$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: kEgBra0NMYkX1d4Z9zxrTb+X4Cab1PWrIkhCXGL+CR0= Subject key identifier: 53:21:28:D6:19:9D:5C:9A:1E:BA:C7:13:70:D3:E4:28:41:D3:5C:FE Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 03C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 03BD Signing time: Fri 13 Jun 2025 00:13:49 +0000 Manifest this update: Fri 13 Jun 2025 00:13:48 +0000 Manifest next update: Fri 20 Jun 2025 00:13:48 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: cAuMwAWi5IYlYCJsDnlWa21hkTz9bsoiGvSeBwOoNgY=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: CfbtaxsbT8QkNpB+dr8l4I71elKTP/TaO4DWd5BrJjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Jun 13 00:13:48 2025 GMT Not After : Jun 20 00:13:48 2025 GMT Subject: CN=684b6d3c-2122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e6:0b:5c:c0:ed:a8:0a:4b:c7:44:23:88:b0: b7:c8:c8:0b:d3:d7:9f:51:51:31:70:b5:2b:a2:1c: f6:65:fc:73:3a:db:ae:0c:56:c9:15:24:ee:68:3b: f8:29:e6:3b:9e:72:8e:75:30:02:f4:ff:74:d3:30: bf:3a:01:b3:54:09:a6:98:06:72:f3:8e:e4:be:af: 12:8e:32:82:e2:e2:db:82:14:d3:47:e4:59:1f:c9: 63:61:4d:e8:e4:74:36:68:64:f1:a3:ef:71:1e:07: fa:0b:29:d8:be:b4:e4:ed:30:cf:9a:b8:bd:95:87: e6:5b:7c:08:b5:42:b6:c3:73:ae:46:9f:db:7f:65: 8e:5a:c3:d3:0e:68:da:6d:f1:df:0d:07:ac:8e:f1: b6:a1:ad:b5:08:51:f1:79:46:76:8d:52:4d:de:8d: 9a:91:eb:54:09:24:0f:1b:a6:f2:0f:29:20:52:9e: 54:9f:42:83:66:38:ff:ae:f2:ff:7a:59:1a:ea:40: a9:2c:50:3b:02:eb:ec:ee:cf:15:2c:cf:d8:69:b8: d0:b1:dc:2d:76:ac:d5:cd:a2:30:06:f5:f7:07:7e: 8a:2c:ed:75:17:5f:14:27:9e:a5:62:20:b4:5b:80: 12:ce:ff:87:e5:dd:03:33:5d:97:47:45:58:54:84: df:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:21:28:D6:19:9D:5C:9A:1E:BA:C7:13:70:D3:E4:28:41:D3:5C:FE X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:fc:91:90:61:a0:e5:0c:40:1c:10:c4:a0:49:5c:2e:22:34: 73:f5:42:54:12:37:d4:6b:0c:77:5c:fd:97:5f:58:f8:30:4f: 84:45:12:84:79:c1:1e:9a:c5:e5:b1:c4:da:1a:52:b4:fa:4d: 83:70:4d:c2:e3:c1:26:32:76:5a:ba:c8:60:f0:62:d3:61:34: 67:14:7e:5e:1b:d4:61:a4:d4:ba:37:6d:0a:51:a9:d2:57:f3: 0e:6c:b5:c2:df:c6:30:a4:ab:ea:f7:94:16:ec:ad:9f:03:49: ac:00:85:7c:63:14:b5:8d:76:84:ad:6f:ee:71:9a:e9:1a:0d: dc:12:25:bd:2e:7b:fd:16:ee:3a:c5:a5:7f:45:55:1e:1d:18: 5e:2e:6c:a7:28:1f:09:92:7d:af:58:6d:75:99:6f:7f:41:89: 22:19:90:3a:57:e3:01:76:ae:82:10:6a:c5:d8:64:ab:77:1e: 4c:24:5f:7a:bb:de:d3:b0:3a:6c:79:33:c9:03:48:41:b7:9e: 93:4d:9a:77:92:4c:00:b5:35:cc:f6:b6:7f:b2:5e:22:2b:99: 86:cb:22:c3:74:b2:e7:0b:5e:e0:16:5d:26:ce:d2:6a:bf:53: 54:12:a0:84:b4:25:b6:b3:6d:dd:1d:3b:6c:3d:22:b0:00:55: f7:85:27:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUwNjEzMDAxMzQ4WhcNMjUwNjIwMDAxMzQ4WjAYMRYwFAYD VQQDEw02ODRiNmQzYy0yMTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+YLXMDtqApLx0QjiLC3yMgL09efUVExcLUrohz2ZfxzOtuuDFbJFSTuaDv4 KeY7nnKOdTAC9P900zC/OgGzVAmmmAZy847kvq8SjjKC4uLbghTTR+RZH8ljYU3o 5HQ2aGTxo+9xHgf6CynYvrTk7TDPmri9lYfmW3wItUK2w3OuRp/bf2WOWsPTDmja bfHfDQesjvG2oa21CFHxeUZ2jVJN3o2aketUCSQPG6byDykgUp5Un0KDZjj/rvL/ elka6kCpLFA7Auvs7s8VLM/YabjQsdwtdqzVzaIwBvX3B36KLO11F18UJ56lYiC0 W4ASzv+H5d0DM12XR0VYVITfUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMhKNYZ nVyaHrrHE3DT5ChB01z+MB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW/JGQYaDlDEAcEMSgSVwuIjRz9UJUEjfUawx3XP2XX1j4ME+ERRKE ecEemsXlscTaGlK0+k2DcE3C48EmMnZaushg8GLTYTRnFH5eG9RhpNS6N20KUanS V/MObLXC38YwpKvq95QW7K2fA0msAIV8YxS1jXaErW/ucZrpGg3cEiW9Lnv9Fu46 xaV/RVUeHRheLmynKB8Jkn2vWG11mW9/QYkiGZA6V+MBdq6CEGrF2GSrdx5MJF96 u97TsDpseTPJA0hBt56TTZp3kkwAtTXM9rZ/sl4iK5mGyyLDdLLnC17gFl0mztJq v1NUEqCEtCW2s23dHTtsPSKwAFX3hSc1 -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:53 2025 by rpki-client