$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: bE8XKqKC1q63JxM4zkY8W/bdrNoMjHkA0Y7MRMyFI0Q= Subject key identifier: A3:03:81:48:DF:A1:97:C6:03:4C:C0:18:FF:E8:9D:6C:D9:BD:ED:52 Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 033C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 0333 Signing time: Sat 31 May 2025 01:18:12 +0000 Manifest this update: Sat 31 May 2025 01:18:12 +0000 Manifest next update: Sat 07 Jun 2025 01:18:12 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: 7aegzW3iarojkmOZLmPLCnONTJ9b/zy45sjeBW7ThgM=) 2: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (hash: SFUw1crOwEdM2KZGmzmI0Y/ekMkiUyOErHqNpQ3ZimY=) 3: A047A07AD56811EFB57A5D33C4F9AE02.roa (hash: hW5FiSV5239AbImQE/mYJwi40OATdFzGCdVUMZFhemo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 828 (0x33c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: May 31 01:18:12 2025 GMT Not After : Jun 7 01:18:12 2025 GMT Subject: CN=683a58d4-4d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7b:0c:4f:04:6c:4b:f5:ae:94:98:45:aa:04: 1d:10:71:9d:8d:c9:94:75:6c:86:22:c3:7b:3b:6b: e6:18:ae:ac:8a:0f:18:c3:55:4e:b3:b5:3f:ef:91: 22:17:28:ce:4c:59:06:7a:a0:25:5f:29:9a:13:b2: ae:ba:f6:2d:53:e7:d5:8b:52:20:0c:50:23:77:b6: a4:98:85:34:b8:b9:e0:d7:66:53:df:04:b3:6c:fa: 36:94:74:a2:74:02:f3:3b:d6:b4:9d:a4:3e:11:57: bc:fe:a1:be:d9:7e:44:3f:92:5d:23:a9:b8:76:17: 98:f5:8a:29:7f:d4:6e:59:69:87:89:a7:b6:cb:3e: 4c:8b:c0:60:64:c5:a0:88:c7:dd:79:73:5c:a4:43: c3:2c:44:da:4d:4f:58:c3:4a:24:1a:46:a6:78:3b: 59:95:f8:0c:0a:cd:2c:d7:fa:36:02:e5:8f:cd:c8: 1b:f4:b2:5e:de:d0:ac:bb:9c:d1:08:56:36:e0:89: 03:44:49:65:de:87:0a:88:09:e5:2b:db:8d:d2:e4: e7:bb:63:73:26:71:7e:26:97:cd:af:5c:3f:5a:94: 26:5c:8e:a4:c6:d0:95:f1:1f:6c:5f:93:5f:50:51: 60:49:b6:2d:ef:eb:27:08:cd:99:09:31:60:46:4b: 05:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:03:81:48:DF:A1:97:C6:03:4C:C0:18:FF:E8:9D:6C:D9:BD:ED:52 X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:83:9f:24:d9:4a:2f:ba:a1:9c:cb:6b:6f:13:08:c7:3a:91: 94:cf:7f:ea:54:18:19:2a:ba:98:ce:c7:b3:8d:b8:f6:84:ff: 65:64:84:b2:ca:46:e0:85:a3:32:f5:84:d2:6b:10:55:7f:cc: 20:9a:a4:8a:e6:b5:d2:4a:30:72:cc:74:56:0f:76:8f:94:89: 72:ea:8d:77:d5:24:35:86:b9:af:d3:3b:81:ee:58:1e:18:86: c2:a9:4a:28:90:41:29:2f:3f:ba:cf:12:f2:48:e9:40:b6:00: 43:ff:de:33:8f:3b:a0:b7:8c:6e:15:c1:25:a4:b2:88:0d:38: ab:ad:f6:0f:49:e5:af:9f:c8:98:eb:27:01:a8:8e:12:b4:3a: 39:93:90:e9:19:ac:f6:62:10:5d:99:6c:7b:b0:5d:e1:fe:3b: 7b:cc:95:cd:a9:11:3f:41:82:ae:e1:6c:47:4d:8d:d3:c5:02: bf:8e:84:f7:4d:63:a9:80:d5:98:6e:9a:cd:35:ca:cc:d8:23: 44:6c:72:42:4a:3a:83:41:a6:25:bd:2d:6e:d2:23:59:a9:46: e4:77:f6:e9:41:4e:f3:00:73:2a:a4:dc:2d:41:5f:11:2a:b7: 2c:ce:0e:2a:f9:23:d6:41:84:bb:2a:21:25:38:99:a9:f2:6b: 7a:23:18:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjUwNTMxMDExODEyWhcNMjUwNjA3MDExODEyWjAYMRYwFAYD VQQDEw02ODNhNThkNC00ZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHsMTwRsS/WulJhFqgQdEHGdjcmUdWyGIsN7O2vmGK6sig8Yw1VOs7U/75Ei FyjOTFkGeqAlXymaE7KuuvYtU+fVi1IgDFAjd7akmIU0uLng12ZT3wSzbPo2lHSi dALzO9a0naQ+EVe8/qG+2X5EP5JdI6m4dheY9Yopf9RuWWmHiae2yz5Mi8BgZMWg iMfdeXNcpEPDLETaTU9Yw0okGkameDtZlfgMCs0s1/o2AuWPzcgb9LJe3tCsu5zR CFY24IkDREll3ocKiAnlK9uN0uTnu2NzJnF+JpfNr1w/WpQmXI6kxtCV8R9sX5Nf UFFgSbYt7+snCM2ZCTFgRksFIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMDgUjf oZfGA0zAGP/onWzZve1SMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFg58k2UovuqGcy2tvEwjHOpGUz3/qVBgZKrqYzsezjbj2hP9lZISy ykbghaMy9YTSaxBVf8wgmqSK5rXSSjByzHRWD3aPlIly6o131SQ1hrmv0zuB7lge GIbCqUookEEpLz+6zxLySOlAtgBD/94zjzugt4xuFcElpLKIDTirrfYPSeWvn8iY 6ycBqI4StDo5k5DpGaz2YhBdmWx7sF3h/jt7zJXNqRE/QYKu4WxHTY3TxQK/joT3 TWOpgNWYbprNNcrM2CNEbHJCSjqDQaYlvS1u0iNZqUbkd/bpQU7zAHMqpNwtQV8R Krcszg4q+SPWQYS7KiElOJmp8mt6Ixhj -----END CERTIFICATE-----Generated at Sat May 31 17:20:41 2025 by rpki-client