$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: fk00xUzG8NnMnlV3ZN09x92QXzoceb8DgS9UToeyl/E= Subject key identifier: 31:80:F4:B4:01:47:8F:A5:13:29:50:47:5B:1F:34:F3:E5:60:1E:D6 Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 0132 Signing time: Mon 21 Jul 2025 04:41:16 +0000 Manifest this update: Mon 21 Jul 2025 04:41:15 +0000 Manifest next update: Mon 28 Jul 2025 04:41:15 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: IYjHjcNHcS+L4o0ed6sENUb33nGqj3WUgClWUc5LBXc=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: gJAOPk4iFoIW/KqNitxUF3g+S02/W0OUx3yJyNEqzJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Jul 21 04:41:15 2025 GMT Not After : Jul 28 04:41:15 2025 GMT Subject: CN=687dc4ec-f318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:59:6b:86:07:65:de:6f:22:17:c0:5f:a4:f6: 5b:7a:ec:ff:60:e9:1a:4a:27:e9:66:c7:8f:cd:9b: 79:7a:69:91:ad:a6:00:0c:3c:7c:86:55:34:75:a6: b1:cb:f3:38:2e:65:e8:12:fe:55:da:2d:ac:9e:cd: 4e:17:ea:af:6c:5b:04:d6:bd:5a:9f:55:0e:09:d2: 43:9b:6e:4b:d5:f3:c5:2c:21:d3:ba:da:f3:35:82: 9f:90:03:39:c9:5c:fa:06:63:d8:2c:b1:5d:92:20: 0f:1a:f6:6d:3b:89:b9:32:1d:d9:20:df:3b:58:5e: e6:55:89:1b:60:d1:21:74:78:39:a0:94:40:79:e0: d7:6f:45:32:4e:34:8e:c6:3b:06:76:9a:8b:eb:34: e8:61:38:30:75:be:fa:b1:f3:d4:c6:c7:69:2d:7f: 8d:96:8f:18:4a:a0:8a:03:a8:ba:06:8a:65:0f:65: dd:87:47:82:3d:68:54:3c:c5:38:58:c1:77:38:13: 36:d1:97:38:bf:84:7b:b8:5e:fa:25:07:1b:67:e0: f4:c5:5e:a9:74:40:2a:37:3e:4d:a3:b5:95:0a:9a: 94:63:0d:00:df:51:05:61:66:12:5d:37:30:b5:2f: b0:cd:20:8c:65:3d:f0:34:97:11:fe:3f:23:75:c2: b3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:80:F4:B4:01:47:8F:A5:13:29:50:47:5B:1F:34:F3:E5:60:1E:D6 X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:a9:fc:d9:2c:e0:6b:a6:6b:9a:c2:1f:26:81:da:8f:a0:df: c5:09:26:f9:77:6e:fd:fb:62:5d:ee:5d:58:fa:b5:d7:04:48: 82:08:79:95:2f:a8:c6:05:5b:3e:8d:f2:8a:ff:a7:c5:21:66: b5:09:d4:f3:91:4d:ce:b3:4f:e8:a9:00:2f:a6:33:3a:56:9d: 54:1e:65:55:5b:ec:a2:88:cb:22:99:e3:26:df:68:52:08:12: ca:41:84:e3:1e:c7:8d:ee:2c:d5:9c:3c:18:d1:d5:e3:0c:e4: d2:e8:64:1f:b1:cb:92:b7:6e:bf:69:e9:d8:6a:b7:3a:d7:7f: 6f:4c:6e:07:84:b6:b6:86:c1:32:98:c8:55:aa:0a:82:c2:14: 96:43:b8:d8:57:81:50:6b:4a:ee:23:4a:58:17:4f:a1:89:a4: 66:b3:38:69:2c:28:a8:3a:92:61:56:2f:24:fa:b3:15:3a:95: 7c:54:3f:dd:57:12:b4:65:1f:3c:0c:03:81:69:fe:0b:13:7e: 6f:31:45:7b:48:1c:99:aa:8d:c2:9c:72:dd:f3:c1:f7:29:91: bd:c9:d4:42:4b:ca:01:f2:c8:0d:8d:53:f1:c0:e1:e2:57:b8: fb:87:4e:34:d2:06:08:b1:fb:36:2f:21:b7:1c:c8:3f:27:c0: ae:89:9f:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUwNzIxMDQ0MTE1WhcNMjUwNzI4MDQ0MTE1WjAYMRYwFAYD VQQDEw02ODdkYzRlYy1mMzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Flrhgdl3m8iF8BfpPZbeuz/YOkaSifpZsePzZt5emmRraYADDx8hlU0daax y/M4LmXoEv5V2i2sns1OF+qvbFsE1r1an1UOCdJDm25L1fPFLCHTutrzNYKfkAM5 yVz6BmPYLLFdkiAPGvZtO4m5Mh3ZIN87WF7mVYkbYNEhdHg5oJRAeeDXb0UyTjSO xjsGdpqL6zToYTgwdb76sfPUxsdpLX+Nlo8YSqCKA6i6BoplD2Xdh0eCPWhUPMU4 WMF3OBM20Zc4v4R7uF76JQcbZ+D0xV6pdEAqNz5No7WVCpqUYw0A31EFYWYSXTcw tS+wzSCMZT3wNJcR/j8jdcKzFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGA9LQB R4+lEylQR1sfNPPlYB7WMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7qfzZLOBrpmuawh8mgdqPoN/FCSb5d279+2Jd7l1Y+rXXBEiCCHmV L6jGBVs+jfKK/6fFIWa1CdTzkU3Os0/oqQAvpjM6Vp1UHmVVW+yiiMsimeMm32hS CBLKQYTjHseN7izVnDwY0dXjDOTS6GQfscuSt26/aenYarc6139vTG4HhLa2hsEy mMhVqgqCwhSWQ7jYV4FQa0ruI0pYF0+hiaRmszhpLCioOpJhVi8k+rMVOpV8VD/d VxK0ZR88DAOBaf4LE35vMUV7SByZqo3CnHLd88H3KZG9ydRCS8oB8sgNjVPxwOHi V7j7h0400gYIsfs2LyG3HMg/J8CuiZ8/ -----END CERTIFICATE-----Generated at Mon Jul 21 05:50:29 2025 by rpki-client