$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft File: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft (raw, json) Hash identifier: h1n6IZXY70Rwpmbkkk4pvIqT1w/wxRYyg0nAMe19rRg= Subject key identifier: A5:58:81:EA:BE:0B:AB:24:1C:B6:07:0B:B3:02:28:CF:A5:29:2B:E7 Authority key identifier: A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 Certificate issuer: /CN=A91CE6EC/serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Certificate serial: 2587 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft Manifest number: 257C Signing time: Fri 06 Jun 2025 15:48:30 +0000 Manifest this update: Fri 06 Jun 2025 15:48:29 +0000 Manifest next update: Fri 13 Jun 2025 15:48:29 +0000 Files and hashes: 1: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl (hash: 5iUGJjdaekROJhYe0vJ8rQSiOIPYPARVns0R6kSfkDk=) 2: 96F26DD8E4A511EF8259C769C4F9AE02.roa (hash: Fcy0t/fzkFaWJQcPeRfi9B3H65XjHBViUmgSczRX2lU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9607 (0x2587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Validity Not Before: Jun 6 15:48:29 2025 GMT Not After : Jun 13 15:48:29 2025 GMT Subject: CN=68430dce-5314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:58:a1:6a:27:37:9c:9c:fb:90:5c:1b:1c:e0: bc:0b:df:6e:6b:27:88:55:58:89:97:eb:29:91:93: a0:bb:06:66:51:99:18:99:1f:fa:33:fa:13:e3:8f: f1:89:f3:25:f5:3b:9a:70:07:11:90:63:5e:c4:57: 9f:d0:30:d5:e9:0a:b9:f8:a3:90:cd:dd:a7:09:00: 47:54:7e:d1:1d:08:3b:3f:66:9a:df:66:13:64:a5: 1f:b7:10:c5:e8:66:22:90:2b:aa:87:3a:66:ba:a2: 6e:f2:45:71:53:8c:d9:11:25:12:99:7d:ac:70:85: 12:7d:b5:b2:fc:ef:95:6a:42:0d:6d:49:d4:2e:5d: 76:99:b4:96:10:8d:29:18:d4:dd:27:45:f6:4a:24: f5:66:ae:0c:16:f6:9d:30:0a:f5:b4:3a:bb:da:16: a8:15:f3:69:1a:1b:a6:be:3e:10:fe:15:be:36:c2: 51:f8:7d:96:fb:a6:07:72:19:d8:c2:81:06:4b:25: 73:59:e0:9c:a4:ad:83:95:f9:7a:d8:f5:89:69:1a: d7:c2:66:e0:3c:fd:99:15:8b:2c:96:8a:14:e1:e7: 88:39:b9:e6:f8:66:2a:12:b6:fb:a8:bf:f9:98:0f: 0a:94:31:9a:50:15:eb:5c:0f:b4:b1:b5:ed:75:0f: aa:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:58:81:EA:BE:0B:AB:24:1C:B6:07:0B:B3:02:28:CF:A5:29:2B:E7 X509v3 Authority Key Identifier: keyid:A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:32:be:6e:bd:23:f2:23:6e:c5:21:fa:87:20:bb:48:52:7f: 6a:0d:31:b0:08:8e:65:6a:df:d7:03:0c:13:94:95:85:19:80: 91:37:ff:c4:cf:fe:13:0d:61:3a:68:6f:e1:c2:72:43:ad:5c: e4:58:16:be:ab:b5:57:d1:f9:1e:51:28:eb:8a:cf:84:96:7f: e7:48:39:e6:cd:1b:0b:94:0d:1c:c3:06:ca:5c:4d:77:a1:3c: 0f:a0:32:27:7d:0d:7d:ad:67:ea:76:50:e2:f6:8b:36:51:67: 66:14:8f:36:44:28:66:9e:54:22:71:d2:21:16:5d:8e:a5:83: b9:e8:da:b9:cd:aa:51:54:b6:06:55:66:9c:03:10:5d:9c:ae: 21:18:1d:48:0b:be:09:c3:10:76:1e:fa:b4:24:76:ee:90:ba: e3:2d:fb:d2:dd:42:ed:2f:6a:54:4f:ba:ad:5b:09:b7:3f:8d: 76:f3:58:e8:e3:b3:75:7d:73:bb:ec:cb:5e:54:58:c3:54:ab: c6:3f:11:b1:8a:1e:52:80:f5:d7:1b:11:dd:1a:df:7b:c3:ed: 26:7d:14:8d:13:3f:00:5d:a2:25:47:0e:5c:65:96:1c:9c:11: f7:1b:e4:01:e0:e2:95:ad:6a:0f:77:d1:0a:f6:15:17:82:b5: 4a:0f:3d:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKEExQzIzOTY1NzA0MDE3NzI0MjlFQjhDQkIwREY2NjUz RjE2NzhDRjYwHhcNMjUwNjA2MTU0ODI5WhcNMjUwNjEzMTU0ODI5WjAYMRYwFAYD VQQDEw02ODQzMGRjZS01MzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1ihaic3nJz7kFwbHOC8C99uayeIVViJl+spkZOguwZmUZkYmR/6M/oT44/x ifMl9TuacAcRkGNexFef0DDV6Qq5+KOQzd2nCQBHVH7RHQg7P2aa32YTZKUftxDF 6GYikCuqhzpmuqJu8kVxU4zZESUSmX2scIUSfbWy/O+VakINbUnULl12mbSWEI0p GNTdJ0X2SiT1Zq4MFvadMAr1tDq72haoFfNpGhumvj4Q/hW+NsJR+H2W+6YHchnY woEGSyVzWeCcpK2Dlfl62PWJaRrXwmbgPP2ZFYsslooU4eeIObnm+GYqErb7qL/5 mA8KlDGaUBXrXA+0sbXtdQ+qvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVYgeq+ C6skHLYHC7MCKM+lKSvnMB8GA1UdIwQYMBaAFKHCOWVwQBdyQp64y7DfZlPxZ4z2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy9EM0FCNjAxNjE0 QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYzSkNucmpMc045bVVfRm5q UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29jSTVaWEJBRjNKQ25yakxzTjltVV9GbmpQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy9EM0FCNjAxNjE0QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYz SkNucmpMc045bVVfRm5qUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYMr5uvSPyI27FIfqHILtIUn9qDTGwCI5lat/XAwwTlJWFGYCRN//E z/4TDWE6aG/hwnJDrVzkWBa+q7VX0fkeUSjris+Eln/nSDnmzRsLlA0cwwbKXE13 oTwPoDInfQ19rWfqdlDi9os2UWdmFI82RChmnlQicdIhFl2OpYO56Nq5zapRVLYG VWacAxBdnK4hGB1IC74JwxB2Hvq0JHbukLrjLfvS3ULtL2pUT7qtWwm3P41281jo 47N1fXO77MteVFjDVKvGPxGxih5SgPXXGxHdGt97w+0mfRSNEz8AXaIlRw5cZZYc nBH3G+QB4OKVrWoPd9EK9hUXgrVKDz20 -----END CERTIFICATE-----Generated at Sat Jun 7 23:33:27 2025 by rpki-client