$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: TM/nkJ8Rm/FdCBGJUGRVcmo0AfDnSnx4kp3SqdGOHf8= Subject key identifier: 17:02:F3:D8:83:D6:CA:15:2F:CA:CD:67:A5:71:61:71:0F:6C:FE:65 Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 1062 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 105A Signing time: Fri 30 May 2025 17:33:20 +0000 Manifest this update: Fri 30 May 2025 17:33:20 +0000 Manifest next update: Fri 06 Jun 2025 17:33:20 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: aksL4iPCtAyBK8snz2NKd1qni9Gp2R6wkD9T8hSzy5w=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: cjRvE9qcGsnVMBQMShsH1bjq0rqs5KnVL8lFydaV3ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4194 (0x1062) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944, serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: May 30 17:33:20 2025 GMT Not After : Jun 6 17:33:20 2025 GMT Subject: CN=6839ebe0-eb1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5f:19:18:4a:65:bb:4e:3a:68:3e:f7:16:15: 55:e1:d0:60:84:6b:1e:97:3e:67:0d:e2:7f:69:51: 40:99:88:9a:24:32:91:65:4c:39:f6:7d:43:dc:42: dc:d6:cf:01:5a:b9:bb:69:a8:0b:93:be:0e:9c:eb: 58:4d:d1:0f:3d:87:aa:47:88:86:60:8e:a8:db:8d: 9a:ab:51:9f:b2:28:8e:63:ba:f6:9c:d4:61:d6:78: c2:d3:fb:56:87:36:38:e0:c5:79:3e:24:f8:45:40: 68:99:2c:10:60:fd:9b:98:13:ba:90:21:74:29:ee: d3:0d:7b:eb:bc:1b:9f:28:44:b4:65:b0:aa:86:fa: 17:21:41:65:f5:ee:5c:ef:83:ff:81:25:fc:a3:43: 24:95:69:ee:c9:dd:54:eb:8c:82:aa:bf:46:81:5c: e8:dc:60:0d:10:71:2d:41:8b:59:62:b9:2d:95:c0: 69:2a:e5:d0:4b:6d:6f:b9:a9:d6:df:7b:80:c7:32: c3:5e:a0:e3:79:a6:2c:55:2a:a8:db:93:8e:4e:40: 3e:f4:00:6e:fb:6e:cd:c4:99:b1:c1:2a:8d:a1:e8: 8b:d7:23:44:3d:43:6c:ec:46:2a:e4:0a:79:3f:0c: 43:f4:5a:75:dc:89:0c:89:3d:3d:6d:14:89:bc:e3: af:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:02:F3:D8:83:D6:CA:15:2F:CA:CD:67:A5:71:61:71:0F:6C:FE:65 X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c1:05:a1:d0:aa:6c:91:e4:b1:11:f5:36:e9:6a:6e:f1:7b: 73:02:c2:b1:6f:de:78:6d:fd:40:ed:50:27:d2:bc:4f:c9:6c: 5f:9b:18:2a:01:c9:d9:b1:cd:e3:cb:95:b8:ce:20:58:fc:84: 50:73:c2:93:d4:3b:04:af:c0:b6:38:8a:63:cd:ef:07:51:32: 82:84:41:c2:5e:aa:b6:8e:51:a0:4d:44:13:50:b0:24:db:bd: 77:61:68:57:65:58:6b:cc:cc:82:a2:b2:b1:51:36:4a:e4:65: 65:56:44:0f:a4:79:36:85:af:3e:79:12:b0:21:3b:0d:70:79: f0:0d:85:ff:53:93:d2:d6:ed:84:1a:51:f2:7d:75:14:cb:97: cb:7b:b6:f0:40:7d:4e:81:73:4d:03:10:5e:53:dd:1f:d3:ce: 8c:01:35:50:6f:c6:55:df:3c:41:34:72:0b:d1:d6:b1:7e:67: 94:1a:35:39:fe:d6:bd:d1:74:fa:c5:ae:bb:79:cd:b8:da:98: 9f:ea:f9:d2:b1:85:42:0e:d1:c8:a5:d5:1c:a5:1d:f0:44:96: a8:00:85:5a:a9:d0:01:a5:c2:3f:52:4a:d8:44:6d:e6:5c:8d: 1b:53:25:a7:83:3b:04:b9:fd:46:8b:60:7c:51:ab:39:4e:97: e0:b3:b2:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjUwNTMwMTczMzIwWhcNMjUwNjA2MTczMzIwWjAYMRYwFAYD VQQDEw02ODM5ZWJlMC1lYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2l8ZGEplu046aD73FhVV4dBghGselz5nDeJ/aVFAmYiaJDKRZUw59n1D3ELc 1s8BWrm7aagLk74OnOtYTdEPPYeqR4iGYI6o242aq1GfsiiOY7r2nNRh1njC0/tW hzY44MV5PiT4RUBomSwQYP2bmBO6kCF0Ke7TDXvrvBufKES0ZbCqhvoXIUFl9e5c 74P/gSX8o0MklWnuyd1U64yCqr9GgVzo3GANEHEtQYtZYrktlcBpKuXQS21vuanW 33uAxzLDXqDjeaYsVSqo25OOTkA+9ABu+27NxJmxwSqNoeiL1yNEPUNs7EYq5Ap5 PwxD9Fp13IkMiT09bRSJvOOvUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcC89iD 1soVL8rNZ6VxYXEPbP5lMB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCawQWh0KpskeSxEfU26Wpu8XtzAsKxb954bf1A7VAn0rxPyWxfmxgq AcnZsc3jy5W4ziBY/IRQc8KT1DsEr8C2OIpjze8HUTKChEHCXqq2jlGgTUQTULAk 2713YWhXZVhrzMyCorKxUTZK5GVlVkQPpHk2ha8+eRKwITsNcHnwDYX/U5PS1u2E GlHyfXUUy5fLe7bwQH1OgXNNAxBeU90f086MATVQb8ZV3zxBNHIL0daxfmeUGjU5 /ta90XT6xa67ec242pif6vnSsYVCDtHIpdUcpR3wRJaoAIVaqdABpcI/UkrYRG3m XI0bUyWngzsEuf1Gi2B8Uas5Tpfgs7LA -----END CERTIFICATE-----Generated at Sat May 31 17:53:08 2025 by rpki-client