$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: fSNBCqzwVPzul7DnNywsUVW/GTPHlCYpJTH6PJ2Gito= Subject key identifier: AB:D9:71:19:D5:BF:D4:B2:A1:10:A7:E5:47:58:4A:47:C8:EC:59:F7 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 134B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 133F Signing time: Sun 06 Apr 2025 16:55:55 +0000 Manifest this update: Sun 06 Apr 2025 16:55:55 +0000 Manifest next update: Sun 13 Apr 2025 16:55:55 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: w4Rx3cdGncMPXtZciXR7UejRVR2P4W12/AUX2KRTRiU=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 16:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4939 (0x134b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8 Validity Not Before: Apr 6 16:55:55 2025 GMT Not After : Apr 13 16:55:55 2025 GMT Subject: CN=67f2b21b-511e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a9:a8:f8:9b:cc:7b:01:ae:e7:0d:80:42:ff: 6e:03:f0:eb:bf:0c:c5:ff:55:95:80:87:9a:67:a4: 71:e2:89:0f:ca:82:d5:4c:64:bd:10:89:ff:84:3e: 14:f4:b3:8b:a4:e9:a2:14:ea:9c:5d:e8:32:67:b8: 9a:7b:33:07:a3:5f:6c:27:21:7b:9b:46:3d:4f:cc: 1e:8a:b9:92:15:e7:0f:22:c1:ee:7f:97:24:c9:23: 34:3c:23:ee:5d:9e:18:9f:34:44:5a:8e:f0:08:ec: ab:4e:60:c8:8d:d1:d6:f2:85:c2:7e:88:8e:c6:b0: 28:6b:f2:e7:e4:47:6f:0f:6c:55:c3:c4:60:82:03: 04:31:08:1d:f2:03:6a:a4:ef:f3:96:bb:a5:68:1f: 27:19:ee:53:04:2b:68:3c:62:b8:50:be:4d:da:86: 24:fa:a1:18:ea:a4:79:e2:a1:03:93:21:d6:9d:14: 10:fe:65:d7:56:9f:ab:91:1b:80:f1:68:b7:88:81: 02:fc:82:e7:fe:dd:99:3f:34:db:b6:d7:16:56:e6: 10:d6:71:45:8e:57:75:7f:55:b0:1e:c5:55:d6:b3: ab:6f:2f:01:09:f2:2b:cd:86:3d:6a:50:87:f0:8b: 3a:2a:f5:86:0a:58:55:b6:74:88:0f:76:a9:68:1e: b8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D9:71:19:D5:BF:D4:B2:A1:10:A7:E5:47:58:4A:47:C8:EC:59:F7 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:d9:b7:e0:65:96:04:19:02:cb:84:11:fa:ea:62:f4:e1:65: 0f:fd:bd:82:f0:72:48:e1:78:51:2b:13:62:ac:22:d6:89:3a: a9:1d:0b:9b:94:32:01:41:3e:a9:a4:8b:73:30:ec:fe:39:73: 58:e9:d0:da:4f:81:c0:5d:24:16:6a:17:0d:bc:c1:b2:84:f0: 60:32:76:5c:92:ca:67:52:be:8f:f1:5d:ec:b7:b8:72:a3:35: 69:3e:4f:c9:f3:6c:ab:49:e3:ee:1a:59:05:53:ae:24:0a:fa: c5:3d:46:9b:b0:34:47:24:ae:6c:a0:33:6c:4c:df:11:ed:ed: 3d:ef:a0:1b:ef:c7:dd:44:03:2d:c0:d2:b3:23:1b:63:f2:92: 0c:7d:85:10:03:68:2a:41:86:21:cb:43:52:49:7a:7f:28:45: 08:a9:c4:1d:e6:89:a4:1f:63:65:0a:97:37:fa:d4:e2:29:09: a7:4a:6b:ed:fa:66:95:d9:0a:e0:49:6e:28:a3:8e:aa:c8:1f: 0f:03:bd:4a:16:b7:3f:c5:bd:93:66:93:f7:7b:56:72:93:e1: 84:3f:8b:c3:51:a1:cb:59:1c:81:b3:0c:19:08:55:64:41:47: 9a:b2:52:b5:bb:df:79:57:38:8b:0f:fb:c5:9b:5c:83:d4:21: a9:7a:c8:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUwNDA2MTY1NTU1WhcNMjUwNDEzMTY1NTU1WjAYMRYwFAYD VQQDEw02N2YyYjIxYi01MTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtamo+JvMewGu5w2AQv9uA/DrvwzF/1WVgIeaZ6Rx4okPyoLVTGS9EIn/hD4U 9LOLpOmiFOqcXegyZ7iaezMHo19sJyF7m0Y9T8weirmSFecPIsHuf5ckySM0PCPu XZ4YnzREWo7wCOyrTmDIjdHW8oXCfoiOxrAoa/Ln5EdvD2xVw8RgggMEMQgd8gNq pO/zlrulaB8nGe5TBCtoPGK4UL5N2oYk+qEY6qR54qEDkyHWnRQQ/mXXVp+rkRuA 8Wi3iIEC/ILn/t2ZPzTbttcWVuYQ1nFFjld1f1WwHsVV1rOrby8BCfIrzYY9alCH 8Is6KvWGClhVtnSID3apaB64owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvZcRnV v9SyoRCn5UdYSkfI7Fn3MB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA22bfgZZYEGQLLhBH66mL04WUP/b2C8HJI4XhRKxNirCLWiTqpHQub lDIBQT6ppItzMOz+OXNY6dDaT4HAXSQWahcNvMGyhPBgMnZckspnUr6P8V3st7hy ozVpPk/J82yrSePuGlkFU64kCvrFPUabsDRHJK5soDNsTN8R7e0976Ab78fdRAMt wNKzIxtj8pIMfYUQA2gqQYYhy0NSSXp/KEUIqcQd5omkH2NlCpc3+tTiKQmnSmvt +maV2QrgSW4oo46qyB8PA71KFrc/xb2TZpP3e1Zyk+GEP4vDUaHLWRyBswwZCFVk QUeaslK1u995VziLD/vFm1yD1CGpesha -----END CERTIFICATE-----Generated at Mon Apr 7 01:44:02 2025 by rpki-client