$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: taIuPC9oXXt1GAMvUaSo5lCTkuN8p5uW9RYV6Lnt7tA= Subject key identifier: 53:35:42:81:07:29:29:6D:F9:08:16:12:D8:3B:AE:11:3C:80:28:79 Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 0AA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 0A98 Signing time: Fri 30 May 2025 19:46:00 +0000 Manifest this update: Fri 30 May 2025 19:45:59 +0000 Manifest next update: Fri 06 Jun 2025 19:45:59 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: pzezDZFb9XZ7Pk6iwmx0hzUf0WQrEoQP7zI0Vr/XxUc=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: iGeCqjea5TKx5w3j1RMFWZOzP6n/8IBkqpNhUcYz96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2722 (0xaa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0, serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: May 30 19:45:59 2025 GMT Not After : Jun 6 19:45:59 2025 GMT Subject: CN=683a0af8-7a1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:80:aa:1c:1f:28:d5:07:10:6d:ee:e3:bd:91: a2:a1:18:8c:b7:b9:9d:0f:5c:c5:73:7c:32:b7:13: 5b:d6:2c:8c:e7:77:ea:0c:1b:8b:77:6d:6a:7e:23: 18:d3:70:f5:e4:85:f9:e1:3d:0e:43:d5:3a:a9:80: 5c:de:b2:b6:a0:8d:f1:66:e3:23:2a:9f:a2:20:13: 10:38:cb:af:38:ac:47:46:f8:ac:70:42:60:33:e7: 80:ea:ac:9a:c2:60:cc:77:eb:a9:5c:59:ec:ef:08: 95:82:9d:dd:28:9f:5b:64:57:da:50:af:d6:e1:6a: 0e:b5:25:b2:b4:7b:a4:51:57:45:f3:b7:1e:c9:16: 4c:e6:b3:be:fc:18:43:c8:5d:ba:b8:8f:75:b4:a6: b3:28:60:91:77:83:7f:bc:82:7d:0e:1a:d1:fb:0a: ec:31:73:ab:ad:f0:81:7f:47:00:a4:c3:0a:d0:aa: 14:0e:f6:7d:6a:c6:a5:93:da:1b:39:87:19:8b:f5: 08:1b:0d:3f:a8:c2:a6:8b:63:e8:74:e5:40:6b:a3: 3e:89:79:8e:c8:a2:d5:b4:1e:72:87:7f:01:39:55: ce:ae:b9:45:69:0c:11:a9:74:89:f5:ab:44:d8:27: 9b:f8:f0:03:17:cf:d9:04:50:1b:90:b5:4b:ad:30: 1e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:35:42:81:07:29:29:6D:F9:08:16:12:D8:3B:AE:11:3C:80:28:79 X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:f4:53:04:39:72:1c:54:c4:2b:f0:d0:1b:8c:76:1a:65:98: b3:4e:4b:36:fc:41:b3:71:15:2e:32:72:73:2e:bb:8d:98:b3: 42:07:57:af:1b:ae:46:39:c8:61:b8:61:b2:4c:6b:2c:13:bb: 39:3a:a6:52:a4:58:02:86:5a:57:fd:9b:5d:bc:79:18:48:3e: cd:89:04:33:92:a4:50:a7:22:ce:2b:45:85:81:02:2d:39:dd: 0c:8f:b1:78:bc:04:43:0e:9e:0f:7e:60:ac:a5:5f:3b:e1:e2: a1:e5:77:c6:97:36:2e:0c:72:7a:c6:5f:67:0e:72:be:3c:f8: d9:f1:56:22:fc:1c:aa:49:04:24:e7:a8:b1:48:5a:09:df:7e: 51:97:39:cc:0e:e0:48:6d:09:e4:20:3f:04:bd:d5:cb:d4:ae: 52:e4:1e:ba:4a:9c:8f:a5:45:0a:55:a1:96:b5:19:30:69:92: b6:73:73:4e:48:74:32:00:1d:9c:95:ff:cc:6e:dc:8c:84:1e: 6f:57:65:ae:6e:c2:0c:fe:a5:4e:99:82:c2:6e:38:43:fb:c2: 93:55:27:92:ea:57:f2:01:c0:1e:7f:13:d0:eb:bd:2f:5c:0d: fb:0c:46:9e:ea:d9:de:4e:89:ca:cc:03:6f:ef:bd:47:f6:d0: 78:97:76:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjUwNTMwMTk0NTU5WhcNMjUwNjA2MTk0NTU5WjAYMRYwFAYD VQQDEw02ODNhMGFmOC03YTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4oCqHB8o1QcQbe7jvZGioRiMt7mdD1zFc3wytxNb1iyM53fqDBuLd21qfiMY 03D15IX54T0OQ9U6qYBc3rK2oI3xZuMjKp+iIBMQOMuvOKxHRviscEJgM+eA6qya wmDMd+upXFns7wiVgp3dKJ9bZFfaUK/W4WoOtSWytHukUVdF87ceyRZM5rO+/BhD yF26uI91tKazKGCRd4N/vIJ9DhrR+wrsMXOrrfCBf0cApMMK0KoUDvZ9asalk9ob OYcZi/UIGw0/qMKmi2PodOVAa6M+iXmOyKLVtB5yh38BOVXOrrlFaQwRqXSJ9atE 2Ceb+PADF8/ZBFAbkLVLrTAelQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFM1QoEH KSlt+QgWEtg7rhE8gCh5MB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA19FMEOXIcVMQr8NAbjHYaZZizTks2/EGzcRUuMnJzLruNmLNCB1ev G65GOchhuGGyTGssE7s5OqZSpFgChlpX/ZtdvHkYSD7NiQQzkqRQpyLOK0WFgQIt Od0Mj7F4vARDDp4PfmCspV874eKh5XfGlzYuDHJ6xl9nDnK+PPjZ8VYi/ByqSQQk 56ixSFoJ335RlznMDuBIbQnkID8EvdXL1K5S5B66SpyPpUUKVaGWtRkwaZK2c3NO SHQyAB2clf/MbtyMhB5vV2WubsIM/qVOmYLCbjhD+8KTVSeS6lfyAcAefxPQ670v XA37DEae6tneTonKzANv771H9tB4l3Z6 -----END CERTIFICATE-----Generated at Sat May 31 17:18:53 2025 by rpki-client