$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: t1kN9B7i1UYRcJQmLqpnnlXqbnWHDt5QhltSueABHkY= Subject key identifier: A4:23:76:7B:DF:86:C4:CF:CE:BF:D4:F0:56:FC:C6:72:37:D3:04:47 Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0B30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 0981 Signing time: Fri 30 May 2025 22:08:45 +0000 Manifest this update: Fri 30 May 2025 22:08:44 +0000 Manifest next update: Fri 06 Jun 2025 22:08:44 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: +4DZ+n5qX7599aF5s25Wh7WYqXhkuQxmQLDzT382feo=) 2: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: cKLqzBD3UNEjua94H34t+S8hZV/aOFg8bXhQVhmFTLs=) 3: 59DBAE3E318311F09059AF40C4F9AE02.roa (hash: x6AlTag+vzKCmDKqGXv54q6QtFNcizuUHHhpQA1RvzM=) 4: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: Bpq9dhCpjI1cT2kel0jPo45D0NBWXD/qIfwghmBzSyI=) 5: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: Sc37SATsVjDUvoeuant9XpguxSfk6BLAFRWRVkPZh+Q=) 6: 183EB332F56911EFA13C606AC4F9AE02.roa (hash: XqpuUNdhqhsFCqJeDgqt5DGAankNQI08EQNhNbE47TE=) 7: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: PTN3D9DukvxulJCnZfplXeEJi7h63+XDY8ZJvEz9E/c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2864 (0xb30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: May 30 22:08:44 2025 GMT Not After : Jun 6 22:08:44 2025 GMT Subject: CN=683a2c6c-7bf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a8:b9:c1:f4:d2:9f:43:a0:bd:49:76:74:fe: 63:6f:23:0c:ba:b3:c9:d1:83:d9:2f:87:40:8b:a4: a6:92:9d:36:9f:bd:5b:c8:32:18:c8:ac:9b:1e:11: 6b:fa:a9:7e:87:0e:86:70:cc:01:c8:22:2f:6d:ed: a6:91:91:55:c8:6d:f0:a0:c5:d8:73:46:ca:43:e8: cd:d8:ec:28:69:5b:dd:16:db:90:62:ba:1b:25:5e: c8:c2:48:17:9a:84:d4:24:79:33:d3:e0:cd:bb:7e: 05:f6:a3:c9:db:35:44:15:db:4a:25:20:88:aa:ce: c5:4b:93:78:df:8a:05:cd:92:29:dc:6e:0d:ec:e8: a7:10:4e:a2:27:3e:ec:d5:c7:35:2f:16:54:09:e6: f5:ea:6e:bf:e4:93:d5:e9:e4:e3:46:d7:f0:8b:b1: 02:6d:41:63:49:50:82:d4:54:80:d3:c5:c5:09:13: 0b:ce:03:a4:bc:d7:ac:0f:85:ce:29:b8:5e:cc:50: 3b:f7:c8:46:cd:d4:fb:38:d0:03:61:85:a0:0c:bf: 0a:10:ac:df:3f:03:a7:73:40:55:12:d7:7d:06:a2: 7d:f0:02:cf:8b:ea:a2:25:60:38:f6:5e:79:7f:7a: 34:52:97:bc:aa:0b:ca:51:bc:f4:a1:51:5e:c8:38: 0e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:23:76:7B:DF:86:C4:CF:CE:BF:D4:F0:56:FC:C6:72:37:D3:04:47 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:d7:21:2c:5f:38:68:02:27:af:cb:de:ce:fb:4b:48:dd:12: f4:6b:6d:e2:bc:46:22:17:4f:58:6b:86:56:5d:19:b4:c5:81: 97:90:60:ea:22:d6:e4:42:d2:c6:57:cc:57:fb:04:2b:e9:f4: da:54:4f:02:6a:b2:8f:8b:49:f6:97:44:55:32:8a:44:e4:98: 86:62:bb:b5:6a:70:45:d6:75:9b:df:ec:7b:21:f9:8a:4e:b3: 00:bd:23:02:03:4f:86:35:ca:76:73:9c:88:8b:ed:fb:27:23: 47:64:c2:f8:2c:59:e5:f0:7b:f6:9c:93:82:77:68:60:7d:79: e6:74:d1:e7:2d:69:4f:d5:3b:79:05:6d:b0:69:ed:40:4f:cb: 6f:43:8d:de:1c:89:ea:a0:6b:d6:c9:58:b0:9f:ab:e8:eb:c6: c5:32:aa:49:96:8f:ee:74:2c:0a:2c:b3:a8:fe:bb:22:03:86: 3d:c6:34:16:75:f8:90:ff:90:bf:16:db:17:5f:25:8c:a3:d6: 2b:a1:5e:c4:86:1b:12:a4:0d:20:4b:be:be:d0:79:72:27:12: a8:55:89:ac:2e:55:a7:20:15:bd:1d:d2:c3:f1:85:63:f4:80: f5:33:5b:19:cd:05:df:a1:11:c9:d1:75:ff:5f:15:52:4b:4d: d7:51:56:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjUwNTMwMjIwODQ0WhcNMjUwNjA2MjIwODQ0WjAYMRYwFAYD VQQDEw02ODNhMmM2Yy03YmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qi5wfTSn0OgvUl2dP5jbyMMurPJ0YPZL4dAi6Smkp02n71byDIYyKybHhFr +ql+hw6GcMwByCIvbe2mkZFVyG3woMXYc0bKQ+jN2OwoaVvdFtuQYrobJV7IwkgX moTUJHkz0+DNu34F9qPJ2zVEFdtKJSCIqs7FS5N434oFzZIp3G4N7OinEE6iJz7s 1cc1LxZUCeb16m6/5JPV6eTjRtfwi7ECbUFjSVCC1FSA08XFCRMLzgOkvNesD4XO KbhezFA798hGzdT7ONADYYWgDL8KEKzfPwOnc0BVEtd9BqJ98ALPi+qiJWA49l55 f3o0Upe8qgvKUbz0oVFeyDgOqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQjdnvf hsTPzr/U8Fb8xnI30wRHMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX1yEsXzhoAievy97O+0tI3RL0a23ivEYiF09Ya4ZWXRm0xYGXkGDq ItbkQtLGV8xX+wQr6fTaVE8CarKPi0n2l0RVMopE5JiGYru1anBF1nWb3+x7IfmK TrMAvSMCA0+GNcp2c5yIi+37JyNHZML4LFnl8Hv2nJOCd2hgfXnmdNHnLWlP1Tt5 BW2wae1AT8tvQ43eHInqoGvWyViwn6vo68bFMqpJlo/udCwKLLOo/rsiA4Y9xjQW dfiQ/5C/FtsXXyWMo9YroV7EhhsSpA0gS76+0HlyJxKoVYmsLlWnIBW9HdLD8YVj 9ID1M1sZzQXfoRHJ0XX/XxVSS03XUVYb -----END CERTIFICATE-----Generated at Sat May 31 15:13:00 2025 by rpki-client