$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft File: oPojd21UTId5RsrHxId0ZRmTfbg.mft (raw, json) Hash identifier: gmyFJ0QTUMjAa7eyeXtUUJq5hhbkGEkyPMx0JWd66fw= Subject key identifier: BA:74:74:0C:8A:38:84:3D:97:01:34:DA:74:2F:B9:55:84:6A:13:AF Authority key identifier: A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 Certificate issuer: /CN=A91DD584/serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft Manifest number: 6D Signing time: Sat 31 May 2025 06:30:27 +0000 Manifest this update: Sat 31 May 2025 06:30:27 +0000 Manifest next update: Sat 07 Jun 2025 06:30:27 +0000 Files and hashes: 1: oPojd21UTId5RsrHxId0ZRmTfbg.crl (hash: tfD4VsAYOz8W4l5GbrTpX1JwZvLG/lgKUuy7u7zs3jg=) 2: B4C685B09CB111EFA6F8E627C4F9AE02.roa (hash: GuNo7IUV7Thwoh9B3txt8mnx9fY3g5B8M+APQokJxqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:30:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD584, serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Validity Not Before: May 31 06:30:27 2025 GMT Not After : Jun 7 06:30:27 2025 GMT Subject: CN=683aa203-0480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ef:a6:60:23:89:b7:d1:d9:c1:b3:38:c0:1f: c9:7b:fb:3f:7e:4e:71:9d:f9:35:cd:ff:9c:93:dc: fb:ad:de:94:91:75:a1:b0:c6:ed:40:aa:7f:22:8c: c1:ba:aa:65:47:46:c2:d9:f3:f3:88:c2:2e:a6:50: 1d:12:8d:30:de:5a:e0:ec:91:64:14:88:f5:74:1a: 66:bf:7f:ae:ab:5d:4b:da:73:7f:fa:5f:f8:30:24: 9f:f8:c8:d4:e1:23:b8:e7:6d:85:16:8f:31:43:dc: c1:14:8d:3d:21:12:72:e7:61:15:90:b9:3c:d9:5d: 8e:52:af:c2:35:94:e5:06:09:ca:d8:74:da:ce:b0: 16:3c:b9:27:d5:e8:54:28:df:82:90:04:c0:ad:2c: f1:22:b2:8a:7c:d5:06:8d:86:53:ab:61:ef:e3:9b: 7c:ac:83:86:39:06:a4:7e:01:8f:02:92:f7:25:79: 7e:08:60:48:85:6b:25:b2:29:ce:8a:c7:15:2f:97: 1f:82:7a:61:46:67:f8:06:71:29:52:c8:59:0d:80: 14:fc:65:28:c8:e2:80:ce:9d:b0:c4:ad:b5:05:1b: a4:c6:da:7a:97:dd:a4:b1:0e:aa:93:13:2b:ea:9a: ea:e9:ba:c3:d5:96:02:23:10:6d:1b:d6:e2:37:cb: 17:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:74:74:0C:8A:38:84:3D:97:01:34:DA:74:2F:B9:55:84:6A:13:AF X509v3 Authority Key Identifier: keyid:A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:5e:c6:fd:2a:1e:3c:a2:4d:03:ce:f8:6e:ff:fc:95:fe:36: 37:40:9a:58:3e:79:c7:31:10:3b:e9:fe:f3:db:3c:f3:d0:c8: 7e:e1:ac:a5:14:fc:65:5e:1a:68:4a:9b:4c:df:e1:4e:d5:52: 90:b0:03:a9:fb:2b:18:d3:55:55:5f:48:0b:7e:fa:ca:84:fe: 50:72:fb:38:6a:4a:99:4b:1d:b8:ae:b2:52:6d:30:32:5a:cc: b4:34:d1:84:64:72:ab:b0:d7:0c:7d:7d:4b:19:64:a4:0b:11: 2b:e3:09:bd:be:2d:4d:b8:4b:65:60:72:e6:36:6e:d8:1a:56: c8:22:24:37:8c:c7:62:3a:3e:3b:89:ea:1a:e9:61:bc:b7:08: 63:c7:5c:5e:7c:04:ec:4d:d8:25:92:03:de:df:75:cb:05:61: 87:d1:d1:09:cf:b2:00:70:c2:d0:32:9e:0e:ca:fa:8b:83:ba: eb:cc:8f:0a:5c:2d:6c:90:28:ba:b0:29:8a:8c:96:6e:60:9c: c5:a2:ee:cb:b4:4f:bd:5d:d8:31:4a:46:ba:94:d2:ce:c0:fd: 70:d5:48:56:7e:2f:85:1c:57:6e:b8:d8:51:4b:a2:9b:6c:44: f2:3d:70:4b:e1:80:7d:38:6b:10:c3:1e:a4:05:53:b9:c5:d6: d6:eb:3e:d3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDU4NDExMC8GA1UEBRMoQTBGQTIzNzc2RDU0NEM4Nzc5NDZDQUM3QzQ4Nzc0NjUx OTkzN0RCODAeFw0yNTA1MzEwNjMwMjdaFw0yNTA2MDcwNjMwMjdaMBgxFjAUBgNV BAMTDTY4M2FhMjAzLTA0ODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU76ZgI4m30dnBszjAH8l7+z9+TnGd+TXN/5yT3Put3pSRdaGwxu1Aqn8ijMG6 qmVHRsLZ8/OIwi6mUB0SjTDeWuDskWQUiPV0Gma/f66rXUvac3/6X/gwJJ/4yNTh I7jnbYUWjzFD3MEUjT0hEnLnYRWQuTzZXY5Sr8I1lOUGCcrYdNrOsBY8uSfV6FQo 34KQBMCtLPEisop81QaNhlOrYe/jm3ysg4Y5BqR+AY8CkvcleX4IYEiFayWyKc6K xxUvlx+CemFGZ/gGcSlSyFkNgBT8ZSjI4oDOnbDErbUFG6TG2nqX3aSxDqqTEyvq murpusPVlgIjEG0b1uI3yxfXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUunR0DIo4 hD2XATTadC+5VYRqE68wHwYDVR0jBBgwFoAUoPojd21UTId5RsrHxId0ZRmTfbgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURENTg0LzMyNzA3MzgyOUNC MTExRUZBRUEwMEQyNUM0RjlBRTAyL29Qb2pkMjFVVElkNVJzckh4SWQwWlJtVGZi Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1BvamQyMVVUSWQ1UnNySHhJZDBaUm1UZmJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE NTg0LzMyNzA3MzgyOUNCMTExRUZBRUEwMEQyNUM0RjlBRTAyL29Qb2pkMjFVVElk NVJzckh4SWQwWlJtVGZiZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMFexv0qHjyiTQPO+G7//JX+NjdAmlg+eccxEDvp/vPbPPPQyH7hrKUU /GVeGmhKm0zf4U7VUpCwA6n7KxjTVVVfSAt++sqE/lBy+zhqSplLHbiuslJtMDJa zLQ00YRkcquw1wx9fUsZZKQLESvjCb2+LU24S2VgcuY2btgaVsgiJDeMx2I6PjuJ 6hrpYby3CGPHXF58BOxN2CWSA97fdcsFYYfR0QnPsgBwwtAyng7K+ouDuuvMjwpc LWyQKLqwKYqMlm5gnMWi7su0T71d2DFKRrqU0s7A/XDVSFZ+L4UcV2642FFLopts RPI9cEvhgH04axDDHqQFU7nF1tbrPtM= -----END CERTIFICATE-----Generated at Sat May 31 17:17:36 2025 by rpki-client