$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: TyONA+7lqEYtI0v/+PnBncIW2Q0e1ClK5XGArlb56yM= Subject key identifier: AD:5C:F0:53:2F:55:BE:CE:69:78:07:2C:86:65:95:FF:A7:42:A9:AC Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 081F Signing time: Fri 30 May 2025 21:04:35 +0000 Manifest this update: Fri 30 May 2025 21:04:34 +0000 Manifest next update: Fri 06 Jun 2025 21:04:34 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: GSEgb/RAe6X1+xp5hLz99gewC3cgNPkJIGHSlUB9rJQ=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: ZWM4HJUjC3JgAEYknxCATq6PGI5BXk42LHpdEZQRJ0I=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: oVaIkIIp594wdZKn2XCmHgy069EyuIaCAvG8B279YGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: May 30 21:04:34 2025 GMT Not After : Jun 6 21:04:34 2025 GMT Subject: CN=683a1d62-5d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:10:37:1e:9d:5b:6d:ac:81:b6:e1:36:fb:f5: 51:a0:d4:f0:be:85:fd:33:5f:91:8e:7f:96:0c:0d: 01:0e:fe:7d:cf:52:90:ee:c8:6d:ce:f9:be:7e:e8: df:24:21:8d:c7:68:76:75:89:84:8d:31:dd:3c:f2: 58:d4:5b:21:bb:45:38:0b:25:67:99:49:4e:d5:be: b7:e9:6d:51:85:4f:ad:86:53:9f:95:dc:2f:15:cf: ed:e2:c1:a2:47:f3:b3:78:47:b5:c1:d9:82:75:65: a4:21:3e:d6:bd:4c:c0:97:2b:54:23:7f:52:dc:7f: f1:4e:0e:fa:ee:32:e0:22:e3:4c:fd:8c:2e:d3:e4: 79:f4:bb:c2:40:c0:93:94:25:62:58:76:01:29:21: cb:7e:29:f0:cc:8a:d0:bf:41:b7:7d:4f:2f:eb:88: e6:92:23:0d:36:b9:68:18:f0:b2:3f:92:69:43:72: 3e:62:43:60:88:1d:3d:fd:76:2d:20:d1:5d:f1:5a: 3e:eb:14:73:f4:e1:54:00:f3:fa:81:1d:db:4e:11: 6c:6e:a1:53:c2:52:12:cf:3b:cc:bd:58:a1:09:62: ab:ca:c2:40:4b:d3:b9:4e:0b:ab:4c:57:da:13:2a: 93:3d:90:5a:aa:b2:3a:94:2a:86:9c:cf:b3:cb:07: 9a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5C:F0:53:2F:55:BE:CE:69:78:07:2C:86:65:95:FF:A7:42:A9:AC X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:12:da:09:b9:4d:c6:ac:90:82:6b:44:bb:08:fe:ce:a7:45: 5b:6a:e2:34:01:16:00:50:1a:f3:80:d8:76:58:6e:65:6d:d9: 61:e2:c9:d7:d8:bb:b3:20:10:ea:9e:cc:5a:e4:f1:85:48:e4: 8c:c0:38:50:38:84:63:75:82:0c:37:66:20:a4:77:b2:c2:60: 69:e5:30:af:4a:f6:4c:ac:8c:be:47:27:3a:23:7b:af:42:ca: c6:2a:0f:99:e4:8e:7e:25:12:ad:1d:47:ec:34:52:b9:24:52: e0:41:5a:9b:d1:e0:fc:ea:0b:12:89:ac:43:62:ee:66:14:84: 8c:26:d2:8b:6b:af:41:10:6e:9c:f9:35:96:fc:d3:08:81:a7: 20:0b:7d:d8:26:ed:37:d5:40:f4:22:37:7e:a5:d4:b5:33:61: 8a:b1:be:02:6e:6a:31:e6:b9:7b:e1:d7:49:d3:7f:98:d7:64: a6:9e:33:a8:55:41:96:53:de:3c:6d:67:44:b3:33:f2:f1:dd: 6a:3a:93:d2:62:88:f6:06:68:15:99:61:42:1d:5d:fe:cd:40: 6d:9b:30:0d:a6:b4:13:c6:7c:98:a2:64:fc:5b:65:6e:48:5a: f5:07:8d:80:15:c3:d0:22:05:18:f2:22:74:e0:dd:e5:1a:c6: cd:75:37:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjUwNTMwMjEwNDM0WhcNMjUwNjA2MjEwNDM0WjAYMRYwFAYD VQQDEw02ODNhMWQ2Mi01ZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xA3Hp1bbayBtuE2+/VRoNTwvoX9M1+Rjn+WDA0BDv59z1KQ7shtzvm+fujf JCGNx2h2dYmEjTHdPPJY1Fshu0U4CyVnmUlO1b636W1RhU+thlOfldwvFc/t4sGi R/OzeEe1wdmCdWWkIT7WvUzAlytUI39S3H/xTg767jLgIuNM/Ywu0+R59LvCQMCT lCViWHYBKSHLfinwzIrQv0G3fU8v64jmkiMNNrloGPCyP5JpQ3I+YkNgiB09/XYt INFd8Vo+6xRz9OFUAPP6gR3bThFsbqFTwlISzzvMvVihCWKrysJAS9O5TgurTFfa EyqTPZBaqrI6lCqGnM+zyweatQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1c8FMv Vb7OaXgHLIZllf+nQqmsMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4EtoJuU3GrJCCa0S7CP7Op0VbauI0ARYAUBrzgNh2WG5lbdlh4snX 2LuzIBDqnsxa5PGFSOSMwDhQOIRjdYIMN2YgpHeywmBp5TCvSvZMrIy+Ryc6I3uv QsrGKg+Z5I5+JRKtHUfsNFK5JFLgQVqb0eD86gsSiaxDYu5mFISMJtKLa69BEG6c +TWW/NMIgacgC33YJu031UD0Ijd+pdS1M2GKsb4Cbmox5rl74ddJ03+Y12SmnjOo VUGWU948bWdEszPy8d1qOpPSYoj2BmgVmWFCHV3+zUBtmzANprQTxnyYomT8W2Vu SFr1B42AFcPQIgUY8iJ04N3lGsbNdTfb -----END CERTIFICATE-----Generated at Sat May 31 17:49:40 2025 by rpki-client