$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft File: oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft (raw, json) Hash identifier: mNFPuVmA3OEZPKu53UiI1DhcVWQuUEterAJ4kutN3X4= Subject key identifier: 02:00:11:F3:DA:0E:22:72:A6:80:F6:20:42:23:A7:F7:1F:A9:8B:0A Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft Manifest number: 0172 Signing time: Tue 03 Jun 2025 03:55:58 +0000 Manifest this update: Tue 03 Jun 2025 03:55:57 +0000 Manifest next update: Tue 10 Jun 2025 03:55:57 +0000 Files and hashes: 1: oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl (hash: n51eyAdJsTzf2WxSZxjfUZZZ/acQedRmEkGesi/egCs=) 2: A1C2C588366311EEB376DC3AC4F9AE02.roa (hash: eMfy7OINYllKPw/hYmLN+RLPDufOse3B1bVnfxelXA4=) 3: A14DCC1A366311EEB376DC3AC4F9AE02.roa (hash: uXWLPj49wt34ZFOdgRvzFts1coN6e2ycjWdiQjNmKsk=) 4: FAC35354610611EFB6324A30C4F9AE02.roa (hash: 3fkGbyflBIYBaEGX9UwZRIaOP3YpNHP6p1lJeAeN+Pc=) 5: 9EBF44EC366311EEB376DC3AC4F9AE02.roa (hash: 2T6E2IzaBIpKo85tSWVvYebgls3pQQ9SNaIoG7eWLz4=) 6: AEC0C8428C5811EFA0E8E859C4F9AE02.roa (hash: q1C12AJZxBjIQzqN4k7K7GMZE1FYJg2qefZeo78vHPs=) 7: A08711E2366311EEB376DC3AC4F9AE02.roa (hash: ekGkDDIKWLiqVV7h6ESwSg8vnFxwfp+WHxsTHsOalhs=) 8: A309A0BA366311EEB376DC3AC4F9AE02.roa (hash: AW+Nxj8w4krax5vO+aa2r3fRVGb6J4InT/gDIakIwPQ=) 9: AA36D97EFC7511EE9C9CD67CC4F9AE02.roa (hash: xzZgqMDA4sRVnfCdaLDA6dVoRCpm16rxzJc3wo1vyY4=) 10: A22F20AC366311EEB376DC3AC4F9AE02.roa (hash: DKGzaOaDogHp8zZnJNJ8Xu7A6tqaHSnOfSE1S0tRHtw=) 11: 9DC673EE366311EEB376DC3AC4F9AE02.roa (hash: 2dWDYylTvBf7qUkUKq2WQpJFP4UJD1LaLQZoGDi+eMQ=) 12: 9D563A7A366311EEB376DC3AC4F9AE02.roa (hash: jf5vNKMEs/HYJC+ZfLIR6MHcZqRlwRNx9C1pqFQO2oU=) 13: 5B76DF12820611EE8A06123AC4F9AE02.roa (hash: 2F6msvEoxhf3yMkdkG6hwiZZB9ls61DIlAbmxkj7kXQ=) 14: 544F13A6B78111EF84611770C4F9AE02.roa (hash: b+cobkm/t+8VplbAM/uAvE/ze4s0B8PJ3bqKjF7kQOA=) 15: 9FE1BE90366311EEB376DC3AC4F9AE02.roa (hash: qF8dwyJS0OcLRM+lRZeGO8KZj/gqh2DhUGlNyStGdKM=) 16: A37A198A366311EEB376DC3AC4F9AE02.roa (hash: lahqqWdJv5iCoCPv96NgkWAwgDwpfB7aX0xa2UIAojg=) 17: CF415DDA520111EEBD942A6FC4F9AE02.roa (hash: sGNeudGsjKQYxdr3S2rAF3HoccrfyBnH+QSvEfzchv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Jun 3 03:55:57 2025 GMT Not After : Jun 10 03:55:57 2025 GMT Subject: CN=683e724d-88bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b7:63:7c:14:0c:2e:9a:20:31:25:b5:96:ec: 93:2e:cb:96:d1:36:7b:13:e1:51:8b:2f:78:5a:49: 0d:89:94:a6:17:64:a7:65:49:ed:2f:14:d0:4a:b5: ed:4f:47:25:0b:e5:11:81:99:1f:86:b7:b4:a7:9f: eb:5b:b2:4e:2d:a8:b2:fa:aa:5a:ef:18:e5:a5:cf: 8a:09:d1:06:f5:64:41:a1:a8:19:10:fc:4f:fa:c1: bf:9c:c4:bb:0c:ec:9e:02:5a:24:cf:9b:cf:cb:04: 02:e9:10:5d:3a:fe:89:13:ce:d9:8d:d0:57:4a:6c: 3e:35:ef:3e:78:22:69:16:3d:fd:c8:6d:61:22:6f: 1d:77:2c:99:46:61:5d:44:ee:dc:62:7c:54:e8:3e: 32:01:01:25:b4:df:89:7f:8c:18:7b:a1:a1:1b:a7: 4e:6d:3d:aa:e7:b4:e1:20:24:8f:d8:64:6a:f6:11: 81:3b:03:e6:c0:25:29:b6:9c:f1:f3:1e:b0:fb:fc: f8:c8:42:ab:ce:09:aa:51:83:db:e6:6c:41:19:74: ce:fd:df:37:c5:5f:6d:2e:80:ab:8a:fb:c9:0e:3a: 5e:c8:69:a1:3a:96:83:bc:ec:f5:72:8c:44:ec:05: 3d:29:1c:dd:35:c2:c8:3f:7a:c2:3b:b0:99:bd:11: 9f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:00:11:F3:DA:0E:22:72:A6:80:F6:20:42:23:A7:F7:1F:A9:8B:0A X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:5c:08:6a:fc:c6:c4:fb:10:01:26:cd:22:3b:60:8b:20:84: 92:52:91:eb:dc:b7:cd:e8:c5:5b:bf:63:d4:ad:1d:3f:1e:60: 23:a7:f2:53:a0:3f:65:fd:6b:a1:95:81:64:31:5a:00:44:06: f7:1c:49:8e:1f:4a:79:d1:f3:ab:1f:b5:24:f8:7f:ef:a4:69: 83:0b:0b:40:76:be:58:ac:00:7c:77:69:e6:61:40:3d:97:39: 4c:78:96:82:c0:56:fb:2e:5f:2f:94:56:e8:f3:ea:9a:ce:1d: a5:5c:b8:ac:f7:61:49:58:1a:dd:cc:ac:fb:1b:62:e5:aa:8b: be:1b:f0:62:1e:e1:91:5b:e0:d5:bc:40:ce:40:a5:99:8f:15: e4:2d:1d:09:35:5d:cd:6e:9d:81:19:a2:dd:b8:20:08:24:0e: f0:a4:82:24:3d:cc:08:fa:ad:ba:c8:0c:9a:5b:82:74:6f:6e: b0:ff:73:06:9a:79:c7:be:f7:aa:c5:8a:db:e1:28:7d:ac:3a: 12:32:e1:e1:06:6f:30:7f:39:87:54:e8:76:f1:31:b2:fc:3c: 44:96:6a:28:63:6d:18:39:24:37:b9:02:d8:78:91:c8:5f:b2: f4:f6:7f:a5:1f:18:6e:4c:76:3b:07:c7:93:53:6d:c7:b6:b4: 0a:17:e1:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjUwNjAzMDM1NTU3WhcNMjUwNjEwMDM1NTU3WjAYMRYwFAYD VQQDEw02ODNlNzI0ZC04OGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7djfBQMLpogMSW1luyTLsuW0TZ7E+FRiy94WkkNiZSmF2SnZUntLxTQSrXt T0clC+URgZkfhre0p5/rW7JOLaiy+qpa7xjlpc+KCdEG9WRBoagZEPxP+sG/nMS7 DOyeAlokz5vPywQC6RBdOv6JE87ZjdBXSmw+Ne8+eCJpFj39yG1hIm8ddyyZRmFd RO7cYnxU6D4yAQEltN+Jf4wYe6GhG6dObT2q57ThICSP2GRq9hGBOwPmwCUptpzx 8x6w+/z4yEKrzgmqUYPb5mxBGXTO/d83xV9tLoCrivvJDjpeyGmhOpaDvOz1coxE 7AU9KRzdNcLIP3rCO7CZvRGfoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIAEfPa DiJypoD2IEIjp/cfqYsKMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM2Qy83NUI5OEJGMDM2NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVm TDl6dTFCT3ZKNngxajJyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/XAhq/MbE+xABJs0iO2CLIISSUpHr3LfN6MVbv2PUrR0/HmAjp/JT oD9l/WuhlYFkMVoARAb3HEmOH0p50fOrH7Uk+H/vpGmDCwtAdr5YrAB8d2nmYUA9 lzlMeJaCwFb7Ll8vlFbo8+qazh2lXLis92FJWBrdzKz7G2Llqou+G/BiHuGRW+DV vEDOQKWZjxXkLR0JNV3Nbp2BGaLduCAIJA7wpIIkPcwI+q26yAyaW4J0b26w/3MG mnnHvveqxYrb4Sh9rDoSMuHhBm8wfzmHVOh28TGy/DxElmooY20YOSQ3uQLYeJHI X7L09n+lHxhuTHY7B8eTU23HtrQKF+EP -----END CERTIFICATE-----Generated at Wed Jun 4 00:13:19 2025 by rpki-client