$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft File: cOaM6FoDjZ4wcEODfKbmsaZglu4.mft (raw, json) Hash identifier: SMYfUGIWiCOduT8TAZ91d0JoaIfWm8QgwfN3FX4pS5A= Subject key identifier: 42:3C:A1:30:2F:48:97:7C:E1:9C:C4:A1:CE:2C:06:F9:8E:69:A9:61 Authority key identifier: 70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE Certificate issuer: /CN=A91F6ADE/serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Certificate serial: 0496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft Manifest number: 0490 Signing time: Sat 28 Jun 2025 23:35:46 +0000 Manifest this update: Sat 28 Jun 2025 23:35:46 +0000 Manifest next update: Sat 05 Jul 2025 23:35:46 +0000 Files and hashes: 1: cOaM6FoDjZ4wcEODfKbmsaZglu4.crl (hash: Ou7n5ZyG56zftUvTON+9JK2dU+cfporV04rkH3sPkBU=) 2: FD0DCDCA41E111EC98FA0C0AC4F9AE02.roa (hash: CzraaquDZ9Uo+Rh3T+BRvbMkjKbruCD1g9kPUW6icAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1174 (0x496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6ADE, serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Validity Not Before: Jun 28 23:35:46 2025 GMT Not After : Jul 5 23:35:46 2025 GMT Subject: CN=68607c52-8a64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7d:43:cc:1b:ed:07:2f:04:1a:5b:9b:02:70: 80:e5:a0:20:e9:e2:e8:0b:25:ee:9e:2b:08:45:1b: 85:4f:bc:06:91:19:70:21:38:16:74:0a:6a:a0:6a: c3:94:7c:04:22:2f:b0:21:b5:9d:20:e9:e4:90:5c: 8a:f5:4d:fc:1f:d7:6b:01:4d:1b:ab:1e:e5:c2:ef: 96:63:4c:59:44:01:d5:77:11:0e:d4:b7:07:94:4f: 78:c0:bb:9a:04:5b:3a:cc:4c:59:fc:6b:4d:d5:0b: e8:0f:d8:8b:80:da:68:4e:fa:22:a4:ba:04:72:ac: 40:03:0d:e5:24:c8:ac:36:5b:ad:03:35:83:97:b2: 92:61:d7:85:45:ed:dc:f1:fe:f2:1d:30:96:2f:1c: 0e:5b:ff:1d:1c:14:c8:5f:59:38:b8:88:8b:e0:66: a9:94:2f:ff:a6:f4:10:29:ee:df:cc:32:2a:cc:f1: a9:dc:79:2f:1f:e2:53:63:f4:74:b9:db:3b:ac:d0: a4:10:c0:0c:66:1e:38:ca:8f:0c:66:7d:7a:d0:98: d3:92:69:cd:03:f3:5e:0e:54:9b:68:44:a0:14:f8: 8f:85:53:5b:68:53:73:e4:9b:1c:65:d7:81:7e:50: 99:64:fe:f5:ac:76:04:49:27:cf:d1:42:eb:e8:9d: dc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3C:A1:30:2F:48:97:7C:E1:9C:C4:A1:CE:2C:06:F9:8E:69:A9:61 X509v3 Authority Key Identifier: keyid:70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:56:2a:14:14:24:b4:2c:10:fc:9c:e4:65:b6:09:a8:5a:87: ff:91:99:cc:51:59:41:bc:bb:02:6e:97:f1:9f:f1:5b:09:92: b5:e8:b7:e5:de:23:4a:8b:dc:d9:fe:b3:ca:d7:64:0a:96:d5: d1:41:15:33:b2:28:e0:05:9a:15:e5:00:db:4e:f4:c5:a7:2e: e1:d4:95:7f:a2:c6:bf:b9:fe:4f:0d:b9:1b:54:ac:44:46:a2: 73:9b:5d:de:78:91:37:40:42:00:0c:e0:12:62:90:f3:cc:2c: 19:a7:8a:ae:fa:eb:0a:76:a3:9e:e6:e4:dc:5f:bd:2e:ea:0e: f9:4e:31:b0:01:46:cc:e5:bb:ff:31:f4:e8:6b:9a:aa:95:0c: f2:07:2d:51:2b:ea:53:3c:e5:32:05:aa:b3:13:1e:85:d5:44: 53:87:6e:58:43:ca:2c:ef:f0:87:ea:35:a1:65:44:97:5a:74: 0a:62:66:73:89:43:f5:0e:e6:58:35:c6:e5:75:61:ec:5b:3c: 83:a8:cb:c0:97:c6:16:a0:9f:c6:f9:13:0e:38:85:a3:b0:9b: b4:a9:35:26:53:39:e8:87:7d:bb:94:4a:32:82:22:aa:f2:15: ce:a0:66:28:07:4c:c8:ef:5b:0b:60:e0:64:55:73:d7:ad:62: c5:73:02:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBREUxMTAvBgNVBAUTKDcwRTY4Q0U4NUEwMzhEOUUzMDcwNDM4MzdDQTZFNkIx QTY2MDk2RUUwHhcNMjUwNjI4MjMzNTQ2WhcNMjUwNzA1MjMzNTQ2WjAYMRYwFAYD VQQDEw02ODYwN2M1Mi04YTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0H1DzBvtBy8EGlubAnCA5aAg6eLoCyXunisIRRuFT7wGkRlwITgWdApqoGrD lHwEIi+wIbWdIOnkkFyK9U38H9drAU0bqx7lwu+WY0xZRAHVdxEO1LcHlE94wLua BFs6zExZ/GtN1QvoD9iLgNpoTvoipLoEcqxAAw3lJMisNlutAzWDl7KSYdeFRe3c 8f7yHTCWLxwOW/8dHBTIX1k4uIiL4GaplC//pvQQKe7fzDIqzPGp3HkvH+JTY/R0 uds7rNCkEMAMZh44yo8MZn160JjTkmnNA/NeDlSbaESgFPiPhVNbaFNz5JscZdeB flCZZP71rHYESSfP0ULr6J3c8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEI8oTAv SJd84ZzEoc4sBvmOaalhMB8GA1UdIwQYMBaAFHDmjOhaA42eMHBDg3ym5rGmYJbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFERS8yODczOUQzQTQx REYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpaNHdjRU9EZktibXNhWmds dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NPYU02Rm9Ealo0d2NFT0RmS2Jtc2FaZ2x1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFERS8yODczOUQzQTQxREYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpa NHdjRU9EZktibXNhWmdsdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKVioUFCS0LBD8nORltgmoWof/kZnMUVlBvLsCbpfxn/FbCZK16Lfl 3iNKi9zZ/rPK12QKltXRQRUzsijgBZoV5QDbTvTFpy7h1JV/osa/uf5PDbkbVKxE RqJzm13eeJE3QEIADOASYpDzzCwZp4qu+usKdqOe5uTcX70u6g75TjGwAUbM5bv/ MfToa5qqlQzyBy1RK+pTPOUyBaqzEx6F1URTh25YQ8os7/CH6jWhZUSXWnQKYmZz iUP1DuZYNcbldWHsWzyDqMvAl8YWoJ/G+RMOOIWjsJu0qTUmUznoh327lEoygiKq 8hXOoGYoB0zI71sLYOBkVXPXrWLFcwJu -----END CERTIFICATE-----Generated at Sun Jun 29 19:06:12 2025 by rpki-client