$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft File: OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft (raw, json) Hash identifier: pa7rj/pv3fuW22b2wBdAslkTQ88MsjFi37hcXQ1OIn8= Subject key identifier: E9:EB:C3:79:85:F0:2F:83:08:38:8C:31:6B:68:04:17:28:56:9C:40 Authority key identifier: 3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC Certificate issuer: /CN=A91CAB4E/serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC Certificate serial: 1392 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft Manifest number: 1389 Signing time: Sat 14 Jun 2025 16:55:07 +0000 Manifest this update: Sat 14 Jun 2025 16:55:07 +0000 Manifest next update: Sat 21 Jun 2025 16:55:07 +0000 Files and hashes: 1: OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl (hash: /Z1OXL9R4NL6mNcJ2Cm/tM+Cj0HKLMTiH07aG6wuXZk=) 2: 7F662C72997011E8B0FDEF57C4F9AE02.roa (hash: c+PuAbIml2jBjPavn1IEZDbXlxGsrH9yX4XnYZy8fpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5010 (0x1392) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAB4E, serialNumber=3A149425BE3285D6114B01F6C2FC88A17AFF4BEC Validity Not Before: Jun 14 16:55:07 2025 GMT Not After : Jun 21 16:55:07 2025 GMT Subject: CN=684da96b-c4ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0b:f9:af:77:b2:7c:d4:97:20:3c:d7:c6:29: bf:99:4e:4c:54:7e:77:40:59:b6:97:08:ca:29:eb: 1d:bc:72:0c:b8:0f:1f:b2:a9:36:4c:ee:c1:de:83: 50:af:4a:de:6f:11:1e:9f:ae:2e:a6:79:87:8b:82: cb:db:87:ca:2f:6f:70:1b:57:97:79:fc:b1:dc:27: a9:42:5b:75:80:c1:e1:56:ad:4c:5e:60:db:41:ab: ee:b8:9d:02:fd:75:4c:50:2b:35:9f:4a:b8:94:ac: 5b:18:65:03:3e:1d:0a:65:d3:22:d8:33:00:7d:1e: 5c:04:ba:13:bb:a7:c7:e4:b5:f0:32:9a:df:83:11: 10:88:cb:86:91:cd:40:ed:27:09:55:e3:37:15:2c: a2:4f:b1:fd:43:9d:37:fb:6c:76:b3:16:46:f3:6d: d8:01:9a:ff:55:4a:b7:d1:ad:01:6b:76:75:00:f3: 49:c4:a6:dd:f0:45:48:53:18:17:cd:0b:55:3c:c3: 89:bb:93:ec:b8:dd:45:70:3f:cc:43:ab:c6:12:81: 22:9f:46:3b:65:33:23:1b:ba:37:78:72:b0:fb:7d: f4:2f:9b:e3:f0:f3:6a:71:d8:a4:7f:c0:12:41:f4: a2:c8:ed:1b:79:49:99:c9:d3:91:96:bf:f8:a4:2a: 58:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:EB:C3:79:85:F0:2F:83:08:38:8C:31:6B:68:04:17:28:56:9C:40 X509v3 Authority Key Identifier: keyid:3A:14:94:25:BE:32:85:D6:11:4B:01:F6:C2:FC:88:A1:7A:FF:4B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhSUJb4yhdYRSwH2wvyIoXr_S-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAB4E/2CA47066997011E8861DD057C4F9AE02/OhSUJb4yhdYRSwH2wvyIoXr_S-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:a5:52:c8:a2:5d:80:cf:ea:4b:d2:d0:c7:03:a1:b7:ba:49: 8e:42:b5:b2:e1:77:6f:40:c9:15:09:f1:1f:f0:43:ea:4d:1f: fa:46:94:a9:44:79:14:77:05:a3:02:67:13:50:56:44:b1:cf: ae:8e:09:e7:8b:1b:97:d4:29:70:99:5a:5e:dd:3c:df:53:26: 71:06:ab:9b:e7:d8:c6:56:d4:3e:c1:f7:5b:d2:bd:2b:3a:b5: 1b:2e:a5:df:92:7e:3b:76:3e:f8:3b:c1:7d:90:1b:b5:45:28: 28:69:a3:ce:bd:65:21:0c:95:81:dc:d8:a2:07:61:f7:69:6f: 2f:42:a1:16:d2:4e:77:56:16:cf:e0:a0:c3:44:a4:2b:81:7b: 62:1f:a5:fb:eb:73:e6:01:8a:bc:87:41:be:c9:5a:28:14:22: 77:6a:65:4f:95:a7:b7:57:da:1b:90:4b:a5:99:36:ae:99:e1: c0:58:db:76:26:76:b5:d7:dd:52:cd:80:98:31:04:14:8f:49: 02:ef:6a:87:af:8b:12:50:5c:45:2d:d7:48:9a:7e:ce:e3:0e: e8:67:2e:ac:9a:31:73:1f:af:31:98:14:ef:64:34:f4:4e:72: 73:12:31:15:27:b6:cb:0d:72:0c:9c:d5:a7:27:0a:b8:6e:c8: 8f:d2:10:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCNEUxMTAvBgNVBAUTKDNBMTQ5NDI1QkUzMjg1RDYxMTRCMDFGNkMyRkM4OEEx N0FGRjRCRUMwHhcNMjUwNjE0MTY1NTA3WhcNMjUwNjIxMTY1NTA3WjAYMRYwFAYD VQQDEw02ODRkYTk2Yi1jNGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgv5r3eyfNSXIDzXxim/mU5MVH53QFm2lwjKKesdvHIMuA8fsqk2TO7B3oNQ r0rebxEen64upnmHi4LL24fKL29wG1eXefyx3CepQlt1gMHhVq1MXmDbQavuuJ0C /XVMUCs1n0q4lKxbGGUDPh0KZdMi2DMAfR5cBLoTu6fH5LXwMprfgxEQiMuGkc1A 7ScJVeM3FSyiT7H9Q503+2x2sxZG823YAZr/VUq30a0Ba3Z1APNJxKbd8EVIUxgX zQtVPMOJu5PsuN1FcD/MQ6vGEoEin0Y7ZTMjG7o3eHKw+330L5vj8PNqcdikf8AS QfSiyO0beUmZydORlr/4pCpYewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnrw3mF 8C+DCDiMMWtoBBcoVpxAMB8GA1UdIwQYMBaAFDoUlCW+MoXWEUsB9sL8iKF6/0vs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUI0RS8yQ0E0NzA2Njk5 NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhkWVJTd0gyd3Z5SW9Ycl9T LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oU1VKYjR5aGRZUlN3SDJ3dnlJb1hyX1Mtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUI0RS8yQ0E0NzA2Njk5NzAxMUU4ODYxREQwNTdDNEY5QUUwMi9PaFNVSmI0eWhk WVJTd0gyd3Z5SW9Ycl9TLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBpVLIol2Az+pL0tDHA6G3ukmOQrWy4XdvQMkVCfEf8EPqTR/6RpSp RHkUdwWjAmcTUFZEsc+ujgnnixuX1ClwmVpe3TzfUyZxBqub59jGVtQ+wfdb0r0r OrUbLqXfkn47dj74O8F9kBu1RSgoaaPOvWUhDJWB3NiiB2H3aW8vQqEW0k53VhbP 4KDDRKQrgXtiH6X763PmAYq8h0G+yVooFCJ3amVPlae3V9obkEulmTaumeHAWNt2 Jna1191SzYCYMQQUj0kC72qHr4sSUFxFLddImn7O4w7oZy6smjFzH68xmBTvZDT0 TnJzEjEVJ7bLDXIMnNWnJwq4bsiP0hA5 -----END CERTIFICATE-----Generated at Sat Jun 14 19:32:29 2025 by rpki-client