$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft File: o5jf1NOXXquW_TgDOWgkbkdeKLM.mft (raw, json) Hash identifier: Dvi8vTbjna77R8S3n+iFEiq5gnkQNgX3acsSssEud6E= Subject key identifier: 9B:2E:2D:F3:B3:85:51:F8:2F:86:1A:7C:7C:42:99:8A:C0:7E:10:90 Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 03F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft Manifest number: 03EF Signing time: Fri 13 Jun 2025 00:03:28 +0000 Manifest this update: Fri 13 Jun 2025 00:03:28 +0000 Manifest next update: Fri 20 Jun 2025 00:03:28 +0000 Files and hashes: 1: o5jf1NOXXquW_TgDOWgkbkdeKLM.crl (hash: oEv2VASMoKpoIGbkkWa3yNza+hYYqekeSIIVXB9HE24=) 2: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (hash: 7VcZosPp1uH1LHkRjpyCPhzaiPyFOlncH9YUjxzCpg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D, serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: Jun 13 00:03:28 2025 GMT Not After : Jun 20 00:03:28 2025 GMT Subject: CN=684b6ad0-6c21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4d:7f:16:23:dd:90:f5:9e:05:b0:71:8d:87: 8a:2f:f7:5e:b7:ba:a6:c0:d3:12:ad:7a:05:4c:b6: 3f:90:b3:0f:49:e1:71:9a:1c:c5:2e:5b:3f:83:75: ad:f7:e3:97:5d:24:4f:37:4d:bf:18:db:f8:2a:0a: a4:a0:9d:7f:64:88:2b:4a:3a:0f:ec:4a:1e:e4:bb: f0:ce:50:05:d8:7f:2f:9a:d9:fa:c0:05:ae:3e:8e: e8:5e:8b:4a:c4:7a:bd:c3:26:11:39:76:46:0a:fd: 8a:42:87:02:ae:47:a4:2c:b5:2a:b0:79:01:48:42: 3e:c7:a7:1f:13:a7:44:7e:f1:62:10:18:55:20:b4: 04:81:45:09:f0:64:c3:37:c3:5d:d5:f9:48:e0:f6: f1:24:b9:86:13:91:16:db:15:04:c0:12:64:6a:56: ae:de:c9:97:92:69:a0:fe:0d:93:da:24:a7:44:5b: 4c:3f:b9:7b:f3:dd:ca:23:40:7b:38:23:9a:86:3d: cb:a7:d4:bd:08:d3:a4:2b:70:b3:20:59:df:82:ec: 65:31:ec:8b:09:27:7f:ac:d4:c6:fb:25:35:7f:8f: 27:0e:b0:42:ef:95:68:bd:96:fc:97:0b:40:62:1f: 23:f5:77:8b:dc:32:79:4f:5a:8c:af:07:90:a7:ed: 5a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2E:2D:F3:B3:85:51:F8:2F:86:1A:7C:7C:42:99:8A:C0:7E:10:90 X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:9a:94:52:5c:ee:16:e2:c9:53:e8:fe:bc:af:04:8b:20:67: 1c:78:7a:5c:00:7e:a6:f1:ef:da:f1:11:5b:df:b2:aa:ab:1e: 11:c9:44:22:9e:01:08:6c:93:4b:50:7b:b6:7f:b9:b2:a4:26: fb:70:e4:09:36:4f:90:7b:20:31:ae:0e:e4:6f:b1:4d:e8:35: 90:41:54:38:e7:04:a8:1b:8b:1b:42:8a:68:cb:27:1f:de:eb: 66:25:18:86:40:76:7d:f5:fa:a8:51:75:a1:2b:e8:ac:2d:1c: f8:88:c4:08:2e:f8:80:6c:e7:e6:c4:75:c0:1c:37:e8:4d:0c: ea:fe:63:b4:aa:78:ce:a0:74:ee:ef:f5:d1:4b:71:9c:f3:06: 06:17:13:0c:27:56:44:cc:64:a5:f4:f2:4e:93:8a:65:be:71: c1:aa:f3:f0:fa:12:b5:28:bd:89:1d:25:f1:72:0b:a4:3e:71: bb:fa:ac:13:f4:65:d5:93:c0:dd:69:f6:dc:36:90:10:df:36: 40:ee:34:84:53:83:1c:ce:fb:53:e5:af:b4:f2:a7:de:bc:01: 29:1a:8b:8a:70:0a:25:aa:e6:e1:0b:06:b8:56:03:eb:a7:b8: d3:ab:07:25:60:ca:a0:20:7d:cd:6f:63:3d:19:23:c5:a1:a5: 2a:58:14:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjUwNjEzMDAwMzI4WhcNMjUwNjIwMDAwMzI4WjAYMRYwFAYD VQQDEw02ODRiNmFkMC02YzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvE1/FiPdkPWeBbBxjYeKL/det7qmwNMSrXoFTLY/kLMPSeFxmhzFLls/g3Wt 9+OXXSRPN02/GNv4KgqkoJ1/ZIgrSjoP7Eoe5LvwzlAF2H8vmtn6wAWuPo7oXotK xHq9wyYROXZGCv2KQocCrkekLLUqsHkBSEI+x6cfE6dEfvFiEBhVILQEgUUJ8GTD N8Nd1flI4PbxJLmGE5EW2xUEwBJkalau3smXkmmg/g2T2iSnRFtMP7l7893KI0B7 OCOahj3Lp9S9CNOkK3CzIFnfguxlMeyLCSd/rNTG+yU1f48nDrBC75VovZb8lwtA Yh8j9XeL3DJ5T1qMrweQp+1anwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsuLfOz hVH4L4YafHxCmYrAfhCQMB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTE1RC83MTA5RUZDNDdEQzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhx dVdfVGdET1dna2JrZGVLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjmpRSXO4W4slT6P68rwSLIGcceHpcAH6m8e/a8RFb37Kqqx4RyUQi ngEIbJNLUHu2f7mypCb7cOQJNk+QeyAxrg7kb7FN6DWQQVQ45wSoG4sbQopoyycf 3utmJRiGQHZ99fqoUXWhK+isLRz4iMQILviAbOfmxHXAHDfoTQzq/mO0qnjOoHTu 7/XRS3Gc8wYGFxMMJ1ZEzGSl9PJOk4plvnHBqvPw+hK1KL2JHSXxcgukPnG7+qwT 9GXVk8DdafbcNpAQ3zZA7jSEU4MczvtT5a+08qfevAEpGouKcAolqubhCwa4VgPr p7jTqwclYMqgIH3Nb2M9GSPFoaUqWBTJ -----END CERTIFICATE-----Generated at Sat Jun 14 02:16:12 2025 by rpki-client