$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft File: o0K4Har3eauhbTK2-wuDD4ULT_A.mft (raw, json) Hash identifier: QtfLPwVReMy2KgmMjCrj/QKjnm8mj29dX021HjGhj/0= Subject key identifier: 27:2C:09:FF:E7:D5:ED:8E:E0:EE:FF:1A:BE:8C:E1:C7:47:62:BB:42 Authority key identifier: A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 Certificate issuer: /CN=A91A1205/serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Certificate serial: 0BE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft Manifest number: 0BDA Signing time: Thu 12 Jun 2025 18:38:06 +0000 Manifest this update: Thu 12 Jun 2025 18:38:06 +0000 Manifest next update: Thu 19 Jun 2025 18:38:06 +0000 Files and hashes: 1: o0K4Har3eauhbTK2-wuDD4ULT_A.crl (hash: QNbB98+N+ZYSQQO/zk+Aj5xBKzSzyBPLNib2FrRBaWo=) 2: 3D992D3A1A8411EAA026D229C4F9AE02.roa (hash: j0DWhsEHoal3Q4LsD1CyE+J4i6jhKjEMjW9pXFwYCvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3040 (0xbe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1205, serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Validity Not Before: Jun 12 18:38:06 2025 GMT Not After : Jun 19 18:38:06 2025 GMT Subject: CN=684b1e8e-dc45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a4:4c:68:b6:18:c7:0e:cf:fb:3b:2e:b2:71: cb:82:b9:27:10:4c:69:ef:b1:df:d8:ad:63:1e:51: eb:50:c0:c0:cd:71:62:d0:00:61:c6:d2:1e:d3:f1: ad:21:1e:65:01:1e:5d:c7:31:a8:dc:2b:1c:9d:19: 76:79:3d:69:d7:88:3c:6a:8d:d1:28:b5:4a:b9:e8: 87:70:09:65:88:42:db:aa:39:01:fa:fe:cd:cf:85: 2e:cc:76:74:83:7e:84:e4:d3:f5:fc:2e:d9:87:f1: d1:9a:bb:a3:de:14:2c:ce:44:42:ae:87:86:31:4d: 0a:61:53:ba:5c:d6:04:bf:88:6d:45:14:d0:c3:46: 02:fb:c7:81:fc:8e:df:44:e1:79:8f:2c:80:79:82: 20:15:37:31:92:7d:0f:c5:26:1a:e2:4d:bc:a1:2d: 21:01:5a:42:80:0f:8b:58:71:be:a1:83:81:90:57: 8b:cc:82:9b:07:33:34:17:4b:ee:39:d6:91:54:b8: f0:b4:f7:3b:3d:6a:9d:8d:38:d7:52:70:03:24:5c: ee:6f:52:b6:54:af:f9:41:6b:4c:de:5a:69:88:7d: 80:d3:6d:94:ed:a1:62:52:4b:62:33:05:e6:4c:92: fc:b6:b6:51:f2:14:8b:2b:3b:36:64:0e:8f:a9:e2: a9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2C:09:FF:E7:D5:ED:8E:E0:EE:FF:1A:BE:8C:E1:C7:47:62:BB:42 X509v3 Authority Key Identifier: keyid:A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:a8:14:6e:7d:59:42:07:05:16:b7:fb:f5:45:36:cc:f6:da: b1:28:1d:33:c6:d8:a9:13:98:8f:09:fd:e6:d5:84:5b:cd:b7: c6:df:f8:8c:5b:3e:0b:1a:20:ff:91:c4:30:bf:51:79:d2:bb: 4a:34:d7:48:a6:f1:f7:ca:96:58:2b:2b:6f:a3:b8:02:4c:d8: 78:6a:b1:8e:c2:52:a7:67:95:b8:8d:4b:ca:44:ae:2d:36:7f: c5:f1:3e:2f:4a:9b:dc:01:43:74:4f:19:b8:63:39:8d:44:b1: 26:a4:70:d1:85:c7:ca:19:21:ac:fb:bf:b4:4d:3c:46:fe:05: d4:70:c2:00:7c:0f:4f:4a:1c:9a:76:01:69:b5:1f:36:63:5f: e5:fc:fc:f4:9d:73:4d:92:58:fd:7a:b6:04:f6:ca:09:fe:a3: 18:42:d4:01:c8:32:69:10:45:a4:eb:a2:98:8b:87:24:c9:a8: 90:1c:2c:f3:54:0c:c3:2a:7e:0b:1e:aa:20:e1:c9:e4:84:24: 44:f6:0b:49:23:36:68:49:d8:8b:c2:d5:9e:4a:64:20:4d:77: 05:83:2f:1f:1f:e5:21:57:86:f3:7d:79:8e:3b:4f:11:87:a5: 33:2c:9d:a9:7e:12:96:8a:2d:e5:67:90:26:af:aa:f9:2a:cd: 82:87:c3:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyMDUxMTAvBgNVBAUTKEEzNDJCODFEQUFGNzc5QUJBMTZEMzJCNkZCMEI4MzBG ODUwQjRGRjAwHhcNMjUwNjEyMTgzODA2WhcNMjUwNjE5MTgzODA2WjAYMRYwFAYD VQQDEw02ODRiMWU4ZS1kYzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KRMaLYYxw7P+zsusnHLgrknEExp77Hf2K1jHlHrUMDAzXFi0ABhxtIe0/Gt IR5lAR5dxzGo3CscnRl2eT1p14g8ao3RKLVKueiHcAlliELbqjkB+v7Nz4UuzHZ0 g36E5NP1/C7Zh/HRmruj3hQszkRCroeGMU0KYVO6XNYEv4htRRTQw0YC+8eB/I7f ROF5jyyAeYIgFTcxkn0PxSYa4k28oS0hAVpCgA+LWHG+oYOBkFeLzIKbBzM0F0vu OdaRVLjwtPc7PWqdjTjXUnADJFzub1K2VK/5QWtM3lppiH2A022U7aFiUktiMwXm TJL8trZR8hSLKzs2ZA6PqeKpQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcsCf/n 1e2O4O7/Gr6M4cdHYrtCMB8GA1UdIwQYMBaAFKNCuB2q93mroW0ytvsLgw+FC0/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTIwNS83RDIzMUUwNDFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2VhdWhiVEsyLXd1REQ0VUxU X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wSzRIYXIzZWF1aGJUSzItd3VERDRVTFRfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTIwNS83RDIzMUUwNDFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2Vh dWhiVEsyLXd1REQ0VUxUX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJqBRufVlCBwUWt/v1RTbM9tqxKB0zxtipE5iPCf3m1YRbzbfG3/iM Wz4LGiD/kcQwv1F50rtKNNdIpvH3ypZYKytvo7gCTNh4arGOwlKnZ5W4jUvKRK4t Nn/F8T4vSpvcAUN0Txm4YzmNRLEmpHDRhcfKGSGs+7+0TTxG/gXUcMIAfA9PShya dgFptR82Y1/l/Pz0nXNNklj9erYE9soJ/qMYQtQByDJpEEWk66KYi4ckyaiQHCzz VAzDKn4LHqog4cnkhCRE9gtJIzZoSdiLwtWeSmQgTXcFgy8fH+UhV4bzfXmOO08R h6UzLJ2pfhKWii3lZ5Amr6r5Ks2Ch8NR -----END CERTIFICATE-----Generated at Sat Jun 14 19:27:39 2025 by rpki-client