$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft File: o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft (raw, json) Hash identifier: p9CDgvAhlUVTWmLGwlHO1VCqTYBiskrJVTG6+eQ9rns= Subject key identifier: 29:ED:8E:49:40:20:BA:84:35:5E:E8:96:D1:68:F9:A2:09:69:3F:7F Authority key identifier: A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 Certificate issuer: /CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Certificate serial: 033F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft Manifest number: 033B Signing time: Thu 03 Jul 2025 01:25:58 +0000 Manifest this update: Thu 03 Jul 2025 01:25:58 +0000 Manifest next update: Thu 10 Jul 2025 01:25:58 +0000 Files and hashes: 1: o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl (hash: MZ9kYTFoxl3dAglNSp7L1x1gmtASJ907jLHe+0VhyoI=) 2: E2F2A470C76411EC85896F5EC4F9AE02.roa (hash: hSEOk4wSvcqkKWJUmunbhE8NC6T2P49jnE2eWh8/b4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 831 (0x33f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4B, serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Validity Not Before: Jul 3 01:25:58 2025 GMT Not After : Jul 10 01:25:58 2025 GMT Subject: CN=6865dc26-0dd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:52:27:80:78:16:46:d6:6d:cf:f7:0c:7d:30: 72:51:0b:fb:f2:5f:01:dd:64:c4:4e:b9:c8:17:2e: 6a:ec:29:e3:85:59:8d:79:d2:4b:be:77:cb:57:48: 1f:7f:0a:65:8f:1a:cd:4b:76:b7:2e:87:a0:9a:42: 4f:92:f1:5c:10:a5:c1:ec:7b:68:6f:9a:48:93:b0: b8:5e:75:57:00:28:c4:c5:2e:66:c1:31:87:18:1d: ed:4f:17:ef:69:13:4c:c1:07:3d:0d:e9:b5:39:e3: 72:a0:e9:b9:6a:e0:c5:04:a3:75:3b:22:e3:67:f8: e3:fd:a5:48:33:2e:d1:47:40:54:4b:58:9a:ac:94: a3:79:7a:d1:c8:55:db:b4:89:8e:e7:0a:d3:d3:e9: 9e:1a:1b:2e:a0:e7:ab:ca:44:a8:56:c1:1a:e0:f6: 56:89:57:7a:d5:25:69:86:70:ef:2b:0a:f0:67:5b: e3:2f:50:a9:dc:a4:0e:72:5d:32:b7:b0:d2:bf:6a: e9:2d:25:a3:49:35:21:b2:86:90:85:42:db:a0:63: 6f:dc:50:d6:b4:35:ec:71:84:ad:de:74:c1:f5:9d: 62:fe:f3:d5:16:f2:39:d7:fa:34:65:b0:23:c2:c2: 8f:f6:9d:e5:16:86:02:81:c3:e4:84:85:75:4f:fb: b8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:ED:8E:49:40:20:BA:84:35:5E:E8:96:D1:68:F9:A2:09:69:3F:7F X509v3 Authority Key Identifier: keyid:A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:a0:fe:36:b5:b7:55:26:6a:e7:82:1f:b0:0b:5d:77:67:f5: 29:31:90:61:c7:46:f2:ae:b6:01:3d:c6:b9:d9:20:08:20:fc: 80:7c:f2:d8:25:cd:22:5e:e3:9f:05:fe:17:da:5b:dc:30:99: 83:76:0f:e0:3a:24:e8:ca:27:4a:48:c1:1d:fc:2d:4b:bf:23: c6:4d:e6:ff:91:7d:a9:a8:94:cf:5e:1b:3a:ab:c5:13:01:a6: 89:b0:f7:b4:e8:97:62:11:89:9c:a4:eb:80:50:49:90:53:25: c4:f2:33:0d:fb:2b:a3:a4:e2:29:0b:56:a9:3f:36:8a:49:a8: 48:92:a7:eb:7b:92:6e:f7:ab:57:f9:c4:38:c6:cf:0e:25:3a: 37:78:0e:89:00:27:7f:02:9a:44:76:17:2f:db:3a:5f:a1:c5: f5:68:cf:1e:80:fd:5d:8f:bc:35:87:09:da:2b:55:af:58:04: d4:6d:f4:4c:e4:4b:d6:98:c7:75:1d:76:30:b5:f0:a8:4d:e5: 9e:9d:b9:44:95:1e:44:88:79:00:62:67:90:dd:ae:aa:37:39: ca:fe:68:c1:d7:6e:97:55:ae:b4:d3:97:4e:df:27:6e:58:15: d2:8e:c7:b1:5d:f1:a1:69:60:75:14:91:16:ab:46:3a:39:a4: 11:8f:b2:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEIxMTAvBgNVBAUTKEEzNTU2MURBNDVBOTU1RjAyRDEyMkEwRDg4RThDNzYy MzlFREY5MjAwHhcNMjUwNzAzMDEyNTU4WhcNMjUwNzEwMDEyNTU4WjAYMRYwFAYD VQQDEw02ODY1ZGMyNi0wZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lIngHgWRtZtz/cMfTByUQv78l8B3WTETrnIFy5q7CnjhVmNedJLvnfLV0gf fwpljxrNS3a3LoegmkJPkvFcEKXB7Htob5pIk7C4XnVXACjExS5mwTGHGB3tTxfv aRNMwQc9Dem1OeNyoOm5auDFBKN1OyLjZ/jj/aVIMy7RR0BUS1iarJSjeXrRyFXb tImO5wrT0+meGhsuoOerykSoVsEa4PZWiVd61SVphnDvKwrwZ1vjL1Cp3KQOcl0y t7DSv2rpLSWjSTUhsoaQhULboGNv3FDWtDXscYSt3nTB9Z1i/vPVFvI51/o0ZbAj wsKP9p3lFoYCgcPkhIV1T/u4WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCntjklA ILqENV7oltFo+aIJaT9/MB8GA1UdIwQYMBaAFKNVYdpFqVXwLRIqDYjox2I57fkg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qi84RTE2MjQzMEM3 NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZmQXRFaW9OaU9qSFlqbnQt U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xVmgya1dwVmZBdEVpb05pT2pIWWpudC1TQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qi84RTE2MjQzMEM3NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZm QXRFaW9OaU9qSFlqbnQtU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgoP42tbdVJmrngh+wC113Z/UpMZBhx0byrrYBPca52SAIIPyAfPLY Jc0iXuOfBf4X2lvcMJmDdg/gOiToyidKSMEd/C1LvyPGTeb/kX2pqJTPXhs6q8UT AaaJsPe06JdiEYmcpOuAUEmQUyXE8jMN+yujpOIpC1apPzaKSahIkqfre5Ju96tX +cQ4xs8OJTo3eA6JACd/AppEdhcv2zpfocX1aM8egP1dj7w1hwnaK1WvWATUbfRM 5EvWmMd1HXYwtfCoTeWenblElR5EiHkAYmeQ3a6qNznK/mjB126XVa6005dO3ydu WBXSjsexXfGhaWB1FJEWq0Y6OaQRj7Ir -----END CERTIFICATE-----Generated at Fri Jul 4 14:45:29 2025 by rpki-client