$ rpki-client -vvf rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft File: oVZKa9a5Cg-he_V9i-rJ4pJZves.mft (raw, json) Hash identifier: eF2jZaxmPIC9Dd4kMwm/zYPtm7oaY5/UcUIPKV9+bV8= Subject key identifier: 7D:B2:F8:AA:D5:36:C2:84:57:46:A4:5C:00:F9:28:35:A6:4C:02:71 Authority key identifier: A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB Certificate issuer: /CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Certificate serial: 0CA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft Manifest number: 0C9D Signing time: Fri 30 May 2025 18:22:47 +0000 Manifest this update: Fri 30 May 2025 18:22:47 +0000 Manifest next update: Fri 06 Jun 2025 18:22:47 +0000 Files and hashes: 1: oVZKa9a5Cg-he_V9i-rJ4pJZves.crl (hash: jNGVtnBqkeqq/HTR6+CqQjsUyh3rUwysLjLyxWkWDTw=) 2: EA18D5547D8F11EC8E894A1DC4F9AE02.roa (hash: Anh2GximFPk7REReNBXULcTH3P6lLG5IbasX9kKM4Fs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:22:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3238 (0xca6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F61DA, serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Validity Not Before: May 30 18:22:47 2025 GMT Not After : Jun 6 18:22:47 2025 GMT Subject: CN=6839f777-1d18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:37:7f:8b:8b:90:d4:11:5b:2d:75:c4:db:0f: 98:13:a0:f7:e8:bb:a7:fd:00:9f:af:2f:2b:c7:71: db:b2:51:ad:33:e3:6a:4a:19:c0:4c:52:20:9b:93: 87:b4:89:f7:8d:c4:66:c8:2f:a4:95:df:43:24:95: d7:f5:40:1c:04:5a:40:48:f0:39:eb:4a:22:4e:c9: dc:ab:49:09:95:aa:aa:16:e7:03:1c:34:7a:d2:35: 4b:6f:cb:55:45:64:4b:ef:6a:8a:ca:40:c0:ee:47: 27:0c:2c:1c:15:85:39:5b:46:38:e2:53:bb:42:6f: 25:02:92:21:8c:33:52:bb:05:12:1c:a5:b6:54:d1: 79:79:6f:6c:c6:cc:ad:6a:6c:c5:82:51:c4:9e:18: 01:e9:95:80:4f:0f:20:8e:22:b9:1d:3b:0e:1f:f9: a7:1e:8d:a7:19:48:43:20:76:31:f6:c0:19:99:8c: c5:fb:1b:94:e5:3e:22:51:0c:b0:b0:76:cf:4e:b4: 99:b2:14:93:a7:28:4e:75:b4:05:87:0b:3e:6b:5c: cf:a2:8b:8f:09:3f:79:12:4b:8b:30:1c:99:d4:fa: cb:1a:78:62:54:2d:dd:60:00:c4:48:f4:d7:8f:e2: 4f:b4:69:7b:8d:e3:7d:03:10:a1:4b:f8:d6:3f:8a: 12:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B2:F8:AA:D5:36:C2:84:57:46:A4:5C:00:F9:28:35:A6:4C:02:71 X509v3 Authority Key Identifier: keyid:A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:71:83:57:ba:e1:23:85:62:ff:55:6b:e9:f8:41:4a:84:d3: d8:16:86:58:d7:73:d8:4f:b9:c5:98:27:54:b4:ca:b4:8d:c8: b5:d1:1f:47:34:cd:f5:0e:ab:93:8b:38:bd:c9:79:fa:aa:0b: d8:6d:6d:0e:c5:63:d3:e7:02:0c:1a:38:e6:79:4f:ee:6a:da: 20:ad:c9:61:38:55:a1:01:95:1b:b5:45:6c:41:03:dd:45:57: 02:29:e8:11:b8:ff:a6:ed:4a:66:5f:ca:6e:a6:e1:31:03:4c: 81:b6:70:0a:62:b2:fa:92:7a:6c:b5:ae:20:9a:cc:92:7b:87: 9f:99:4c:66:7c:87:ef:7c:6b:91:5f:4c:c7:75:0e:19:a7:0d: a4:c3:1a:c1:bb:fd:0c:54:ec:f8:2c:fb:80:74:1d:e2:fb:85: 49:00:fe:8b:c8:6f:a7:93:89:a2:b4:42:12:e2:0f:c7:bf:a7: cc:d1:96:db:fd:e6:57:ae:06:19:0f:04:ba:8c:15:8c:1c:b9: 80:7f:45:ee:48:71:78:43:a0:d8:7b:6b:48:96:8c:8f:0f:de: 79:ad:47:5f:78:38:a1:46:0f:fb:b1:af:29:2b:d8:c9:5f:5a: 70:32:37:49:fc:2a:07:fa:e8:43:5e:7a:ab:2c:09:ca:fb:b8: 39:2f:7f:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYxREExMTAvBgNVBAUTKEExNTY0QTZCRDZCOTBBMEZBMTdCRjU3RDhCRUFDOUUy OTI1OUJERUIwHhcNMjUwNTMwMTgyMjQ3WhcNMjUwNjA2MTgyMjQ3WjAYMRYwFAYD VQQDEw02ODM5Zjc3Ny0xZDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDd/i4uQ1BFbLXXE2w+YE6D36Lun/QCfry8rx3HbslGtM+NqShnATFIgm5OH tIn3jcRmyC+kld9DJJXX9UAcBFpASPA560oiTsncq0kJlaqqFucDHDR60jVLb8tV RWRL72qKykDA7kcnDCwcFYU5W0Y44lO7Qm8lApIhjDNSuwUSHKW2VNF5eW9sxsyt amzFglHEnhgB6ZWATw8gjiK5HTsOH/mnHo2nGUhDIHYx9sAZmYzF+xuU5T4iUQyw sHbPTrSZshSTpyhOdbQFhws+a1zPoouPCT95EkuLMByZ1PrLGnhiVC3dYADESPTX j+JPtGl7jeN9AxChS/jWP4oStwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2y+KrV NsKEV0akXAD5KDWmTAJxMB8GA1UdIwQYMBaAFKFWSmvWuQoPoXv1fYvqyeKSWb3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjFEQS8xN0M4MUZEMEY0 MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNnLWhlX1Y5aS1ySjRwSlp2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29WWkthOWE1Q2ctaGVfVjlpLXJKNHBKWnZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjFEQS8xN0M4MUZEMEY0MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNn LWhlX1Y5aS1ySjRwSlp2ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLcYNXuuEjhWL/VWvp+EFKhNPYFoZY13PYT7nFmCdUtMq0jci10R9H NM31DquTizi9yXn6qgvYbW0OxWPT5wIMGjjmeU/uatogrclhOFWhAZUbtUVsQQPd RVcCKegRuP+m7UpmX8pupuExA0yBtnAKYrL6knpsta4gmsySe4efmUxmfIfvfGuR X0zHdQ4Zpw2kwxrBu/0MVOz4LPuAdB3i+4VJAP6LyG+nk4mitEIS4g/Hv6fM0Zbb /eZXrgYZDwS6jBWMHLmAf0XuSHF4Q6DYe2tIloyPD955rUdfeDihRg/7sa8pK9jJ X1pwMjdJ/CoH+uhDXnqrLAnK+7g5L3+j -----END CERTIFICATE-----Generated at Sat May 31 16:49:07 2025 by rpki-client