$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft File: 2o28OwmXQtOr0qiV3RM5iTuaj18.mft (raw, json) Hash identifier: E/YVMLZ1GhDhtyeidAId6tru7ImyVPZTxs73IiQ+GZY= Subject key identifier: 82:CF:1E:81:63:36:5F:16:65:F2:6E:53:DF:F0:45:5F:60:2B:F3:FC Authority key identifier: DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F Certificate issuer: /CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Certificate serial: 0B8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft Manifest number: 3237 Signing time: Sat 14 Jun 2025 15:39:10 +0000 Manifest this update: Sat 14 Jun 2025 15:39:10 +0000 Manifest next update: Sat 21 Jun 2025 15:39:10 +0000 Files and hashes: 1: 2o28OwmXQtOr0qiV3RM5iTuaj18.crl (hash: aEcaNedTJLuIjOnfLEEtv3ggnTKXKMl6yNxjrWJ5EJU=) 2: B37405A2471511F09FBEF658C4F9AE02.roa (hash: spiY1S4xmXMWxSqgBgjtmH8oE6DA/8KCGZHvFE8s5XI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0A3, serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Validity Not Before: Jun 14 15:39:10 2025 GMT Not After : Jun 21 15:39:10 2025 GMT Subject: CN=684d979e-1ec0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bb:8d:68:28:c5:b8:80:0b:67:52:0b:7d:fe: 90:e5:47:93:ab:f5:55:de:f1:1f:64:bf:5b:77:26: d1:08:17:75:2e:77:f1:86:41:a9:3f:90:51:f6:d9: ea:fd:e6:b1:c4:8f:01:55:47:c8:87:fc:7b:16:39: 8e:be:9c:e1:5d:1a:78:76:49:42:24:1c:ab:1b:2f: 03:1e:0f:ef:9e:5e:98:9b:b7:aa:31:36:9e:73:00: 90:2b:d6:8e:e2:a7:03:d3:7b:ad:7f:16:05:90:ae: 11:0c:aa:06:9a:41:96:52:7c:3c:61:96:a8:21:bf: 08:95:ad:be:03:1a:b5:92:05:04:1e:e5:e7:b8:43: 0d:86:54:cb:ad:b0:e6:7a:81:a1:7c:53:4c:54:11: 3a:9c:86:c3:40:42:71:88:14:79:e3:2f:7c:a6:2a: 2a:37:d0:4f:00:c9:c1:91:fc:c3:a1:96:71:f4:b5: 6d:7f:98:bb:c7:8e:1f:66:3d:93:e6:f6:43:02:7a: 8c:76:ff:a5:e9:21:67:3c:79:40:f7:d6:f2:e1:d7: 46:68:b8:fc:89:f4:d4:e6:39:6e:1e:78:b1:8e:3c: 6f:79:07:80:0e:87:d0:4e:4e:dd:3b:a6:25:51:b7: 04:32:1b:a1:5a:88:0b:2d:0d:7c:fb:d9:66:a4:10: e4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:CF:1E:81:63:36:5F:16:65:F2:6E:53:DF:F0:45:5F:60:2B:F3:FC X509v3 Authority Key Identifier: keyid:DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:fe:e2:e2:55:29:40:51:1f:e8:1f:05:75:19:2e:f7:5f:22: f9:13:60:8f:51:19:95:6c:25:db:72:39:02:0b:59:c8:fd:82: b4:b9:f2:ad:3e:6a:e4:82:03:cf:3f:b4:cf:49:24:a3:98:ba: 6a:d8:6e:ad:d2:2f:88:c2:7a:f9:57:16:d5:a5:13:9f:10:5b: e1:5e:0f:af:82:89:ea:51:24:49:c5:27:90:88:cd:83:6c:02: cc:70:ac:ac:b1:1e:dd:01:42:e5:31:23:6e:51:e5:56:f9:29: 68:d5:35:81:83:87:fd:97:0d:87:43:54:72:9f:75:6c:b2:b1: 0f:c9:ed:68:bf:e4:e7:f6:d8:bc:49:9d:db:99:75:07:5a:e9: 17:5f:cb:a0:13:b6:4c:0b:26:f4:36:d6:e9:41:bc:2f:21:8d: 0b:04:fe:00:72:b6:f4:0f:9f:81:2e:90:7f:74:af:c2:57:da: a3:7e:c1:6a:dc:83:c7:0e:8b:a6:4b:d5:10:2a:f2:a6:62:00: 01:1a:6d:40:a7:b1:99:af:be:95:5f:3d:ea:f6:8c:76:f0:2b: 96:8d:c0:3c:db:75:10:f3:e8:67:63:8f:b1:82:96:5e:60:16: 71:d9:f6:75:96:54:90:9c:2f:f8:3c:dc:82:e4:4d:7a:58:0e: 00:03:33:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwQTMxMTAvBgNVBAUTKERBOERCQzNCMDk5NzQyRDNBQkQyQTg5NUREMTMzOTg5 M0I5QThGNUYwHhcNMjUwNjE0MTUzOTEwWhcNMjUwNjIxMTUzOTEwWjAYMRYwFAYD VQQDEw02ODRkOTc5ZS0xZWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LuNaCjFuIALZ1ILff6Q5UeTq/VV3vEfZL9bdybRCBd1LnfxhkGpP5BR9tnq /eaxxI8BVUfIh/x7FjmOvpzhXRp4dklCJByrGy8DHg/vnl6Ym7eqMTaecwCQK9aO 4qcD03utfxYFkK4RDKoGmkGWUnw8YZaoIb8Ila2+Axq1kgUEHuXnuEMNhlTLrbDm eoGhfFNMVBE6nIbDQEJxiBR54y98pioqN9BPAMnBkfzDoZZx9LVtf5i7x44fZj2T 5vZDAnqMdv+l6SFnPHlA99by4ddGaLj8ifTU5jluHnixjjxveQeADofQTk7dO6Yl UbcEMhuhWogLLQ18+9lmpBDkUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILPHoFj Nl8WZfJuU9/wRV9gK/P8MB8GA1UdIwQYMBaAFNqNvDsJl0LTq9Kold0TOYk7mo9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBBMy83MUFERTFGRUQ4 MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0T3IwcWlWM1JNNWlUdWFq MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJvMjhPd21YUXRPcjBxaVYzUk01aVR1YWoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBBMy83MUFERTFGRUQ4MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0 T3IwcWlWM1JNNWlUdWFqMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1/uLiVSlAUR/oHwV1GS73XyL5E2CPURmVbCXbcjkCC1nI/YK0ufKt PmrkggPPP7TPSSSjmLpq2G6t0i+Iwnr5VxbVpROfEFvhXg+vgonqUSRJxSeQiM2D bALMcKyssR7dAULlMSNuUeVW+Slo1TWBg4f9lw2HQ1Ryn3VssrEPye1ov+Tn9ti8 SZ3bmXUHWukXX8ugE7ZMCyb0NtbpQbwvIY0LBP4Acrb0D5+BLpB/dK/CV9qjfsFq 3IPHDoumS9UQKvKmYgABGm1Ap7GZr76VXz3q9ox28CuWjcA823UQ8+hnY4+xgpZe YBZx2fZ1llSQnC/4PNyC5E16WA4AAzMn -----END CERTIFICATE-----Generated at Sun Jun 15 08:32:25 2025 by rpki-client