$ rpki-client -vvf rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft File: oAONXyzMSsJeuvdxJC50MA_PeCw.mft (raw, json) Hash identifier: rLyIhwafQsoU0nYxgWow+LWSuflMjz8p91GBCeWNdOI= Subject key identifier: 4B:AC:90:C0:AC:B6:03:61:B2:94:42:7E:16:79:34:B5:D9:46:85:EC Authority key identifier: A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C Certificate issuer: /CN=A91E60A4/serialNumber=A0038D5F2CCC4AC25EBAF771242E74300FCF782C Certificate serial: 09B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft Manifest number: 09A9 Signing time: Fri 04 Apr 2025 20:11:08 +0000 Manifest this update: Fri 04 Apr 2025 20:11:08 +0000 Manifest next update: Fri 11 Apr 2025 20:11:08 +0000 Files and hashes: 1: oAONXyzMSsJeuvdxJC50MA_PeCw.crl (hash: nVcKIOIvHlOAtlUkPCms02SPmIOa+7NR34goXmwgjoc=) 2: 1D86F90A988D11EABE02F23DC4F9AE02.roa (hash: eXMB9dV7xihStPr0BmetBSssUWM8QZG3PMbHIo5WHpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2483 (0x9b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E60A4 Validity Not Before: Apr 4 20:11:08 2025 GMT Not After : Apr 11 20:11:08 2025 GMT Subject: CN=67f03cdc-c3c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:14:60:2e:1a:d0:d9:74:4d:1c:cd:00:01:38: e9:ea:ae:6b:77:aa:b5:a3:43:55:07:05:db:17:fa: 20:6b:fa:a2:d9:bb:f2:ef:cb:81:15:85:7a:c4:f4: a0:f8:b8:10:c4:65:25:74:40:1e:dd:0f:73:5a:a0: 45:08:e6:f6:bc:6a:78:0c:46:22:e0:a4:00:98:95: ce:8f:d3:9c:fe:13:64:4b:e3:a3:f6:90:70:fb:a9: 47:12:4f:9b:b1:78:9d:75:07:d2:ab:76:3d:18:82: f9:43:26:9e:b6:30:e8:90:e9:d3:4a:b2:6a:ce:41: a1:20:35:59:10:1d:42:e9:ef:0d:27:e4:52:35:fa: b1:0f:97:81:21:a4:a8:7e:fc:96:08:55:ec:61:f7: 22:5c:c3:0d:92:f4:85:f2:05:52:09:a6:31:9e:dd: bf:1a:fa:a0:95:30:49:16:76:6c:39:6b:b3:bf:6d: 2a:da:ef:17:4a:cf:f7:1c:c4:80:11:88:12:a9:a5: c1:b7:2e:1f:ba:de:b1:30:71:c3:e3:8e:06:1b:41: b1:ea:26:f5:c2:96:f3:62:3c:01:9a:bd:be:48:12: 45:77:0c:96:02:cf:4f:6b:b4:cf:69:bd:32:01:08: 9f:d2:65:f6:35:97:a0:ab:51:9f:fc:6d:b6:20:63: 41:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AC:90:C0:AC:B6:03:61:B2:94:42:7E:16:79:34:B5:D9:46:85:EC X509v3 Authority Key Identifier: keyid:A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:30:e3:99:f0:56:d7:81:c9:d4:69:5b:e9:96:5e:f9:ff:e4: ec:ac:13:7d:08:ba:04:ef:55:80:29:74:23:a4:c3:71:13:91: 08:d6:4f:b0:01:23:b7:14:89:c5:ff:e8:c2:d3:7a:00:30:50: ed:a6:94:e1:53:24:59:09:bd:ad:ee:cb:83:9b:6f:17:60:84: 73:e9:b7:f9:d8:f8:9b:54:5b:28:93:00:a7:0d:78:d5:84:0f: 42:6e:05:6c:c9:a6:ef:bf:7b:d6:00:51:2f:66:b9:b2:eb:28: 32:19:c3:aa:fa:c8:65:1c:fd:d4:cd:4a:f1:91:7b:b4:e8:7b: 93:38:89:33:55:ae:2f:01:f9:0e:97:5d:23:84:82:e5:2d:e0: f1:ae:17:fd:f3:65:12:fe:3f:ee:f5:0e:55:70:31:02:63:14: 61:f1:a0:84:fa:ba:d1:1e:39:79:d8:c8:5c:8d:f0:71:69:59: df:db:f9:41:1c:c7:b2:c8:aa:74:eb:c4:7d:7e:26:e6:89:ed: 3d:57:c7:3f:bc:c0:77:35:d4:49:b9:7a:7a:ec:b3:2d:24:be: ba:74:c7:8c:78:03:a9:2f:a3:15:ed:4b:4d:14:8e:46:78:d2: a3:d2:03:f1:9e:ea:1e:37:e7:c5:76:89:78:a1:5a:84:59:84: 95:e5:4e:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYwQTQxMTAvBgNVBAUTKEEwMDM4RDVGMkNDQzRBQzI1RUJBRjc3MTI0MkU3NDMw MEZDRjc4MkMwHhcNMjUwNDA0MjAxMTA4WhcNMjUwNDExMjAxMTA4WjAYMRYwFAYD VQQDEw02N2YwM2NkYy1jM2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxRgLhrQ2XRNHM0AATjp6q5rd6q1o0NVBwXbF/oga/qi2bvy78uBFYV6xPSg +LgQxGUldEAe3Q9zWqBFCOb2vGp4DEYi4KQAmJXOj9Oc/hNkS+Oj9pBw+6lHEk+b sXiddQfSq3Y9GIL5QyaetjDokOnTSrJqzkGhIDVZEB1C6e8NJ+RSNfqxD5eBIaSo fvyWCFXsYfciXMMNkvSF8gVSCaYxnt2/GvqglTBJFnZsOWuzv20q2u8XSs/3HMSA EYgSqaXBty4fut6xMHHD444GG0Gx6ib1wpbzYjwBmr2+SBJFdwyWAs9Pa7TPab0y AQif0mX2NZegq1Gf/G22IGNBQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuskMCs tgNhspRCfhZ5NLXZRoXsMB8GA1UdIwQYMBaAFKADjV8szErCXrr3cSQudDAPz3gs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjBBNC82QzcxNDBFRTgy OUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNzSmV1dmR4SkM1ME1BX1Bl Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BT05YeXpNU3NKZXV2ZHhKQzUwTUFfUGVDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjBBNC82QzcxNDBFRTgyOUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNz SmV1dmR4SkM1ME1BX1BlQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYMOOZ8FbXgcnUaVvpll75/+TsrBN9CLoE71WAKXQjpMNxE5EI1k+w ASO3FInF/+jC03oAMFDtppThUyRZCb2t7suDm28XYIRz6bf52PibVFsokwCnDXjV hA9CbgVsyabvv3vWAFEvZrmy6ygyGcOq+shlHP3UzUrxkXu06HuTOIkzVa4vAfkO l10jhILlLeDxrhf982US/j/u9Q5VcDECYxRh8aCE+rrRHjl52MhcjfBxaVnf2/lB HMeyyKp068R9fibmie09V8c/vMB3NdRJuXp67LMtJL66dMeMeAOpL6MV7UtNFI5G eNKj0gPxnuoeN+fFdol4oVqEWYSV5U5+ -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:48 2025 by rpki-client