$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: 2dEz27oSR67smQwAyYM+gVNeiI1RVGt9P87s41f2m0g= Subject key identifier: A7:34:D1:D7:86:56:44:28:24:28:32:8C:23:E8:7A:D4:5C:70:12:57 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 0379 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 036D Signing time: Thu 03 Jul 2025 01:18:14 +0000 Manifest this update: Thu 03 Jul 2025 01:18:13 +0000 Manifest next update: Thu 10 Jul 2025 01:18:13 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: V8jobe5jowtqHsFhmmzkK8CJ2dt3ClgAzRLb4IXK7P4=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 889 (0x379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Jul 3 01:18:13 2025 GMT Not After : Jul 10 01:18:13 2025 GMT Subject: CN=6865da56-336b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:08:b2:df:a0:01:08:d4:dd:2e:20:d8:b2:26: f1:47:0a:ad:13:7b:74:7f:66:f2:de:25:c8:c0:a5: 0a:02:d7:3c:a3:e4:91:c7:2c:cb:2f:9c:47:c5:89: 0f:f2:bb:df:86:a4:2a:de:ec:8e:88:0b:4d:45:04: 48:3f:a1:49:5a:5a:b2:85:38:68:72:eb:68:73:5c: f0:f1:42:c7:9e:9d:98:b9:7f:2a:5f:3f:43:b6:d8: 9c:f3:25:6c:41:c4:31:d5:b4:e0:33:99:af:7b:f2: 09:e8:af:6d:e5:9e:21:ab:aa:43:a9:50:c1:0d:14: 4f:0c:95:85:f8:af:91:4d:11:b2:26:3a:b7:ab:68: 63:03:ce:2c:db:d7:65:f9:69:55:d4:1b:51:1f:79: b3:32:a0:1c:bf:7f:23:6a:c0:28:18:48:af:61:f7: 82:7b:a2:fd:ce:77:da:07:e2:68:7c:4d:84:ea:6b: 25:c7:02:26:48:2f:aa:e6:f0:37:07:16:a1:4b:e2: d5:f2:a6:34:6e:dd:27:d0:c0:37:44:1a:fe:4b:40: d6:70:d3:25:8f:19:21:7e:a8:32:b9:1a:a7:ef:a6: ce:0d:a7:fa:16:71:37:c1:91:39:54:81:b0:bc:ac: fe:8e:84:c5:ff:37:56:d3:07:3d:bf:74:11:2f:2b: 3e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:34:D1:D7:86:56:44:28:24:28:32:8C:23:E8:7A:D4:5C:70:12:57 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:12:11:d2:b9:70:5e:47:b4:ce:bd:8f:fe:16:a4:80:09:d6: 33:7e:59:f4:0e:12:a5:49:ca:a3:42:86:3c:49:03:e2:76:5b: 29:ae:ed:a1:01:fd:09:fb:30:3f:d6:24:c7:cd:03:fd:68:98: eb:b1:4f:9b:94:24:85:8b:93:11:00:f9:f1:d8:64:28:24:60: 3f:a0:74:31:ad:be:96:b4:3d:0a:18:5b:04:01:ec:a7:93:ed: c2:15:5f:94:62:f6:e3:ba:dc:1f:c0:59:08:80:b3:94:9b:80: bb:be:91:41:3b:eb:4c:7d:20:ba:2f:4b:98:48:13:3b:b5:a0: 65:ba:22:97:d4:61:e1:d9:09:c7:6f:7a:59:b4:c1:12:71:bb: 7b:0d:de:23:ac:39:37:38:ea:03:88:de:4a:b2:00:94:1e:ee: f3:12:2f:24:a1:4f:5c:bd:3b:15:e9:d7:41:79:59:9d:f9:a0: d4:34:df:b8:25:ad:f9:04:3f:a3:e3:a6:bb:27:6f:33:b0:cd: 14:68:33:c4:90:a0:60:43:73:d4:50:76:88:75:c0:e8:df:4f: 09:e1:89:7f:15:b8:0d:1b:1e:e9:ce:db:66:8a:8c:71:58:2e: 1b:c0:a6:b1:4a:72:c5:fd:9f:57:3c:2b:fc:c0:f3:b2:5f:17: eb:fb:f3:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwNzAzMDExODEzWhcNMjUwNzEwMDExODEzWjAYMRYwFAYD VQQDEw02ODY1ZGE1Ni0zMzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwiy36ABCNTdLiDYsibxRwqtE3t0f2by3iXIwKUKAtc8o+SRxyzLL5xHxYkP 8rvfhqQq3uyOiAtNRQRIP6FJWlqyhThocutoc1zw8ULHnp2YuX8qXz9Dttic8yVs QcQx1bTgM5mve/IJ6K9t5Z4hq6pDqVDBDRRPDJWF+K+RTRGyJjq3q2hjA84s29dl +WlV1BtRH3mzMqAcv38jasAoGEivYfeCe6L9znfaB+JofE2E6mslxwImSC+q5vA3 BxahS+LV8qY0bt0n0MA3RBr+S0DWcNMljxkhfqgyuRqn76bODaf6FnE3wZE5VIGw vKz+joTF/zdW0wc9v3QRLys+tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc00deG VkQoJCgyjCPoetRccBJXMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEEhHSuXBeR7TOvY/+FqSACdYzfln0DhKlScqjQoY8SQPidlspru2h Af0J+zA/1iTHzQP9aJjrsU+blCSFi5MRAPnx2GQoJGA/oHQxrb6WtD0KGFsEAeyn k+3CFV+UYvbjutwfwFkIgLOUm4C7vpFBO+tMfSC6L0uYSBM7taBluiKX1GHh2QnH b3pZtMEScbt7Dd4jrDk3OOoDiN5KsgCUHu7zEi8koU9cvTsV6ddBeVmd+aDUNN+4 Ja35BD+j46a7J28zsM0UaDPEkKBgQ3PUUHaIdcDo308J4Yl/FbgNGx7pzttmioxx WC4bwKaxSnLF/Z9XPCv8wPOyXxfr+/Ns -----END CERTIFICATE-----Generated at Thu Jul 3 14:56:52 2025 by rpki-client