$ rpki-client -vvf rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft File: OUPUJhV5zeDoKgXKKrVLOHulGTM.mft (raw, json) Hash identifier: FZ5Vr7lAoQwiaJPM5P5aA5n6MGi23idaGIZggGah7NQ= Subject key identifier: CA:1F:16:A4:8C:BB:FD:FC:84:6D:41:1D:06:07:45:C2:40:FD:6A:05 Authority key identifier: 39:43:D4:26:15:79:CD:E0:E8:2A:05:CA:2A:B5:4B:38:7B:A5:19:33 Certificate issuer: /CN=A919D88F/serialNumber=3943D4261579CDE0E82A05CA2AB54B387BA51933 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft Manifest number: 73 Signing time: Sat 31 May 2025 06:24:24 +0000 Manifest this update: Sat 31 May 2025 06:24:23 +0000 Manifest next update: Sat 07 Jun 2025 06:24:23 +0000 Files and hashes: 1: OUPUJhV5zeDoKgXKKrVLOHulGTM.crl (hash: k45yt5nqlE+JvcSPuOkSulLvePiZteuVAE6rQ8VJ5Jc=) 2: 31C36B64905F11EFAF49EB6BC4F9AE02.roa (hash: L+MQl2N4HWMJyowT/sQLapWMqlpwpjacwTEIlXHA4EM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.crl rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D88F, serialNumber=3943D4261579CDE0E82A05CA2AB54B387BA51933 Validity Not Before: May 31 06:24:23 2025 GMT Not After : Jun 7 06:24:23 2025 GMT Subject: CN=683aa097-7931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:88:b0:c3:74:f1:4f:28:68:17:58:6a:8c:7c: 77:dc:b4:21:31:5f:5f:ab:4c:89:2c:e7:d5:2b:29: d7:db:85:fb:79:1b:56:9f:fa:88:f2:45:a7:56:8a: e5:f4:39:d3:6b:83:be:e0:9c:f9:da:e9:5f:84:58: 85:eb:d3:b5:53:51:84:71:86:87:40:c5:35:31:32: eb:b2:c7:03:40:b1:70:d8:37:7f:02:02:f4:31:2b: b0:04:1c:f6:5f:1c:d0:8e:63:27:dc:5f:fe:14:7b: b7:c3:fb:d9:32:ca:d6:da:d4:b4:63:63:fe:52:cb: 41:1e:2f:77:4d:d1:f7:d1:66:af:70:41:01:6f:de: df:3f:65:dc:f6:54:5c:12:8a:5f:93:d8:8f:46:8a: f6:47:9b:e1:a5:04:f3:82:8d:8e:2f:33:9b:b6:ee: e6:85:89:94:d5:b9:59:28:6c:1c:8b:ff:6f:e2:c0: 6a:42:a1:dd:3f:cb:03:b2:40:81:4d:ff:80:00:cf: c7:65:d8:13:93:8d:c8:74:47:66:94:8d:61:f1:e9: da:8d:74:e1:f8:c5:cb:f1:18:e9:bc:8d:c2:4a:1c: fa:63:16:7c:da:c5:98:21:6e:cb:fd:6e:2d:14:11: da:85:3e:2c:32:8b:e4:28:0f:ea:b6:b0:7a:46:12: 27:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:1F:16:A4:8C:BB:FD:FC:84:6D:41:1D:06:07:45:C2:40:FD:6A:05 X509v3 Authority Key Identifier: keyid:39:43:D4:26:15:79:CD:E0:E8:2A:05:CA:2A:B5:4B:38:7B:A5:19:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OUPUJhV5zeDoKgXKKrVLOHulGTM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D88F/84A5BC80905D11EFA4F31D2EC4F9AE02/OUPUJhV5zeDoKgXKKrVLOHulGTM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:70:d9:84:0e:35:dd:36:4d:03:ae:58:fb:6f:6f:10:e8:bd: bc:a5:ad:53:b2:35:15:55:3f:e1:d5:6e:68:72:ae:6d:2e:26: 46:bc:c9:fb:e5:93:14:e7:d4:23:fb:93:bc:7a:63:0a:31:53: f7:0c:91:b0:6a:0f:0e:9e:7d:39:4c:04:dd:ba:b4:57:87:19: 0d:c8:f3:7e:c4:27:f5:12:dc:fc:38:09:fe:07:ce:af:25:f2: 6d:91:42:eb:09:4d:b4:14:dd:b6:e0:0c:3c:84:33:eb:03:0e: 22:90:bb:5a:10:84:5d:b7:65:53:99:2f:05:b2:fa:a4:d7:2d: 31:b6:a1:9e:1f:1a:7e:59:fe:ab:d7:b9:48:5d:7e:20:77:4a: 93:9b:c3:39:32:ac:41:14:fb:78:1b:18:68:0b:65:66:67:c0: c9:b0:8f:28:87:68:98:a4:3d:5b:f3:71:e3:08:f2:5b:36:4f: 14:9c:f3:85:36:29:bb:3d:76:b5:68:84:f6:72:f4:ab:b7:50: c3:71:33:ae:e9:37:f4:ab:69:8f:7f:6a:b5:47:a9:0f:05:0a: 38:b0:61:75:bd:ac:12:d3:f9:58:cc:3f:e8:5b:65:e1:6a:8f: cc:7e:2c:98:fa:7b:f5:99:b0:0d:7f:d6:c9:62:57:21:4a:f2: 02:7f:b4:d0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDg4RjExMC8GA1UEBRMoMzk0M0Q0MjYxNTc5Q0RFMEU4MkEwNUNBMkFCNTRCMzg3 QkE1MTkzMzAeFw0yNTA1MzEwNjI0MjNaFw0yNTA2MDcwNjI0MjNaMBgxFjAUBgNV BAMTDTY4M2FhMDk3LTc5MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMiLDDdPFPKGgXWGqMfHfctCExX1+rTIks59UrKdfbhft5G1af+ojyRadWiuX0 OdNrg77gnPna6V+EWIXr07VTUYRxhodAxTUxMuuyxwNAsXDYN38CAvQxK7AEHPZf HNCOYyfcX/4Ue7fD+9kyytba1LRjY/5Sy0EeL3dN0ffRZq9wQQFv3t8/Zdz2VFwS il+T2I9GivZHm+GlBPOCjY4vM5u27uaFiZTVuVkobByL/2/iwGpCod0/ywOyQIFN /4AAz8dl2BOTjch0R2aUjWHx6dqNdOH4xcvxGOm8jcJKHPpjFnzaxZghbsv9bi0U EdqFPiwyi+QoD+q2sHpGEifNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyh8WpIy7 /fyEbUEdBgdFwkD9agUwHwYDVR0jBBgwFoAUOUPUJhV5zeDoKgXKKrVLOHulGTMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEODhGLzg0QTVCQzgwOTA1 RDExRUZBNEYzMUQyRUM0RjlBRTAyL09VUFVKaFY1emVEb0tnWEtLclZMT0h1bEdU TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT1VQVUpoVjV6ZURvS2dYS0tyVkxPSHVsR1RNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE ODhGLzg0QTVCQzgwOTA1RDExRUZBNEYzMUQyRUM0RjlBRTAyL09VUFVKaFY1emVE b0tnWEtLclZMT0h1bEdUTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADlw2YQONd02TQOuWPtvbxDovbylrVOyNRVVP+HVbmhyrm0uJka8yfvl kxTn1CP7k7x6YwoxU/cMkbBqDw6efTlMBN26tFeHGQ3I837EJ/US3Pw4Cf4Hzq8l 8m2RQusJTbQU3bbgDDyEM+sDDiKQu1oQhF23ZVOZLwWy+qTXLTG2oZ4fGn5Z/qvX uUhdfiB3SpObwzkyrEEU+3gbGGgLZWZnwMmwjyiHaJikPVvzceMI8ls2TxSc84U2 Kbs9drVohPZy9Ku3UMNxM67pN/SraY9/arVHqQ8FCjiwYXW9rBLT+VjMP+hbZeFq j8x+LJj6e/WZsA1/1sliVyFK8gJ/tNA= -----END CERTIFICATE-----Generated at Sat May 31 17:32:57 2025 by rpki-client