$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: /kxhag85Ee53NhroclWpGtnzvCuw+73iUYm4ZUDbvhE= Subject key identifier: E6:80:DB:C6:B3:2F:05:3B:B4:33:73:9D:05:6C:3B:40:B0:9B:24:0E Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 01B6 Signing time: Thu 17 Apr 2025 02:10:45 +0000 Manifest this update: Thu 17 Apr 2025 02:10:45 +0000 Manifest next update: Thu 24 Apr 2025 02:10:44 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: +wEb4F1YDhADjzWwmBdnJ1ungL12YewU4AltK2LM0+I=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: KfdVVRr1UwfhsTtUMM0Ph6w9qtVR9qcrLdXdVzGndCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 02:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Apr 17 02:10:45 2025 GMT Not After : Apr 24 02:10:44 2025 GMT Subject: CN=68006325-6c82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:79:51:c2:21:4d:db:17:2a:4a:a4:e6:c9:b1: 60:5d:b4:59:b5:46:23:23:0d:1e:60:6c:55:aa:97: c1:ee:24:07:9e:9f:11:36:c4:60:cb:81:a3:c9:12: 24:bb:88:6e:d5:a9:df:75:76:34:f2:9a:59:be:9e: 5d:72:65:3e:90:c6:9d:f9:a0:2c:ba:26:21:1b:98: 16:7d:1a:a1:7c:c1:12:21:43:b6:02:a0:46:e4:fe: 30:6f:21:14:aa:e7:3f:76:04:76:d8:75:af:4c:72: e8:ff:8c:20:ff:a5:eb:60:db:c1:8e:22:5b:18:54: 5a:b2:43:f9:49:d1:ee:fa:cf:6b:47:1e:34:f6:8d: 83:56:a5:1e:fb:71:8a:85:e9:21:30:7e:04:fa:9b: 97:66:42:15:9e:c7:79:29:76:81:af:9a:36:a8:6e: b6:6f:54:68:0d:93:d6:20:0f:a4:a7:7d:28:61:fe: 2c:5c:cf:bd:43:20:6b:a0:35:08:32:6c:a6:af:ad: 8e:c0:9d:b6:ec:f0:f6:db:8e:21:b1:ca:68:d9:cd: dc:6b:4c:81:bd:06:0f:90:d1:71:8d:25:01:ae:33: 3e:51:f6:a2:5f:0d:cc:c5:ce:32:2f:0f:dd:6d:d2: 00:47:a4:da:b3:b3:9c:b4:bd:f2:38:a4:3c:e9:28: df:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:80:DB:C6:B3:2F:05:3B:B4:33:73:9D:05:6C:3B:40:B0:9B:24:0E X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:49:ac:f3:93:46:df:be:47:55:e9:ae:b3:42:7b:72:9b:37: a0:1a:43:5a:f9:23:eb:31:61:85:e1:bd:82:f7:34:25:7c:ec: a8:27:30:cd:c5:f1:ce:6a:ea:b1:bc:d7:dc:59:e2:6a:3e:1e: 89:66:b0:7a:35:6c:d8:d1:3f:f4:d1:ea:62:2b:d4:fe:45:df: 52:1d:45:a8:d3:16:91:5c:ca:ef:3a:91:8e:5e:f3:aa:11:05: 15:d7:ab:6e:47:7d:12:36:cb:27:10:91:40:c5:42:32:c2:45: 76:93:d8:03:e1:9d:01:50:3e:e0:d3:fb:0c:cf:e1:77:39:55: 1f:00:75:12:70:c8:06:92:ad:50:f0:b0:00:02:0a:32:8c:13: 22:1f:1b:8c:eb:7f:57:c5:07:5f:e4:2e:73:0c:e6:13:16:12: 09:1a:65:45:b7:2b:49:d2:1e:d2:7d:83:4a:ad:7f:56:cf:eb: f3:23:76:cf:60:1f:76:2b:2e:68:f0:30:76:33:6c:0f:9c:09: 58:1f:43:f1:33:0e:6c:e2:64:52:74:df:9a:62:7c:41:fe:53: bd:0b:70:51:c0:c4:c7:d0:7b:94:4d:06:be:e6:c7:d5:e7:b2: bf:9a:36:06:46:8f:f8:06:47:02:95:42:45:98:6b:29:6a:df: 1d:ae:39:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUwNDE3MDIxMDQ1WhcNMjUwNDI0MDIxMDQ0WjAYMRYwFAYD VQQDEw02ODAwNjMyNS02YzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXlRwiFN2xcqSqTmybFgXbRZtUYjIw0eYGxVqpfB7iQHnp8RNsRgy4GjyRIk u4hu1anfdXY08ppZvp5dcmU+kMad+aAsuiYhG5gWfRqhfMESIUO2AqBG5P4wbyEU quc/dgR22HWvTHLo/4wg/6XrYNvBjiJbGFRaskP5SdHu+s9rRx409o2DVqUe+3GK hekhMH4E+puXZkIVnsd5KXaBr5o2qG62b1RoDZPWIA+kp30oYf4sXM+9QyBroDUI Mmymr62OwJ227PD2244hscpo2c3ca0yBvQYPkNFxjSUBrjM+UfaiXw3Mxc4yLw/d bdIAR6Tas7OctL3yOKQ86SjfwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaA28az LwU7tDNznQVsO0CwmyQOMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+Sazzk0bfvkdV6a6zQntymzegGkNa+SPrMWGF4b2C9zQlfOyoJzDN xfHOauqxvNfcWeJqPh6JZrB6NWzY0T/00epiK9T+Rd9SHUWo0xaRXMrvOpGOXvOq EQUV16tuR30SNssnEJFAxUIywkV2k9gD4Z0BUD7g0/sMz+F3OVUfAHUScMgGkq1Q 8LAAAgoyjBMiHxuM639XxQdf5C5zDOYTFhIJGmVFtytJ0h7SfYNKrX9Wz+vzI3bP YB92Ky5o8DB2M2wPnAlYH0PxMw5s4mRSdN+aYnxB/lO9C3BRwMTH0HuUTQa+5sfV 57K/mjYGRo/4BkcClUJFmGspat8drjkq -----END CERTIFICATE-----Generated at Fri Apr 18 20:32:31 2025 by rpki-client