$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft File: O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft (raw, json) Hash identifier: n6LXasS3AgAtpiCtyUA2QiWE7gk8qAqR0nf9Fx3ak1w= Subject key identifier: D5:C6:67:7E:CD:DF:DE:82:88:95:F6:1E:E5:84:2F:28:29:9D:48:DA Authority key identifier: 3B:A4:8C:4A:FB:00:F7:33:42:24:C0:51:53:AA:C6:F2:68:68:43:B7 Certificate issuer: /CN=A91AB92D/serialNumber=3BA48C4AFB00F7334224C05153AAC6F2686843B7 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft Manifest number: 010A Signing time: Sat 19 Jul 2025 03:13:43 +0000 Manifest this update: Sat 19 Jul 2025 03:13:42 +0000 Manifest next update: Sat 26 Jul 2025 03:13:42 +0000 Files and hashes: 1: O6SMSvsA9zNCJMBRU6rG8mhoQ7c.crl (hash: WXkoZlZVyIfVyIaMc6V6OHo6Uel6sarOKU+GQwgiVEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.crl rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB92D, serialNumber=3BA48C4AFB00F7334224C05153AAC6F2686843B7 Validity Not Before: Jul 19 03:13:42 2025 GMT Not After : Jul 26 03:13:42 2025 GMT Subject: CN=687b0d67-4191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:20:c4:22:b1:2e:78:d0:28:3c:be:71:75:d7: b8:f0:9c:b4:ca:e6:5e:f2:d6:e9:2c:1f:ea:2c:4d: d5:b2:e7:20:26:05:59:5f:21:b2:e8:0c:bc:a4:13: c3:e9:b5:c1:00:f7:db:6d:cc:90:96:0c:31:30:c0: 50:2b:66:3f:f3:4b:23:42:56:65:56:02:c0:4b:a0: eb:99:7b:34:42:c3:09:36:d0:7c:4d:f1:bf:49:b7: 9a:ba:8f:a8:06:1e:4a:e2:39:1e:70:d4:80:ec:db: aa:6c:0c:52:2e:5e:1a:54:04:6d:c3:81:7b:b4:50: ab:e0:66:87:9f:84:bf:15:54:37:fb:4f:19:38:73: fc:ec:86:d2:7f:03:14:83:0b:27:a8:48:0b:eb:00: 86:d3:c8:90:92:31:73:8b:2d:2a:f8:a1:4a:bb:80: f3:31:3e:bc:f4:d5:bd:4d:0f:a3:8d:94:26:b4:d0: 80:ce:b4:a7:f7:81:d7:97:d6:f5:45:bd:06:79:3e: 77:6d:95:84:bb:d8:b0:5b:9b:8d:3c:4f:02:fc:08: 65:65:cf:7b:41:18:e4:6f:8c:11:2e:2e:49:eb:cb: 67:3a:1b:8d:94:4a:47:d9:04:a1:d0:3f:b4:5b:95: 4f:f2:30:90:45:f4:2f:7f:11:4d:80:f0:01:a9:8a: 2a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C6:67:7E:CD:DF:DE:82:88:95:F6:1E:E5:84:2F:28:29:9D:48:DA X509v3 Authority Key Identifier: keyid:3B:A4:8C:4A:FB:00:F7:33:42:24:C0:51:53:AA:C6:F2:68:68:43:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:54:1e:b9:d3:bd:0d:70:74:ca:2c:f4:75:a4:7e:51:d5:df: cd:e5:77:28:d9:a4:44:93:66:5b:04:29:4f:36:6e:7e:8d:2a: 4b:4a:c3:23:d3:aa:fb:32:14:e7:08:77:b1:93:dc:ea:bd:dc: a5:47:05:55:66:8f:df:66:bc:85:c9:29:61:ce:c6:bd:9c:b6: 5b:09:3b:a4:a7:07:87:d0:46:d8:87:e0:05:05:bb:ba:14:fd: d6:5e:05:43:44:64:52:b7:24:db:8b:c6:7c:3e:60:38:ee:12: c5:ba:b8:b7:b2:5e:c7:32:b7:f9:ab:dd:ae:89:70:d6:97:4b: 94:40:db:42:ae:5f:45:e1:8d:84:f6:54:8e:8a:82:76:3f:0f: 1e:60:60:3a:d3:9a:a5:98:8a:1b:5a:df:e0:dd:a0:c5:35:7f: cd:f2:9f:02:dc:0f:76:34:5c:44:d6:59:2c:45:69:2e:3c:39: cf:4f:71:65:ad:be:56:3f:4e:52:71:75:c9:ac:e2:d7:8e:03: f1:31:45:43:13:29:54:13:9a:01:fc:d8:03:bb:8f:99:70:9e: ae:47:e5:c9:8b:1f:8a:02:04:92:6c:ac:e6:47:88:36:d6:a6: fd:42:75:55:04:5c:51:d8:b1:ca:60:d0:b6:9d:5c:1f:a2:a3: 8e:81:94:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5MkQxMTAvBgNVBAUTKDNCQTQ4QzRBRkIwMEY3MzM0MjI0QzA1MTUzQUFDNkYy Njg2ODQzQjcwHhcNMjUwNzE5MDMxMzQyWhcNMjUwNzI2MDMxMzQyWjAYMRYwFAYD VQQDEw02ODdiMGQ2Ny00MTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiDEIrEueNAoPL5xdde48Jy0yuZe8tbpLB/qLE3VsucgJgVZXyGy6Ay8pBPD 6bXBAPfbbcyQlgwxMMBQK2Y/80sjQlZlVgLAS6DrmXs0QsMJNtB8TfG/Sbeauo+o Bh5K4jkecNSA7NuqbAxSLl4aVARtw4F7tFCr4GaHn4S/FVQ3+08ZOHP87IbSfwMU gwsnqEgL6wCG08iQkjFziy0q+KFKu4DzMT689NW9TQ+jjZQmtNCAzrSn94HXl9b1 Rb0GeT53bZWEu9iwW5uNPE8C/AhlZc97QRjkb4wRLi5J68tnOhuNlEpH2QSh0D+0 W5VP8jCQRfQvfxFNgPABqYoqMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXGZ37N 396CiJX2HuWELygpnUjaMB8GA1UdIwQYMBaAFDukjEr7APczQiTAUVOqxvJoaEO3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjkyRC84MEI4MTcxQUNF RDExMUVFOEJGNjRCNzNDNEY5QUUwMi9PNlNNU3ZzQTl6TkNKTUJSVTZyRzhtaG9R N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL082U01TdnNBOXpOQ0pNQlJVNnJHOG1ob1E3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjkyRC84MEI4MTcxQUNFRDExMUVFOEJGNjRCNzNDNEY5QUUwMi9PNlNNU3ZzQTl6 TkNKTUJSVTZyRzhtaG9RN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIVB65070NcHTKLPR1pH5R1d/N5Xco2aREk2ZbBClPNm5+jSpLSsMj 06r7MhTnCHexk9zqvdylRwVVZo/fZryFySlhzsa9nLZbCTukpweH0EbYh+AFBbu6 FP3WXgVDRGRStyTbi8Z8PmA47hLFuri3sl7HMrf5q92uiXDWl0uUQNtCrl9F4Y2E 9lSOioJ2Pw8eYGA605qlmIobWt/g3aDFNX/N8p8C3A92NFxE1lksRWkuPDnPT3Fl rb5WP05ScXXJrOLXjgPxMUVDEylUE5oB/NgDu4+ZcJ6uR+XJix+KAgSSbKzmR4g2 1qb9QnVVBFxR2LHKYNC2nVwfoqOOgZTL -----END CERTIFICATE-----Generated at Sun Jul 20 18:38:54 2025 by rpki-client