$ rpki-client -vvf rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.mft File: OochbBWSc79Rk0f8H-5wYZXMKuY.mft (raw, json) Hash identifier: fvtea06tKGKlIje5DiQDBFGoiLWsb5NiCZUDw81xnDo= Subject key identifier: 15:76:93:8A:01:0B:D2:B2:FF:1B:02:D2:4C:33:B6:2F:36:D8:39:72 Authority key identifier: 3A:87:21:6C:15:92:73:BF:51:93:47:FC:1F:EE:70:61:95:CC:2A:E6 Certificate issuer: /CN=A91C661C/serialNumber=3A87216C159273BF519347FC1FEE706195CC2AE6 Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OochbBWSc79Rk0f8H-5wYZXMKuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.mft Manifest number: 06AB Signing time: Tue 22 Jul 2025 22:30:13 +0000 Manifest this update: Tue 22 Jul 2025 22:30:13 +0000 Manifest next update: Tue 29 Jul 2025 22:30:13 +0000 Files and hashes: 1: OochbBWSc79Rk0f8H-5wYZXMKuY.crl (hash: G2s94+eyd1N+KCy2JWapR67iH0tcN7EXqsG1TZmG/J8=) 2: AABC79100EC411EF858B5255C4F9AE02.roa (hash: xd+kZGDM6lidBL503M6KRPrbZpmB555muvLLsOdJRog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.crl rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OochbBWSc79Rk0f8H-5wYZXMKuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 22:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C661C, serialNumber=3A87216C159273BF519347FC1FEE706195CC2AE6 Validity Not Before: Jul 22 22:30:13 2025 GMT Not After : Jul 29 22:30:13 2025 GMT Subject: CN=688010f5-16f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d9:fe:ef:ac:95:71:01:cc:2a:d1:81:37:25: 47:a2:b7:ff:3f:30:a8:f7:7e:2f:87:9f:1b:a9:9a: 31:a4:bc:83:45:49:94:ca:90:1e:b5:07:3c:b3:30: 0e:28:e5:49:d6:c9:6a:67:2c:60:99:d3:46:f6:52: 30:ce:62:dc:f3:92:da:63:d0:78:b6:95:0e:6b:82: 79:46:68:31:07:26:f5:35:db:cf:b9:b4:35:01:7b: b7:47:6b:92:61:72:56:1b:3f:e9:4f:9a:47:fb:3c: 2c:0e:ce:62:2e:ef:ff:a0:28:65:79:26:01:05:15: 7f:58:95:2d:d0:ec:17:76:53:bd:40:75:65:ce:f6: 8c:8a:05:98:7b:35:43:a3:8f:2e:63:64:bc:d6:58: e1:82:8c:a5:cf:7a:84:e2:66:b2:89:21:a6:d9:31: 5d:3b:22:67:5d:f8:4b:75:96:87:98:c5:6b:b1:7f: 6b:a7:54:22:7a:e2:81:07:47:5b:c3:51:44:57:ff: 08:60:91:f3:0b:19:8c:85:b3:da:d3:b4:5c:5a:c5: c5:2c:1c:b7:f1:3b:d3:8f:ee:6f:b8:f4:e9:3a:01: 27:84:b6:5d:3d:92:2a:8b:f4:ad:c3:9b:b9:09:2f: c3:77:82:18:20:e7:98:d6:4e:2c:6e:9f:75:a7:dd: 64:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:76:93:8A:01:0B:D2:B2:FF:1B:02:D2:4C:33:B6:2F:36:D8:39:72 X509v3 Authority Key Identifier: keyid:3A:87:21:6C:15:92:73:BF:51:93:47:FC:1F:EE:70:61:95:CC:2A:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OochbBWSc79Rk0f8H-5wYZXMKuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C661C/F4592992737211EB9475CA5DC4F9AE02/OochbBWSc79Rk0f8H-5wYZXMKuY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:ca:7a:1c:db:9f:bd:1b:76:eb:f2:7e:14:41:99:ae:06:d5: f3:b1:10:f4:73:00:65:82:30:6f:68:c2:e4:36:52:6a:94:bf: b6:4a:ed:35:8b:88:5c:3a:d4:3d:39:75:7f:9a:b3:ed:14:13: 78:a7:b1:98:39:16:20:3f:a0:7c:ef:ee:c2:a7:51:27:fe:82: 2c:d1:ac:ad:b2:b0:64:9a:1e:50:62:be:f3:9d:db:e4:65:20: d4:1a:a4:f4:6c:53:30:aa:65:2b:cd:80:64:55:24:f1:d9:68: f7:b1:84:8e:44:a8:41:3c:97:80:6e:36:ba:25:28:ae:67:4d: 84:6c:f0:43:d7:d8:0a:b6:89:3a:73:81:4b:68:17:27:ff:0a: 3c:e9:ed:ae:cd:1d:4e:44:62:e5:bc:9d:8d:e6:35:6f:bb:47: 31:a8:a8:99:85:43:7f:61:73:c2:43:e2:3b:df:96:1c:78:0a: d1:d9:59:51:b2:38:81:45:b7:c6:85:a7:d2:14:41:28:db:93: 26:5c:b2:b3:27:01:7d:fe:cb:e1:d4:6a:90:78:df:f6:45:fa: fc:32:06:78:c4:88:48:f4:73:8d:3e:37:b2:73:6a:04:79:bf: 49:9f:32:e3:10:16:e3:0c:cb:8a:da:12:45:9a:cd:4f:63:fc: 55:45:d9:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2MUMxMTAvBgNVBAUTKDNBODcyMTZDMTU5MjczQkY1MTkzNDdGQzFGRUU3MDYx OTVDQzJBRTYwHhcNMjUwNzIyMjIzMDEzWhcNMjUwNzI5MjIzMDEzWjAYMRYwFAYD VQQDEw02ODgwMTBmNS0xNmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9n+76yVcQHMKtGBNyVHorf/PzCo934vh58bqZoxpLyDRUmUypAetQc8szAO KOVJ1slqZyxgmdNG9lIwzmLc85LaY9B4tpUOa4J5RmgxByb1NdvPubQ1AXu3R2uS YXJWGz/pT5pH+zwsDs5iLu//oChleSYBBRV/WJUt0OwXdlO9QHVlzvaMigWYezVD o48uY2S81ljhgoylz3qE4mayiSGm2TFdOyJnXfhLdZaHmMVrsX9rp1QieuKBB0db w1FEV/8IYJHzCxmMhbPa07RcWsXFLBy38TvTj+5vuPTpOgEnhLZdPZIqi/Stw5u5 CS/Dd4IYIOeY1k4sbp91p91kvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBV2k4oB C9Ky/xsC0kwzti822DlyMB8GA1UdIwQYMBaAFDqHIWwVknO/UZNH/B/ucGGVzCrm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjYxQy9GNDU5Mjk5Mjcz NzIxMUVCOTQ3NUNBNURDNEY5QUUwMi9Pb2NoYkJXU2M3OVJrMGY4SC01d1laWE1L dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09vY2hiQldTYzc5UmswZjhILTV3WVpYTUt1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjYxQy9GNDU5Mjk5MjczNzIxMUVCOTQ3NUNBNURDNEY5QUUwMi9Pb2NoYkJXU2M3 OVJrMGY4SC01d1laWE1LdVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYynoc25+9G3br8n4UQZmuBtXzsRD0cwBlgjBvaMLkNlJqlL+2Su01 i4hcOtQ9OXV/mrPtFBN4p7GYORYgP6B87+7Cp1En/oIs0aytsrBkmh5QYr7zndvk ZSDUGqT0bFMwqmUrzYBkVSTx2Wj3sYSORKhBPJeAbja6JSiuZ02EbPBD19gKtok6 c4FLaBcn/wo86e2uzR1ORGLlvJ2N5jVvu0cxqKiZhUN/YXPCQ+I735YceArR2VlR sjiBRbfGhafSFEEo25MmXLKzJwF9/svh1GqQeN/2Rfr8MgZ4xIhI9HONPjeyc2oE eb9JnzLjEBbjDMuK2hJFms1PY/xVRdn7 -----END CERTIFICATE-----Generated at Wed Jul 23 07:47:26 2025 by rpki-client