$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: EEmw2+sqlRMmuA38OoxFZBBnOXo8oxqZurLt6dP1QO0= Subject key identifier: DC:18:1D:B5:90:B9:22:06:A2:58:6B:57:66:78:12:2D:40:A2:6C:CC Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0F69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F2E Signing time: Sat 14 Jun 2025 17:34:23 +0000 Manifest this update: Sat 14 Jun 2025 17:34:22 +0000 Manifest next update: Sat 21 Jun 2025 17:34:22 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: /kvwDvm6fRlAWm8QF50fLz9418pp/hHLzfgNo1l6790=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:34:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3945 (0xf69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Jun 14 17:34:22 2025 GMT Not After : Jun 21 17:34:22 2025 GMT Subject: CN=684db29f-7fb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:54:dc:4b:61:35:2d:38:af:95:8b:dd:35:5d: db:68:56:63:a5:18:7a:c2:ab:53:1a:87:3a:ae:2f: e5:24:46:35:ba:c0:b9:25:fe:58:a0:56:ba:80:28: 67:40:1f:c2:fe:03:94:a8:83:45:34:92:7f:19:3b: 74:c3:ad:bb:23:c6:b1:8f:81:a2:72:a2:af:60:88: 51:a5:30:48:73:7e:11:5b:94:83:c8:5f:27:73:34: 44:27:f0:69:c6:a0:9c:5a:06:fc:04:60:d4:e0:fa: 61:5c:e6:73:2b:c7:ec:38:70:6c:cb:c1:66:a4:b9: f3:2c:95:c7:0d:70:04:1c:82:23:fa:ee:34:b9:c2: 96:6f:73:a5:6d:cb:0d:93:4b:ca:f7:08:48:df:b7: 8c:35:a7:8d:87:40:23:95:a7:6b:48:41:04:07:f3: 8e:d2:f0:31:94:04:31:74:84:ee:84:54:d9:e1:17: 0b:1b:83:e7:81:19:31:96:4d:03:79:5d:b6:ea:c0: d7:fa:25:53:68:8c:3f:d9:a8:e5:bd:36:fd:28:b4: df:75:f2:c0:24:47:50:fe:12:35:ee:a9:17:37:ee: eb:8e:da:99:2b:19:2b:c9:96:a1:df:46:01:68:da: fe:19:01:17:44:de:c1:65:1d:40:1b:f2:a4:33:d3: be:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:18:1D:B5:90:B9:22:06:A2:58:6B:57:66:78:12:2D:40:A2:6C:CC X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:82:09:06:4e:89:b8:2a:fb:5c:f4:77:77:ce:8a:a9:97:40: 10:f8:12:3d:75:c0:aa:0c:4b:1d:66:8a:21:15:27:30:16:18: 07:02:12:d5:92:d2:03:3a:dd:f7:fc:4c:83:ad:ef:ad:8c:99: 95:7f:16:02:bd:3e:76:8f:ed:cd:b0:d7:6d:06:bc:41:42:22: 9d:b7:74:db:d4:0b:47:bd:ce:59:26:7a:0d:18:c5:76:09:a7: f8:60:8a:6c:96:35:a9:39:f5:3e:fe:df:4f:ae:6c:03:1f:2e: 09:fd:37:d0:32:5c:38:f8:58:69:e0:c6:af:a4:99:85:09:96: 37:b4:01:3c:e3:9b:57:7e:5c:05:48:05:1f:fa:91:e9:fd:06: b9:1d:a0:02:a6:b9:0a:88:27:9e:ab:62:00:94:a9:db:ac:06: bc:b0:56:b8:9d:a6:c9:b5:8c:85:69:f6:59:68:c2:03:c3:ae: 19:45:61:9b:08:4e:aa:44:f5:d7:49:e6:0d:b5:28:f1:47:ce: 30:14:dd:d3:17:bf:c0:f1:ba:af:82:ec:1d:14:5c:b7:34:4a: 05:67:0a:d4:68:3a:3c:99:36:62:36:51:b6:a3:52:dd:4c:f8: 58:55:df:f5:c0:cb:6d:a0:4c:78:b3:bf:1f:ad:92:4d:15:54: 9c:b9:70:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUwNjE0MTczNDIyWhcNMjUwNjIxMTczNDIyWjAYMRYwFAYD VQQDEw02ODRkYjI5Zi03ZmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFTcS2E1LTivlYvdNV3baFZjpRh6wqtTGoc6ri/lJEY1usC5Jf5YoFa6gChn QB/C/gOUqINFNJJ/GTt0w627I8axj4GicqKvYIhRpTBIc34RW5SDyF8nczREJ/Bp xqCcWgb8BGDU4PphXOZzK8fsOHBsy8FmpLnzLJXHDXAEHIIj+u40ucKWb3OlbcsN k0vK9whI37eMNaeNh0AjladrSEEEB/OO0vAxlAQxdITuhFTZ4RcLG4PngRkxlk0D eV226sDX+iVTaIw/2ajlvTb9KLTfdfLAJEdQ/hI17qkXN+7rjtqZKxkryZah30YB aNr+GQEXRN7BZR1AG/KkM9O+gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwYHbWQ uSIGolhrV2Z4Ei1AomzMMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPggkGTom4Kvtc9Hd3zoqpl0AQ+BI9dcCqDEsdZoohFScwFhgHAhLV ktIDOt33/EyDre+tjJmVfxYCvT52j+3NsNdtBrxBQiKdt3Tb1AtHvc5ZJnoNGMV2 Caf4YIpsljWpOfU+/t9PrmwDHy4J/TfQMlw4+Fhp4MavpJmFCZY3tAE845tXflwF SAUf+pHp/Qa5HaACprkKiCeeq2IAlKnbrAa8sFa4nabJtYyFafZZaMIDw64ZRWGb CE6qRPXXSeYNtSjxR84wFN3TF7/A8bqvguwdFFy3NEoFZwrUaDo8mTZiNlG2o1Ld TPhYVd/1wMttoEx4s78frZJNFVScuXC7 -----END CERTIFICATE-----Generated at Sun Jun 15 09:29:33 2025 by rpki-client