$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: IrPjSnA/uLKWU+49HjhN0IOwOGq2py9h6Kc8T92i4HA= Subject key identifier: 63:F1:39:95:A3:42:10:AA:F2:0D:A8:2A:DD:FD:69:DE:73:12:F9:5B Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 0137 Signing time: Fri 13 Jun 2025 03:25:34 +0000 Manifest this update: Fri 13 Jun 2025 03:25:34 +0000 Manifest next update: Fri 20 Jun 2025 03:25:34 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: 5E+O4vE+6UvcX70KQp80MbcQTVZ3KJeU3Yss4IMKXR0=) 2: 2D7DCF98BA1411EFBD0C393DC4F9AE02.roa (hash: fg42UFyy2LFjnZK3Qasj9lnWcNe6AFnhvIhyePUvpAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B, serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: Jun 13 03:25:34 2025 GMT Not After : Jun 20 03:25:34 2025 GMT Subject: CN=684b9a2e-3f3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b2:e9:a7:b9:6e:da:b1:4b:c8:a0:9d:52:fd: 85:0c:a4:0a:1c:3e:d5:48:89:a3:91:80:39:a0:5d: bf:29:cf:60:60:22:89:68:cc:1d:b7:76:ec:f2:75: 22:ad:a0:1b:7e:fe:26:94:92:94:d6:be:39:d9:61: ba:9f:38:95:a9:f3:83:87:cf:67:92:03:28:3a:d2: bb:1d:04:46:ff:98:fb:92:90:72:6f:46:5d:db:19: 76:97:9d:67:57:83:f7:fe:dd:cf:0f:15:bf:f0:d0: 78:91:36:58:78:5e:e7:10:3f:bd:76:d9:de:93:b4: 2f:ab:21:c7:c5:be:1f:f5:95:9d:75:79:b5:af:ff: 6f:23:cb:03:2f:f0:d6:62:21:19:8a:4a:2d:4e:e2: ba:d2:d5:a4:71:ad:fa:4f:01:47:6f:fd:b9:1c:03: 71:bd:67:9c:4b:27:95:ba:cd:02:28:fd:59:16:06: fa:2c:4d:c1:15:cd:ad:c2:e0:05:0b:d5:15:16:d2: aa:67:4d:dc:27:60:6a:36:6e:88:54:db:03:8d:1f: eb:e6:ae:27:da:8c:ae:44:fa:c4:cb:d3:26:8b:fb: 85:75:72:d7:1a:ae:d6:4b:da:ec:5c:87:28:ea:f8: 78:b9:df:93:bc:31:a6:a5:1b:5f:91:25:7a:3b:d0: 40:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F1:39:95:A3:42:10:AA:F2:0D:A8:2A:DD:FD:69:DE:73:12:F9:5B X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:76:9b:0d:1c:36:d6:6b:73:21:33:13:18:ff:50:ca:fb:48: 11:b4:e7:81:e3:42:61:87:ac:a2:df:20:38:fa:5f:42:43:40: 06:10:b4:43:19:3d:cf:ca:47:1b:d4:7a:b6:e7:74:44:c8:a5: d0:2a:b6:92:dd:6e:5f:dd:83:27:37:93:b2:98:1a:b7:bf:7f: 6e:78:f1:2e:fc:31:2d:47:58:6a:26:e2:8f:bc:83:4a:30:8f: 83:a9:58:81:87:df:ce:da:ea:d0:63:08:5f:9f:04:50:6e:e5: 30:65:73:7f:32:27:53:49:fa:ab:bb:83:08:05:cd:2a:65:85: 07:94:cf:a7:99:e5:51:91:d1:b9:a0:df:0a:76:37:02:6e:79: cb:02:2d:1d:e5:8b:dc:fc:72:18:e8:d9:aa:c1:cb:95:dc:20: 9d:39:a8:3f:a8:0c:85:c3:04:00:31:a9:af:e2:58:72:1c:04: f2:dd:09:18:8f:79:a6:df:85:07:66:ca:86:7e:a7:1e:e8:1e: 2a:bb:33:c1:b5:5a:ef:4a:ca:16:7b:28:29:3d:b2:83:ae:84: 37:3a:8d:6e:26:e8:5c:22:0a:0d:0f:80:f4:19:00:10:e1:53: 67:20:31:2f:65:4a:df:96:d1:58:2f:93:dd:91:2d:4c:c1:87: 41:6e:89:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjUwNjEzMDMyNTM0WhcNMjUwNjIwMDMyNTM0WjAYMRYwFAYD VQQDEw02ODRiOWEyZS0zZjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7Lpp7lu2rFLyKCdUv2FDKQKHD7VSImjkYA5oF2/Kc9gYCKJaMwdt3bs8nUi raAbfv4mlJKU1r452WG6nziVqfODh89nkgMoOtK7HQRG/5j7kpByb0Zd2xl2l51n V4P3/t3PDxW/8NB4kTZYeF7nED+9dtnek7QvqyHHxb4f9ZWddXm1r/9vI8sDL/DW YiEZikotTuK60tWkca36TwFHb/25HANxvWecSyeVus0CKP1ZFgb6LE3BFc2twuAF C9UVFtKqZ03cJ2BqNm6IVNsDjR/r5q4n2oyuRPrEy9Mmi/uFdXLXGq7WS9rsXIco 6vh4ud+TvDGmpRtfkSV6O9BADQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPxOZWj QhCq8g2oKt39ad5zEvlbMB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBq WjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrdpsNHDbWa3MhMxMY/1DK+0gRtOeB40Jhh6yi3yA4+l9CQ0AGELRD GT3Pykcb1Hq253REyKXQKraS3W5f3YMnN5OymBq3v39uePEu/DEtR1hqJuKPvINK MI+DqViBh9/O2urQYwhfnwRQbuUwZXN/MidTSfqru4MIBc0qZYUHlM+nmeVRkdG5 oN8KdjcCbnnLAi0d5Yvc/HIY6NmqwcuV3CCdOag/qAyFwwQAMamv4lhyHATy3QkY j3mm34UHZsqGfqce6B4quzPBtVrvSsoWeygpPbKDroQ3Oo1uJuhcIgoND4D0GQAQ 4VNnIDEvZUrfltFYL5PdkS1MwYdBbon7 -----END CERTIFICATE-----Generated at Sat Jun 14 19:21:36 2025 by rpki-client