$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft File: OG9viqHmbFJU6h5HiIwQP0U2Iio.mft (raw, json) Hash identifier: YXD5zuZV3Md8+HmeXD9u7HylH/tPWvp4GSCGZv4iRa0= Subject key identifier: 8C:7E:3A:E2:FB:5C:1B:69:26:58:11:CA:BB:24:1D:99:7D:8E:D7:CE Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Certificate serial: 1A68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft Manifest number: 1A32 Signing time: Fri 04 Apr 2025 16:24:32 +0000 Manifest this update: Fri 04 Apr 2025 16:24:32 +0000 Manifest next update: Fri 11 Apr 2025 16:24:32 +0000 Files and hashes: 1: OG9viqHmbFJU6h5HiIwQP0U2Iio.crl (hash: efgIjmRWL7Y2f51v4bayPmYlQXS0MjIr06xw4lDC8Ok=) 2: 6C897E54597B11EDB603273AC4F9AE02.roa (hash: tECuYiObkHM8+lQ9pAL6rPX0WAXD3+sDD+oT9RLjEFY=) 3: 6E44CE88597B11EDB603273AC4F9AE02.roa (hash: uSAHzBc+YHmREVNWY2QOkLWbks+7w1YPJ8vpHREo1FM=) 4: 63B4F05E482611E7ABDEF831C4F9AE02.roa (hash: UvxhutC//RajTrYueD0iUFQneJ/UQC0+drD5TAjJyFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6760 (0x1a68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB077 Validity Not Before: Apr 4 16:24:32 2025 GMT Not After : Apr 11 16:24:32 2025 GMT Subject: CN=67f007c0-07bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:14:60:e6:23:ca:52:13:31:a7:c8:46:45:a2: 61:f8:49:24:0b:63:34:1e:86:7f:20:94:18:b8:1f: eb:83:70:01:56:76:cd:62:6a:94:c0:3d:0f:64:09: 13:aa:e5:16:cb:cb:ea:64:8e:5b:2a:02:dc:4d:66: 80:41:96:ef:ac:c2:11:8e:9c:6c:82:ec:39:1b:58: eb:1b:31:ca:64:84:4f:ff:fa:7d:c0:8c:05:a8:d2: 1c:06:ee:9b:06:5b:3a:c6:cd:3f:36:19:d2:25:69: 79:2c:70:ff:87:e5:81:04:3f:7f:6a:41:20:84:53: 0b:4f:bd:e1:c5:cd:07:ac:b9:96:1f:a1:48:21:c8: 3c:02:8e:8b:40:d5:45:21:8b:bc:3d:8b:42:99:42: e6:4b:45:a7:c7:5d:6b:3a:fd:57:84:92:08:f7:34: 8a:ec:23:f2:c2:4f:a8:65:ed:3a:a4:f7:0b:92:34: e3:c6:ad:5f:c4:27:f6:a8:a6:33:1a:8f:0e:3a:f0: 1a:e4:5c:46:9b:f6:76:99:62:09:35:a8:b1:b1:3a: fa:7d:1b:0d:35:63:99:44:62:0b:9d:dd:09:d4:da: 2c:73:1d:7a:3a:2a:75:8b:7f:de:ba:c1:e6:cf:8a: fc:53:fc:33:73:b8:cf:1c:bf:7a:0d:4e:cb:7f:97: 66:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:7E:3A:E2:FB:5C:1B:69:26:58:11:CA:BB:24:1D:99:7D:8E:D7:CE X509v3 Authority Key Identifier: keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:1c:b9:26:be:37:14:47:9d:5a:9f:cf:19:4d:d5:8b:4a:19: 8e:06:2e:69:d3:fb:e3:d8:e9:f8:00:55:6b:6a:eb:a3:5d:99: e2:6f:f7:c8:8f:27:f4:6e:20:b0:14:6f:01:65:85:49:5c:aa: 08:66:b6:df:b5:98:2d:ee:ca:98:1a:ce:85:d0:7f:c3:ef:63: a3:14:81:f3:63:79:80:24:5a:cb:cd:65:6a:24:16:c7:a4:3e: 51:2c:8f:88:41:1b:27:23:42:3f:77:2f:c6:89:c8:fd:0f:1d: 05:84:04:d0:f1:ab:cc:ec:26:f9:69:92:dc:3b:ae:43:bc:18: d4:51:8b:10:bc:82:3c:66:14:3b:12:46:e6:32:be:e7:57:52: 30:63:eb:7b:b0:c4:a6:ff:a1:9f:86:26:8a:09:44:4f:cd:53: 47:ab:89:13:e6:0d:dd:44:3e:34:29:15:b8:61:b6:38:d1:be: 06:cb:e2:1d:79:47:1f:0d:3e:0d:54:cd:a6:73:96:ce:a4:9b: 61:0b:fd:8c:28:f1:a7:55:0c:64:54:56:6f:bd:a1:28:9e:ac: 0b:82:4c:b8:18:bf:60:d6:4f:7b:4b:4b:3c:13:94:8d:29:97: 9a:4c:98:ef:ce:6d:9e:0a:f2:fc:dc:80:3d:46:cd:9c:75:37: c9:62:7b:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwNzcxMTAvBgNVBAUTKDM4NkY2RjhBQTFFNjZDNTI1NEVBMUU0Nzg4OEMxMDNG NDUzNjIyMkEwHhcNMjUwNDA0MTYyNDMyWhcNMjUwNDExMTYyNDMyWjAYMRYwFAYD VQQDEw02N2YwMDdjMC0wN2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRRg5iPKUhMxp8hGRaJh+EkkC2M0HoZ/IJQYuB/rg3ABVnbNYmqUwD0PZAkT quUWy8vqZI5bKgLcTWaAQZbvrMIRjpxsguw5G1jrGzHKZIRP//p9wIwFqNIcBu6b Bls6xs0/NhnSJWl5LHD/h+WBBD9/akEghFMLT73hxc0HrLmWH6FIIcg8Ao6LQNVF IYu8PYtCmULmS0Wnx11rOv1XhJII9zSK7CPywk+oZe06pPcLkjTjxq1fxCf2qKYz Go8OOvAa5FxGm/Z2mWIJNaixsTr6fRsNNWOZRGILnd0J1Noscx16Oip1i3/eusHm z4r8U/wzc7jPHL96DU7Lf5dmGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIx+OuL7 XBtpJlgRyrskHZl9jtfOMB8GA1UdIwQYMBaAFDhvb4qh5mxSVOoeR4iMED9FNiIq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA3Ny9EQjdCNzAwNjQ4 MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJGSlU2aDVIaUl3UVAwVTJJ aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HOXZpcUhtYkZKVTZoNUhpSXdRUDBVMklpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjA3Ny9EQjdCNzAwNjQ4MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJG SlU2aDVIaUl3UVAwVTJJaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjHLkmvjcUR51an88ZTdWLShmOBi5p0/vj2On4AFVrauujXZnib/fI jyf0biCwFG8BZYVJXKoIZrbftZgt7sqYGs6F0H/D72OjFIHzY3mAJFrLzWVqJBbH pD5RLI+IQRsnI0I/dy/Gicj9Dx0FhATQ8avM7Cb5aZLcO65DvBjUUYsQvII8ZhQ7 EkbmMr7nV1IwY+t7sMSm/6GfhiaKCURPzVNHq4kT5g3dRD40KRW4YbY40b4Gy+Id eUcfDT4NVM2mc5bOpJthC/2MKPGnVQxkVFZvvaEonqwLgky4GL9g1k97S0s8E5SN KZeaTJjvzm2eCvL83IA9Rs2cdTfJYnvR -----END CERTIFICATE-----Generated at Sun Apr 6 02:26:10 2025 by rpki-client