$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: LWiyRmMLwtEEMCL1DqvD2jNxGCRsT4HWtho160366h4= Subject key identifier: 3E:8F:48:AE:B8:54:F9:6B:52:1E:F4:1A:42:40:7B:A1:06:2F:21:FB Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: 6F Signing time: Sun 01 Jun 2025 06:38:53 +0000 Manifest this update: Sun 01 Jun 2025 06:38:53 +0000 Manifest next update: Sun 08 Jun 2025 06:38:53 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: UO9fMiKELhFuvDtKC4o/UfqEVKFEOPtI2ZX51GpIhMw=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: X6VArMN74z4tgeDbEQQzHaT88BAEASciUle7rIza6xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: Jun 1 06:38:53 2025 GMT Not After : Jun 8 06:38:53 2025 GMT Subject: CN=683bf57d-384e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0f:27:cf:ac:6d:1c:9d:bd:1d:b4:21:29:80: 2f:cd:36:04:50:37:5e:0c:f3:50:7c:b1:c0:b7:8a: 57:1f:f0:3f:e7:28:71:61:41:6a:2a:00:0e:b8:26: a7:19:c2:44:08:7a:24:ce:f6:4f:f5:69:61:e2:0e: 22:01:60:be:0d:c6:e5:a4:de:d6:3e:e9:5b:94:68: 81:a5:93:0f:7d:f2:b3:7f:08:b9:dc:13:38:c2:17: 60:0b:2f:b4:ea:da:8f:c9:d2:1d:13:c2:19:2e:25: d2:84:44:93:ba:6b:ef:2d:56:2e:6d:dd:7a:58:56: e2:99:8e:e7:dd:70:a4:9d:1a:b8:b2:82:86:2b:07: d5:5a:8f:fa:56:34:6b:5c:b7:12:f8:14:cf:7f:53: 15:a1:46:ed:c9:0b:15:29:e9:de:b7:44:3d:f8:82: ca:46:dc:9a:e1:53:d8:29:01:dc:33:00:43:60:88: 42:cc:37:2c:cf:b1:e5:e8:3b:7c:e4:75:9e:13:ee: 4a:3b:1d:87:b5:67:b9:0d:31:63:13:72:a8:eb:8e: c1:c8:e0:fe:01:ac:d8:98:b0:79:23:73:c9:8c:93: 7f:07:8e:77:a5:cf:a8:e0:96:dc:35:50:e2:2e:c6: 36:db:ed:87:38:6f:f4:4a:00:5e:a5:bf:03:28:bf: a7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:8F:48:AE:B8:54:F9:6B:52:1E:F4:1A:42:40:7B:A1:06:2F:21:FB X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:0a:c7:9e:8a:94:b8:8e:7b:c8:e5:42:e7:ef:4c:1d:76:ff: 9b:8c:8a:90:e7:3f:77:07:ed:01:12:cd:45:08:09:17:91:a1: f9:7c:c5:45:37:db:6b:ea:c1:b4:65:52:2b:2f:37:19:9e:1a: 06:b5:d7:46:1c:93:59:00:68:af:93:d9:2b:5f:c5:19:7d:d1: eb:15:91:40:da:d5:b0:08:23:c5:29:2e:2d:20:0c:f9:b2:ad: fd:44:f4:0f:f2:de:85:83:1e:9c:65:f0:34:11:64:ed:77:6e: ea:46:75:6a:86:94:5f:58:92:3a:8c:1b:9c:f6:57:cc:49:a1: 58:11:49:a3:05:bf:5b:b0:f9:4c:cf:e9:5b:b0:03:a3:b2:75: c0:85:ce:24:27:8e:df:fe:53:9d:93:5c:9a:d5:d1:9e:b7:7d: f2:78:e0:4e:0e:b3:e7:48:bd:25:e2:1b:cf:1d:9d:f7:b2:69: 51:b4:fb:ab:2e:fb:50:1a:6e:e1:68:85:b3:dd:35:1c:7d:b0: af:89:88:06:59:d5:c5:0a:1f:64:4d:ab:c6:06:87:17:5a:7d: 7c:b2:b6:49:93:26:02:83:14:19:77:67:5e:3b:30:05:81:34: a0:97:c0:09:32:92:6b:72:f5:9f:66:ef:bd:de:24:1c:bb:6f: 13:97:98:d0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTAyNTExMC8GA1UEBRMoMzk5QTdCMUZDNDIwN0VCQTA3MDdBODUxNTE5NUNDNjhF ODM2QUJGODAeFw0yNTA2MDEwNjM4NTNaFw0yNTA2MDgwNjM4NTNaMBgxFjAUBgNV BAMTDTY4M2JmNTdkLTM4NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQDyfPrG0cnb0dtCEpgC/NNgRQN14M81B8scC3ilcf8D/nKHFhQWoqAA64JqcZ wkQIeiTO9k/1aWHiDiIBYL4NxuWk3tY+6VuUaIGlkw998rN/CLncEzjCF2ALL7Tq 2o/J0h0TwhkuJdKERJO6a+8tVi5t3XpYVuKZjufdcKSdGriygoYrB9Vaj/pWNGtc txL4FM9/UxWhRu3JCxUp6d63RD34gspG3JrhU9gpAdwzAENgiELMNyzPseXoO3zk dZ4T7ko7HYe1Z7kNMWMTcqjrjsHI4P4BrNiYsHkjc8mMk38Hjnelz6jgltw1UOIu xjbb7Yc4b/RKAF6lvwMov6eJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPo9IrrhU +WtSHvQaQkB7oQYvIfswHwYDVR0jBBgwFoAUOZp7H8QgfroHB6hRUZXMaOg2q/gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxMDI1LzhEN0I5QkYyOUQ4 NDExRUY4MTdFMTQyMEM0RjlBRTAyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFf Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1pwN0g4UWdmcm9IQjZoUlVaWE1hT2cycV9nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx MDI1LzhEN0I5QkYyOUQ4NDExRUY4MTdFMTQyMEM0RjlBRTAyL09acDdIOFFnZnJv SEI2aFJVWlhNYU9nMnFfZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEMKx56KlLiOe8jlQufvTB12/5uMipDnP3cH7QESzUUICReRofl8xUU3 22vqwbRlUisvNxmeGga110Yck1kAaK+T2StfxRl90esVkUDa1bAII8UpLi0gDPmy rf1E9A/y3oWDHpxl8DQRZO13bupGdWqGlF9YkjqMG5z2V8xJoVgRSaMFv1uw+UzP 6VuwA6OydcCFziQnjt/+U52TXJrV0Z63ffJ44E4Os+dIvSXiG88dnfeyaVG0+6su +1AabuFohbPdNRx9sK+JiAZZ1cUKH2RNq8YGhxdafXyytkmTJgKDFBl3Z147MAWB NKCXwAkykmty9Z9m773eJBy7bxOXmNA= -----END CERTIFICATE-----Generated at Mon Jun 2 19:55:26 2025 by rpki-client