$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: 9miwGzoXmiTTGjHptNyU8SKK6zR1nyJg7D4IyPpoqsA= Subject key identifier: 2C:65:AB:7D:86:8F:FC:6C:9A:59:40:8C:9C:0D:95:3A:26:F2:67:56 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 036B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 035F Signing time: Thu 05 Jun 2025 00:50:53 +0000 Manifest this update: Thu 05 Jun 2025 00:50:53 +0000 Manifest next update: Thu 12 Jun 2025 00:50:53 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: Y4elhmF17nn1AFoDPpAgoWDHJmJeNoguXche8QU6RD0=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 00:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Jun 5 00:50:53 2025 GMT Not After : Jun 12 00:50:53 2025 GMT Subject: CN=6840e9ed-eec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1b:bd:6f:5a:01:77:e7:d2:ab:5e:ec:84:63: af:23:e6:74:9d:7f:09:2a:18:d8:b2:df:0e:5e:24: cb:42:74:9c:a8:c3:16:be:cc:da:ae:2f:92:3c:11: 05:f7:cb:9e:a0:e6:5c:8e:a0:98:6f:c4:2e:56:68: c6:51:0c:58:3b:e2:34:85:9c:5f:64:c1:88:90:2c: fa:7b:4a:a9:04:56:7f:96:6a:66:0b:c2:f8:fa:2d: 7a:e9:f0:93:0f:9b:72:b3:e9:89:9c:a2:cb:d6:7a: a7:6e:09:90:6b:1d:01:a8:bf:a6:1c:48:0c:3c:49: 82:05:aa:b2:13:23:13:6d:cb:76:e4:20:4a:20:5e: 40:ba:94:1a:fa:cd:9f:a5:be:94:f5:d4:d2:22:a7: 7d:be:48:9d:3d:81:87:f7:0a:d6:b0:0e:a7:e9:c6: a6:8f:88:52:0d:0b:8b:75:23:39:62:4b:d9:ce:23: da:47:76:e2:5c:1b:87:6d:1e:2a:ba:b8:3b:15:9d: ed:5e:3b:23:72:53:0a:89:ca:18:47:74:fc:68:f4: 0f:2f:7f:6c:ce:a5:86:5b:af:7c:40:6f:19:b9:cd: 38:73:c1:64:31:7a:82:d9:51:d7:03:ae:23:db:02: b4:14:11:db:fe:e6:68:5a:cd:12:ae:80:60:66:18: 4b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:65:AB:7D:86:8F:FC:6C:9A:59:40:8C:9C:0D:95:3A:26:F2:67:56 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:5d:e2:f3:20:5b:05:19:f4:47:7f:04:ee:fb:ec:7f:05:1f: 4d:15:a7:83:79:bc:2d:38:3f:74:c8:8d:c4:93:7f:28:44:49: 74:de:98:16:b6:22:5a:6a:31:ad:bd:f6:d9:6a:3b:b5:72:a3: be:77:59:85:4b:42:b0:88:59:3a:2b:40:62:95:2b:f2:86:57: 8a:bd:f0:81:bc:74:01:d1:19:8a:78:4f:73:c9:32:c9:dd:85: e4:59:7d:4f:0a:73:ee:c4:a3:db:8b:f3:e6:68:c7:0a:da:41: bd:f2:43:6f:67:74:81:21:f6:e3:06:25:d0:6e:85:26:e0:04: fd:04:d7:10:59:f5:0e:31:57:f4:4a:af:d2:f0:b4:fa:7a:52: 12:e6:05:a6:c4:26:e9:ed:51:dd:08:80:9a:45:94:bb:e2:99: 46:c1:6c:41:d1:c8:77:12:11:25:bc:8f:9c:17:d6:e6:2e:c8: 6d:b8:16:1f:f5:13:45:27:a1:59:7f:ee:a0:51:44:84:19:f7: d8:72:4a:cb:30:47:b9:98:af:ee:07:e7:d4:4a:b4:69:0d:85: 4f:da:5c:bb:6a:15:58:e7:d7:37:16:c3:58:27:94:2f:ea:51: b5:9c:5f:39:fb:2a:3e:ae:b0:0a:65:10:35:0a:8c:4d:a1:84: d2:8b:b4:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwNjA1MDA1MDUzWhcNMjUwNjEyMDA1MDUzWjAYMRYwFAYD VQQDEw02ODQwZTllZC1lZWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Ru9b1oBd+fSq17shGOvI+Z0nX8JKhjYst8OXiTLQnScqMMWvszari+SPBEF 98ueoOZcjqCYb8QuVmjGUQxYO+I0hZxfZMGIkCz6e0qpBFZ/lmpmC8L4+i166fCT D5tys+mJnKLL1nqnbgmQax0BqL+mHEgMPEmCBaqyEyMTbct25CBKIF5AupQa+s2f pb6U9dTSIqd9vkidPYGH9wrWsA6n6camj4hSDQuLdSM5YkvZziPaR3biXBuHbR4q urg7FZ3tXjsjclMKicoYR3T8aPQPL39szqWGW698QG8Zuc04c8FkMXqC2VHXA64j 2wK0FBHb/uZoWs0SroBgZhhLoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxlq32G j/xsmllAjJwNlTom8mdWMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKXeLzIFsFGfRHfwTu++x/BR9NFaeDebwtOD90yI3Ek38oREl03pgW tiJaajGtvfbZaju1cqO+d1mFS0KwiFk6K0BilSvyhleKvfCBvHQB0RmKeE9zyTLJ 3YXkWX1PCnPuxKPbi/PmaMcK2kG98kNvZ3SBIfbjBiXQboUm4AT9BNcQWfUOMVf0 Sq/S8LT6elIS5gWmxCbp7VHdCICaRZS74plGwWxB0ch3EhElvI+cF9bmLshtuBYf 9RNFJ6FZf+6gUUSEGffYckrLMEe5mK/uB+fUSrRpDYVP2ly7ahVY59c3FsNYJ5Qv 6lG1nF85+yo+rrAKZRA1CoxNoYTSi7S7 -----END CERTIFICATE-----Generated at Thu Jun 5 20:02:55 2025 by rpki-client