$ rpki-client -vvf rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft File: OIX50v0IYCg7VTgfHE9KWjoe7z8.mft (raw, json) Hash identifier: YzjCTlC7sCk/4nkm5pa9mD6PntxM+d32zNoEE8UEebU= Subject key identifier: 18:11:B1:C9:C8:7F:90:99:86:16:59:46:31:77:06:ED:C4:B6:39:E1 Authority key identifier: 38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F Certificate issuer: /CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft Manifest number: CB Signing time: Sat 31 May 2025 05:18:43 +0000 Manifest this update: Sat 31 May 2025 05:18:43 +0000 Manifest next update: Sat 07 Jun 2025 05:18:43 +0000 Files and hashes: 1: OIX50v0IYCg7VTgfHE9KWjoe7z8.crl (hash: CQpo07hMgQF83pKDCcM2vzFtpbJwpamWOv5cxCkGMwA=) 2: 744D8A1005EE11EF851FA42FC4F9AE02.roa (hash: g7/I1107TKCwjJnWd7arEQMGj8EBr7MRJOF1ZUaFXNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847C2, serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Validity Not Before: May 31 05:18:43 2025 GMT Not After : Jun 7 05:18:43 2025 GMT Subject: CN=683a9133-95b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b6:8c:7b:ae:d0:e5:aa:44:2b:43:86:1d:0e: 5c:d8:5d:d7:a0:64:0e:d4:86:60:45:95:3e:6c:fc: 22:fa:ac:a9:fe:e9:fc:01:f7:e6:76:4c:9c:b6:7b: 40:2c:9c:a8:4b:42:67:a7:76:98:41:17:7b:03:cd: 4d:63:50:7f:a4:10:c1:be:cd:ea:90:fe:87:74:72: f2:35:c4:27:d0:8c:74:64:52:de:ce:9e:fd:f9:b6: 0e:2a:88:67:85:7b:ef:2d:a8:57:50:03:92:05:ec: 8c:26:3f:4a:86:79:0f:91:86:3a:55:fa:4e:db:02: 24:23:6b:b8:b3:47:84:e9:2c:d8:f7:ed:ec:c3:0f: 4f:60:8f:3e:ad:40:1a:f8:1a:77:e2:19:71:f1:ab: 2b:5b:13:c3:64:0e:2b:e4:8b:21:bc:8f:db:59:e1: 30:2d:0a:4f:a1:ae:4b:b1:c8:93:89:63:a1:2d:2c: 95:3b:dc:c9:9e:55:b1:36:65:4b:01:fa:34:e1:6f: 9e:b3:c3:c5:ac:68:d6:12:93:10:2b:5a:8e:fd:6b: a6:81:f9:c6:bf:55:f1:27:32:ca:a9:40:32:b1:46: 29:4a:66:46:5c:70:87:8e:58:17:4c:9a:69:0c:18: dd:b0:66:00:73:83:67:b9:5e:a0:10:07:ba:b4:f4: ed:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:11:B1:C9:C8:7F:90:99:86:16:59:46:31:77:06:ED:C4:B6:39:E1 X509v3 Authority Key Identifier: keyid:38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:ab:a4:06:a7:bc:38:69:0b:5a:d4:03:9b:3f:c3:fa:00:15: 50:ed:80:54:a4:78:a0:db:1a:57:45:8b:c1:95:77:f0:3b:8f: 48:f6:5e:2b:c5:13:3c:03:14:70:46:ed:7c:06:a5:93:9f:fb: 8b:7a:14:01:32:cb:cc:88:cc:c1:b6:da:a0:6b:ed:8e:27:31: df:ee:ef:c7:a4:2a:d6:6a:2d:d4:9a:d0:43:9b:89:ba:7d:7d: 04:78:26:21:2a:df:81:37:5b:df:fe:ec:39:ec:99:f0:64:dc: f8:c0:50:c5:67:47:0f:0b:d8:25:84:4e:09:9a:eb:87:39:4a: f6:09:08:8c:7f:a9:26:ff:83:ac:d7:4e:82:88:47:47:28:77: 27:65:24:57:6c:05:23:50:67:3c:42:35:2a:a8:34:e2:db:df: ea:c8:a9:0a:bb:d5:96:99:7b:dd:c6:ed:09:75:f0:a5:74:d2: 11:02:dc:f2:a9:9b:81:ca:aa:18:95:c5:bd:a8:48:ad:e3:e3: 9c:79:6e:c0:80:71:ca:74:9d:ae:56:8e:0e:9e:bc:62:f7:63: d4:eb:d0:ac:1f:16:d3:0f:d9:be:3f:12:cd:67:42:e6:52:71: 21:63:4a:f1:0a:5e:45:98:3f:78:f1:2a:3c:91:7f:23:09:82: d6:93:2f:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QzIxMTAvBgNVBAUTKDM4ODVGOUQyRkQwODYwMjgzQjU1MzgxRjFDNEY0QTVB M0ExRUVGM0YwHhcNMjUwNTMxMDUxODQzWhcNMjUwNjA3MDUxODQzWjAYMRYwFAYD VQQDEw02ODNhOTEzMy05NWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLaMe67Q5apEK0OGHQ5c2F3XoGQO1IZgRZU+bPwi+qyp/un8AffmdkyctntA LJyoS0Jnp3aYQRd7A81NY1B/pBDBvs3qkP6HdHLyNcQn0Ix0ZFLezp79+bYOKohn hXvvLahXUAOSBeyMJj9KhnkPkYY6VfpO2wIkI2u4s0eE6SzY9+3sww9PYI8+rUAa +Bp34hlx8asrWxPDZA4r5IshvI/bWeEwLQpPoa5LsciTiWOhLSyVO9zJnlWxNmVL Afo04W+es8PFrGjWEpMQK1qO/WumgfnGv1XxJzLKqUAysUYpSmZGXHCHjlgXTJpp DBjdsGYAc4NnuV6gEAe6tPTtMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgRscnI f5CZhhZZRjF3Bu3EtjnhMB8GA1UdIwQYMBaAFDiF+dL9CGAoO1U4HxxPSlo6Hu8/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdDMi9COTJCRkFENDA1 RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlDZzdWVGdmSEU5S1dqb2U3 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JWDUwdjBJWUNnN1ZUZ2ZIRTlLV2pvZTd6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdDMi9COTJCRkFENDA1RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlD ZzdWVGdmSEU5S1dqb2U3ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTq6QGp7w4aQta1AObP8P6ABVQ7YBUpHig2xpXRYvBlXfwO49I9l4r xRM8AxRwRu18BqWTn/uLehQBMsvMiMzBttqga+2OJzHf7u/HpCrWai3UmtBDm4m6 fX0EeCYhKt+BN1vf/uw57JnwZNz4wFDFZ0cPC9glhE4JmuuHOUr2CQiMf6km/4Os 106CiEdHKHcnZSRXbAUjUGc8QjUqqDTi29/qyKkKu9WWmXvdxu0JdfCldNIRAtzy qZuByqoYlcW9qEit4+OceW7AgHHKdJ2uVo4Onrxi92PU69CsHxbTD9m+PxLNZ0Lm UnEhY0rxCl5FmD948So8kX8jCYLWky86 -----END CERTIFICATE-----Generated at Sat May 31 15:04:31 2025 by rpki-client