$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: XLCs5yCKruIABkUH+apv/wNl72QKVGKy1eNbWDKat9A= Subject key identifier: 57:47:DE:C4:0A:08:B8:D6:48:99:7B:42:44:BA:04:8F:85:BC:F4:08 Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 106D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 1064 Signing time: Sat 14 Jun 2025 17:18:37 +0000 Manifest this update: Sat 14 Jun 2025 17:18:36 +0000 Manifest next update: Sat 21 Jun 2025 17:18:36 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: EOLFqFBqm3xE66CQ2g8PKwNQzC0FxOAo28IciTbsqZY=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: zsPveXQ2Zd6a9Te4YhLc43ZEsJlTYYnv+fpeJR8IN2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4205 (0x106d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944, serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: Jun 14 17:18:36 2025 GMT Not After : Jun 21 17:18:36 2025 GMT Subject: CN=684daeed-03f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fd:59:57:6e:4d:9b:d2:77:70:c5:91:b5:48: ff:3a:7a:13:90:b8:d9:13:27:13:a5:7a:91:d2:c8: 66:c3:4e:e4:76:d6:fb:0a:d4:b6:f4:82:b9:25:f9: 8f:da:34:e8:aa:dc:8c:66:7f:d2:b7:84:54:61:9a: 22:65:68:18:8a:52:06:dd:7f:31:e3:ea:c4:52:7a: 09:e9:45:07:bd:58:25:16:4e:24:55:bf:fb:78:3e: 5c:c9:9c:ce:07:a0:31:72:24:03:9f:99:a5:9c:94: 2f:3a:9b:4e:41:20:cd:95:f1:72:b7:e8:e7:61:f9: 66:ef:8f:f4:f9:68:10:11:c6:64:97:a1:46:db:5b: 1d:79:d0:c8:be:3c:c9:19:f8:bb:c7:44:7c:9a:fe: fa:04:fe:25:36:eb:84:be:0e:a3:aa:a5:54:7d:74: 0e:4b:b1:12:f5:1a:69:ed:b8:0f:f4:50:6b:5e:25: f7:9b:1a:0a:ac:66:b3:37:66:41:b4:c2:70:46:d9: 0c:43:13:e8:8a:eb:24:3b:09:c7:78:ac:77:b7:c0: c5:da:28:2b:24:30:9b:14:7f:01:ae:05:0e:d5:94: 4e:b7:0f:da:1c:b5:58:b6:f4:10:a1:86:80:e7:ef: eb:7b:aa:22:a3:36:40:09:17:79:3c:da:ea:ce:39: 7b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:47:DE:C4:0A:08:B8:D6:48:99:7B:42:44:BA:04:8F:85:BC:F4:08 X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:f9:54:79:c1:ab:58:4a:f2:b2:a2:bc:ab:fc:e1:da:cb:04: 73:b2:80:12:76:95:12:ea:3c:1a:52:fb:6e:5d:4b:82:ea:43: c1:86:3f:7d:e0:89:21:08:8b:3c:b3:7a:f3:ff:95:a6:7e:2b: b7:55:a3:93:6f:15:1e:35:de:5f:64:d0:f1:94:72:95:52:12: 72:9f:b0:14:8e:a8:a4:9a:81:09:74:c0:e8:f5:a7:51:9c:2d: e9:97:bc:f3:92:fc:62:bf:64:7e:f3:95:73:b0:8e:3d:98:cd: a1:23:1d:97:e3:99:f0:6a:bb:ee:87:29:c9:85:c3:b5:a5:92: cd:32:dd:73:18:60:b9:3c:b6:83:9d:f6:c9:d9:15:2d:d9:2b: 30:40:ad:ba:0e:19:93:da:98:de:a0:86:01:38:62:07:56:86: 63:a2:33:a1:76:cc:d9:b6:61:3a:db:ec:4a:6a:e7:78:61:e0: bb:17:d5:42:31:d8:5c:33:0b:a8:e9:ef:57:6f:5d:a7:69:15: 0b:9c:2e:b4:15:12:41:3d:33:41:44:a1:5d:0a:1c:0f:7a:82: 50:ad:55:d0:6d:c3:4f:f3:b8:05:51:cb:cc:f5:c2:a5:00:01: bc:9d:23:76:fb:78:e5:3f:ad:e1:cd:c3:9c:49:be:63:df:78: 28:9d:82:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjUwNjE0MTcxODM2WhcNMjUwNjIxMTcxODM2WjAYMRYwFAYD VQQDEw02ODRkYWVlZC0wM2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP1ZV25Nm9J3cMWRtUj/OnoTkLjZEycTpXqR0shmw07kdtb7CtS29IK5JfmP 2jToqtyMZn/St4RUYZoiZWgYilIG3X8x4+rEUnoJ6UUHvVglFk4kVb/7eD5cyZzO B6AxciQDn5mlnJQvOptOQSDNlfFyt+jnYflm74/0+WgQEcZkl6FG21sdedDIvjzJ Gfi7x0R8mv76BP4lNuuEvg6jqqVUfXQOS7ES9Rpp7bgP9FBrXiX3mxoKrGazN2ZB tMJwRtkMQxPoiuskOwnHeKx3t8DF2igrJDCbFH8BrgUO1ZROtw/aHLVYtvQQoYaA 5+/re6oiozZACRd5PNrqzjl7bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdH3sQK CLjWSJl7QkS6BI+FvPQIMB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/+VR5watYSvKyoryr/OHaywRzsoASdpUS6jwaUvtuXUuC6kPBhj99 4IkhCIs8s3rz/5Wmfiu3VaOTbxUeNd5fZNDxlHKVUhJyn7AUjqikmoEJdMDo9adR nC3pl7zzkvxiv2R+85VzsI49mM2hIx2X45nwarvuhynJhcO1pZLNMt1zGGC5PLaD nfbJ2RUt2SswQK26DhmT2pjeoIYBOGIHVoZjojOhdszZtmE62+xKaud4YeC7F9VC MdhcMwuo6e9Xb12naRULnC60FRJBPTNBRKFdChwPeoJQrVXQbcNP87gFUcvM9cKl AAG8nSN2+3jlP63hzcOcSb5j33gonYLe -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:00 2025 by rpki-client