$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft File: owBvXZI9TJzDuBs4ocpnEnR9RAY.mft (raw, json) Hash identifier: BoSgTnM+DZ14SBhvErvidJ5KJbDYFARf9z/Ym+ZCg+E= Subject key identifier: 7A:CC:82:C3:6E:26:C8:BE:E3:64:B7:6F:0B:F4:C8:5B:39:E5:E1:F8 Authority key identifier: A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 Certificate issuer: /CN=A91185B8/serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft Manifest number: 01A1 Signing time: Sat 31 May 2025 03:00:58 +0000 Manifest this update: Sat 31 May 2025 03:00:57 +0000 Manifest next update: Sat 07 Jun 2025 03:00:57 +0000 Files and hashes: 1: owBvXZI9TJzDuBs4ocpnEnR9RAY.crl (hash: NzRBGpOs3iijfKK3vdNYHII//UFw1Escfc2fzadVvAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Validity Not Before: May 31 03:00:57 2025 GMT Not After : Jun 7 03:00:57 2025 GMT Subject: CN=683a70ea-00ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8e:bd:47:f2:19:f7:d0:0b:1c:69:a9:fe:50: 7a:b0:90:2a:98:61:24:12:f9:4a:57:2a:48:7b:38: fa:85:e9:59:7f:a4:db:7b:f0:bc:04:1e:01:ea:de: c6:90:e2:8a:f1:29:b6:05:81:3a:0d:ed:66:8c:5b: 4b:80:1b:66:57:63:bf:c1:a2:ac:d3:b1:3f:04:3d: 83:8e:32:64:0a:04:ae:48:55:33:2d:a3:05:2e:30: d3:6d:b8:e4:50:94:c0:4c:ca:dc:80:b5:7a:bf:9c: 5f:66:27:aa:39:5e:cd:5a:39:2c:a5:55:3f:0a:ed: 76:55:b2:82:4d:72:7e:bd:2c:d5:27:50:17:81:c6: 3d:17:f6:a4:29:59:7d:b5:e3:57:2d:ae:b0:55:8d: 3b:31:33:ac:f4:e4:e7:97:93:b4:08:b4:8b:41:59: c2:67:de:54:77:f0:fb:52:c6:13:b8:ac:31:69:13: 9a:4c:6a:ba:a1:b7:3b:c0:80:21:5c:2e:5c:5e:65: 73:77:48:75:32:17:51:dc:7b:62:46:64:2d:4b:c4: 99:74:40:f9:7d:9f:74:22:4f:cd:86:e5:2c:a3:19: 49:48:fd:f8:27:c3:e3:14:4d:1d:e8:12:bf:25:44: 8c:5d:54:90:1a:13:5a:33:29:41:46:15:19:b8:42: 62:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:CC:82:C3:6E:26:C8:BE:E3:64:B7:6F:0B:F4:C8:5B:39:E5:E1:F8 X509v3 Authority Key Identifier: keyid:A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:9d:95:04:67:60:8c:be:d6:fa:fd:b2:f4:7f:fc:c2:37:d8: 63:d0:ec:27:70:75:2c:5a:c8:ff:06:b0:7b:a3:93:1d:52:92: 48:79:7c:ba:d9:9f:7d:d9:62:86:f5:2b:61:ba:5f:0d:56:cc: b5:5d:0b:c6:c9:40:81:66:9c:69:ad:71:4e:28:d3:f7:5a:d8: a1:3b:5d:c0:a8:11:47:85:00:4b:23:e4:ee:c3:ac:84:67:1e: 1b:40:9a:07:e7:97:46:85:c6:da:11:d7:f1:fd:2b:d7:38:5a: 1b:26:61:d0:65:52:6c:41:cb:9f:9d:75:f6:b7:de:e8:e1:dd: 0d:7b:07:8a:e6:e9:9e:69:04:9b:06:b2:f3:72:95:99:fc:1c: b0:c7:55:7a:d5:b1:65:db:6c:b8:42:c2:96:ff:e9:f4:a9:80: f7:9e:2a:4a:34:16:10:8b:00:a5:30:22:6f:78:aa:3a:d7:76: 62:28:ac:11:19:a6:a7:56:08:4f:38:57:40:e4:65:f7:ec:d2: 9c:dd:b0:4e:17:dd:42:92:3b:51:3e:4e:42:db:93:ec:4e:15: a1:6c:e5:c4:b7:2d:f9:f8:37:e3:80:24:21:99:c8:ac:2f:8e: bb:ab:aa:84:bf:52:c0:2a:46:1b:5c:b4:35:0e:82:0d:f4:a3: 02:b0:8a:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKEEzMDA2RjVEOTIzRDRDOUNDM0I4MUIzOEExQ0E2NzEy NzQ3RDQ0MDYwHhcNMjUwNTMxMDMwMDU3WhcNMjUwNjA3MDMwMDU3WjAYMRYwFAYD VQQDEw02ODNhNzBlYS0wMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy469R/IZ99ALHGmp/lB6sJAqmGEkEvlKVypIezj6helZf6Tbe/C8BB4B6t7G kOKK8Sm2BYE6De1mjFtLgBtmV2O/waKs07E/BD2DjjJkCgSuSFUzLaMFLjDTbbjk UJTATMrcgLV6v5xfZieqOV7NWjkspVU/Cu12VbKCTXJ+vSzVJ1AXgcY9F/akKVl9 teNXLa6wVY07MTOs9OTnl5O0CLSLQVnCZ95Ud/D7UsYTuKwxaROaTGq6obc7wIAh XC5cXmVzd0h1MhdR3HtiRmQtS8SZdED5fZ90Ik/NhuUsoxlJSP34J8PjFE0d6BK/ JUSMXVSQGhNaMylBRhUZuEJiWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrMgsNu Jsi+42S3bwv0yFs55eH4MB8GA1UdIwQYMBaAFKMAb12SPUycw7gbOKHKZxJ0fUQG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9EOUJGNDM5NEJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRKekR1QnM0b2NwbkVuUjlS QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293QnZYWkk5VEp6RHVCczRvY3BuRW5SOVJBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9EOUJGNDM5NEJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRK ekR1QnM0b2NwbkVuUjlSQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHnZUEZ2CMvtb6/bL0f/zCN9hj0OwncHUsWsj/BrB7o5MdUpJIeXy6 2Z992WKG9Sthul8NVsy1XQvGyUCBZpxprXFOKNP3WtihO13AqBFHhQBLI+Tuw6yE Zx4bQJoH55dGhcbaEdfx/SvXOFobJmHQZVJsQcufnXX2t97o4d0NeweK5umeaQSb BrLzcpWZ/Bywx1V61bFl22y4QsKW/+n0qYD3nipKNBYQiwClMCJveKo613ZiKKwR GaanVghPOFdA5GX37NKc3bBOF91CkjtRPk5C25PsThWhbOXEty35+DfjgCQhmcis L467q6qEv1LAKkYbXLQ1DoIN9KMCsIq6 -----END CERTIFICATE-----Generated at Sat May 31 17:03:33 2025 by rpki-client