$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft File: OTVm9EF4bZWNinkRjo71b8hy5cU.mft (raw, json) Hash identifier: Ln071U8PCsXmp3eaY4oNih9pECEvheVVOfC9QtAYCnU= Subject key identifier: D8:3C:9E:43:62:6A:37:D0:C4:1B:FA:9E:6E:AD:A8:0B:34:77:70:C2 Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 0684 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft Manifest number: 0676 Signing time: Sun 08 Jun 2025 21:59:38 +0000 Manifest this update: Sun 08 Jun 2025 21:59:38 +0000 Manifest next update: Sun 15 Jun 2025 21:59:38 +0000 Files and hashes: 1: OTVm9EF4bZWNinkRjo71b8hy5cU.crl (hash: 4ctmUWq0rHrmYFh35bO+0R98sfAINP8dEYjy/aJ2lQU=) 2: CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa (hash: Tn4IiKC/ehOcHKqem3Io6ZVpsXPRVKGONn1yIt6QObo=) 3: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (hash: rBuNfeeoduUd1I0NoD4IRcILjNn1S7GUQ8XAggSqgBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 21:59:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1668 (0x684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: Jun 8 21:59:38 2025 GMT Not After : Jun 15 21:59:38 2025 GMT Subject: CN=684607ca-fb79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3b:42:2f:ee:93:64:4d:1d:9d:5a:93:31:d7: 95:f9:ab:8f:c6:26:27:f6:87:8d:1c:ce:a6:6f:4e: b8:7e:71:cf:fb:5b:df:fc:c4:f7:e3:14:d5:3f:5a: 19:e4:26:e6:61:7f:3d:1b:2d:b7:9e:df:5d:4d:e4: c1:a7:e6:96:7f:e4:b9:a4:2d:b3:da:7e:18:da:24: 6e:11:92:5a:38:27:7d:d4:12:17:8d:23:48:f6:be: 31:62:b8:b1:44:c9:37:de:b1:bc:5c:10:d5:80:1f: 30:12:d1:a9:15:a8:b0:6a:47:0c:67:6d:0d:db:62: 90:68:c0:18:d7:6e:52:fc:6f:59:15:e9:cd:c3:90: 82:8d:fa:72:db:80:37:ff:92:d3:d6:13:1a:61:24: 5d:13:4c:c7:25:82:e1:20:e8:3c:cf:73:bc:f4:13: 7e:43:64:3c:6a:21:52:57:f1:23:22:c6:7b:e6:3f: 33:f4:a4:5e:6e:34:9e:7b:ca:6a:69:b9:c5:9c:35: f4:6b:5e:49:57:de:33:3d:37:e0:b4:2e:ad:01:41: 59:b9:fd:e9:dc:da:a3:27:a1:3b:4a:cc:ad:fa:52: 52:d9:d8:8a:17:61:d0:0d:9f:b1:9c:78:52:10:79: a6:aa:d4:46:28:0c:e5:32:97:0a:5c:bb:a9:1a:ab: af:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:3C:9E:43:62:6A:37:D0:C4:1B:FA:9E:6E:AD:A8:0B:34:77:70:C2 X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:2e:ab:bc:e3:c8:53:6a:c0:f3:e4:ab:b1:58:05:3a:93:d6: 8c:b6:db:a0:39:45:fe:3f:8c:e8:5b:e0:dc:cd:14:7e:d1:80: 99:21:ed:8c:e5:48:fb:49:25:e1:08:24:24:80:84:21:73:ae: cb:6a:22:8b:e6:fb:4b:8c:51:0b:1a:bd:4b:ac:1f:4a:04:43: 73:49:8b:c0:b3:3a:7c:be:e6:5a:9f:5c:a0:5b:7f:c5:a8:b2: 6f:bb:f6:f7:6d:7f:9f:5e:1f:11:a7:d1:5e:86:79:09:a2:bd: b7:74:15:61:96:4f:8c:88:dd:df:c9:92:98:bf:11:c4:eb:db: 84:b4:3d:34:cd:fe:7f:17:01:5c:1c:36:3d:3c:bc:24:66:25: f3:79:bb:08:60:82:94:7c:ce:23:13:33:2a:70:13:e6:36:1b: c9:80:03:1a:ec:cb:a7:27:4f:7f:27:1e:02:33:61:93:b0:ab: aa:7c:13:32:23:2a:a1:f2:95:a9:13:a9:88:84:1c:f1:a7:88: 1a:7a:f4:7b:40:f7:32:3b:88:f8:a9:3f:ec:61:17:65:d6:3f: ef:b0:3c:de:77:5b:af:91:5a:5d:7b:86:98:64:12:b4:01:97: f4:ed:7e:9e:43:47:92:57:06:04:03:65:ed:54:22:66:00:86: d8:2e:6a:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjUwNjA4MjE1OTM4WhcNMjUwNjE1MjE1OTM4WjAYMRYwFAYD VQQDEw02ODQ2MDdjYS1mYjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjtCL+6TZE0dnVqTMdeV+auPxiYn9oeNHM6mb064fnHP+1vf/MT34xTVP1oZ 5CbmYX89Gy23nt9dTeTBp+aWf+S5pC2z2n4Y2iRuEZJaOCd91BIXjSNI9r4xYrix RMk33rG8XBDVgB8wEtGpFaiwakcMZ20N22KQaMAY125S/G9ZFenNw5CCjfpy24A3 /5LT1hMaYSRdE0zHJYLhIOg8z3O89BN+Q2Q8aiFSV/EjIsZ75j8z9KRebjSee8pq abnFnDX0a15JV94zPTfgtC6tAUFZuf3p3NqjJ6E7Ssyt+lJS2diKF2HQDZ+xnHhS EHmmqtRGKAzlMpcKXLupGquvvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNg8nkNi ajfQxBv6nm6tqAs0d3DCMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzNFRC80RDhGQTIwRTdENDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJa V05pbmtSam83MWI4aHk1Y1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5Lqu848hTasDz5KuxWAU6k9aMttugOUX+P4zoW+DczRR+0YCZIe2M 5Uj7SSXhCCQkgIQhc67LaiKL5vtLjFELGr1LrB9KBENzSYvAszp8vuZan1ygW3/F qLJvu/b3bX+fXh8Rp9FehnkJor23dBVhlk+MiN3fyZKYvxHE69uEtD00zf5/FwFc HDY9PLwkZiXzebsIYIKUfM4jEzMqcBPmNhvJgAMa7MunJ09/Jx4CM2GTsKuqfBMy Iyqh8pWpE6mIhBzxp4gaevR7QPcyO4j4qT/sYRdl1j/vsDzed1uvkVpde4aYZBK0 AZf07X6eQ0eSVwYEA2XtVCJmAIbYLmpR -----END CERTIFICATE-----Generated at Mon Jun 9 02:24:39 2025 by rpki-client