$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: eqmChYn4L/PLvRDtY66AtCuB60fR/DBno1qcEZItpP4= Subject key identifier: A5:C1:BF:E7:E1:BB:B1:8E:79:6F:66:D8:8D:59:EB:83:DB:9A:0C:7B Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 0128 Signing time: Fri 11 Apr 2025 03:51:19 +0000 Manifest this update: Fri 11 Apr 2025 03:51:19 +0000 Manifest next update: Fri 18 Apr 2025 03:51:19 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: 0qKgugl918nGz44UDB5kwmZZrygHLG2kEvV04hFQWl4=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: z3jylC3bOFS/QeMNqO6FEMdonfOGPmCY4+yy8XOk4xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 03:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Apr 11 03:51:19 2025 GMT Not After : Apr 18 03:51:19 2025 GMT Subject: CN=67f891b7-cc0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:68:e3:ac:7a:6e:81:7f:b1:d6:bd:61:35:6f: a0:c3:f2:07:cd:80:ae:1c:9f:a0:46:70:fc:1a:e5: ca:4a:b3:ee:9e:7b:6c:38:2b:a9:fe:dc:52:eb:8f: ca:11:82:6a:3d:32:5c:d4:bc:7a:26:7b:5b:d8:b0: d6:97:18:ff:fd:93:2c:06:3b:67:f7:01:5a:d6:49: 98:c3:34:8a:7f:dd:aa:f1:38:0c:06:e5:53:8b:9f: e3:2a:04:f1:5a:c7:58:8c:30:38:56:ed:1a:d3:1f: 12:1d:2a:12:05:22:31:a0:93:59:a1:d0:16:23:c1: 00:f5:3e:66:f5:19:7d:48:f3:b7:96:50:8b:da:cd: a3:e5:1c:3f:5b:61:c8:10:3c:58:6c:ee:df:85:4f: 90:fd:75:86:ee:4a:31:c1:9e:97:86:4f:f0:04:79: c0:f9:e5:bd:aa:93:f6:ef:03:a4:fd:ac:15:07:ec: be:b1:6e:c0:5b:45:f6:d7:c9:20:35:98:ea:0f:bd: 64:19:d8:43:04:34:4c:c7:df:9d:b9:f1:d6:a6:7d: 4c:c3:e8:1b:0f:76:d5:61:31:62:28:2f:45:a5:39: 01:70:6b:9a:d2:19:19:85:f4:b7:9e:4c:8c:64:6a: f5:2e:a5:c4:38:9e:1d:54:d4:d3:13:2f:1d:fa:85: 1c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C1:BF:E7:E1:BB:B1:8E:79:6F:66:D8:8D:59:EB:83:DB:9A:0C:7B X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:bc:52:ba:d5:8d:91:dd:17:3d:09:ba:0b:e3:6c:0d:0b:0a: d5:95:44:56:21:00:d3:41:e7:f3:fb:59:71:21:e2:5a:34:d1: 67:cb:65:d8:91:f7:31:8e:cc:b4:9b:69:b1:9d:81:43:19:10: 71:1c:8d:0a:3b:ea:3e:1e:70:de:5f:85:73:2a:6f:28:44:82: 36:cf:5e:5a:8f:a3:d8:bd:31:1d:e7:2f:f2:e6:b3:80:14:13: e9:39:d6:04:05:1f:4d:b1:85:ad:bb:76:af:6e:3f:ba:d1:12: e8:7b:c8:51:15:7c:5c:d8:58:50:ce:ed:fd:83:67:b0:dd:4e: 85:f6:8d:38:b5:ac:83:e7:b3:d5:10:7b:b5:c6:60:7d:cf:44: cc:af:3e:3b:4f:98:ea:54:3f:bc:d4:ff:60:01:bb:3e:89:46: 8d:e0:ea:d8:44:16:1a:21:6f:22:1c:8c:78:2d:6a:cc:bd:ec: 22:43:00:f2:d3:d4:cd:dc:eb:39:10:6a:93:a7:42:7c:d6:9e: 4c:14:14:f7:ed:29:4d:50:f5:df:14:5a:a2:b2:b1:91:b6:0d: 54:4c:11:33:7b:1a:0b:0e:01:62:ff:f9:93:cc:1d:28:16:1a: b9:83:3c:7e:37:ad:e7:b4:d3:c1:e8:80:e0:53:9a:e3:fe:ad: 0e:2d:87:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjUwNDExMDM1MTE5WhcNMjUwNDE4MDM1MTE5WjAYMRYwFAYD VQQDEw02N2Y4OTFiNy1jYzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGjjrHpugX+x1r1hNW+gw/IHzYCuHJ+gRnD8GuXKSrPunntsOCup/txS64/K EYJqPTJc1Lx6Jntb2LDWlxj//ZMsBjtn9wFa1kmYwzSKf92q8TgMBuVTi5/jKgTx WsdYjDA4Vu0a0x8SHSoSBSIxoJNZodAWI8EA9T5m9Rl9SPO3llCL2s2j5Rw/W2HI EDxYbO7fhU+Q/XWG7koxwZ6Xhk/wBHnA+eW9qpP27wOk/awVB+y+sW7AW0X218kg NZjqD71kGdhDBDRMx9+dufHWpn1Mw+gbD3bVYTFiKC9FpTkBcGua0hkZhfS3nkyM ZGr1LqXEOJ4dVNTTEy8d+oUcfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKXBv+fh u7GOeW9m2I1Z64Pbmgx7MB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwvFK61Y2R3Rc9CboL42wNCwrVlURWIQDTQefz+1lxIeJaNNFny2XY kfcxjsy0m2mxnYFDGRBxHI0KO+o+HnDeX4VzKm8oRII2z15aj6PYvTEd5y/y5rOA FBPpOdYEBR9NsYWtu3avbj+60RLoe8hRFXxc2FhQzu39g2ew3U6F9o04tayD57PV EHu1xmB9z0TMrz47T5jqVD+81P9gAbs+iUaN4OrYRBYaIW8iHIx4LWrMvewiQwDy 09TN3Os5EGqTp0J81p5MFBT37SlNUPXfFFqisrGRtg1UTBEzexoLDgFi//mTzB0o Fhq5gzx+N63ntNPB6IDgU5rj/q0OLYd9 -----END CERTIFICATE-----Generated at Sat Apr 12 17:43:12 2025 by rpki-client