$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: FE5dymKVkf6jzlQd+taS1dFWXh1IXcBST3VSWaxAy7Q= Subject key identifier: 5D:89:50:3C:7D:37:04:3E:A7:FD:5B:0A:AA:AB:2B:80:E1:D6:8E:61 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: 6E Signing time: Tue 01 Jul 2025 07:40:52 +0000 Manifest this update: Tue 01 Jul 2025 07:40:52 +0000 Manifest next update: Tue 08 Jul 2025 07:40:52 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: QrgebXtG1V+ADu0Eq6rPDamdBOmg6rDCU4jWG4XgF/I=) 2: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 7A02Qe5tU1BaVkRNS6N9PAYKa4qN0Lgazu0at/u/nBw=) 3: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: ELgn79sVAW9E3JP6Gcqdp6NoM1aGV5NXuDSvgrgOR0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Jul 1 07:40:52 2025 GMT Not After : Jul 8 07:40:52 2025 GMT Subject: CN=68639104-0589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:91:46:f0:de:b1:ed:3e:dd:d8:d1:4f:a6:56: 90:13:b8:89:b5:f9:0a:76:dd:48:0d:2e:ea:bb:83: 0c:3b:97:45:fb:23:32:dc:b4:ef:88:6b:ab:a4:ca: 90:62:24:01:18:c6:62:83:81:c0:5a:1b:80:8c:44: 0b:81:49:13:f1:41:b4:05:73:98:c1:77:d2:87:06: cf:38:94:92:30:60:24:c2:3d:97:d9:1e:f9:5e:84: 1e:d8:6b:53:be:ec:24:33:f3:df:ef:cc:c2:38:61: 8f:d4:fe:74:53:bc:38:16:9b:7e:03:95:db:e6:a8: c8:14:79:12:7c:f0:4f:3c:72:66:11:24:4b:74:d5: 06:dc:5f:e5:14:3b:d8:57:14:9d:dc:f5:71:39:c0: 04:0b:bc:2a:5a:d0:63:bb:d3:44:7e:7b:c0:e5:1c: fb:c9:77:b0:06:ff:66:c9:9e:4f:d2:2d:bb:72:ca: f2:7a:89:12:27:3c:c7:05:12:a3:f6:d2:9b:4a:5c: bd:69:9a:5a:37:16:76:1f:40:5e:ac:43:1d:b8:4e: d8:79:6b:9f:ec:44:57:92:3a:2e:37:24:c7:45:41: 38:81:57:57:a4:94:7e:fc:7c:d7:4f:84:13:cd:55: f3:46:2e:9e:b8:df:4e:0a:a4:5d:57:3f:2d:33:e5: 51:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:89:50:3C:7D:37:04:3E:A7:FD:5B:0A:AA:AB:2B:80:E1:D6:8E:61 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:3e:be:b4:c4:47:0f:8f:ce:86:26:ad:ab:61:47:63:02:91: de:24:28:43:46:40:75:1e:58:7a:a0:7f:c5:d7:ff:3c:a0:fe: 54:1a:6e:e9:dc:13:8b:85:22:f6:a3:f6:38:2f:1b:47:56:f7: 8f:d6:21:f8:9c:32:6f:f4:53:5c:37:5f:90:d2:2b:e4:93:31: d1:10:62:b1:e5:f7:d5:b0:34:8b:e1:b6:f4:31:60:8c:88:6d: 35:b0:7c:3d:06:a2:a5:1a:38:56:e0:a5:22:45:a5:99:62:13: 42:eb:ab:ed:de:38:ce:45:82:ec:9c:d3:4c:6e:d2:d6:6f:01: a7:d6:a8:94:25:d0:74:f1:f9:7b:ad:02:a5:9a:9c:09:85:af: 5d:04:06:c1:3d:3e:cc:f2:43:64:4f:51:d4:b3:0f:73:f8:4f: 8b:1c:c9:43:99:4d:7b:9c:d0:b8:aa:2e:dc:97:1c:bb:64:b7: 57:63:16:09:b9:c0:c2:55:fc:a1:9b:92:af:e3:e4:b3:69:8c: 59:70:a0:48:08:56:d5:7a:a8:b0:d6:23:4c:f3:59:3b:7a:65: 84:67:79:84:59:51:9a:e8:7f:d8:80:03:3b:52:08:98:ba:0d: df:5f:2c:47:21:18:06:d7:89:44:ef:f4:05:9d:79:a0:ce:e6: 69:d7:0c:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTVFNTExMC8GA1UEBRMoQTAwRTAyREM3ODNGOTA4NDAyMURGOTRGNzU4NjI2NEVD NDdEMzQzODAeFw0yNTA3MDEwNzQwNTJaFw0yNTA3MDgwNzQwNTJaMBgxFjAUBgNV BAMTDTY4NjM5MTA0LTA1ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmkUbw3rHtPt3Y0U+mVpATuIm1+Qp23UgNLuq7gww7l0X7IzLctO+Ia6ukypBi JAEYxmKDgcBaG4CMRAuBSRPxQbQFc5jBd9KHBs84lJIwYCTCPZfZHvlehB7Ya1O+ 7CQz89/vzMI4YY/U/nRTvDgWm34DldvmqMgUeRJ88E88cmYRJEt01QbcX+UUO9hX FJ3c9XE5wAQLvCpa0GO700R+e8DlHPvJd7AG/2bJnk/SLbtyyvJ6iRInPMcFEqP2 0ptKXL1pmlo3FnYfQF6sQx24Tth5a5/sRFeSOi43JMdFQTiBV1eklH78fNdPhBPN VfNGLp64304KpF1XPy0z5VFdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXYlQPH03 BD6n/VsKqqsrgOHWjmEwHwYDVR0jBBgwFoAUoA4C3Hg/kIQCHflPdYYmTsR9NDgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFNUU1L0Y5N0JDMzAyQUZC RjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5E Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb0E0QzNIZ19rSVFDSGZsUGRZWW1Uc1I5TkRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF NUU1L0Y5N0JDMzAyQUZCRjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lR Q0hmbFBkWVltVHNSOU5EZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEc+vrTERw+PzoYmrathR2MCkd4kKENGQHUeWHqgf8XX/zyg/lQabunc E4uFIvaj9jgvG0dW94/WIficMm/0U1w3X5DSK+STMdEQYrHl99WwNIvhtvQxYIyI bTWwfD0GoqUaOFbgpSJFpZliE0Lrq+3eOM5Fguyc00xu0tZvAafWqJQl0HTx+Xut AqWanAmFr10EBsE9PszyQ2RPUdSzD3P4T4scyUOZTXuc0LiqLtyXHLtkt1djFgm5 wMJV/KGbkq/j5LNpjFlwoEgIVtV6qLDWI0zzWTt6ZYRneYRZUZrof9iAAztSCJi6 Dd9fLEchGAbXiUTv9AWdeaDO5mnXDKM= -----END CERTIFICATE-----Generated at Tue Jul 1 18:26:08 2025 by rpki-client