$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: 9bZrIZdK/ixDqE68Bij36z2WFM7Y4Dnv2F/Z9rNGrmE= Subject key identifier: 27:8A:48:09:AD:5C:FC:98:8C:45:2C:08:69:DD:A8:EE:75:AC:9D:D5 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 1632 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 1622 Signing time: Fri 30 May 2025 16:54:30 +0000 Manifest this update: Fri 30 May 2025 16:54:29 +0000 Manifest next update: Fri 06 Jun 2025 16:54:29 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: SbDa6TnwiE8FpebEzdtp23JC7lrD1owO+dY+EuZscI8=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: w3oachy62b9vS7wqwD6D3HohJubENRLKhLvYOw/CqsQ=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: P/jVLVKJm35tcLY3WNaJuQCIeip3WppGMETv/Tz90FE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5682 (0x1632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: May 30 16:54:29 2025 GMT Not After : Jun 6 16:54:29 2025 GMT Subject: CN=6839e2c6-40e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f2:3a:df:1e:61:75:ad:be:5e:22:82:89:99: 7a:0b:a8:a6:b0:16:7c:55:f7:df:c7:f6:ee:da:93: 2e:9b:0e:e0:10:fe:a2:f9:f3:a0:fd:17:27:ea:6a: 22:ed:bd:6a:1f:ae:ea:19:a5:e6:03:a4:47:e5:68: b6:0f:ad:1a:77:39:1f:51:cc:cc:a0:f0:81:fe:60: 42:c9:09:da:06:4a:e5:b3:a7:e0:e4:ac:8f:64:a5: e8:77:93:e1:c7:4b:9b:e5:6e:b1:86:e2:59:6c:d8: ac:bf:38:74:5a:9b:21:da:e5:a8:f9:c5:12:2d:39: 0b:7a:c8:9f:0a:d1:a5:a4:31:a2:aa:c4:9e:46:65: 9a:94:a3:1f:90:48:4c:74:bf:00:71:a2:58:44:48: cc:d2:ca:b1:b6:b1:78:e3:15:bd:2c:33:89:b0:fb: 84:b0:ac:6f:f1:ca:74:93:e3:04:e2:30:94:9c:46: da:3f:71:e6:d9:88:45:40:ec:45:5b:e6:7c:09:0d: c6:f7:fb:7d:11:4a:36:0d:b0:b7:6c:d3:d1:97:dc: 88:0e:96:12:02:55:a5:c4:a6:4d:e7:57:13:02:cc: 8b:da:a3:3a:01:57:e0:f1:3a:ab:f2:ea:57:dd:a0: 64:87:3a:35:04:db:34:c6:4c:a7:ae:8f:c1:88:9b: b1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:8A:48:09:AD:5C:FC:98:8C:45:2C:08:69:DD:A8:EE:75:AC:9D:D5 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:04:3e:29:c6:a1:59:71:9f:47:ad:a1:5a:d7:0d:79:d4:7e: d2:fe:61:60:2e:fd:c6:2a:0f:26:ef:c4:73:a3:dd:53:94:9a: 9a:03:00:57:00:ca:e3:68:46:42:54:c2:7b:83:78:01:dc:15: 17:0a:d1:63:10:0a:3a:05:63:e9:1a:77:5c:7c:2b:b0:b9:2e: 0a:66:7d:d6:a2:f7:1e:5a:94:0f:30:0b:30:24:30:7a:7f:e0: fd:52:06:55:0e:68:f8:7b:78:47:07:3e:da:e6:00:d6:49:5e: 7d:a6:22:e8:f9:e0:b6:ce:0b:2e:c7:84:bb:36:93:1c:96:f5: 91:06:ce:77:07:07:96:ab:e1:e9:27:c8:b2:79:49:62:6f:2e: 67:93:7a:68:cc:89:99:08:80:96:f0:75:44:f0:2d:de:69:4f: 6c:80:ae:e0:99:d6:fd:50:bb:bc:84:62:6e:0c:c4:0b:c3:d7: 2c:63:44:ab:05:ef:62:dc:5a:98:65:e9:21:3b:d4:a2:81:bb: 60:b0:c9:ca:75:8b:db:7c:ba:39:b2:bf:eb:72:8b:5d:a0:2e: e9:9f:d6:b7:dc:d9:35:52:84:b5:33:03:8c:2b:c8:99:3a:32: 42:b1:77:50:4f:e7:a0:15:63:8c:28:c4:0d:6d:2e:e3:02:40: 12:75:25:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjUwNTMwMTY1NDI5WhcNMjUwNjA2MTY1NDI5WjAYMRYwFAYD VQQDEw02ODM5ZTJjNi00MGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvI63x5hda2+XiKCiZl6C6imsBZ8Vfffx/bu2pMumw7gEP6i+fOg/Rcn6moi 7b1qH67qGaXmA6RH5Wi2D60adzkfUczMoPCB/mBCyQnaBkrls6fg5KyPZKXod5Ph x0ub5W6xhuJZbNisvzh0Wpsh2uWo+cUSLTkLesifCtGlpDGiqsSeRmWalKMfkEhM dL8AcaJYREjM0sqxtrF44xW9LDOJsPuEsKxv8cp0k+ME4jCUnEbaP3Hm2YhFQOxF W+Z8CQ3G9/t9EUo2DbC3bNPRl9yIDpYSAlWlxKZN51cTAsyL2qM6AVfg8Tqr8upX 3aBkhzo1BNs0xkynro/BiJuxXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeKSAmt XPyYjEUsCGndqO51rJ3VMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHBD4pxqFZcZ9HraFa1w151H7S/mFgLv3GKg8m78Rzo91TlJqaAwBX AMrjaEZCVMJ7g3gB3BUXCtFjEAo6BWPpGndcfCuwuS4KZn3WovceWpQPMAswJDB6 f+D9UgZVDmj4e3hHBz7a5gDWSV59piLo+eC2zgsux4S7NpMclvWRBs53BweWq+Hp J8iyeUliby5nk3pozImZCICW8HVE8C3eaU9sgK7gmdb9ULu8hGJuDMQLw9csY0Sr Be9i3FqYZekhO9SigbtgsMnKdYvbfLo5sr/rcotdoC7pn9a33Nk1UoS1MwOMK8iZ OjJCsXdQT+egFWOMKMQNbS7jAkASdSW2 -----END CERTIFICATE-----Generated at Sat May 31 17:13:01 2025 by rpki-client