$ rpki-client -vvf rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft File: oXkseNMOEHMKPERWHH5YIufxwvg.mft (raw, json) Hash identifier: 4jyJNls4UnhqhMnnhHn/OxJXADMJ3ZIsonJjserglaM= Subject key identifier: 6C:AF:6C:EE:44:64:C1:12:7B:0F:8E:C0:B1:43:55:A7:6F:0A:05:9D Authority key identifier: A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 Certificate issuer: /CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Certificate serial: 0859 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft Manifest number: 084D Signing time: Fri 30 May 2025 20:57:58 +0000 Manifest this update: Fri 30 May 2025 20:57:57 +0000 Manifest next update: Fri 06 Jun 2025 20:57:57 +0000 Files and hashes: 1: oXkseNMOEHMKPERWHH5YIufxwvg.crl (hash: k2AtOvXGqzTZW7BxyF0RRegVwUnkHgjGjvuREg10mgA=) 2: 153A3AE86A9111EF905C3C37C4F9AE02.roa (hash: LYF+KadzZ69diyD5rWiKHJlYkwO/eA/Z250K04w+xPI=) 3: AA973CB86A8B11EFB0774B61C4F9AE02.roa (hash: +w6DPiK2iGC1sFd6+H0KMfGyjFvRHYPwKc/prnzBHkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2137 (0x859) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A093A, serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Validity Not Before: May 30 20:57:57 2025 GMT Not After : Jun 6 20:57:57 2025 GMT Subject: CN=683a1bd5-ec17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:29:bb:ba:dd:da:5f:a4:92:cf:04:3a:cc:da: dd:c7:fe:f0:e5:70:1e:e0:7c:8e:49:9a:af:74:87: a4:03:22:2e:ee:dc:a3:0a:6f:b8:8c:58:b8:d4:94: 1b:d7:3e:d3:f8:bc:76:2a:5e:5c:15:c7:21:22:c7: c0:68:95:db:54:d2:c1:94:08:c9:06:37:63:6b:80: 58:4a:53:b3:4f:86:73:46:74:65:74:a7:67:19:63: 4b:e9:e8:63:88:80:e0:6d:da:88:05:1c:d4:fe:16: d8:1c:46:09:93:b1:35:93:f9:16:6c:9c:a5:02:42: 61:52:a0:00:1a:3d:f4:b4:c7:cd:22:a6:08:7d:21: 74:0f:93:84:6e:90:39:2e:e6:c0:9a:ef:aa:6f:56: d2:49:1e:63:cb:d7:5c:0f:90:8e:dc:3d:c9:68:1f: 6b:86:90:b0:e2:8e:d9:db:1b:52:fb:55:2c:a7:ff: 40:aa:92:2f:9d:b9:ce:6b:5a:d1:2a:28:5c:99:f6: 3a:c7:a7:72:fb:4d:62:21:fe:b1:ed:72:c7:e5:fd: f8:af:c4:3a:5e:a7:0f:b9:5b:d5:f9:a2:ce:f2:34: 2e:3c:20:36:ba:8f:6a:0f:2f:71:4e:e2:ea:99:15: 68:7c:31:e1:8b:50:c6:82:41:60:e1:52:13:bc:9d: fd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:AF:6C:EE:44:64:C1:12:7B:0F:8E:C0:B1:43:55:A7:6F:0A:05:9D X509v3 Authority Key Identifier: keyid:A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:cb:14:3a:98:6b:0c:d0:c2:87:00:8e:37:8b:76:7b:f4:09: 06:33:80:c4:0f:42:20:63:9d:6c:88:3b:d8:76:77:9d:ba:79: 3c:a1:7b:23:f1:a4:0a:6d:b4:0f:ec:27:24:39:00:05:58:66: d3:c5:43:79:f9:3e:f8:b7:e5:06:4d:37:33:be:4c:0f:d6:ad: fb:b6:e5:93:99:5a:2f:0c:c9:d5:9a:0a:22:68:b8:ab:7f:54: 7d:89:1c:d7:16:46:a1:e7:e6:26:f1:c8:a7:65:5d:e3:1d:c0: 0a:9a:26:cb:07:93:39:1d:51:98:81:36:d4:dc:f0:b6:ee:91: 3f:ff:28:29:8e:21:e7:2b:d7:d9:be:5b:50:dd:4e:ae:99:1d: b1:2e:2e:60:59:26:49:ce:8c:29:7d:46:9a:87:9c:68:5d:bf: de:db:6e:25:0d:48:ae:22:14:d8:23:a2:3c:48:a5:60:21:e4: de:ae:bd:c5:d9:ee:56:b1:5c:4d:0e:88:67:51:94:f7:90:b0: 0e:a4:78:66:4d:2d:b0:a4:8c:16:b3:65:6c:ec:22:eb:bc:cd: 21:28:4d:16:2d:8a:2b:07:f5:df:34:da:f3:59:fb:95:0f:d6: 8b:20:01:ed:ff:a8:4f:81:e6:dd:3e:93:68:b4:6c:f1:66:52: 86:8a:f5:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5M0ExMTAvBgNVBAUTKEExNzkyQzc4RDMwRTEwNzMwQTNDNDQ1NjFDN0U1ODIy RTdGMUMyRjgwHhcNMjUwNTMwMjA1NzU3WhcNMjUwNjA2MjA1NzU3WjAYMRYwFAYD VQQDEw02ODNhMWJkNS1lYzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtim7ut3aX6SSzwQ6zNrdx/7w5XAe4HyOSZqvdIekAyIu7tyjCm+4jFi41JQb 1z7T+Lx2Kl5cFcchIsfAaJXbVNLBlAjJBjdja4BYSlOzT4ZzRnRldKdnGWNL6ehj iIDgbdqIBRzU/hbYHEYJk7E1k/kWbJylAkJhUqAAGj30tMfNIqYIfSF0D5OEbpA5 LubAmu+qb1bSSR5jy9dcD5CO3D3JaB9rhpCw4o7Z2xtS+1Usp/9AqpIvnbnOa1rR KihcmfY6x6dy+01iIf6x7XLH5f34r8Q6XqcPuVvV+aLO8jQuPCA2uo9qDy9xTuLq mRVofDHhi1DGgkFg4VITvJ39twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyvbO5E ZMESew+OwLFDVadvCgWdMB8GA1UdIwQYMBaAFKF5LHjTDhBzCjxEVhx+WCLn8cL4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDkzQS9FQkEzNTMxRUNC RDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VITUtQRVJXSEg1WUl1Znh3 dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Ya3NlTk1PRUhNS1BFUldISDVZSXVmeHd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDkzQS9FQkEzNTMxRUNCRDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VI TUtQRVJXSEg1WUl1Znh3dmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjyxQ6mGsM0MKHAI43i3Z79AkGM4DED0IgY51siDvYdnedunk8oXsj 8aQKbbQP7CckOQAFWGbTxUN5+T74t+UGTTczvkwP1q37tuWTmVovDMnVmgoiaLir f1R9iRzXFkah5+Ym8cinZV3jHcAKmibLB5M5HVGYgTbU3PC27pE//ygpjiHnK9fZ vltQ3U6umR2xLi5gWSZJzowpfUaah5xoXb/e224lDUiuIhTYI6I8SKVgIeTerr3F 2e5WsVxNDohnUZT3kLAOpHhmTS2wpIwWs2Vs7CLrvM0hKE0WLYorB/XfNNrzWfuV D9aLIAHt/6hPgebdPpNotGzxZlKGivWc -----END CERTIFICATE-----Generated at Sat May 31 17:03:25 2025 by rpki-client