$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: fGD5QGXFD2c8oNOuo3oZWPoAzVTYA+9SIBzOUFx2KA4= Subject key identifier: BF:F1:3A:4B:D1:B2:EB:06:54:CC:08:AC:E0:A0:B7:2C:EB:87:2E:35 Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 08F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 08E5 Signing time: Fri 30 May 2025 20:38:28 +0000 Manifest this update: Fri 30 May 2025 20:38:27 +0000 Manifest next update: Fri 06 Jun 2025 20:38:27 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: P/WnAbmkwG3NHFupkOy4Lz6wrnJUADF/kFRWXZeQsVc=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: 3hcEUgYqoshOk8lFFnh68Ppk5C9DLTGbNkZXNe5ZLqA=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: ao7owdTBxv72fQFQJlEFwxw2v4nLgAcrWGOJHUBmOYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: May 30 20:38:27 2025 GMT Not After : Jun 6 20:38:27 2025 GMT Subject: CN=683a1744-e9f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3c:9a:c5:46:0e:df:fe:f0:4f:f9:ba:eb:3a: 4a:6e:bb:9a:d5:dc:ed:79:9c:c1:77:93:9a:f7:4e: 23:b5:b5:e8:4f:dd:f0:f3:62:aa:bd:f7:d0:a0:f2: 20:df:e3:4e:3b:7e:13:ad:12:2e:38:cf:ef:26:b8: 27:96:42:fa:58:b6:a4:78:50:2b:d3:a7:5e:f5:44: a4:5b:14:e5:64:c0:9a:9e:66:dc:45:32:0f:3b:58: 15:56:7b:5e:5e:61:e4:ba:d8:2b:8b:bd:a7:d9:e2: 9c:90:7e:9e:18:f5:01:89:11:de:83:b9:23:89:d9: 08:1e:f2:c5:f1:34:18:61:69:2f:5c:c4:05:a0:62: bc:87:c9:6d:1e:f5:9e:9e:35:f1:17:7a:9f:90:33: 97:1c:21:22:12:6d:c0:ac:4a:1e:8a:69:bd:11:9d: 72:95:3a:27:46:41:8d:52:43:80:38:7a:61:ea:b0: c4:6e:f3:ae:56:ec:02:8d:59:83:ab:98:ef:2c:5b: 52:63:27:ca:b1:d9:69:8c:82:6d:a1:64:2a:9c:71: ae:d3:84:a0:a5:3b:7e:4e:5e:21:24:a5:1d:e5:5b: 32:de:46:fd:95:e4:3d:b1:d1:48:31:09:79:15:14: ea:75:df:68:e1:f9:01:bf:8e:d0:4b:45:4b:41:fe: fa:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F1:3A:4B:D1:B2:EB:06:54:CC:08:AC:E0:A0:B7:2C:EB:87:2E:35 X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:9c:db:79:6b:c1:8c:e3:1a:09:03:da:a7:87:41:f6:af:84: e7:d6:39:ae:d3:ca:dd:18:da:24:54:f4:51:84:31:25:9f:c8: 5c:70:b0:ba:e9:8c:ad:27:8f:09:0b:7a:92:cb:3d:75:b3:92: a6:64:8e:74:28:ec:8f:35:0f:bf:ab:9e:85:47:d9:b0:c3:46: 7f:ac:02:eb:ef:67:ed:59:1b:92:08:c4:3e:f5:8e:5e:38:f9: 94:85:b1:91:84:a2:ea:4e:de:af:6d:87:e5:8f:99:dc:2f:2d: 08:a9:1b:fe:bc:7a:6b:59:5d:d0:33:f2:65:16:9e:1d:09:e0: 26:63:05:25:78:e7:5b:a7:8c:37:d4:98:e6:e1:04:85:73:6b: 7b:46:f9:e5:d2:0c:d2:8c:ba:2d:e6:ff:ef:e1:42:b4:1d:9d: 91:45:4f:01:78:29:3e:31:e5:5d:18:7a:89:16:4f:5b:37:2a: 1d:eb:70:c7:49:2b:b4:d1:e4:cc:39:5e:25:a6:4d:66:d0:27: 5b:5e:3d:10:8b:fb:03:ef:fb:04:dc:2f:56:25:03:af:57:8f: 2b:37:af:56:bb:35:21:c8:cd:9c:52:ed:b2:33:25:56:2c:6b: 7e:22:cc:68:46:98:eb:27:f3:df:c3:4a:04:cd:fd:26:23:3e: 67:e4:6d:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjUwNTMwMjAzODI3WhcNMjUwNjA2MjAzODI3WjAYMRYwFAYD VQQDEw02ODNhMTc0NC1lOWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTyaxUYO3/7wT/m66zpKbrua1dzteZzBd5Oa904jtbXoT93w82KqvffQoPIg 3+NOO34TrRIuOM/vJrgnlkL6WLakeFAr06de9USkWxTlZMCanmbcRTIPO1gVVnte XmHkutgri72n2eKckH6eGPUBiRHeg7kjidkIHvLF8TQYYWkvXMQFoGK8h8ltHvWe njXxF3qfkDOXHCEiEm3ArEoeimm9EZ1ylTonRkGNUkOAOHph6rDEbvOuVuwCjVmD q5jvLFtSYyfKsdlpjIJtoWQqnHGu04SgpTt+Tl4hJKUd5Vsy3kb9leQ9sdFIMQl5 FRTqdd9o4fkBv47QS0VLQf768wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/xOkvR susGVMwIrOCgtyzrhy41MB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXnNt5a8GM4xoJA9qnh0H2r4Tn1jmu08rdGNokVPRRhDEln8hccLC6 6YytJ48JC3qSyz11s5KmZI50KOyPNQ+/q56FR9mww0Z/rALr72ftWRuSCMQ+9Y5e OPmUhbGRhKLqTt6vbYflj5ncLy0IqRv+vHprWV3QM/JlFp4dCeAmYwUleOdbp4w3 1Jjm4QSFc2t7Rvnl0gzSjLot5v/v4UK0HZ2RRU8BeCk+MeVdGHqJFk9bNyod63DH SSu00eTMOV4lpk1m0CdbXj0Qi/sD7/sE3C9WJQOvV48rN69WuzUhyM2cUu2yMyVW LGt+IsxoRpjrJ/Pfw0oEzf0mIz5n5G0u -----END CERTIFICATE-----Generated at Sat May 31 17:22:07 2025 by rpki-client