$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: pgRNxxtrGy2zek3I5IydzVMDkEF7GCgcj4gguS/CadM= Subject key identifier: D6:88:AE:D5:5F:BB:60:E7:6B:DB:D2:41:38:62:E4:14:CF:83:42:92 Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: 01AB Signing time: Sat 19 Jul 2025 03:44:31 +0000 Manifest this update: Sat 19 Jul 2025 03:44:30 +0000 Manifest next update: Sat 26 Jul 2025 03:44:30 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: 9oOJnDflxKzN9M/Jt0irqwas1ih7wVoNsRiin7je1MM=) 2: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: 1SKbx2XsDMYzA80POo6zzafuauDwKbPNh6n7Ob5AjVA=) 3: D0103496FD6611EE9188C568C4F9AE02.roa (hash: PxpNeamT7nJAO8ypf86mF4tTFHjbBgphhBI0WaQ2K6I=) 4: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: 8ceZRP/XUhaUyTjeioD/K4mCivFkQCLXcH6cjJ7JFq0=) 5: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: e/dOTjn5zjRzl7VVF4lYBqEjUR3aP4ajbLKyVpxXtqo=) 6: 1D9A36F40C6B11EF95ACFA13C4F9AE02.roa (hash: NJPr7OZom8PgcjW18JJjDNXMEozgSB9WGNPuyE4apbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: Jul 19 03:44:30 2025 GMT Not After : Jul 26 03:44:30 2025 GMT Subject: CN=687b149e-af45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:27:d7:08:4f:a7:51:a1:73:4e:91:18:46:9a: 63:05:32:bf:7c:b6:e7:3d:a8:3f:eb:28:cc:7f:60: 32:1a:49:5e:f7:04:ed:53:77:89:5d:74:6b:85:69: 98:89:b4:c1:3b:14:67:6d:30:02:47:2a:30:ae:0a: d1:62:ca:f6:81:2c:a4:f8:54:93:ac:eb:68:33:af: 9b:78:04:d4:64:f1:6d:88:a1:db:63:9a:43:6e:d5: c9:20:f5:8c:88:cc:2f:8d:e1:c0:26:6a:77:9c:c4: f8:50:ab:e3:18:c3:ea:78:19:4e:ac:e1:ab:6a:f9: 66:90:5d:bb:2a:03:31:94:eb:45:2e:65:5c:e7:70: 78:2e:c0:95:aa:d8:d4:83:e6:56:68:10:40:42:9a: 6d:44:86:7c:6e:36:4e:aa:de:95:ec:00:0b:8c:2b: f1:be:cb:8c:3e:10:e4:8b:29:fe:ed:b1:3f:b4:e2: 46:e3:75:f7:9f:4c:a7:e3:43:b3:53:f8:80:f6:b1: 4e:f8:c0:94:ff:58:a9:c2:52:8f:7c:20:9b:15:c4: 94:44:97:c2:38:5a:f8:e1:bc:58:7c:50:74:56:9c: 92:88:4c:38:35:1c:b8:a0:0e:a6:3b:e2:bf:41:64: 95:45:b0:d8:1c:ff:e6:c4:61:22:67:eb:54:b0:ae: 8d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:88:AE:D5:5F:BB:60:E7:6B:DB:D2:41:38:62:E4:14:CF:83:42:92 X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:9c:77:c0:94:e8:2e:44:52:c7:3f:7e:38:8e:17:c5:70:54: a3:f1:fc:5c:20:b2:18:50:6b:ed:3f:f1:fc:50:f0:f4:d3:59: 18:8f:e7:43:04:bb:1b:1f:fe:65:9f:a6:64:b7:e2:80:ae:1d: f8:d7:89:98:d2:ab:d0:4f:d3:87:19:b4:5d:8f:5a:32:c5:ed: f6:8c:8e:b8:32:c6:05:7b:50:7d:27:e6:46:ba:f4:77:d0:c2: 47:65:98:1b:fa:72:51:17:57:21:41:cc:52:ab:27:6f:fa:b4: 69:11:de:85:5f:1c:80:00:c5:14:c8:26:d0:f3:0f:c7:6a:4c: 2f:dc:6a:49:0b:80:31:5b:28:2d:34:12:50:3b:ed:bb:38:4f: a7:38:ea:ef:69:66:5e:9c:7b:9d:55:f0:d7:cc:c7:9b:b6:29: f8:10:a6:b8:9c:a6:27:51:da:06:47:db:27:26:92:fb:7c:af: d3:6e:55:1e:01:5a:7a:ab:60:06:6a:c1:97:d6:1a:81:ba:cf: bf:b7:0b:82:40:2e:19:c0:9d:35:71:1f:be:a8:65:8d:24:17: bc:eb:67:95:1b:a5:3a:cb:10:cb:91:7a:1c:30:f5:54:cf:9f: d1:b3:91:87:19:7d:ef:b7:9a:ec:7e:55:51:30:34:84:13:db: 2d:4a:e4:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjUwNzE5MDM0NDMwWhcNMjUwNzI2MDM0NDMwWjAYMRYwFAYD VQQDEw02ODdiMTQ5ZS1hZjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArifXCE+nUaFzTpEYRppjBTK/fLbnPag/6yjMf2AyGkle9wTtU3eJXXRrhWmY ibTBOxRnbTACRyowrgrRYsr2gSyk+FSTrOtoM6+beATUZPFtiKHbY5pDbtXJIPWM iMwvjeHAJmp3nMT4UKvjGMPqeBlOrOGravlmkF27KgMxlOtFLmVc53B4LsCVqtjU g+ZWaBBAQpptRIZ8bjZOqt6V7AALjCvxvsuMPhDkiyn+7bE/tOJG43X3n0yn40Oz U/iA9rFO+MCU/1ipwlKPfCCbFcSURJfCOFr44bxYfFB0VpySiEw4NRy4oA6mO+K/ QWSVRbDYHP/mxGEiZ+tUsK6N5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNaIrtVf u2Dna9vSQThi5BTPg0KSMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnnHfAlOguRFLHP344jhfFcFSj8fxcILIYUGvtP/H8UPD001kYj+dD BLsbH/5ln6Zkt+KArh3414mY0qvQT9OHGbRdj1oyxe32jI64MsYFe1B9J+ZGuvR3 0MJHZZgb+nJRF1chQcxSqydv+rRpEd6FXxyAAMUUyCbQ8w/Hakwv3GpJC4AxWygt NBJQO+27OE+nOOrvaWZenHudVfDXzMebtin4EKa4nKYnUdoGR9snJpL7fK/TblUe AVp6q2AGasGX1hqBus+/twuCQC4ZwJ01cR++qGWNJBe862eVG6U6yxDLkXocMPVU z5/Rs5GHGX3vt5rsflVRMDSEE9stSuRx -----END CERTIFICATE-----Generated at Sun Jul 20 15:14:11 2025 by rpki-client