$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: HFp0/LhH1hoAJePA2AFCcFdlvDfQ6CPWU+ImDtk5Wqo= Subject key identifier: 08:D1:AA:47:A4:FE:94:78:45:D1:A5:3B:5D:71:11:54:E3:22:1B:3C Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: F6 Signing time: Tue 03 Jun 2025 04:57:23 +0000 Manifest this update: Tue 03 Jun 2025 04:57:22 +0000 Manifest next update: Tue 10 Jun 2025 04:57:22 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: oV9rRNznbifXRTnC0i1zH+QXJWWoL3wp1IPAR9I5sL4=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: Emtdf6B32dUyriQRU+z92VLtRvSD7HNe+9gqK+EmXtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1, serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Jun 3 04:57:22 2025 GMT Not After : Jun 10 04:57:22 2025 GMT Subject: CN=683e80b2-33f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e9:98:48:05:49:39:35:8f:c4:d6:c1:bd:16: e3:fe:49:b8:89:5d:16:cd:6f:38:bc:06:47:e9:63: f1:27:82:90:3b:75:cb:13:ee:a6:80:f6:f1:23:64: 6c:4c:72:ea:1a:df:b6:52:18:59:94:3d:e8:62:eb: a7:a5:7a:24:ca:2f:e6:6b:13:94:d9:35:e3:43:5b: e0:ee:6a:56:3f:47:9f:50:78:38:cd:f7:16:59:a7: cf:ec:3a:aa:6c:1a:82:9d:22:e6:bd:1f:85:15:16: d2:13:21:b1:6b:4f:2b:bd:a0:90:81:47:4d:44:3d: 08:09:2b:62:c5:0f:b2:47:64:b1:50:a5:e9:01:75: 38:fa:19:9a:4d:7e:55:a8:d0:90:32:87:9d:ab:49: 2e:47:f9:81:05:8e:8c:09:91:da:45:54:0e:86:88: 82:2d:f2:ee:28:ff:16:1c:d7:31:78:4a:85:fd:a5: d5:d3:3a:c3:1d:52:36:27:13:b6:02:8c:f5:31:90: 4c:6d:ec:78:e5:0b:f8:37:dc:4c:0f:be:27:95:8f: 49:f4:40:3c:59:73:ef:e4:98:91:6b:e6:b9:e1:28: 72:a5:9c:c7:17:a8:db:12:95:75:28:b1:14:d0:f8: db:27:06:87:ca:c9:61:12:5e:47:2b:6d:d0:e7:bf: c5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D1:AA:47:A4:FE:94:78:45:D1:A5:3B:5D:71:11:54:E3:22:1B:3C X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:b9:3f:d0:9d:3c:06:26:d7:f3:2a:c2:b8:c1:9e:00:da:d0: ce:6c:c4:45:40:fc:2f:98:69:a0:b6:17:b1:43:85:75:18:b6: b4:fb:88:11:22:93:20:99:df:e3:dc:d3:95:43:0b:26:3f:ae: 5a:ec:a5:14:9c:22:cc:1d:7e:8d:4e:b0:16:9f:ff:1f:10:32: 01:40:99:4d:27:07:8e:b3:d5:f8:1d:4b:89:f1:54:1f:b0:02: ce:90:e8:bc:67:af:a9:70:e2:a4:dc:bc:ff:57:9a:d3:9f:65: 5f:08:1c:53:5b:dc:d4:26:c8:3b:df:f8:33:ea:00:0f:6b:e0: f2:b1:0b:95:c1:dc:13:ae:21:a1:42:03:5e:69:f2:17:ee:9c: d3:45:1b:f3:c5:7c:ca:35:50:dc:8a:d5:39:c3:88:87:2d:d5: 79:4c:6b:6c:1f:a1:9e:f4:cd:5d:d7:ed:91:2a:07:7f:1f:f3: 64:dd:fb:6d:44:ad:79:30:16:93:c2:68:4d:fd:4e:59:d0:96: d8:26:e0:f9:98:70:9e:4f:25:81:5f:16:ca:4d:89:07:8a:53: f5:7f:74:8b:1d:8f:90:8a:ae:d5:3c:b4:d4:63:2f:75:ea:63: 2c:28:2d:5e:d0:ec:75:37:64:6f:00:dd:18:ae:2a:79:cc:0b: 0e:4c:03:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjUwNjAzMDQ1NzIyWhcNMjUwNjEwMDQ1NzIyWjAYMRYwFAYD VQQDEw02ODNlODBiMi0zM2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuemYSAVJOTWPxNbBvRbj/km4iV0WzW84vAZH6WPxJ4KQO3XLE+6mgPbxI2Rs THLqGt+2UhhZlD3oYuunpXokyi/maxOU2TXjQ1vg7mpWP0efUHg4zfcWWafP7Dqq bBqCnSLmvR+FFRbSEyGxa08rvaCQgUdNRD0ICStixQ+yR2SxUKXpAXU4+hmaTX5V qNCQMoedq0kuR/mBBY6MCZHaRVQOhoiCLfLuKP8WHNcxeEqF/aXV0zrDHVI2JxO2 Aoz1MZBMbex45Qv4N9xMD74nlY9J9EA8WXPv5JiRa+a54ShypZzHF6jbEpV1KLEU 0PjbJwaHyslhEl5HK23Q57/FNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjRqkek /pR4RdGlO11xEVTjIhs8MB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdz bXdiczladVBLS2R3T21PQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuuT/QnTwGJtfzKsK4wZ4A2tDObMRFQPwvmGmgthexQ4V1GLa0+4gR IpMgmd/j3NOVQwsmP65a7KUUnCLMHX6NTrAWn/8fEDIBQJlNJweOs9X4HUuJ8VQf sALOkOi8Z6+pcOKk3Lz/V5rTn2VfCBxTW9zUJsg73/gz6gAPa+DysQuVwdwTriGh QgNeafIX7pzTRRvzxXzKNVDcitU5w4iHLdV5TGtsH6Ge9M1d1+2RKgd/H/Nk3ftt RK15MBaTwmhN/U5Z0JbYJuD5mHCeTyWBXxbKTYkHilP1f3SLHY+Qiq7VPLTUYy91 6mMsKC1e0Ox1N2RvAN0Yrip5zAsOTAM2 -----END CERTIFICATE-----Generated at Wed Jun 4 00:16:33 2025 by rpki-client