$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: A/8OVDFZxJas1U6O6fQL7od52amJq9N5+fWb2MOqc6o= Subject key identifier: 03:CF:BF:17:3C:BB:CF:2B:56:81:31:C0:6A:83:15:1D:0F:8E:48:AB Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 3324 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 32CE Signing time: Sat 14 Jun 2025 15:23:59 +0000 Manifest this update: Sat 14 Jun 2025 15:23:59 +0000 Manifest next update: Sat 21 Jun 2025 15:23:59 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: UOlxsqBdThap1TqBG3Guk+6bmDq/T3dVKtqT1gFPQ4Y=) 2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=) 3: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=) 4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=) 5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13092 (0x3324) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Jun 14 15:23:59 2025 GMT Not After : Jun 21 15:23:59 2025 GMT Subject: CN=684d940f-e485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ec:42:da:5a:57:bf:dd:c8:58:dc:bb:95:e8: de:73:56:33:ba:e3:bc:72:bf:95:8c:d9:b5:68:d5: da:90:f2:34:88:76:b2:80:a6:11:cf:c9:67:d6:6f: 3d:43:1e:2d:c8:d9:e4:8e:e1:a6:c1:5c:56:2b:3c: e7:5f:0d:30:bb:d3:08:9f:14:f3:44:ca:64:6e:b3: 23:90:ec:82:8f:79:fd:22:b0:bd:e7:e3:b8:88:5f: f5:3c:1a:2f:f0:64:2f:11:17:5f:f5:8d:eb:e8:28: 4e:41:3b:8a:06:7e:31:79:0c:ca:db:65:0c:1b:7f: c6:83:de:49:b7:ca:c3:31:23:27:41:07:92:f0:4e: e2:4f:c9:d5:06:18:62:47:2a:07:bc:e5:8b:c5:93: 40:b1:4e:b9:27:97:bc:42:90:32:d0:26:7c:f7:44: 2d:56:9f:52:c0:4a:02:ca:91:2a:9d:95:e7:b3:fd: b5:16:5b:70:d9:c4:a0:91:c7:39:0c:fe:99:9a:a7: c1:24:8d:c2:0e:cc:75:26:98:06:55:75:72:2a:5b: e0:a0:1d:d6:b4:2e:44:f7:8a:18:b1:27:26:0c:85: 69:b2:b9:51:c8:d5:00:d7:35:2d:8e:71:57:a1:01: 61:d4:15:da:68:68:b6:50:ce:0e:b5:60:c5:20:5c: 7d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CF:BF:17:3C:BB:CF:2B:56:81:31:C0:6A:83:15:1D:0F:8E:48:AB X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:4c:1e:cb:c1:c8:fd:34:77:39:d1:4f:b5:41:59:e8:56:8d: 23:c9:32:40:87:21:23:87:6e:8e:fa:5a:1b:df:77:08:ef:27: a4:59:3e:12:e7:e6:32:eb:a4:3d:f2:4d:e0:03:5b:2c:e1:2b: f0:a6:52:1d:ac:5d:1b:d3:9e:89:40:a3:37:19:12:28:2d:db: 6a:cd:43:be:98:73:74:cb:23:ad:ad:e9:e9:f8:42:40:6c:4d: bb:aa:20:ad:79:51:74:3c:4d:70:47:aa:1c:c2:79:8c:c8:55: 22:db:28:19:3c:9e:37:af:ca:23:57:12:06:1e:a4:1b:f1:98: 35:85:0c:f1:74:8e:36:dc:ef:8f:f5:00:fb:6e:cf:51:24:b4: 99:0f:3f:66:b7:a6:ca:e9:b6:a5:78:1a:26:29:1e:3f:85:87: 28:63:37:b0:da:aa:9a:4e:8a:0b:97:8d:c3:bb:47:0f:44:b5: 08:19:9c:6f:fd:f1:a8:49:ca:50:7d:15:a2:90:1d:58:96:c1: 55:7f:96:1d:5b:40:26:2d:1c:ce:18:71:c7:21:3d:6a:4e:ed: a1:97:22:8c:eb:5d:1e:fb:e2:33:3b:4b:4f:be:b1:82:e6:24: 54:55:37:3b:1f:79:2a:fd:a4:ac:dd:20:6c:eb:9d:8f:fc:d8: f1:98:66:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUwNjE0MTUyMzU5WhcNMjUwNjIxMTUyMzU5WjAYMRYwFAYD VQQDEw02ODRkOTQwZi1lNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+xC2lpXv93IWNy7lejec1YzuuO8cr+VjNm1aNXakPI0iHaygKYRz8ln1m89 Qx4tyNnkjuGmwVxWKzznXw0wu9MInxTzRMpkbrMjkOyCj3n9IrC95+O4iF/1PBov 8GQvERdf9Y3r6ChOQTuKBn4xeQzK22UMG3/Gg95Jt8rDMSMnQQeS8E7iT8nVBhhi RyoHvOWLxZNAsU65J5e8QpAy0CZ890QtVp9SwEoCypEqnZXns/21Fltw2cSgkcc5 DP6ZmqfBJI3CDsx1JpgGVXVyKlvgoB3WtC5E94oYsScmDIVpsrlRyNUA1zUtjnFX oQFh1BXaaGi2UM4OtWDFIFx9NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPPvxc8 u88rVoExwGqDFR0PjkirMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbTB7Lwcj9NHc50U+1QVnoVo0jyTJAhyEjh26O+lob33cI7yekWT4S 5+Yy66Q98k3gA1ss4SvwplIdrF0b056JQKM3GRIoLdtqzUO+mHN0yyOtrenp+EJA bE27qiCteVF0PE1wR6ocwnmMyFUi2ygZPJ43r8ojVxIGHqQb8Zg1hQzxdI423O+P 9QD7bs9RJLSZDz9mt6bK6baleBomKR4/hYcoYzew2qqaTooLl43Du0cPRLUIGZxv /fGoScpQfRWikB1YlsFVf5YdW0AmLRzOGHHHIT1qTu2hlyKM610e++IzO0tPvrGC 5iRUVTc7H3kq/aSs3SBs652P/NjxmGYm -----END CERTIFICATE-----Generated at Sun Jun 15 07:01:37 2025 by rpki-client