$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft File: O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft (raw, json) Hash identifier: sz+p8+FTDZIop9kMm4zkqrpejhBM2AD9hoZHFkiAUak= Subject key identifier: C6:39:97:DD:37:4B:80:F5:9F:76:61:05:29:83:E2:56:77:74:5B:B2 Authority key identifier: 3B:A4:8C:4A:FB:00:F7:33:42:24:C0:51:53:AA:C6:F2:68:68:43:B7 Certificate issuer: /CN=A91AB92D/serialNumber=3BA48C4AFB00F7334224C05153AAC6F2686843B7 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft Manifest number: F3 Signing time: Tue 03 Jun 2025 03:04:32 +0000 Manifest this update: Tue 03 Jun 2025 03:04:31 +0000 Manifest next update: Tue 10 Jun 2025 03:04:31 +0000 Files and hashes: 1: O6SMSvsA9zNCJMBRU6rG8mhoQ7c.crl (hash: +xGmW/rJg1SGtIyE0opl3g+vKw4QICvIkgy47tXs+o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.crl rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:04:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB92D, serialNumber=3BA48C4AFB00F7334224C05153AAC6F2686843B7 Validity Not Before: Jun 3 03:04:31 2025 GMT Not After : Jun 10 03:04:31 2025 GMT Subject: CN=683e6640-27af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c8:d2:44:c5:9b:4a:4f:99:79:39:a3:c1:25: a3:30:59:4b:f7:1e:12:23:86:e2:34:ff:36:a2:c0: 68:19:46:8e:11:e0:bd:38:e4:b3:2c:d4:9a:32:3d: 27:eb:38:e0:f8:21:f8:7b:d4:4d:6a:39:14:72:99: 32:ca:0a:60:e8:e4:af:fd:3c:58:1a:d8:d4:da:4d: 6e:b5:65:d5:60:7a:68:e5:21:c3:2b:22:59:15:c3: 47:e6:aa:db:16:a2:d6:8d:a9:ee:6b:b8:d5:74:8a: 8f:3c:ef:53:ab:2c:90:ca:16:ca:1b:79:9f:48:dc: 56:12:d2:60:ac:1a:8c:39:78:6e:bb:51:83:12:37: da:15:ce:66:0f:e2:4b:81:32:0b:95:1e:77:60:c9: 82:e3:c2:2e:d4:a9:66:e5:e4:4e:d6:2a:5d:31:c3: 84:4b:64:83:98:8d:c0:5f:46:c4:0b:66:fa:d5:0e: 94:ee:7a:51:4b:fd:23:c4:78:b5:d8:6a:f8:b5:b3: 07:ab:c6:c8:b4:b5:e6:7d:78:5e:7c:23:3c:74:43: 21:07:d7:79:b9:db:77:53:ff:50:00:37:ed:6a:1b: 0a:88:fc:11:d9:e5:a2:de:04:7e:2c:d3:6f:88:41: 61:0b:e6:4b:4e:a5:3b:92:44:df:9c:86:cf:c2:ad: 30:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:39:97:DD:37:4B:80:F5:9F:76:61:05:29:83:E2:56:77:74:5B:B2 X509v3 Authority Key Identifier: keyid:3B:A4:8C:4A:FB:00:F7:33:42:24:C0:51:53:AA:C6:F2:68:68:43:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB92D/80B8171ACED111EE8BF64B73C4F9AE02/O6SMSvsA9zNCJMBRU6rG8mhoQ7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:c9:54:76:b1:ba:98:f0:81:ac:75:18:8d:9c:04:b9:b0:5f: 9f:83:22:de:b3:3c:f4:b5:88:27:c1:26:13:ad:0c:b7:94:18: 89:21:98:75:33:23:3c:23:8f:73:3c:e8:01:ba:6d:39:55:6d: 78:b7:94:37:f7:48:3e:fc:8b:4c:b3:30:d0:33:5e:47:02:ef: 36:b4:54:ea:f9:57:17:e6:cf:8f:12:c6:08:f5:a0:0a:bc:43: dd:ea:d7:36:4a:df:4b:69:6a:b7:43:d4:20:9e:19:73:cb:5f: b3:74:3c:1d:c2:a3:6a:0a:f5:47:75:72:6f:36:16:c0:af:e3: f9:5c:94:54:dd:74:59:5e:38:08:5d:01:f5:3e:55:9f:f8:5d: bf:ba:36:8d:71:6d:ed:ed:9f:5e:3c:59:55:dc:49:71:25:7a: bc:af:e5:15:4f:dd:15:99:41:89:96:53:1f:b0:47:6f:9d:b0: 2d:3e:7e:f1:61:3e:28:56:9c:bb:eb:0b:d3:e7:50:87:04:a5: 0e:73:d4:48:63:d7:54:76:be:d1:0a:78:c6:f7:83:d4:ae:79: 19:4a:52:5c:79:1d:00:9f:e0:9d:6d:d1:2d:80:46:a0:ab:a8: ad:a7:a4:12:fb:bc:ca:82:16:0a:37:fb:b9:89:37:66:61:03: 20:fd:94:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI5MkQxMTAvBgNVBAUTKDNCQTQ4QzRBRkIwMEY3MzM0MjI0QzA1MTUzQUFDNkYy Njg2ODQzQjcwHhcNMjUwNjAzMDMwNDMxWhcNMjUwNjEwMDMwNDMxWjAYMRYwFAYD VQQDEw02ODNlNjY0MC0yN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8jSRMWbSk+ZeTmjwSWjMFlL9x4SI4biNP82osBoGUaOEeC9OOSzLNSaMj0n 6zjg+CH4e9RNajkUcpkyygpg6OSv/TxYGtjU2k1utWXVYHpo5SHDKyJZFcNH5qrb FqLWjanua7jVdIqPPO9TqyyQyhbKG3mfSNxWEtJgrBqMOXhuu1GDEjfaFc5mD+JL gTILlR53YMmC48Iu1Klm5eRO1ipdMcOES2SDmI3AX0bEC2b61Q6U7npRS/0jxHi1 2Gr4tbMHq8bItLXmfXhefCM8dEMhB9d5udt3U/9QADftahsKiPwR2eWi3gR+LNNv iEFhC+ZLTqU7kkTfnIbPwq0wCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMY5l903 S4D1n3ZhBSmD4lZ3dFuyMB8GA1UdIwQYMBaAFDukjEr7APczQiTAUVOqxvJoaEO3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjkyRC84MEI4MTcxQUNF RDExMUVFOEJGNjRCNzNDNEY5QUUwMi9PNlNNU3ZzQTl6TkNKTUJSVTZyRzhtaG9R N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL082U01TdnNBOXpOQ0pNQlJVNnJHOG1ob1E3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjkyRC84MEI4MTcxQUNFRDExMUVFOEJGNjRCNzNDNEY5QUUwMi9PNlNNU3ZzQTl6 TkNKTUJSVTZyRzhtaG9RN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKyVR2sbqY8IGsdRiNnAS5sF+fgyLeszz0tYgnwSYTrQy3lBiJIZh1 MyM8I49zPOgBum05VW14t5Q390g+/ItMszDQM15HAu82tFTq+VcX5s+PEsYI9aAK vEPd6tc2St9LaWq3Q9Qgnhlzy1+zdDwdwqNqCvVHdXJvNhbAr+P5XJRU3XRZXjgI XQH1PlWf+F2/ujaNcW3t7Z9ePFlV3ElxJXq8r+UVT90VmUGJllMfsEdvnbAtPn7x YT4oVpy76wvT51CHBKUOc9RIY9dUdr7RCnjG94PUrnkZSlJceR0An+CdbdEtgEag q6itp6QS+7zKghYKN/u5iTdmYQMg/ZRQ -----END CERTIFICATE-----Generated at Tue Jun 3 23:44:10 2025 by rpki-client