$ rpki-client -vvf rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft File: OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft (raw, json) Hash identifier: k2po4/NfWoRvhy1ZPF05c9iMEihRym7Ze4P04jJqOxE= Subject key identifier: C9:F5:85:DA:E5:16:1F:87:5E:44:A8:4D:09:E1:7B:78:A6:E3:69:E4 Authority key identifier: 3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 Certificate issuer: /CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Certificate serial: 2422 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft Manifest number: 240C Signing time: Sat 31 May 2025 15:46:26 +0000 Manifest this update: Sat 31 May 2025 15:46:26 +0000 Manifest next update: Sat 07 Jun 2025 15:46:26 +0000 Files and hashes: 1: OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl (hash: ayG7YDPd7hBngDj2P9yUoJtAiMDitFIrl6S2enpz6Hk=) 2: 9876A6C025B211ECB5356475C4F9AE02.roa (hash: DNBT8zhDN25f9UDGQ5nfWBA6s2lB80HUpbXVqjHmAQM=) 3: D8D3FB6414F111F08EE5E32DC4F9AE02.roa (hash: tOvAiPhxRE202cumPZpJeSLK5i3uUM9dNppjhBHTGzA=) 4: 54EE8F7615FE11ECAF541012C4F9AE02.roa (hash: IA4iHCGoqRIo6kbssAA01N8/wPFo68lHVDwSEc9PASs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9250 (0x2422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91592B3, serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Validity Not Before: May 31 15:46:26 2025 GMT Not After : Jun 7 15:46:26 2025 GMT Subject: CN=683b2452-af28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6f:68:11:73:d0:10:b6:ec:a8:f6:3e:1c:81: 99:24:ca:f6:26:7f:e5:5b:ad:28:a0:8e:4f:9d:fc: 6f:6e:6a:b7:71:df:1f:bb:0d:fc:8b:8b:4e:54:4a: 81:fa:2b:e3:17:f4:31:c0:86:22:18:74:ad:47:d0: 78:ae:ec:57:82:c8:60:28:6d:77:77:95:6f:b8:98: ef:e7:0c:72:18:35:ae:32:e9:79:38:d5:b1:13:90: 4b:d6:c7:7e:ff:f9:33:5f:b2:1c:d7:af:b1:7d:f7: dd:7b:b7:a7:0f:92:27:f7:06:cb:70:ee:1b:47:7c: 62:0f:e7:04:14:17:59:cc:49:3f:ff:6a:b1:ef:f9: ae:0e:3b:f8:cc:a8:1e:bf:38:54:0c:89:a5:2c:d2: e7:c3:43:bd:7d:7e:95:77:2f:d2:50:cb:07:f5:d6: a2:73:a8:ac:07:27:27:23:c5:52:1a:a5:c7:53:c6: c6:42:e1:57:7a:91:4a:80:d1:0d:90:13:14:55:a4: bf:8e:af:41:3c:0b:77:be:88:2b:84:67:d2:16:b6: 6c:c9:93:52:a1:f3:84:c7:72:86:ce:95:3f:bb:07: 20:c4:60:2d:89:d3:85:0a:db:f7:09:41:ec:4e:21: db:63:eb:d7:9b:3c:3d:91:63:6c:75:f4:45:fe:38: 91:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F5:85:DA:E5:16:1F:87:5E:44:A8:4D:09:E1:7B:78:A6:E3:69:E4 X509v3 Authority Key Identifier: keyid:3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:60:c0:2b:7d:1b:31:e1:56:1a:f4:11:94:02:49:52:11:67: d5:99:fe:d6:d0:89:96:c5:46:23:20:b3:5c:9b:8c:e7:2d:d4: f9:3d:42:8a:d2:62:74:39:83:8e:e2:0f:73:26:0d:a2:6c:58: ce:60:99:15:d5:f6:7a:4e:f1:f0:3e:d8:ae:e6:ec:68:a6:d8: d7:28:84:da:f3:62:3a:e3:c4:03:91:f7:aa:de:9d:29:33:48: e2:90:0c:d3:48:68:60:f9:4a:35:ef:ab:21:27:d5:a6:cc:71: ca:9f:32:11:33:04:b7:e5:81:d1:d4:f8:1c:a3:bf:40:3f:1c: 47:85:dc:52:93:e1:f8:09:06:19:ca:62:7e:28:6d:2c:00:31: a4:88:8d:2f:d4:aa:f1:dd:05:d5:bc:14:2a:0f:8c:73:54:14: f9:b4:6e:63:b5:cd:70:41:b8:74:68:2c:ee:69:d1:45:e3:c9: 90:75:8d:41:1d:12:39:72:04:68:11:c4:fc:8b:7f:a6:db:82: 07:9a:1d:a0:35:8b:23:ed:45:79:c0:49:46:b2:46:78:d3:02: 3a:c3:3f:06:88:15:df:fb:90:2b:31:84:91:c5:bf:37:83:39: ef:ff:42:8e:f2:d9:74:12:8a:92:c6:0a:4c:a5:dc:04:ea:c5: 63:a6:18:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyQjMxMTAvBgNVBAUTKDNBNUMwODEzQzBGRUQwQTgzQjNERDAxQjdBNUFFMUEx MzA4MjcwMjgwHhcNMjUwNTMxMTU0NjI2WhcNMjUwNjA3MTU0NjI2WjAYMRYwFAYD VQQDEw02ODNiMjQ1Mi1hZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArG9oEXPQELbsqPY+HIGZJMr2Jn/lW60ooI5Pnfxvbmq3cd8fuw38i4tOVEqB +ivjF/QxwIYiGHStR9B4ruxXgshgKG13d5VvuJjv5wxyGDWuMul5ONWxE5BL1sd+ //kzX7Ic16+xfffde7enD5In9wbLcO4bR3xiD+cEFBdZzEk//2qx7/muDjv4zKge vzhUDImlLNLnw0O9fX6Vdy/SUMsH9daic6isBycnI8VSGqXHU8bGQuFXepFKgNEN kBMUVaS/jq9BPAt3vogrhGfSFrZsyZNSofOEx3KGzpU/uwcgxGAtidOFCtv3CUHs TiHbY+vXmzw9kWNsdfRF/jiRewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMn1hdrl Fh+HXkSoTQnhe3im42nkMB8GA1UdIwQYMBaAFDpcCBPA/tCoOz3QG3pa4aEwgnAo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTJCMy84OTE3RkIyQTVE MEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBLZzdQZEFiZWxyaG9UQ0Nj Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sd0lFOEQtMEtnN1BkQWJlbHJob1RDQ2NDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTJCMy84OTE3RkIyQTVEMEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBL ZzdQZEFiZWxyaG9UQ0NjQ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPYMArfRsx4VYa9BGUAklSEWfVmf7W0ImWxUYjILNcm4znLdT5PUKK 0mJ0OYOO4g9zJg2ibFjOYJkV1fZ6TvHwPtiu5uxoptjXKITa82I648QDkfeq3p0p M0jikAzTSGhg+Uo176shJ9WmzHHKnzIRMwS35YHR1Pgco79APxxHhdxSk+H4CQYZ ymJ+KG0sADGkiI0v1Krx3QXVvBQqD4xzVBT5tG5jtc1wQbh0aCzuadFF48mQdY1B HRI5cgRoEcT8i3+m24IHmh2gNYsj7UV5wElGskZ40wI6wz8GiBXf+5ArMYSRxb83 gznv/0KO8tl0EoqSxgpMpdwE6sVjphhr -----END CERTIFICATE-----Generated at Sat May 31 17:49:39 2025 by rpki-client