$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: cQ5W18RVLAV2gQFL2eXYVRofDI2UjzFj64wd9y2GEf8= Subject key identifier: 3E:DA:77:29:51:72:B8:0B:15:BB:1B:E5:EB:C1:FA:0C:44:75:D6:8D Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 0192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: 0177 Signing time: Mon 07 Apr 2025 03:04:23 +0000 Manifest this update: Mon 07 Apr 2025 03:04:23 +0000 Manifest next update: Mon 14 Apr 2025 03:04:23 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: SjrJSzExS7hLaeVAp5gPi+wMcay4ejSq7HVy/wf2uMg=) 2: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: 1SKbx2XsDMYzA80POo6zzafuauDwKbPNh6n7Ob5AjVA=) 3: D0103496FD6611EE9188C568C4F9AE02.roa (hash: PxpNeamT7nJAO8ypf86mF4tTFHjbBgphhBI0WaQ2K6I=) 4: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: e/dOTjn5zjRzl7VVF4lYBqEjUR3aP4ajbLKyVpxXtqo=) 5: 1D9A36F40C6B11EF95ACFA13C4F9AE02.roa (hash: NJPr7OZom8PgcjW18JJjDNXMEozgSB9WGNPuyE4apbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91 Validity Not Before: Apr 7 03:04:23 2025 GMT Not After : Apr 14 03:04:23 2025 GMT Subject: CN=67f340b7-8e81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:54:ae:94:21:04:5d:9a:6d:d7:f6:25:b3:ea: 75:04:cf:38:ff:b1:04:af:dd:6a:07:9e:a4:45:11: 10:94:ac:c4:27:bb:e3:bc:4a:a8:07:5f:64:a8:88: f8:af:dd:2b:fb:38:48:13:2e:bb:0e:86:c4:24:83: e8:c7:35:4f:25:f8:51:49:13:3a:bc:cf:d0:30:fc: fe:15:8e:5d:d4:4d:5b:cf:f3:b3:94:93:82:a0:2a: 60:df:ff:ff:3a:98:fa:37:8f:44:38:05:b1:bd:27: c9:a5:e2:ec:38:6f:04:78:38:62:73:cc:5b:37:54: 63:e2:f2:b7:84:fc:01:1b:17:ac:98:bb:d3:6c:0f: 97:38:c9:ee:e1:db:b0:d2:81:6f:f7:da:7f:03:a0: 8e:ef:2a:fb:1e:32:81:7e:50:29:c9:a9:45:ca:6d: ce:84:18:c7:e5:f3:9c:19:4d:b7:0d:fb:a8:8e:30: 5c:1b:ed:c6:db:7c:0a:d1:c7:81:8b:40:2c:fb:2c: b6:6f:41:22:e2:bc:77:87:7e:3c:f5:76:a1:4d:33: cd:3a:fc:94:67:f3:39:63:f9:d2:dd:2d:bc:56:27: 91:4c:61:7b:1a:ef:75:0e:d0:00:66:36:c1:4d:84: f6:cd:59:83:d1:53:29:61:27:f4:b3:af:ef:e6:74: cd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DA:77:29:51:72:B8:0B:15:BB:1B:E5:EB:C1:FA:0C:44:75:D6:8D X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:fe:f9:43:53:1b:09:2b:f4:06:31:df:2d:5a:a9:16:53:2d: 34:da:6a:a4:0e:90:96:8c:b3:ae:b4:e8:79:7f:45:fd:78:c3: 3a:2f:ce:a3:67:74:33:fd:f7:49:bf:a7:23:20:90:ed:15:7e: 7a:c3:04:10:4f:ff:ff:cd:bc:de:9a:e5:a3:0e:94:53:54:bf: 90:ce:f9:cc:04:59:bb:9d:e3:59:0f:0e:bc:95:f4:c8:97:01: 01:97:5f:08:0c:41:17:3c:a3:ec:d0:2f:87:fc:1d:4f:03:82: b3:2d:1f:09:9b:de:c3:a7:52:9d:a8:17:1e:89:8a:6d:03:23: 1e:b0:2d:ec:c4:d0:30:7e:df:ba:58:ab:ee:c3:00:7f:04:7d: 72:8f:39:b3:1c:b0:a3:71:7d:7a:9b:97:18:0c:70:5b:a7:f0: ed:28:63:94:fc:ed:1f:dc:31:b8:ea:06:6a:3b:6e:2e:ff:0d: d9:e4:b5:c4:cb:12:97:0b:93:59:b1:a9:61:54:95:b8:24:fd: 94:fe:17:62:9e:0e:cc:fd:ef:3f:f9:d7:90:d3:7d:e5:02:ca: 95:aa:d4:53:78:2f:e5:e3:b1:11:5d:d7:c3:6a:0d:cf:da:00: 04:de:23:6e:ab:bc:d0:7d:5a:ee:0d:6a:12:32:a1:69:df:85: 57:6f:10:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjUwNDA3MDMwNDIzWhcNMjUwNDE0MDMwNDIzWjAYMRYwFAYD VQQDEw02N2YzNDBiNy04ZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFSulCEEXZpt1/Yls+p1BM84/7EEr91qB56kRREQlKzEJ7vjvEqoB19kqIj4 r90r+zhIEy67DobEJIPoxzVPJfhRSRM6vM/QMPz+FY5d1E1bz/OzlJOCoCpg3/// Opj6N49EOAWxvSfJpeLsOG8EeDhic8xbN1Rj4vK3hPwBGxesmLvTbA+XOMnu4duw 0oFv99p/A6CO7yr7HjKBflApyalFym3OhBjH5fOcGU23DfuojjBcG+3G23wK0ceB i0As+yy2b0Ei4rx3h3489XahTTPNOvyUZ/M5Y/nS3S28VieRTGF7Gu91DtAAZjbB TYT2zVmD0VMpYSf0s6/v5nTNtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7adylR crgLFbsb5evB+gxEddaNMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU/vlDUxsJK/QGMd8tWqkWUy002mqkDpCWjLOutOh5f0X9eMM6L86j Z3Qz/fdJv6cjIJDtFX56wwQQT///zbzemuWjDpRTVL+QzvnMBFm7neNZDw68lfTI lwEBl18IDEEXPKPs0C+H/B1PA4KzLR8Jm97Dp1KdqBceiYptAyMesC3sxNAwft+6 WKvuwwB/BH1yjzmzHLCjcX16m5cYDHBbp/DtKGOU/O0f3DG46gZqO24u/w3Z5LXE yxKXC5NZsalhVJW4JP2U/hding7M/e8/+deQ033lAsqVqtRTeC/l47ERXdfDag3P 2gAE3iNuq7zQfVruDWoSMqFp34VXbxAU -----END CERTIFICATE-----Generated at Mon Apr 7 05:36:18 2025 by rpki-client