$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft File: cOaM6FoDjZ4wcEODfKbmsaZglu4.mft (raw, json) Hash identifier: sJK/2F+QF0GTyffBr2yV9gG4wD4aEAbWNP4vDiaDYFQ= Subject key identifier: 9E:19:E1:F5:6E:40:27:20:BA:34:B0:92:62:77:6F:47:93:A1:3F:1D Authority key identifier: 70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE Certificate issuer: /CN=A91F6ADE/serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Certificate serial: 048F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft Manifest number: 0489 Signing time: Sat 14 Jun 2025 23:46:08 +0000 Manifest this update: Sat 14 Jun 2025 23:46:08 +0000 Manifest next update: Sat 21 Jun 2025 23:46:08 +0000 Files and hashes: 1: cOaM6FoDjZ4wcEODfKbmsaZglu4.crl (hash: +ozbEhGkYHr1GkPAg+snzVrgZDEeSrR007AC6lv3tOY=) 2: FD0DCDCA41E111EC98FA0C0AC4F9AE02.roa (hash: CzraaquDZ9Uo+Rh3T+BRvbMkjKbruCD1g9kPUW6icAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1167 (0x48f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6ADE, serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Validity Not Before: Jun 14 23:46:08 2025 GMT Not After : Jun 21 23:46:08 2025 GMT Subject: CN=684e09c0-9f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:88:ca:0b:3c:2a:c1:a5:1a:a2:9e:b3:72:aa: 1e:be:29:d1:11:91:be:62:05:00:36:aa:59:a6:cd: aa:ec:b8:ac:ae:26:12:9a:19:54:a0:91:37:cb:72: 0f:f6:b0:c5:69:a1:f3:fa:fd:7e:5c:79:4e:9b:02: f9:50:d6:26:78:ca:37:b9:08:59:24:2d:c8:dd:f1: 2a:c4:61:1c:db:6b:6d:71:e0:f4:8d:2c:03:8d:87: 8f:27:3e:03:31:fe:33:1a:07:28:0e:51:84:4c:dd: ca:a1:c2:aa:63:a9:01:42:5b:1d:ce:b0:21:49:f7: 8b:73:8c:6d:4d:7a:7d:a0:64:85:1f:4a:3e:b5:ea: e3:97:41:e4:ba:9a:a7:9b:bf:5a:9c:c8:a6:80:df: 9b:ac:a5:2e:76:9c:f2:75:2b:11:ed:75:1d:f6:33: c1:ed:b2:02:75:c3:0e:43:1f:0c:d4:cf:d3:6e:52: 26:80:6d:c0:6d:bd:d5:5a:91:62:9c:ed:1b:30:f4: 54:c9:c1:1c:6e:b5:fe:58:b9:8d:1c:18:98:be:a9: e0:1e:23:b7:f1:b9:28:8a:55:3d:94:35:24:9f:e0: 01:de:8c:81:0b:bd:fd:39:c1:2c:00:62:88:67:e8: 36:34:c1:3c:1d:5d:25:92:61:84:73:5b:92:e4:87: 92:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:19:E1:F5:6E:40:27:20:BA:34:B0:92:62:77:6F:47:93:A1:3F:1D X509v3 Authority Key Identifier: keyid:70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:2b:b0:79:49:0f:c7:9f:4b:10:03:9c:50:6c:96:cc:8d:fe: 3a:2d:2c:9b:5e:64:e6:cc:03:c3:2b:a0:3f:bb:0e:cf:96:0e: 60:bb:f6:4a:8d:37:54:56:96:8a:88:9a:db:91:ad:9a:22:cc: af:7a:66:ac:88:26:2d:5c:4f:f3:a9:b8:91:d2:9a:88:fe:f2: 0d:8f:4a:17:85:d6:ab:5c:38:44:51:51:eb:05:8d:d5:b3:52: c1:03:8a:17:cb:dc:4f:5d:13:a9:6a:44:11:91:9e:ad:1c:cc: b1:09:35:c1:1a:93:09:46:98:c5:f3:d8:8b:de:66:21:d4:5e: 04:26:9e:30:40:32:17:86:61:94:96:57:f1:fe:38:b5:89:9c: a7:f1:5a:65:98:8a:52:06:1b:3d:df:d1:80:83:6d:a4:42:63: 3f:a9:02:da:1f:ad:b1:94:20:b9:07:b9:83:b6:5f:77:a6:9f: 7a:9f:f5:34:9d:cb:e1:4e:53:6d:6f:a7:24:92:0f:22:8b:cc: 99:37:20:3e:3c:cd:64:b8:20:cd:2e:4f:2f:51:61:8d:4c:0b: db:67:c2:71:9d:45:4f:d5:02:dc:c1:51:de:d2:77:48:81:ce: 46:ec:a9:e5:71:61:c5:7f:9f:59:58:0d:4e:f3:3a:dd:be:9b: af:c2:e7:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBREUxMTAvBgNVBAUTKDcwRTY4Q0U4NUEwMzhEOUUzMDcwNDM4MzdDQTZFNkIx QTY2MDk2RUUwHhcNMjUwNjE0MjM0NjA4WhcNMjUwNjIxMjM0NjA4WjAYMRYwFAYD VQQDEw02ODRlMDljMC05ZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYjKCzwqwaUaop6zcqoevinREZG+YgUANqpZps2q7LisriYSmhlUoJE3y3IP 9rDFaaHz+v1+XHlOmwL5UNYmeMo3uQhZJC3I3fEqxGEc22ttceD0jSwDjYePJz4D Mf4zGgcoDlGETN3KocKqY6kBQlsdzrAhSfeLc4xtTXp9oGSFH0o+terjl0Hkupqn m79anMimgN+brKUudpzydSsR7XUd9jPB7bICdcMOQx8M1M/TblImgG3Abb3VWpFi nO0bMPRUycEcbrX+WLmNHBiYvqngHiO38bkoilU9lDUkn+AB3oyBC739OcEsAGKI Z+g2NME8HV0lkmGEc1uS5IeScwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4Z4fVu QCcgujSwkmJ3b0eToT8dMB8GA1UdIwQYMBaAFHDmjOhaA42eMHBDg3ym5rGmYJbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFERS8yODczOUQzQTQx REYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpaNHdjRU9EZktibXNhWmds dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NPYU02Rm9Ealo0d2NFT0RmS2Jtc2FaZ2x1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFERS8yODczOUQzQTQxREYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpa NHdjRU9EZktibXNhWmdsdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoK7B5SQ/Hn0sQA5xQbJbMjf46LSybXmTmzAPDK6A/uw7Plg5gu/ZK jTdUVpaKiJrbka2aIsyvemasiCYtXE/zqbiR0pqI/vINj0oXhdarXDhEUVHrBY3V s1LBA4oXy9xPXROpakQRkZ6tHMyxCTXBGpMJRpjF89iL3mYh1F4EJp4wQDIXhmGU llfx/ji1iZyn8VplmIpSBhs939GAg22kQmM/qQLaH62xlCC5B7mDtl93pp96n/U0 ncvhTlNtb6ckkg8ii8yZNyA+PM1kuCDNLk8vUWGNTAvbZ8JxnUVP1QLcwVHe0ndI gc5G7KnlcWHFf59ZWA1O8zrdvpuvwucx -----END CERTIFICATE-----Generated at Sun Jun 15 04:47:56 2025 by rpki-client