$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: B4Hi4tlOo+hSTwACgv6DDCk8HDKpOnaWWzusmIrng58= Subject key identifier: B8:FD:57:69:C5:3A:B9:9B:45:4D:56:72:C5:A0:3D:C6:E1:90:33:88 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 5E Signing time: Sat 07 Jun 2025 03:06:40 +0000 Manifest this update: Sat 07 Jun 2025 03:06:39 +0000 Manifest next update: Sat 14 Jun 2025 03:06:39 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: hlVah1/jI93iJtRYTHdMWqckNGa8NVgZE/4FEgnC9fA=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 03:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Jun 7 03:06:39 2025 GMT Not After : Jun 14 03:06:39 2025 GMT Subject: CN=6843acbf-56b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:66:c5:c0:ce:a1:fa:c6:66:45:a6:b6:14:c4: f8:a0:5e:9d:c5:79:a7:46:5e:b2:14:1a:5c:3f:47: 90:d4:2a:eb:82:05:b4:05:4d:5f:0e:7a:cf:ce:c1: 56:03:d0:96:4d:bd:66:c4:c0:b4:af:ea:8b:1c:e5: 8a:33:d8:46:bc:ae:b4:bc:a9:84:8a:50:88:62:37: 26:8a:23:08:21:19:5a:77:ad:38:3e:73:d4:47:57: ba:ad:82:66:89:87:fe:7e:08:37:9b:43:96:30:0f: a9:dd:9d:e4:11:b8:04:dd:86:ac:43:91:7e:2e:db: 53:4f:3f:60:d3:2b:7b:f1:53:e9:35:06:5d:5e:33: 08:81:f7:4f:70:e1:a6:f9:5f:f8:dd:6e:b5:46:35: 64:ab:01:15:77:1d:3a:a8:58:3c:92:0c:d2:34:11: 25:44:90:f9:58:e0:ed:88:a3:a4:98:ea:70:c7:c3: e6:f9:c6:35:20:fa:46:c1:fa:6c:55:98:84:64:59: 1d:ba:67:81:4f:a2:88:c5:9b:d6:a7:ef:f9:0d:42: ea:bc:e0:06:39:d2:05:f2:4b:43:ba:4e:a9:1f:2c: 93:4c:11:48:f3:5e:df:1b:ab:03:0b:b3:7d:98:7b: 16:0f:97:ac:7d:a7:b6:36:16:71:52:b1:17:65:cf: 9d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:FD:57:69:C5:3A:B9:9B:45:4D:56:72:C5:A0:3D:C6:E1:90:33:88 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:75:e9:a2:ac:ca:f5:d1:7b:3f:1e:6b:79:2a:33:89:80:b2: 9b:7c:25:11:a5:e8:c9:8c:2b:0e:c7:82:ae:61:bd:ab:bd:e1: bb:42:eb:d8:ab:96:80:78:12:9e:87:4a:41:c9:f6:81:5d:d9: d1:19:3b:b0:96:ae:9c:93:37:e5:c0:09:2a:a3:33:f4:80:20: 42:f7:d8:c3:04:c5:6f:31:06:bc:f3:22:0c:a7:18:a7:96:3d: 8e:06:11:ab:0a:4c:83:60:50:34:db:55:1c:1e:8b:74:94:94: c1:19:1b:9c:2e:3c:d3:ab:8b:63:43:9d:e8:b0:68:eb:09:b9: bc:4a:1a:8a:be:8f:00:d5:52:63:18:f3:76:4e:43:86:34:ee: 6f:c2:40:59:58:d6:a9:11:51:6d:4a:17:aa:22:d2:b8:97:34: 6c:ef:00:a4:1c:c1:e9:0b:44:10:5c:a3:71:41:e0:38:cb:be: 72:55:83:4b:59:17:8d:09:ba:1a:29:0c:e2:bc:9e:fc:87:48: 17:74:2f:c8:03:0c:28:7e:c7:87:77:b4:36:a7:9e:79:96:01: 8a:63:d1:6e:19:c4:41:a7:a4:23:d5:09:88:7b:c2:9c:f5:25: 98:8e:20:cc:ad:84:bb:36:39:af:ce:5b:03:21:a5:6c:6b:7b: c8:7e:59:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTA2MDcwMzA2MzlaFw0yNTA2MTQwMzA2MzlaMBgxFjAUBgNV BAMTDTY4NDNhY2JmLTU2YjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1ZsXAzqH6xmZFprYUxPigXp3FeadGXrIUGlw/R5DUKuuCBbQFTV8Oes/OwVYD 0JZNvWbEwLSv6osc5Yoz2Ea8rrS8qYSKUIhiNyaKIwghGVp3rTg+c9RHV7qtgmaJ h/5+CDebQ5YwD6ndneQRuATdhqxDkX4u21NPP2DTK3vxU+k1Bl1eMwiB909w4ab5 X/jdbrVGNWSrARV3HTqoWDySDNI0ESVEkPlY4O2Io6SY6nDHw+b5xjUg+kbB+mxV mIRkWR26Z4FPoojFm9an7/kNQuq84AY50gXyS0O6TqkfLJNMEUjzXt8bqwMLs32Y exYPl6x9p7Y2FnFSsRdlz51dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuP1XacU6 uZtFTVZyxaA9xuGQM4gwHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRDRkMwOERBQjc2QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1 UWNmdUtfNjFCMWlRbXFsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIx16aKsyvXRez8ea3kqM4mAspt8JRGl6MmMKw7Hgq5hvau94btC69ir loB4Ep6HSkHJ9oFd2dEZO7CWrpyTN+XACSqjM/SAIEL32MMExW8xBrzzIgynGKeW PY4GEasKTINgUDTbVRwei3SUlMEZG5wuPNOri2NDneiwaOsJubxKGoq+jwDVUmMY 83ZOQ4Y07m/CQFlY1qkRUW1KF6oi0riXNGzvAKQcwekLRBBco3FB4DjLvnJVg0tZ F40JuhopDOK8nvyHSBd0L8gDDCh+x4d3tDannnmWAYpj0W4ZxEGnpCPVCYh7wpz1 JZiOIMythLs2Oa/OWwMhpWxre8h+Wdc= -----END CERTIFICATE-----Generated at Sun Jun 8 08:21:02 2025 by rpki-client