$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: A2pbKzQZnrgbEC0QwerKaa885P3F/gxLpkmm1I08yWA= Subject key identifier: 5C:0E:8C:36:09:33:81:43:B1:B4:65:9F:29:67:C1:68:7E:D6:01:4F Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 136A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 135E Signing time: Fri 06 Jun 2025 17:01:47 +0000 Manifest this update: Fri 06 Jun 2025 17:01:47 +0000 Manifest next update: Fri 13 Jun 2025 17:01:47 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: LGOFtuPms7O7uAQWXRTeCsiKcawnl/6UDomXGO5wWV4=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 17:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4970 (0x136a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Jun 6 17:01:47 2025 GMT Not After : Jun 13 17:01:47 2025 GMT Subject: CN=68431efb-0fe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:76:99:87:d6:9c:01:8a:62:00:22:95:a9:09: 4b:97:03:e5:b6:30:cf:ff:24:10:83:29:25:d5:e6: 5a:55:48:21:1b:4d:05:5b:32:9e:53:02:8e:a5:30: ca:8e:0c:2b:91:dd:4f:e9:49:9c:9c:70:07:c3:a3: fe:8a:b6:de:ba:b3:f0:02:fe:41:bf:84:ff:fb:aa: 7e:ec:15:99:22:86:ba:84:58:56:9c:16:58:13:cc: f3:a3:b5:91:bd:58:c2:18:86:c3:4b:2d:a8:21:76: a1:0e:e7:c0:69:4d:fa:d2:87:5a:e7:1e:49:49:9f: 87:0f:97:bc:71:6b:a8:8e:4a:2f:c4:b1:11:e5:92: f8:10:54:2f:b8:cd:47:21:ac:41:db:b1:a1:e9:7f: eb:95:fc:21:7f:e9:5c:85:c1:dc:16:ec:a5:b7:7b: 0b:02:b9:72:d6:5e:3b:aa:01:f4:57:f5:1f:39:2d: 87:65:d1:88:4a:dc:88:63:a1:0d:8c:10:91:88:c0: 14:d1:5d:02:99:fa:52:02:16:33:5e:37:d3:44:09: 9c:a3:e9:18:1e:67:75:ee:d0:79:84:02:87:3e:01: 0c:9b:94:4d:58:3c:73:5c:53:e1:72:3f:7f:ef:dc: e2:6a:20:63:e7:20:21:ec:1b:39:66:f1:6a:e1:08: 9f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0E:8C:36:09:33:81:43:B1:B4:65:9F:29:67:C1:68:7E:D6:01:4F X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:72:53:fa:ee:e9:c6:cf:e4:d1:34:59:a8:58:56:13:6d:e9: da:0d:dc:46:4b:33:9f:66:19:e6:e5:ef:6d:c7:b1:42:e1:50: d7:71:c5:05:0f:97:23:fc:6d:70:31:00:39:da:11:a2:9a:6c: 3d:a3:48:51:ca:ae:85:72:9d:e5:8f:ca:c0:73:31:ac:e4:d3: 31:08:93:a2:45:db:00:44:bf:a4:74:ee:c9:1e:d6:e4:1f:27: ec:7e:b4:41:f1:13:3a:51:55:a9:18:3b:64:18:e1:72:d6:27: de:a2:35:15:54:91:9c:0e:ab:4d:19:de:c6:ff:7e:ea:c9:74: 53:43:3a:70:de:7d:d1:fc:8a:ee:2a:65:07:89:2e:b9:1e:3b: d2:24:f2:c7:63:08:1a:f5:2a:87:b2:07:dc:fe:ef:ae:6e:4b: 13:71:d6:61:79:5e:15:12:a9:d3:60:01:9e:b9:53:7f:5f:f9: 94:21:e7:47:c7:fd:6d:82:9e:b8:14:ca:c8:f4:67:2f:c3:7e: 6b:65:b5:c3:da:db:11:cd:9b:17:97:90:25:5d:55:09:1a:ae: 10:01:6e:fb:89:28:f5:0e:5c:45:15:86:2b:3a:9c:9e:7a:aa: 43:3c:d9:74:d5:aa:fa:39:8c:0e:4d:30:0a:53:68:c6:40:5e: ed:c3:05:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUwNjA2MTcwMTQ3WhcNMjUwNjEzMTcwMTQ3WjAYMRYwFAYD VQQDEw02ODQzMWVmYi0wZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHaZh9acAYpiACKVqQlLlwPltjDP/yQQgykl1eZaVUghG00FWzKeUwKOpTDK jgwrkd1P6UmcnHAHw6P+irbeurPwAv5Bv4T/+6p+7BWZIoa6hFhWnBZYE8zzo7WR vVjCGIbDSy2oIXahDufAaU360oda5x5JSZ+HD5e8cWuojkovxLER5ZL4EFQvuM1H IaxB27Gh6X/rlfwhf+lchcHcFuylt3sLArly1l47qgH0V/UfOS2HZdGIStyIY6EN jBCRiMAU0V0CmfpSAhYzXjfTRAmco+kYHmd17tB5hAKHPgEMm5RNWDxzXFPhcj9/ 79ziaiBj5yAh7Bs5ZvFq4QifaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwOjDYJ M4FDsbRlnylnwWh+1gFPMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRclP67unGz+TRNFmoWFYTbenaDdxGSzOfZhnm5e9tx7FC4VDXccUF D5cj/G1wMQA52hGimmw9o0hRyq6Fcp3lj8rAczGs5NMxCJOiRdsARL+kdO7JHtbk HyfsfrRB8RM6UVWpGDtkGOFy1ifeojUVVJGcDqtNGd7G/37qyXRTQzpw3n3R/Iru KmUHiS65HjvSJPLHYwga9SqHsgfc/u+ubksTcdZheV4VEqnTYAGeuVN/X/mUIedH x/1tgp64FMrI9Gcvw35rZbXD2tsRzZsXl5AlXVUJGq4QAW77iSj1DlxFFYYrOpye eqpDPNl01ar6OYwOTTAKU2jGQF7twwWr -----END CERTIFICATE-----Generated at Sat Jun 7 06:58:28 2025 by rpki-client