$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft File: 5Otd-leSQpC7j-xFuZd_xsf2-jc.mft (raw, json) Hash identifier: StCfXevsoJZYtgrDn7G0AH8JyEURkWksgPDcZQe8XrU= Subject key identifier: 8D:50:F9:70:20:74:5E:1E:3B:7B:54:76:A2:D3:4C:2F:26:96:B5:0C Authority key identifier: E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 Certificate issuer: /CN=A91A8B0B/serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Certificate serial: 0C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft Manifest number: 0C84 Signing time: Sat 14 Jun 2025 18:08:29 +0000 Manifest this update: Sat 14 Jun 2025 18:08:29 +0000 Manifest next update: Sat 21 Jun 2025 18:08:29 +0000 Files and hashes: 1: 5Otd-leSQpC7j-xFuZd_xsf2-jc.crl (hash: Dz+1Z2oPtas+2vaIOtTIx+t9hiN2yjDeyPYcJfHeMcQ=) 2: 5842DDF0FCE511E9BFA4B27AC4F9AE02.roa (hash: 6JiNuWz5Fkw8aMu3lON6uTLPgLOG+xf9uCqK1rE3Qew=) 3: EA17F65E6C6711ECB7C0925AC4F9AE02.roa (hash: 80MLiBcpNIycThAKM26TDicBsDE58l79IER/QoSPi08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B0B, serialNumber=E4EB5DFA57924290BB8FEC45B9977FC6C7F6FA37 Validity Not Before: Jun 14 18:08:29 2025 GMT Not After : Jun 21 18:08:29 2025 GMT Subject: CN=684dba9d-290b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b7:2b:88:b8:13:15:b2:7e:70:0c:87:6f:0a: 59:5c:23:7b:dc:8a:ea:aa:ba:4e:9b:b0:56:73:b9: 5b:cb:01:a0:e9:6a:ae:a5:43:a3:c6:36:5e:a5:50: 87:52:a7:53:1a:c7:d2:1e:01:b7:60:b2:b1:dc:b3: 27:7c:13:58:9d:6a:d0:c2:02:ee:af:db:96:9b:ae: 0f:ab:d0:e6:3a:51:b5:e7:06:79:19:dc:c2:0a:a8: 1d:1a:3b:c7:9a:df:39:3a:6a:96:77:d0:74:26:ec: 8c:d9:6e:91:30:06:90:ac:85:0e:b6:2d:6c:f6:1b: f9:13:b4:8f:a0:5a:a6:72:ca:00:aa:7d:f4:dc:a6: bf:ab:27:4c:0b:ea:38:0e:be:f3:12:45:ee:8d:c2: 2f:da:79:46:85:b2:e1:09:f9:c2:f8:89:ea:24:8a: ef:12:da:a4:98:72:34:8e:89:4b:02:15:24:8e:16: 2f:2c:01:8d:36:5a:f7:7e:a8:d2:b8:cf:bc:e8:67: c0:39:c7:5c:58:a4:b9:19:dd:f8:24:86:b5:54:d8: bf:20:6f:17:e7:d8:77:20:3f:eb:9f:33:07:29:5c: 2c:d0:7d:04:27:6a:71:ed:6f:c4:f9:c7:a2:61:1b: 15:92:5f:18:3c:c8:cb:db:d9:18:9b:d9:ec:71:27: 87:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:50:F9:70:20:74:5E:1E:3B:7B:54:76:A2:D3:4C:2F:26:96:B5:0C X509v3 Authority Key Identifier: keyid:E4:EB:5D:FA:57:92:42:90:BB:8F:EC:45:B9:97:7F:C6:C7:F6:FA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Otd-leSQpC7j-xFuZd_xsf2-jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B0B/5AEB5EB2FCC511E99858A91EC4F9AE02/5Otd-leSQpC7j-xFuZd_xsf2-jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:95:6f:ab:f0:50:e2:b6:8e:b7:df:37:12:ad:30:20:99:99: db:df:df:e4:0c:c4:61:08:22:f3:ce:b5:74:e9:82:0f:61:cc: 83:3b:77:89:df:15:82:b2:10:00:25:c9:4c:07:98:66:fd:8e: 17:37:b8:e3:20:d8:9b:15:63:ed:65:bb:79:17:ac:c4:33:61: d1:9b:ab:3a:94:0a:29:7a:bf:82:63:aa:9f:e8:5a:d7:7c:ee: 2d:cf:be:5c:93:45:0a:64:fb:6c:43:3b:94:a7:86:48:41:88: 22:82:ac:47:d3:9b:d5:8b:e6:5a:10:43:21:45:2a:b0:21:24: ea:85:50:4d:f6:42:a2:4f:2c:e1:f3:95:31:46:0d:3c:a7:3b: f6:6c:2b:83:b2:7b:f3:48:23:a9:0f:a6:8f:a5:18:09:79:d6: 1e:cb:27:f6:1a:8a:ec:39:f5:e7:66:57:43:c2:95:b2:63:7c: bf:de:dd:21:1b:22:41:d1:a1:62:6c:e3:ea:3a:b0:b3:9f:cd: f1:eb:3d:f2:57:96:c1:24:d4:3d:aa:89:b4:4f:5e:2a:80:f8: 4f:04:42:b0:b2:dd:36:df:49:b6:3c:1a:29:da:84:19:f6:7b: 76:5a:d6:39:c5:16:f6:b0:3b:b6:7f:95:9a:1c:fc:47:9d:be: 4a:76:27:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCMEIxMTAvBgNVBAUTKEU0RUI1REZBNTc5MjQyOTBCQjhGRUM0NUI5OTc3RkM2 QzdGNkZBMzcwHhcNMjUwNjE0MTgwODI5WhcNMjUwNjIxMTgwODI5WjAYMRYwFAYD VQQDEw02ODRkYmE5ZC0yOTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprcriLgTFbJ+cAyHbwpZXCN73IrqqrpOm7BWc7lbywGg6WqupUOjxjZepVCH UqdTGsfSHgG3YLKx3LMnfBNYnWrQwgLur9uWm64Pq9DmOlG15wZ5GdzCCqgdGjvH mt85OmqWd9B0JuyM2W6RMAaQrIUOti1s9hv5E7SPoFqmcsoAqn303Ka/qydMC+o4 Dr7zEkXujcIv2nlGhbLhCfnC+InqJIrvEtqkmHI0jolLAhUkjhYvLAGNNlr3fqjS uM+86GfAOcdcWKS5Gd34JIa1VNi/IG8X59h3ID/rnzMHKVws0H0EJ2px7W/E+cei YRsVkl8YPMjL29kYm9nscSeH0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1Q+XAg dF4eO3tUdqLTTC8mlrUMMB8GA1UdIwQYMBaAFOTrXfpXkkKQu4/sRbmXf8bH9vo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEIwQi81QUVCNUVCMkZD QzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1FwQzdqLXhGdVpkX3hzZjIt amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVPdGQtbGVTUXBDN2oteEZ1WmRfeHNmMi1qYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEIwQi81QUVCNUVCMkZDQzUxMUU5OTg1OEE5MUVDNEY5QUUwMi81T3RkLWxlU1Fw QzdqLXhGdVpkX3hzZjItamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4lW+r8FDito633zcSrTAgmZnb39/kDMRhCCLzzrV06YIPYcyDO3eJ 3xWCshAAJclMB5hm/Y4XN7jjINibFWPtZbt5F6zEM2HRm6s6lAoper+CY6qf6FrX fO4tz75ck0UKZPtsQzuUp4ZIQYgigqxH05vVi+ZaEEMhRSqwISTqhVBN9kKiTyzh 85UxRg08pzv2bCuDsnvzSCOpD6aPpRgJedYeyyf2GorsOfXnZldDwpWyY3y/3t0h GyJB0aFibOPqOrCzn83x6z3yV5bBJNQ9qom0T14qgPhPBEKwst0230m2PBop2oQZ 9nt2WtY5xRb2sDu2f5WaHPxHnb5Kdici -----END CERTIFICATE-----Generated at Sun Jun 15 04:46:30 2025 by rpki-client