$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft File: O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json) Hash identifier: zZ8DOQxCsU/aYaUC/ZJylkjCg18CqDupeQ0rLZragsQ= Subject key identifier: FB:66:F8:5A:C1:F0:48:CF:93:C6:04:00:DA:73:9F:13:A4:C7:AD:A3 Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Certificate serial: 02B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft Manifest number: 02AF Signing time: Fri 13 Jun 2025 01:00:42 +0000 Manifest this update: Fri 13 Jun 2025 01:00:41 +0000 Manifest next update: Fri 20 Jun 2025 01:00:41 +0000 Files and hashes: 1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: IZGRSxl6QBSbhRQ1wEem4Y6eH46n/Z15U+lusrvnZPI=) 2: C78C216A070211EDB5178252C4F9AE02.roa (hash: SRhZlpn7+MBKLxOuK/LxQ3OpeiTq/ZO5FLcjac1mcNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3873, serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Validity Not Before: Jun 13 01:00:41 2025 GMT Not After : Jun 20 01:00:41 2025 GMT Subject: CN=684b783a-811b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:75:e1:58:da:28:31:7a:6e:7a:c7:82:a1:64: 26:0a:e1:b5:b6:79:f8:e3:da:e8:a1:63:fa:cf:2a: 00:82:34:3d:c6:1c:9f:69:c9:f9:93:69:68:6b:7f: 07:ba:cc:8b:fd:42:c3:45:91:e7:9d:fe:ff:c1:b0: 1d:5f:3f:12:fe:c2:6c:cb:4a:92:59:ea:be:e7:4f: 44:b1:12:19:49:63:51:7c:9d:cf:a7:d1:bc:19:6c: bb:0e:bc:92:a3:75:53:99:28:13:ac:73:b5:2e:cc: 25:1d:47:33:4b:f1:0b:a7:5c:1f:5a:7f:92:5f:da: ab:d9:02:36:e7:5c:32:5b:89:60:80:19:72:fc:f3: a5:de:c7:5b:9f:5a:e9:24:f2:a2:23:03:43:11:a1: c2:65:34:57:c0:38:24:a2:15:a2:9e:21:2e:c0:e1: 86:0d:00:57:2b:d8:c5:2e:1a:a9:fb:55:cb:5b:2e: 94:ec:bb:55:63:ba:d9:99:bb:87:69:e6:06:0b:78: 0c:05:8b:09:9d:a9:d2:81:1d:43:1c:f2:4e:4d:6f: c8:a3:ce:e3:0d:97:b3:b3:32:00:41:8d:97:af:0e: 6c:b8:b3:9f:76:15:ad:17:48:8b:ef:61:85:46:c6: 14:06:50:d5:46:3e:48:82:55:3e:d7:a8:87:92:75: d7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:66:F8:5A:C1:F0:48:CF:93:C6:04:00:DA:73:9F:13:A4:C7:AD:A3 X509v3 Authority Key Identifier: keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d7:e3:17:96:fd:44:e7:03:b6:77:d0:2d:be:b2:d2:ce:5d: 42:b1:bb:4e:67:5d:43:32:34:2d:68:9e:3b:de:c2:c7:6e:8a: 63:98:35:4c:57:4f:ed:37:df:12:bc:79:ef:34:30:0a:f3:a3: 28:45:13:9e:c9:ae:9e:b1:9d:fd:5a:da:49:d3:9a:ef:fb:ee: f8:db:44:1e:c6:3e:c3:72:c4:21:dc:ae:3c:fd:b9:9d:f0:27: df:de:a8:71:3c:c9:1d:56:5c:b0:2b:37:80:9e:ed:62:3c:6f: a6:da:46:f1:3c:15:5c:98:00:b4:8e:40:02:e5:33:74:a9:20: 54:a8:3d:94:13:cd:45:f1:31:23:d4:e7:3f:97:63:6a:53:cc: b2:70:04:d8:52:bf:00:cd:7d:eb:b0:19:97:21:3e:ae:d8:b2: 19:20:2f:20:42:fb:6d:39:55:e9:f4:e2:74:0d:11:7c:f9:21: 6f:6d:e9:4a:b6:44:e1:b5:f0:2f:81:2b:d6:6c:ad:e6:f3:da: 2d:0c:8d:5f:61:ca:6c:bf:84:bb:85:e0:36:a8:39:ed:5b:2c: 0d:eb:64:0e:34:e9:a6:a4:55:37:d7:e5:7a:70:77:dd:81:ad: 3d:b1:11:84:0c:93:6f:3d:7a:5d:c5:06:21:bd:3c:6b:9c:2b: a9:02:26:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4NzMxMTAvBgNVBAUTKDNCNDdBQTBEMDMyMDkxOTVGMDU1NUM2MEFERTMyOTRG MkQzN0EyQTEwHhcNMjUwNjEzMDEwMDQxWhcNMjUwNjIwMDEwMDQxWjAYMRYwFAYD VQQDEw02ODRiNzgzYS04MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXXhWNooMXpueseCoWQmCuG1tnn449rooWP6zyoAgjQ9xhyfacn5k2loa38H usyL/ULDRZHnnf7/wbAdXz8S/sJsy0qSWeq+509EsRIZSWNRfJ3Pp9G8GWy7DryS o3VTmSgTrHO1LswlHUczS/ELp1wfWn+SX9qr2QI251wyW4lggBly/POl3sdbn1rp JPKiIwNDEaHCZTRXwDgkohWiniEuwOGGDQBXK9jFLhqp+1XLWy6U7LtVY7rZmbuH aeYGC3gMBYsJnanSgR1DHPJOTW/Io87jDZezszIAQY2Xrw5suLOfdhWtF0iL72GF RsYUBlDVRj5IglU+16iHknXXYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtm+FrB 8EjPk8YEANpznxOkx62jMB8GA1UdIwQYMBaAFDtHqg0DIJGV8FVcYK3jKU8tN6Kh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzg3My8xMTJFQzE5NkZE QjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2taWHdWVnhncmVNcFR5MDNv cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08wZXFEUU1na1pYd1ZWeGdyZU1wVHkwM29xRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzg3My8xMTJFQzE5NkZEQjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2ta WHdWVnhncmVNcFR5MDNvcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX1+MXlv1E5wO2d9AtvrLSzl1CsbtOZ11DMjQtaJ473sLHbopjmDVM V0/tN98SvHnvNDAK86MoRROeya6esZ39WtpJ05rv++7420Qexj7DcsQh3K48/bmd 8Cff3qhxPMkdVlywKzeAnu1iPG+m2kbxPBVcmAC0jkAC5TN0qSBUqD2UE81F8TEj 1Oc/l2NqU8yycATYUr8AzX3rsBmXIT6u2LIZIC8gQvttOVXp9OJ0DRF8+SFvbelK tkThtfAvgSvWbK3m89otDI1fYcpsv4S7heA2qDntWywN62QONOmmpFU31+V6cHfd ga09sRGEDJNvPXpdxQYhvTxrnCupAiYg -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:30 2025 by rpki-client