$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: WkWnKiqesmAhl6TpR/DQDvWUKsFR0834zhP2hkZyxkA= Subject key identifier: A7:66:8A:11:F4:21:16:E6:C6:B5:3F:33:48:89:45:8F:E3:74:49:B9 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 21E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 219E Signing time: Sat 14 Jun 2025 15:52:25 +0000 Manifest this update: Sat 14 Jun 2025 15:52:24 +0000 Manifest next update: Sat 21 Jun 2025 15:52:24 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: ainupd9rbEDGl7eddo2VEPcamTyBrhW6JUrrN/MERts=) 2: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 1ES+epsnD/DNY/mamto14c9DZbko73ok/bvGYlpnZRA=) 3: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: RV1/DDfUdeMeAI1f60SGG8y1uSkd4aEtHJsKEOkYdXA=) 4: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: xubGUlPUlNCBLJe5+NADMrf4YV/wbfCmoqj7rhjCN20=) 5: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: ftobPRBcc8wlVTCOH3GxCPMFHQM9ebuoV2KFpLluNR4=) 6: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: RArCcLO/kSE5acBXMMlQcl8HS4RV4DSQfZAIgouxT+4=) 7: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 8McChURwVN9JYUVHRVTAHRcHa/Hxc6L3gNtxVyOyx0g=) 8: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 4gXXPKgdGkdsiTu4Fh+U84K4r4ojzbdg0Z4yEj+nXpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8672 (0x21e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Jun 14 15:52:24 2025 GMT Not After : Jun 21 15:52:24 2025 GMT Subject: CN=684d9ab9-10c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cc:57:f9:9d:9a:84:cb:a9:a7:0f:3b:01:7a: 48:ef:11:f0:c1:bd:2b:30:ca:01:7e:5f:79:34:a8: f0:3e:63:98:c8:03:d0:c2:fc:b3:12:ae:da:45:26: 3c:1d:62:78:33:19:ea:f2:d5:ae:67:6d:2a:05:b1: 74:3d:7c:39:21:41:75:e5:ea:a9:36:2f:24:4e:98: 9e:bb:57:9f:06:44:9d:52:fc:46:02:fd:6a:d1:05: 7e:84:d5:91:b3:4f:90:8b:96:76:77:a9:6a:c4:ee: 78:22:86:c5:73:2b:b5:df:75:de:04:7f:f0:31:ae: 69:74:28:c9:27:c1:83:02:58:15:f5:d0:2b:d8:d7: 70:bb:3a:7f:d7:c5:af:7a:1d:17:5a:fb:4c:2c:93: ed:56:60:ba:d8:02:35:2c:79:01:0a:be:12:55:61: 99:3e:bd:06:4c:66:5c:27:52:0f:3b:5c:36:a3:7e: 15:69:0a:1d:6a:b3:58:c1:b9:b4:46:39:5a:f2:f2: 43:b7:1e:d5:d4:90:91:9c:69:86:25:dd:4d:5c:11: 16:07:a8:ba:7e:17:98:c4:e1:72:a3:1a:7b:89:aa: 5b:3e:54:ac:14:8a:de:ee:b2:5b:d9:f3:a2:47:fb: 01:aa:4a:94:ef:05:b4:ae:f3:31:60:08:9f:a6:b9: c5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:66:8A:11:F4:21:16:E6:C6:B5:3F:33:48:89:45:8F:E3:74:49:B9 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:52:3f:4a:56:31:8d:f3:4d:4e:06:3b:52:c4:7f:9d:03:b6: 3b:cd:54:ba:4d:9d:ad:4d:e4:df:64:0e:7c:8b:09:61:f7:14: e4:1e:5d:35:2d:2d:39:c6:0a:69:57:9f:cc:37:2d:22:28:d6: 5b:8d:30:01:83:c4:c3:34:6c:47:d9:cc:f0:2a:9f:a2:ca:79: 44:9e:02:00:50:87:14:fa:4e:04:70:f8:2b:fb:02:19:f3:c5: 9b:f3:53:10:b7:f0:d9:c0:b3:5d:08:8a:ff:4c:77:13:7d:ea: 98:4e:9e:29:5a:7b:24:44:2b:f4:89:f7:e8:02:f4:32:ec:dd: 10:a7:dc:41:ba:ee:c3:b7:64:c9:9d:2f:c6:b2:0b:66:e6:86: d7:be:fd:7b:09:d5:30:c2:a2:d1:8f:f9:62:18:4c:74:8d:02: 36:f6:2f:82:ec:77:f1:41:f4:70:3c:57:ec:77:8c:44:70:02: 45:76:0c:06:f8:f6:a9:a1:f4:84:62:b2:96:6a:30:4a:64:c6: 57:51:3a:e8:85:80:f8:f0:2c:c6:8d:b9:2f:64:bc:55:c8:ae: 92:9a:b7:e5:b0:88:55:ab:b1:3d:03:63:c9:82:1f:18:e6:bc: 9d:ca:9f:37:c0:ae:ca:42:ba:09:d2:36:f6:90:d1:3c:21:a9: d7:22:82:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUwNjE0MTU1MjI0WhcNMjUwNjIxMTU1MjI0WjAYMRYwFAYD VQQDEw02ODRkOWFiOS0xMGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcxX+Z2ahMuppw87AXpI7xHwwb0rMMoBfl95NKjwPmOYyAPQwvyzEq7aRSY8 HWJ4Mxnq8tWuZ20qBbF0PXw5IUF15eqpNi8kTpieu1efBkSdUvxGAv1q0QV+hNWR s0+Qi5Z2d6lqxO54IobFcyu133XeBH/wMa5pdCjJJ8GDAlgV9dAr2Ndwuzp/18Wv eh0XWvtMLJPtVmC62AI1LHkBCr4SVWGZPr0GTGZcJ1IPO1w2o34VaQodarNYwbm0 Rjla8vJDtx7V1JCRnGmGJd1NXBEWB6i6fheYxOFyoxp7iapbPlSsFIre7rJb2fOi R/sBqkqU7wW0rvMxYAifprnFuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdmihH0 IRbmxrU/M0iJRY/jdEm5MB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABUj9KVjGN801OBjtSxH+dA7Y7zVS6TZ2tTeTfZA58iwlh9xTkHl01 LS05xgppV5/MNy0iKNZbjTABg8TDNGxH2czwKp+iynlEngIAUIcU+k4EcPgr+wIZ 88Wb81MQt/DZwLNdCIr/THcTfeqYTp4pWnskRCv0iffoAvQy7N0Qp9xBuu7Dt2TJ nS/Gsgtm5obXvv17CdUwwqLRj/liGEx0jQI29i+C7HfxQfRwPFfsd4xEcAJFdgwG +PapofSEYrKWajBKZMZXUTrohYD48CzGjbkvZLxVyK6SmrflsIhVq7E9A2PJgh8Y 5rydyp83wK7KQroJ0jb2kNE8IanXIoKO -----END CERTIFICATE-----Generated at Sun Jun 15 08:05:03 2025 by rpki-client