$ rpki-client -vvf rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.mft File: OEBSLgVtM3Uf55akOVuNTf3lj4w.mft (raw, json) Hash identifier: 4wBUCQ2dBS2OlpHdr+05UgZcWIZ9NYRhlg5CIKaDKyk= Subject key identifier: 5B:2D:38:A5:D4:D1:7D:0A:A8:3D:13:A5:1E:02:5E:37:F3:B4:3A:A7 Authority key identifier: 38:40:52:2E:05:6D:33:75:1F:E7:96:A4:39:5B:8D:4D:FD:E5:8F:8C Certificate issuer: /CN=A917FEF3/serialNumber=3840522E056D33751FE796A4395B8D4DFDE58F8C Certificate serial: 0637 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEBSLgVtM3Uf55akOVuNTf3lj4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.mft Manifest number: 062F Signing time: Fri 30 May 2025 22:56:39 +0000 Manifest this update: Fri 30 May 2025 22:56:39 +0000 Manifest next update: Fri 06 Jun 2025 22:56:39 +0000 Files and hashes: 1: OEBSLgVtM3Uf55akOVuNTf3lj4w.crl (hash: vQrYUQ6ztsv7fhOSHYY8OYB7euEY2DQdH41nWB5E2hk=) 2: B21979EE9CAF11ECBFF4AF64C4F9AE02.roa (hash: sdbnkMVypf4sBW84IBpLOAa+Rd3ZV2UqRLClbIWsTfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.crl rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEBSLgVtM3Uf55akOVuNTf3lj4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1591 (0x637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FEF3, serialNumber=3840522E056D33751FE796A4395B8D4DFDE58F8C Validity Not Before: May 30 22:56:39 2025 GMT Not After : Jun 6 22:56:39 2025 GMT Subject: CN=683a37a7-29b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0e:07:2f:5b:3b:92:63:70:36:cb:4c:9a:f4: fa:24:da:c9:76:fd:97:bf:1e:51:95:be:e0:72:5d: ab:9b:bf:20:87:a1:ee:64:a7:50:54:fc:56:f2:6e: f2:4c:71:c2:6f:e6:a2:15:11:89:4f:0d:2e:6d:71: dd:70:d5:9e:a9:b7:89:2d:8d:78:75:2e:12:91:b7: fa:48:c0:ea:a0:1c:d5:0b:80:1d:45:4e:69:ff:c8: 66:38:80:fc:bc:ec:98:1f:48:3a:2f:a8:09:bc:f0: f7:5a:47:01:ba:a8:87:1c:40:af:1f:ba:25:bf:9c: 2c:4a:d6:e0:f1:f7:31:93:0b:a7:24:4e:7a:7a:f9: a5:b5:27:5b:5c:d8:0b:36:95:12:e9:d2:ca:41:af: b5:e0:06:9f:37:14:aa:70:07:63:16:8d:33:e8:e5: 0d:c1:31:2c:88:d0:b3:38:01:3b:1f:ed:ce:84:ad: 22:8e:54:d7:08:bc:28:ca:60:1f:b5:ff:a7:48:11: 12:37:8b:0d:0e:af:39:ca:2a:22:4c:9c:0e:42:13: 43:a7:c9:a6:41:19:77:70:6d:f6:57:a4:8a:ab:0e: 45:69:7c:b6:ed:13:ec:d3:c6:ee:43:e0:dd:93:91: 4e:09:e0:e8:b9:88:dd:25:fe:1e:c1:e1:d7:84:6c: bd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:2D:38:A5:D4:D1:7D:0A:A8:3D:13:A5:1E:02:5E:37:F3:B4:3A:A7 X509v3 Authority Key Identifier: keyid:38:40:52:2E:05:6D:33:75:1F:E7:96:A4:39:5B:8D:4D:FD:E5:8F:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEBSLgVtM3Uf55akOVuNTf3lj4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:f4:40:ae:c6:16:70:83:e6:aa:a2:02:c8:3e:e7:f9:59:bd: 12:92:ab:9c:0c:24:d6:c2:13:8c:32:c6:3f:db:65:4a:f8:64: 81:a7:d2:2a:31:49:30:a9:37:cc:2b:4e:92:5f:9d:30:e0:1a: df:a4:a7:70:92:d6:42:cc:9f:1c:b9:da:11:bb:2e:55:de:39: 0c:0a:5c:17:1b:7c:1a:b4:68:73:af:31:11:a3:c1:17:95:1f: 6f:21:89:d5:a1:92:26:5c:a7:06:f6:a8:f2:ac:72:98:85:e8: 27:c9:b6:6a:ee:ff:53:00:12:1c:36:c9:83:34:af:ca:85:9f: bd:12:ec:56:97:83:20:8f:71:8e:b0:9f:66:07:c9:97:30:a2: a7:f1:f9:c4:8a:b0:90:0c:77:b9:62:b7:a0:ac:ed:1e:9a:05: e2:9c:7e:2c:65:5d:a6:9f:ee:72:87:82:96:30:ce:9b:de:a2: 29:f5:34:ae:4e:dc:cf:9e:19:18:7d:15:60:a6:8d:98:e2:64: 78:df:12:f9:00:e9:2c:8e:9a:30:a6:0f:91:15:b1:a8:a4:6a: 13:22:1a:83:9d:a7:23:e7:61:83:34:07:bc:4f:a7:21:49:82: 23:33:5a:1c:cc:02:c6:c3:6e:b9:a2:86:bc:b4:ce:0f:a5:62: 72:fd:2e:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZFRjMxMTAvBgNVBAUTKDM4NDA1MjJFMDU2RDMzNzUxRkU3OTZBNDM5NUI4RDRE RkRFNThGOEMwHhcNMjUwNTMwMjI1NjM5WhcNMjUwNjA2MjI1NjM5WjAYMRYwFAYD VQQDEw02ODNhMzdhNy0yOWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzw4HL1s7kmNwNstMmvT6JNrJdv2Xvx5Rlb7gcl2rm78gh6HuZKdQVPxW8m7y THHCb+aiFRGJTw0ubXHdcNWeqbeJLY14dS4Skbf6SMDqoBzVC4AdRU5p/8hmOID8 vOyYH0g6L6gJvPD3WkcBuqiHHECvH7olv5wsStbg8fcxkwunJE56evmltSdbXNgL NpUS6dLKQa+14AafNxSqcAdjFo0z6OUNwTEsiNCzOAE7H+3OhK0ijlTXCLwoymAf tf+nSBESN4sNDq85yioiTJwOQhNDp8mmQRl3cG32V6SKqw5FaXy27RPs08buQ+Dd k5FOCeDouYjdJf4eweHXhGy9HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFstOKXU 0X0KqD0TpR4CXjfztDqnMB8GA1UdIwQYMBaAFDhAUi4FbTN1H+eWpDlbjU395Y+M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkVGMy9ERERDMDFFQzk4 NTQxMUVCQkI0Nzk2NEFDNEY5QUUwMi9PRUJTTGdWdE0zVWY1NWFrT1Z1TlRmM2xq NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09FQlNMZ1Z0TTNVZjU1YWtPVnVOVGYzbGo0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkVGMy9ERERDMDFFQzk4NTQxMUVCQkI0Nzk2NEFDNEY5QUUwMi9PRUJTTGdWdE0z VWY1NWFrT1Z1TlRmM2xqNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI9ECuxhZwg+aqogLIPuf5Wb0SkqucDCTWwhOMMsY/22VK+GSBp9Iq MUkwqTfMK06SX50w4BrfpKdwktZCzJ8cudoRuy5V3jkMClwXG3watGhzrzERo8EX lR9vIYnVoZImXKcG9qjyrHKYhegnybZq7v9TABIcNsmDNK/KhZ+9EuxWl4Mgj3GO sJ9mB8mXMKKn8fnEirCQDHe5YregrO0emgXinH4sZV2mn+5yh4KWMM6b3qIp9TSu TtzPnhkYfRVgpo2Y4mR43xL5AOksjpowpg+RFbGopGoTIhqDnacj52GDNAe8T6ch SYIjM1oczALGw265ooa8tM4PpWJy/S4r -----END CERTIFICATE-----Generated at Sat May 31 16:45:45 2025 by rpki-client