$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: +B/tzPFtweGb/eE1znKGxvnTfyh2EC5nRhM8g89TOto= Subject key identifier: 3B:D2:1D:F4:1B:A2:E3:64:5D:6A:9B:74:75:5D:60:D9:5F:71:DD:D1 Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 03BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 03B6 Signing time: Sat 31 May 2025 00:53:16 +0000 Manifest this update: Sat 31 May 2025 00:53:15 +0000 Manifest next update: Sat 07 Jun 2025 00:53:15 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: PBPYqNAQV5ZYCBUQG25RCm77o6DGzvOsYEsUp7a5w3I=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: CfbtaxsbT8QkNpB+dr8l4I71elKTP/TaO4DWd5BrJjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 954 (0x3ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: May 31 00:53:15 2025 GMT Not After : Jun 7 00:53:15 2025 GMT Subject: CN=683a52fb-9b0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2c:24:09:20:a7:6c:c4:d7:d6:20:a2:8a:0b: 37:c6:62:13:72:dd:2a:7c:8f:56:b6:c0:ed:0f:94: bf:53:ff:35:88:fb:a7:2a:71:7e:9f:4e:2d:76:4d: ba:a7:fb:25:0d:be:16:01:50:f9:ad:cc:93:5a:20: c3:bd:41:18:db:1b:61:71:6a:73:75:f6:46:ae:d2: 82:7e:38:82:1b:ac:4e:e9:c8:8f:31:d4:07:6c:37: b6:2e:e8:8b:d2:02:72:1b:6c:09:d0:7f:9d:d5:27: 9d:7b:03:83:33:17:a7:e7:87:26:25:04:e8:82:64: 59:c3:b3:90:15:d5:b9:d5:37:1a:38:8d:13:ff:92: d7:ac:bc:7b:e9:fa:b9:20:6e:d0:a5:9d:06:70:1e: 9a:35:1f:b6:62:6c:04:cd:56:85:35:f7:b8:04:e8: 20:9e:c4:37:b4:e7:87:d0:73:ee:7d:f1:e5:20:ea: c6:2d:5e:63:d8:21:d7:e8:23:68:02:1a:ca:fc:56: 7d:c7:33:27:19:90:1e:53:4a:7c:0b:b1:db:58:6d: 97:f6:45:8d:aa:57:e2:88:59:d6:1a:fc:eb:12:67: 8e:ac:e2:69:6b:07:d8:7d:2a:f2:5f:40:f0:c4:f1: da:1e:91:23:e5:ba:4d:ce:1a:83:1b:de:33:ad:5b: c3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:D2:1D:F4:1B:A2:E3:64:5D:6A:9B:74:75:5D:60:D9:5F:71:DD:D1 X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:98:22:1a:3a:ce:62:ca:77:43:90:9d:d3:b7:ef:a5:4b:f6: 4b:3f:59:a4:56:8b:0f:19:09:46:22:d6:77:73:a8:aa:5d:82: b2:b2:14:24:99:fe:ed:ff:e3:4c:29:0d:13:95:6e:42:50:9a: 4b:48:0f:6e:c6:50:f4:51:df:fb:84:b2:13:75:62:08:ae:52: ee:d9:ed:4c:a4:f3:a3:04:0b:77:b3:36:34:75:5b:07:fe:39: e5:f1:13:73:cd:36:8f:67:0d:46:68:ba:b0:cf:01:af:52:53: 22:ef:ec:75:09:47:a6:68:18:22:fa:0e:eb:46:62:f7:46:44: f2:7c:2c:42:18:b1:c1:ea:6f:71:c9:2b:63:eb:75:b5:c2:6d: 15:64:5e:5f:27:62:cb:7f:c4:0e:3c:70:d9:7c:7d:c8:fb:2c: f8:7c:e5:46:7c:6c:fb:e4:4c:0e:da:6d:30:e7:90:ca:7b:0b: 00:7f:be:14:76:56:be:ad:08:9e:96:1d:bc:c0:c9:77:80:90: 3f:98:2a:ea:22:ed:d7:a0:7e:f2:fd:72:0e:4b:ef:b4:98:c2: 97:3a:cd:2c:93:02:08:ac:65:8e:63:86:f3:30:43:73:cd:91: 0d:42:24:cf:15:0c:05:88:47:bf:45:b5:43:26:9a:10:bf:77: 6b:87:9b:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUwNTMxMDA1MzE1WhcNMjUwNjA3MDA1MzE1WjAYMRYwFAYD VQQDEw02ODNhNTJmYi05YjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ywkCSCnbMTX1iCiigs3xmITct0qfI9WtsDtD5S/U/81iPunKnF+n04tdk26 p/slDb4WAVD5rcyTWiDDvUEY2xthcWpzdfZGrtKCfjiCG6xO6ciPMdQHbDe2LuiL 0gJyG2wJ0H+d1SedewODMxen54cmJQTogmRZw7OQFdW51TcaOI0T/5LXrLx76fq5 IG7QpZ0GcB6aNR+2YmwEzVaFNfe4BOggnsQ3tOeH0HPuffHlIOrGLV5j2CHX6CNo AhrK/FZ9xzMnGZAeU0p8C7HbWG2X9kWNqlfiiFnWGvzrEmeOrOJpawfYfSryX0Dw xPHaHpEj5bpNzhqDG94zrVvDQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvSHfQb ouNkXWqbdHVdYNlfcd3RMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1mCIaOs5iyndDkJ3Tt++lS/ZLP1mkVosPGQlGItZ3c6iqXYKyshQk mf7t/+NMKQ0TlW5CUJpLSA9uxlD0Ud/7hLITdWIIrlLu2e1MpPOjBAt3szY0dVsH /jnl8RNzzTaPZw1GaLqwzwGvUlMi7+x1CUemaBgi+g7rRmL3RkTyfCxCGLHB6m9x yStj63W1wm0VZF5fJ2LLf8QOPHDZfH3I+yz4fOVGfGz75EwO2m0w55DKewsAf74U dla+rQielh28wMl3gJA/mCrqIu3XoH7y/XIOS++0mMKXOs0skwIIrGWOY4bzMENz zZENQiTPFQwFiEe/RbVDJpoQv3drh5t3 -----END CERTIFICATE-----Generated at Sat May 31 15:11:17 2025 by rpki-client