$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft File: i16Our4JofST0QJTwaO5OTm_yoo.mft (raw, json) Hash identifier: Dvtth8KB7msZskHeJw4f2y8fPa0lIffdwSu5LXDtexQ= Subject key identifier: E7:C3:53:68:A8:29:E9:A6:85:E1:B0:56:5F:F0:8F:3B:77:5F:B6:9B Authority key identifier: 8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A Certificate issuer: /CN=A91336DF/serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft Manifest number: 7D Signing time: Sun 01 Jun 2025 06:23:26 +0000 Manifest this update: Sun 01 Jun 2025 06:23:26 +0000 Manifest next update: Sun 08 Jun 2025 06:23:26 +0000 Files and hashes: 1: i16Our4JofST0QJTwaO5OTm_yoo.crl (hash: mkij+Pj5YwRY4DWy35fBwqaxQsr93Zh9xgsV4wmnJQA=) 2: D5A3117E85DF11EFA2C33754C4F9AE02.roa (hash: DRt8K6jlAria6yTB9gWZIhOKN+7LEqAGx7rHUxgtPQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:23:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91336DF, serialNumber=8B5E8EBABE09A1F493D10253C1A3B93939BFCA8A Validity Not Before: Jun 1 06:23:26 2025 GMT Not After : Jun 8 06:23:26 2025 GMT Subject: CN=683bf1de-93bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a5:67:59:58:9d:ed:b6:c1:5c:0f:41:ed:d6: 26:76:eb:ab:6d:72:1d:06:8a:7e:cb:20:61:6e:e4: ca:f4:d1:4c:13:0a:75:80:6a:95:bc:11:9d:6f:2a: a6:38:58:0e:1a:65:86:d4:ac:ec:88:94:c7:98:94: 98:89:22:66:6b:6c:df:dd:1e:b8:bd:62:77:c0:01: 5c:85:11:16:7d:27:4e:b9:1f:a4:2b:b0:75:24:f8: 6b:18:a5:0f:a9:60:57:a7:46:b1:20:fe:ee:08:a6: b8:6d:59:d3:b0:f3:5b:b6:6f:b9:8e:89:d4:47:c6: c6:9f:b4:9b:bd:d4:a0:2a:9a:0c:d0:09:0c:af:44: c5:3d:39:ac:4a:5f:e4:16:31:23:a5:42:bb:c4:1c: 06:20:2f:3c:54:be:a8:f3:2c:9c:c0:ac:5a:df:e1: 23:7f:d9:9b:07:51:bf:4d:24:7c:e1:99:6d:22:6d: 9c:d0:05:cf:54:a0:68:f5:ee:10:73:47:12:af:75: ad:e5:0c:a9:3c:c2:c0:6e:f4:e8:d2:48:cc:57:34: 2b:52:9e:3f:53:c7:93:c1:20:d9:e6:f9:44:e4:4c: 0d:11:d1:f6:4a:b2:90:f8:3b:cf:4e:7a:10:95:59: 6c:f6:15:ee:09:b7:91:af:1b:d9:aa:23:47:27:72: 50:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C3:53:68:A8:29:E9:A6:85:E1:B0:56:5F:F0:8F:3B:77:5F:B6:9B X509v3 Authority Key Identifier: keyid:8B:5E:8E:BA:BE:09:A1:F4:93:D1:02:53:C1:A3:B9:39:39:BF:CA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i16Our4JofST0QJTwaO5OTm_yoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/1A362A56813F11EF9CCE1A1AC4F9AE02/i16Our4JofST0QJTwaO5OTm_yoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ad:4a:63:34:cb:7f:b7:3a:89:fa:72:11:b5:5b:04:da:b1: 1f:dc:51:8c:d1:f5:05:b4:52:81:d8:3d:9d:77:6c:4a:36:cc: 93:5c:a8:3a:74:dd:3f:1d:5e:be:25:4d:4f:f3:ce:e4:83:72: c3:ef:2b:94:96:c9:1e:9a:e8:79:f5:3f:d9:99:7c:49:92:be: 7f:61:c2:0a:f5:a0:e3:88:0b:e5:9e:74:da:7f:1b:f0:34:8a: 85:f2:b0:be:59:e8:79:9a:70:d2:7e:57:81:41:81:60:d8:fa: 2f:44:ad:dc:b9:41:ad:ec:7d:15:4e:b7:dc:4b:fc:ce:4a:7a: 78:67:1a:22:dc:f2:3f:f5:9a:64:46:a8:80:88:7d:34:bf:03: 3b:84:a6:3e:8f:c3:c4:3c:76:fc:ef:b6:9e:3f:a8:14:a5:27: 7f:68:4f:b5:2a:40:73:e8:9d:ee:12:a6:09:98:5c:04:1d:32: 84:5e:cf:08:f9:6a:c8:1d:f1:0f:21:be:dc:0e:7d:03:fb:2c: 66:4b:4b:98:58:a4:e8:6a:69:16:67:73:b4:b9:72:43:f5:07: 30:4b:10:ba:b1:8d:22:e9:72:1b:aa:fb:2e:6d:06:98:78:b7: 4e:17:e1:5b:b5:f6:ea:48:ac:08:a5:7c:66:78:9b:96:82:f4: 94:a4:ac:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzZERjExMC8GA1UEBRMoOEI1RThFQkFCRTA5QTFGNDkzRDEwMjUzQzFBM0I5Mzkz OUJGQ0E4QTAeFw0yNTA2MDEwNjIzMjZaFw0yNTA2MDgwNjIzMjZaMBgxFjAUBgNV BAMTDTY4M2JmMWRlLTkzYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDopWdZWJ3ttsFcD0Ht1iZ266ttch0Gin7LIGFu5Mr00UwTCnWAapW8EZ1vKqY4 WA4aZYbUrOyIlMeYlJiJImZrbN/dHri9YnfAAVyFERZ9J065H6QrsHUk+GsYpQ+p YFenRrEg/u4IprhtWdOw81u2b7mOidRHxsaftJu91KAqmgzQCQyvRMU9OaxKX+QW MSOlQrvEHAYgLzxUvqjzLJzArFrf4SN/2ZsHUb9NJHzhmW0ibZzQBc9UoGj17hBz RxKvda3lDKk8wsBu9OjSSMxXNCtSnj9Tx5PBINnm+UTkTA0R0fZKspD4O89OehCV WWz2Fe4Jt5GvG9mqI0cnclCZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU58NTaKgp 6aaF4bBWX/CPO3dftpswHwYDVR0jBBgwFoAUi16Our4JofST0QJTwaO5OTm/yoow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzNkRGLzFBMzYyQTU2ODEz RjExRUY5Q0NFMUExQUM0RjlBRTAyL2kxNk91cjRKb2ZTVDBRSlR3YU81T1RtX3lv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaTE2T3VyNEpvZlNUMFFKVHdhTzVPVG1feW9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMz NkRGLzFBMzYyQTU2ODEzRjExRUY5Q0NFMUExQUM0RjlBRTAyL2kxNk91cjRKb2ZT VDBRSlR3YU81T1RtX3lvby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAButSmM0y3+3Oon6chG1WwTasR/cUYzR9QW0UoHYPZ13bEo2zJNcqDp0 3T8dXr4lTU/zzuSDcsPvK5SWyR6a6Hn1P9mZfEmSvn9hwgr1oOOIC+WedNp/G/A0 ioXysL5Z6HmacNJ+V4FBgWDY+i9Erdy5Qa3sfRVOt9xL/M5KenhnGiLc8j/1mmRG qICIfTS/AzuEpj6Pw8Q8dvzvtp4/qBSlJ39oT7UqQHPone4SpgmYXAQdMoRezwj5 asgd8Q8hvtwOfQP7LGZLS5hYpOhqaRZnc7S5ckP1BzBLELqxjSLpchuq+y5tBph4 t04X4Vu19upIrAilfGZ4m5aC9JSkrDs= -----END CERTIFICATE-----Generated at Mon Jun 2 20:59:53 2025 by rpki-client