$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft File: 38UozwAG40FK-3_obR_er2SLXJ0.mft (raw, json) Hash identifier: TcQpjmIsPWEVDxMpyBL0TTuQfVa7LVzQ08So4BT+ErU= Subject key identifier: D6:20:A5:70:27:04:E3:6F:FA:3A:4C:D4:FF:B4:55:5A:45:02:5B:C3 Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft Manifest number: 6A Signing time: Tue 13 May 2025 06:07:47 +0000 Manifest this update: Tue 13 May 2025 06:07:46 +0000 Manifest next update: Tue 20 May 2025 06:07:46 +0000 Files and hashes: 1: 38UozwAG40FK-3_obR_er2SLXJ0.crl (hash: Y9ozGWMeQk5wC50cg/+eRFOm61ic2Njcb5tixBg6gVI=) 2: 6CF3FF44901111EF922BFC29C4F9AE02.roa (hash: kYva9N1B9q6x51z8ic6e8oPHZgI7EM6Un1P8CXMlwJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: May 13 06:07:46 2025 GMT Not After : May 20 06:07:46 2025 GMT Subject: CN=6822e1b2-2dd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e3:84:0f:d4:48:c0:9a:84:49:d4:f9:e2:ac: 60:09:72:b9:29:47:f6:52:e0:63:7a:7b:96:5d:0d: 6e:ab:93:48:ec:b0:53:3f:cf:36:b0:50:3b:be:a2: 27:0c:53:87:ad:79:8b:99:b5:a1:f6:79:7f:ac:62: ab:32:8e:5c:68:22:85:e0:2f:09:4b:30:7a:bb:2f: a8:ab:ed:70:ce:57:cb:6a:58:c4:23:29:07:fc:2f: 91:64:95:d8:42:df:1f:90:b4:f9:cd:a1:26:1e:49: f1:c3:10:09:43:a6:ca:ee:36:c2:23:35:89:73:da: cf:08:a1:cb:ee:80:b2:5a:9f:a3:3b:d3:d1:29:af: f9:eb:f6:d6:f6:20:44:c5:94:bf:d6:2f:a1:07:f6: 70:2c:4d:f3:86:b4:ae:92:f0:78:ca:a9:49:f2:75: be:a0:aa:39:e4:6b:41:6b:f5:fd:2d:25:f4:aa:e4: 89:38:24:f3:83:ce:5c:27:09:f1:f4:14:d0:20:37: 20:b7:ea:00:12:ba:b5:2a:a1:1c:30:a9:79:2d:8f: a5:83:f0:3f:00:a3:98:9e:a7:0e:bc:ed:13:db:64: e7:09:98:42:af:7d:fa:9d:7c:0f:6d:fb:ce:b2:03: 60:06:e4:a9:bc:b5:7b:13:0d:24:26:37:35:5c:ad: ff:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:20:A5:70:27:04:E3:6F:FA:3A:4C:D4:FF:B4:55:5A:45:02:5B:C3 X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:f7:1b:11:1e:ba:26:96:02:f9:c6:f7:4b:69:6b:69:d6:59: 18:f6:13:af:9a:71:4a:b8:f4:4d:cf:cc:dc:e7:bc:31:81:03: 39:4f:a0:eb:eb:99:b7:67:f9:95:58:95:d9:7d:42:c3:cc:51: 38:5b:00:75:13:11:a8:53:16:83:0b:bb:e0:80:49:a7:4f:9a: 26:7b:07:58:fb:39:f0:b4:a2:e5:8a:4e:e7:c7:0c:17:68:bd: dd:b9:b2:19:db:50:00:3c:b9:7b:c3:30:06:43:63:49:79:7e: a0:83:de:65:88:7b:be:87:be:b0:6a:b6:1d:8b:25:2e:b0:e7: b0:77:5b:a3:69:5a:2b:d4:c4:d3:ed:a1:70:22:53:9c:4b:17: 9c:ff:58:bf:e2:e3:20:61:bc:ad:b3:3d:f8:96:94:c5:94:e5: 4b:c5:2d:da:a1:ad:4f:d9:e2:bd:a0:28:e0:df:02:87:81:e2: f4:90:aa:c3:14:93:f7:68:ee:0c:f6:44:c4:c2:b1:ca:cf:c5: f1:fd:35:fa:2d:c9:30:b8:0e:74:1d:c1:23:cc:64:08:d8:f0: 5c:db:ca:c1:c4:4d:3e:c2:98:e5:b1:c7:0c:ae:c8:d8:40:ae: 4d:18:6d:6b:85:82:c2:d3:19:5f:78:19:97:dd:7c:55:bf:57: 56:4a:59:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUEzQjExMC8GA1UEBRMoREZDNTI4Q0YwMDA2RTM0MTRBRkI3RkU4NkQxRkRFQUY2 NDhCNUM5RDAeFw0yNTA1MTMwNjA3NDZaFw0yNTA1MjAwNjA3NDZaMBgxFjAUBgNV BAMTDTY4MjJlMWIyLTJkZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn44QP1EjAmoRJ1PnirGAJcrkpR/ZS4GN6e5ZdDW6rk0jssFM/zzawUDu+oicM U4eteYuZtaH2eX+sYqsyjlxoIoXgLwlLMHq7L6ir7XDOV8tqWMQjKQf8L5FkldhC 3x+QtPnNoSYeSfHDEAlDpsruNsIjNYlz2s8IocvugLJan6M709Epr/nr9tb2IETF lL/WL6EH9nAsTfOGtK6S8HjKqUnydb6gqjnka0Fr9f0tJfSq5Ik4JPODzlwnCfH0 FNAgNyC36gASurUqoRwwqXktj6WD8D8Ao5iepw687RPbZOcJmEKvffqdfA9t+86y A2AG5Km8tXsTDSQmNzVcrf+PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1iClcCcE 42/6OkzU/7RVWkUCW8MwHwYDVR0jBBgwFoAU38UozwAG40FK+3/obR/er2SLXJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxQTNCLzIyNzAxOURBOTAx MTExRUY5Qjg1Qzk2QUM0RjlBRTAyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhK MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzhVb3p3QUc0MEZLLTNfb2JSX2VyMlNMWEowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx QTNCLzIyNzAxOURBOTAxMTExRUY5Qjg1Qzk2QUM0RjlBRTAyLzM4VW96d0FHNDBG Sy0zX29iUl9lcjJTTFhKMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAD3GxEeuiaWAvnG90tpa2nWWRj2E6+acUq49E3PzNznvDGBAzlPoOvr mbdn+ZVYldl9QsPMUThbAHUTEahTFoMLu+CASadPmiZ7B1j7OfC0ouWKTufHDBdo vd25shnbUAA8uXvDMAZDY0l5fqCD3mWIe76HvrBqth2LJS6w57B3W6NpWivUxNPt oXAiU5xLF5z/WL/i4yBhvK2zPfiWlMWU5UvFLdqhrU/Z4r2gKODfAoeB4vSQqsMU k/do7gz2RMTCscrPxfH9NfotyTC4DnQdwSPMZAjY8FzbysHETT7CmOWxxwyuyNhA rk0YbWuFgsLTGV94GZfdfFW/V1ZKWeY= -----END CERTIFICATE-----Generated at Tue May 13 12:25:08 2025 by rpki-client