$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: e1hRjwNkh6Ryhojp8lpRxfibdiEvr9eYTJlgRHvKMtU= Subject key identifier: 7D:91:C9:81:08:AC:EF:AE:CD:42:5C:56:F6:18:F5:14:33:FF:14:46 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 036F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 0363 Signing time: Fri 13 Jun 2025 00:31:21 +0000 Manifest this update: Fri 13 Jun 2025 00:31:21 +0000 Manifest next update: Fri 20 Jun 2025 00:31:21 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: Yu1LJzaEJJVoUPafdL3n/emp9H/GbEfGQFZudA+sBls=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Jun 13 00:31:21 2025 GMT Not After : Jun 20 00:31:21 2025 GMT Subject: CN=684b7159-037f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:93:1d:6c:8a:07:4d:cc:4d:ca:8c:73:75:3b: 87:91:8e:3a:74:b8:d0:29:a5:66:b1:8f:5a:cf:2c: 19:1f:c5:a3:ad:8c:a7:5e:5e:7e:27:81:c0:ab:e1: 3a:42:26:21:7e:a6:4e:e7:70:4f:69:b5:cf:23:2c: 6a:72:64:b1:08:89:6e:a4:38:be:de:c2:17:7b:69: 5f:a4:14:7d:3e:6b:18:92:81:e0:12:14:f5:3d:80: ef:d9:16:5d:b6:30:41:e1:98:f9:97:76:0f:b4:36: 90:c1:0f:cf:c4:0d:81:d5:e9:54:1d:a4:99:01:9e: b2:a5:05:1e:66:53:6c:bc:7b:e0:fd:da:4b:41:d3: a3:2d:24:3a:e1:ad:78:20:9c:91:49:f0:c6:b4:dc: ee:1d:23:d5:e0:d2:b1:ae:ee:96:2f:4b:d1:4c:94: 0b:9f:9b:98:b2:d0:5a:fb:c3:41:9d:00:88:53:53: b7:69:a8:3c:4f:f3:51:e2:61:fd:b5:85:cf:a2:42: c9:99:a5:9d:ea:0a:68:97:50:96:33:1b:a6:e1:e7: e5:c9:17:d1:66:3a:0a:37:ae:06:ea:97:2c:1a:93: db:f9:65:52:1b:89:32:4e:a6:ff:9e:f2:d5:c7:fb: 27:9f:8e:e2:4d:d4:02:4d:96:24:c5:7d:6b:dd:6a: ca:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:91:C9:81:08:AC:EF:AE:CD:42:5C:56:F6:18:F5:14:33:FF:14:46 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:3f:e7:ed:49:e8:93:84:21:b0:61:aa:7a:be:7a:97:95:1d: cd:13:e9:94:07:40:c9:cd:31:ff:52:e5:e6:b5:6f:78:2f:6d: 9b:63:0d:c3:40:bf:db:40:e1:6f:aa:4d:51:f6:a0:b0:5e:97: c8:04:07:0c:44:20:21:2b:e3:be:9a:7a:cd:8a:4c:5f:92:f2: 61:7f:0e:63:27:59:8a:b0:d4:7c:d4:05:8d:e4:46:af:43:df: 29:db:81:12:91:ed:1c:7e:0b:bf:8d:d9:c1:a8:5e:e3:3a:cf: a9:33:49:c4:bc:01:6e:10:2c:ad:9b:35:67:69:63:08:7f:ab: da:d2:88:11:62:2b:51:d7:3f:3c:72:fe:d8:b3:ae:3f:d2:2c: 4b:4c:91:65:67:99:8d:c0:8c:e9:cc:4e:35:17:9f:69:30:b6: 20:b8:b5:40:c7:16:31:a9:d4:e1:3f:6e:3a:41:13:8d:ba:0c: 8a:df:cc:7a:2c:83:6f:3c:55:42:f2:4b:68:03:30:dd:b2:ce: 25:88:8c:e4:19:11:a0:8c:49:93:38:6c:03:1f:8c:cc:00:d4: a8:2d:16:0b:09:67:bb:ab:63:9a:3a:5b:65:85:22:6f:d3:90: d8:79:6b:c9:43:ca:3d:3e:de:31:47:07:72:b4:72:ae:e4:98: 49:36:60:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwNjEzMDAzMTIxWhcNMjUwNjIwMDAzMTIxWjAYMRYwFAYD VQQDEw02ODRiNzE1OS0wMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZMdbIoHTcxNyoxzdTuHkY46dLjQKaVmsY9azywZH8WjrYynXl5+J4HAq+E6 QiYhfqZO53BPabXPIyxqcmSxCIlupDi+3sIXe2lfpBR9PmsYkoHgEhT1PYDv2RZd tjBB4Zj5l3YPtDaQwQ/PxA2B1elUHaSZAZ6ypQUeZlNsvHvg/dpLQdOjLSQ64a14 IJyRSfDGtNzuHSPV4NKxru6WL0vRTJQLn5uYstBa+8NBnQCIU1O3aag8T/NR4mH9 tYXPokLJmaWd6gpol1CWMxum4eflyRfRZjoKN64G6pcsGpPb+WVSG4kyTqb/nvLV x/snn47iTdQCTZYkxX1r3WrK2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2RyYEI rO+uzUJcVvYY9RQz/xRGMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHP+ftSeiThCGwYap6vnqXlR3NE+mUB0DJzTH/UuXmtW94L22bYw3D QL/bQOFvqk1R9qCwXpfIBAcMRCAhK+O+mnrNikxfkvJhfw5jJ1mKsNR81AWN5Eav Q98p24ESke0cfgu/jdnBqF7jOs+pM0nEvAFuECytmzVnaWMIf6va0ogRYitR1z88 cv7Ys64/0ixLTJFlZ5mNwIzpzE41F59pMLYguLVAxxYxqdThP246QRONugyK38x6 LINvPFVC8ktoAzDdss4liIzkGRGgjEmTOGwDH4zMANSoLRYLCWe7q2OaOltlhSJv 05DYeWvJQ8o9Pt4xRwdytHKu5JhJNmDz -----END CERTIFICATE-----Generated at Sat Jun 14 19:31:38 2025 by rpki-client