$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft File: ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft (raw, json) Hash identifier: NLJQzX/gkIMnXcWdFnC38bap1yjP4Wm81T6rbkFBXSw= Subject key identifier: B2:54:3F:C7:36:AE:60:62:6E:C7:95:84:2B:00:11:23:BE:F8:94:98 Authority key identifier: A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 Certificate issuer: /CN=A91E7656/serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Certificate serial: 0C19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft Manifest number: 0C18 Signing time: Thu 12 Jun 2025 18:28:29 +0000 Manifest this update: Thu 12 Jun 2025 18:28:28 +0000 Manifest next update: Thu 19 Jun 2025 18:28:28 +0000 Files and hashes: 1: ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl (hash: KguKFhwtaw0gJBFsqOhhQwdwpBpi+1rvL356BPPogow=) 2: AF73E1423D2011F0ACC34F2BC4F9AE02.roa (hash: 6z4IvdKelJy7fw7SK3RJpHNkKU/zaX8zdMWrochmqvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3097 (0xc19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7656, serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Validity Not Before: Jun 12 18:28:28 2025 GMT Not After : Jun 19 18:28:28 2025 GMT Subject: CN=684b1c4c-48e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:72:26:df:10:87:92:8f:c2:dd:e6:f6:4d:0b: d4:d3:68:84:be:f7:a4:1f:86:c6:7a:e6:b9:c9:6e: 34:a4:eb:5d:86:67:db:95:93:2b:fe:78:67:c0:e9: 11:6b:22:99:c6:56:84:de:af:7b:bc:52:b4:cf:45: 77:c4:10:a1:2e:c0:e5:f1:91:1f:66:e6:01:0f:42: dc:74:ad:c8:eb:30:c7:f8:a7:12:06:00:eb:9a:23: 0b:d4:f3:93:13:c8:76:81:8d:da:b9:82:7f:32:42: fd:ed:49:5a:81:65:35:0e:95:d0:02:2c:74:66:0c: e6:7c:a7:6d:ef:bc:74:4e:38:d6:31:d4:1e:cf:3a: a7:1c:11:dd:fd:d5:63:6b:5e:c1:8b:7c:14:ad:44: 07:56:ff:ac:e4:fd:41:1f:0f:fb:d9:6b:53:36:81: b5:c0:08:76:39:de:31:57:c5:47:b8:5b:d4:c6:ce: e1:37:a6:a3:c3:2c:9b:9a:62:e5:72:e6:a4:dc:32: 65:05:4a:4e:7c:77:07:c8:3a:b3:9d:91:1b:36:73: 1f:98:06:32:6a:4f:d3:63:f0:93:ad:ba:8f:f3:6c: 71:10:a5:72:71:a3:9f:4e:a3:ba:b8:2a:b5:b0:33: 3f:60:41:ec:f9:4d:80:bd:c3:7d:54:ea:f2:45:83: 80:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:54:3F:C7:36:AE:60:62:6E:C7:95:84:2B:00:11:23:BE:F8:94:98 X509v3 Authority Key Identifier: keyid:A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:47:fc:0c:b3:93:3e:9a:f0:85:68:94:cc:4f:d3:f9:25:57: ab:e8:4c:dd:db:8f:81:9b:fe:f7:ff:a0:d8:a6:e9:fd:1b:69: c4:5f:8e:d2:96:e0:b0:67:29:9c:65:19:c9:4a:77:c5:7f:9c: cf:69:db:06:71:b4:fb:91:8e:2d:19:d2:b3:90:74:40:06:c7: 7b:df:79:90:93:14:bf:b7:ae:fa:09:d2:bb:45:b8:c0:00:9d: da:83:e9:a1:8f:da:69:bc:4c:0b:3a:f0:ac:8d:f8:80:80:f4: 88:e8:36:87:13:5b:a6:2d:6f:8a:d1:aa:b6:47:d8:10:4c:8f: 14:86:2c:6c:c3:df:30:f4:39:08:b0:33:ff:60:53:4d:a4:6f: 5d:1e:b4:8d:92:45:35:41:bc:65:25:03:f2:15:dd:d9:e4:2e: 24:3e:44:d9:fc:c8:c5:c7:04:96:eb:c2:e0:2c:b8:4e:ed:56: 1c:4d:6d:f2:13:93:f6:f1:21:b9:4b:24:72:15:19:ad:3f:72: 6e:e7:cb:25:5d:06:01:e3:70:00:7b:43:ec:47:0c:7f:26:87: 34:d6:32:c2:d6:ec:74:c5:bf:a8:38:8f:ae:54:ee:8a:c5:57: d1:50:5a:70:8f:c5:25:c2:20:df:c3:37:4a:ac:62:22:4b:2d: bd:aa:df:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2NTYxMTAvBgNVBAUTKEEyMEM1N0Y1MkNFOThDODg0OEY2MzYyNTBFNEE0Njcw ODExQjUwNzYwHhcNMjUwNjEyMTgyODI4WhcNMjUwNjE5MTgyODI4WjAYMRYwFAYD VQQDEw02ODRiMWM0Yy00OGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHIm3xCHko/C3eb2TQvU02iEvvekH4bGeua5yW40pOtdhmfblZMr/nhnwOkR ayKZxlaE3q97vFK0z0V3xBChLsDl8ZEfZuYBD0LcdK3I6zDH+KcSBgDrmiML1POT E8h2gY3auYJ/MkL97UlagWU1DpXQAix0ZgzmfKdt77x0TjjWMdQezzqnHBHd/dVj a17Bi3wUrUQHVv+s5P1BHw/72WtTNoG1wAh2Od4xV8VHuFvUxs7hN6ajwyybmmLl cuak3DJlBUpOfHcHyDqznZEbNnMfmAYyak/TY/CTrbqP82xxEKVycaOfTqO6uCq1 sDM/YEHs+U2AvcN9VOryRYOAkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJUP8c2 rmBibseVhCsAESO++JSYMB8GA1UdIwQYMBaAFKIMV/Us6YyISPY2JQ5KRnCBG1B2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzY1Ni8wRUUzQTVCQzBD RDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJaEk5allsRGtwR2NJRWJV SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29neFg5U3pwakloSTlqWWxEa3BHY0lFYlVIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzY1Ni8wRUUzQTVCQzBDRDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJ aEk5allsRGtwR2NJRWJVSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2R/wMs5M+mvCFaJTMT9P5JVer6Ezd24+Bm/73/6DYpun9G2nEX47S luCwZymcZRnJSnfFf5zPadsGcbT7kY4tGdKzkHRABsd733mQkxS/t676CdK7RbjA AJ3ag+mhj9ppvEwLOvCsjfiAgPSI6DaHE1umLW+K0aq2R9gQTI8Uhixsw98w9DkI sDP/YFNNpG9dHrSNkkU1QbxlJQPyFd3Z5C4kPkTZ/MjFxwSW68LgLLhO7VYcTW3y E5P28SG5SyRyFRmtP3Ju58slXQYB43AAe0PsRwx/Joc01jLC1ux0xb+oOI+uVO6K xVfRUFpwj8UlwiDfwzdKrGIiSy29qt9t -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:14 2025 by rpki-client