$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: u5QkhVg6sHjt817otbGuJv4tD7b18NQT1AOXu5mkoWQ= Subject key identifier: FE:C9:EB:7F:DE:72:E2:41:64:15:78:E9:A1:B3:1B:95:9C:C2:BF:9A Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 0B Signing time: Fri 13 Jun 2025 07:00:31 +0000 Manifest this update: Fri 13 Jun 2025 07:00:31 +0000 Manifest next update: Fri 20 Jun 2025 07:00:31 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: 3mpKjMEZTbinHWai69KsO8nsHVJbVVb9MWZwx6G3gJo=) 2: 7CEC726E39A311F09A62C76CC4F9AE02.roa (hash: 0+1jIDaRCmCPnF7PPKfluUTfN8lTlCGPU+sUbCPXOfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Jun 13 07:00:31 2025 GMT Not After : Jun 20 07:00:31 2025 GMT Subject: CN=684bcc8f-86c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dc:b7:91:ad:ec:3a:56:f8:a1:d0:0e:bf:d8: 8e:f8:97:62:4c:fe:58:6b:44:ca:72:5f:46:29:fa: 10:6e:1e:55:ef:9b:54:a8:a8:3d:03:62:62:14:78: 61:14:1e:52:5d:c2:9d:fe:3c:0c:7f:a5:d6:e0:9d: ed:70:bb:2e:c2:46:d6:af:ae:10:f5:00:0a:00:65: bb:07:63:fc:76:9b:ed:71:f3:9a:f8:8e:f8:a6:91: b8:7c:51:56:dc:09:0b:64:cf:1a:d1:1d:af:01:30: d8:36:a4:d4:c0:7e:6e:65:82:63:6f:79:f6:02:40: 55:73:e8:cb:dc:f6:50:4e:4b:d9:71:06:50:fa:ff: 5e:7b:a1:a8:c1:de:24:5e:3a:92:48:0c:e5:d3:80: 05:92:64:ec:21:a5:63:11:93:41:76:61:0e:03:96: 10:81:70:c6:1a:c8:d6:e7:9c:90:53:b9:72:ae:98: e8:02:55:14:d0:d3:de:c8:2a:23:87:c5:7e:c3:e5: 36:c8:ef:6f:20:55:32:5c:c6:4f:3d:aa:84:ad:43: de:9d:4f:a4:01:92:05:26:c9:3c:6d:71:4b:72:31: 38:44:34:b3:6f:88:a1:7f:99:a3:f4:26:a6:c5:34: e8:b2:85:27:3b:18:03:4c:5f:d3:1d:67:6e:9a:51: 78:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C9:EB:7F:DE:72:E2:41:64:15:78:E9:A1:B3:1B:95:9C:C2:BF:9A X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:25:fb:5a:0d:38:ab:b6:53:87:d7:86:a0:f1:3b:92:bd:3f: 12:76:9c:25:7f:8e:65:7b:d9:bf:3b:86:f1:40:fe:6a:ea:69: 9c:a9:54:3a:eb:08:a3:67:0d:51:96:c1:97:06:9e:c0:48:8c: 69:25:c3:5a:95:15:8b:61:f0:8e:ca:91:f0:8b:67:36:c9:4d: 1a:0d:e6:94:57:22:01:a5:3f:41:fb:57:9e:ca:9d:70:6e:51: 71:ab:77:e8:69:a9:5a:5f:75:72:85:84:9a:a9:15:50:c9:bf: 7b:1c:76:1a:d0:7a:4c:a6:0e:0d:6c:97:d9:86:4a:16:dd:0d: df:ec:fb:d4:45:7b:13:7c:52:4b:49:39:21:29:6f:70:67:60: 7f:9d:c2:8f:2b:e8:26:ba:18:6d:b6:2d:71:ec:e9:42:3c:53: 77:89:cb:6a:b4:24:7f:c3:ae:ec:69:c1:4f:39:17:6e:83:eb: b9:21:64:a6:af:23:57:0a:0d:c2:1d:5b:05:44:e9:b9:6d:6b: 69:21:95:43:a1:78:da:5f:81:d5:0c:af:ea:4b:27:dd:45:a5: 3d:99:f4:95:bc:51:0b:d8:81:f4:31:a2:63:d9:da:d7:b6:e2: 02:b8:28:4f:24:03:1f:60:12:86:a6:96:af:91:e5:c2:af:2d: 69:8b:5e:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUMwMzExMC8GA1UEBRMoQTI0RDk2MzgzMzU5Q0I0OTY2QTE1QjlBOTA2OTEzRUI1 NDU2NjU3QjAeFw0yNTA2MTMwNzAwMzFaFw0yNTA2MjAwNzAwMzFaMBgxFjAUBgNV BAMTDTY4NGJjYzhmLTg2YzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC93LeRrew6Vvih0A6/2I74l2JM/lhrRMpyX0Yp+hBuHlXvm1SoqD0DYmIUeGEU HlJdwp3+PAx/pdbgne1wuy7CRtavrhD1AAoAZbsHY/x2m+1x85r4jvimkbh8UVbc CQtkzxrRHa8BMNg2pNTAfm5lgmNvefYCQFVz6Mvc9lBOS9lxBlD6/157oajB3iRe OpJIDOXTgAWSZOwhpWMRk0F2YQ4DlhCBcMYayNbnnJBTuXKumOgCVRTQ097IKiOH xX7D5TbI728gVTJcxk89qoStQ96dT6QBkgUmyTxtcUtyMThENLNviKF/maP0JqbF NOiyhSc7GANMX9MdZ26aUXgtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/snrf95y 4kFkFXjpobMblZzCv5owHwYDVR0jBBgwFoAUok2WODNZy0lmoVuakGkT61RWZXsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QzAzLzM3RDE4QTE2MzlB MzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pY cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2syV09ETlp5MGxtb1Z1YWtHa1Q2MVJXWlhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QzAzLzM3RDE4QTE2MzlBMzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBs bW9WdWFrR2tUNjFSV1pYcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEwl+1oNOKu2U4fXhqDxO5K9PxJ2nCV/jmV72b87hvFA/mrqaZypVDrr CKNnDVGWwZcGnsBIjGklw1qVFYth8I7KkfCLZzbJTRoN5pRXIgGlP0H7V57KnXBu UXGrd+hpqVpfdXKFhJqpFVDJv3scdhrQekymDg1sl9mGShbdDd/s+9RFexN8UktJ OSEpb3BnYH+dwo8r6Ca6GG22LXHs6UI8U3eJy2q0JH/DruxpwU85F26D67khZKav I1cKDcIdWwVE6blta2khlUOheNpfgdUMr+pLJ91FpT2Z9JW8UQvYgfQxomPZ2te2 4gK4KE8kAx9gEoamlq+R5cKvLWmLXoc= -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:51 2025 by rpki-client