VlaMDfgKObQXzno tLDmnVgjkc53oCJ8esaD4HHgPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvMObgE YOzs01NDi0c/DnkCzcUNMB8GA1UdIwQYMBaAFKNVYdpFqVXwLRIqDYjox2I57fkg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qi84RTE2MjQzMEM3 NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZmQXRFaW9OaU9qSFlqbnQt U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xVmgya1dwVmZBdEVpb05pT2pIWWpudC1TQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qi84RTE2MjQzMEM3NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZm QXRFaW9OaU9qSFlqbnQtU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZZ0HzZq4kdIodwpMzhD9XhFL55irfpNJYTeFdW9tv/bYke9sUbhuW 9EipTKHjUjpErEyA7PnkHPSGlULHfdACr25jVJdvCEpxPc49rLkQjCY5dPnI4itg ktlU/uo+990Pu1qXkmGCdwP88eqb9rl5wpIl7iwxKIpUyPfJv3kdG8L2qoY9ec3F YJE7gY+Cm+cjEdhLhrm0yxCeCJzCYS41zTbHDwauhkklVEM0MiIOGx4hm8aaUDSl bpXa0tek0Oxz2DZQn54C0BQq2E35SRHocHnlHC2hFUjA2AaEBX31IuxNPnbkwocN 3OFbKnDi5oV9xxiW3vfn7McZj7OE8P1o -----END CERTIFICATE-----Generated at Sat Jul 26 01:59:02 2025 by rpki-client