$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft File: OU6gholcbxfZNlSKMiOLgs95KU0.mft (raw, json) Hash identifier: 7XhnU6u+yQLPV0TJe6Cjzaru0AD0UICPK+mdaH4unns= Subject key identifier: F8:4E:D1:20:F7:4E:68:2F:43:40:8F:F8:F5:20:40:1A:E0:2B:57:DB Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 0FBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft Manifest number: 0FAB Signing time: Fri 30 May 2025 17:42:57 +0000 Manifest this update: Fri 30 May 2025 17:42:56 +0000 Manifest next update: Fri 06 Jun 2025 17:42:56 +0000 Files and hashes: 1: OU6gholcbxfZNlSKMiOLgs95KU0.crl (hash: 59oL5AVCjnRUQOM+3maslHfwE8t1pIChJI7ATcHxJ1c=) 2: 68DA14E65BB211E9BF474F16C4F9AE02.roa (hash: +yhzJzGn+WxW2d4EtUHBstgfBIaoIoaYoJwg0N+/u2I=) 3: B2409F28DF9311EEBF6BC36DC4F9AE02.roa (hash: bOx/MaRmXB38ne/1h1RZYscRhBFAXmNorXwlc1KE7w8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4026 (0xfba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: May 30 17:42:56 2025 GMT Not After : Jun 6 17:42:56 2025 GMT Subject: CN=6839ee20-5dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:32:eb:90:1e:7b:55:14:55:76:63:bf:5f:8f: 37:df:76:ef:40:00:20:a1:09:c4:28:ce:e6:37:3e: 1d:7b:89:8c:43:42:8b:27:89:db:8f:61:44:1b:73: 8c:d8:64:9d:48:2f:25:0d:27:a2:79:f1:b0:4f:73: 53:ba:9e:a7:51:cf:eb:6c:ab:12:73:8d:3b:af:c6: 39:06:98:3d:63:c9:52:a8:e4:ab:59:90:7e:b3:8d: 29:a5:5e:47:31:db:65:57:38:2b:6e:35:bf:3a:43: ee:78:83:c3:5f:6c:a6:9f:33:ca:a7:de:fa:88:72: 1e:5b:9e:dc:f9:7f:4f:1c:09:89:b3:ee:ae:73:4f: ac:12:6e:31:8b:ce:d6:ba:c4:25:cc:85:39:83:ae: 8b:03:52:88:36:8b:6f:4b:b8:55:3b:9c:19:82:be: 9c:ca:09:e7:83:62:2b:c8:e3:59:f1:75:5d:a8:86: fd:ef:ff:63:97:ef:7d:bc:92:9b:e8:35:d7:3f:32: 97:ba:6e:a6:ce:24:2f:50:ba:e8:0e:98:33:b9:5f: 3d:fa:26:bc:0b:89:9d:d9:12:e6:15:bc:1e:7b:b2: ab:76:53:23:d9:ba:24:aa:79:54:d0:47:5f:20:17: 4a:60:b4:c6:20:14:90:c1:fa:a0:04:60:01:4e:af: 2f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:4E:D1:20:F7:4E:68:2F:43:40:8F:F8:F5:20:40:1A:E0:2B:57:DB X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:4a:0d:86:0d:16:b2:43:d7:ae:e6:fc:9a:3c:a3:99:ba:a9: b7:ca:fd:11:e1:bf:02:aa:5a:e3:07:6d:1a:37:6e:84:4d:3a: 7e:63:89:85:29:55:e3:0a:c9:75:22:8e:c6:90:75:42:68:92: f8:7b:4a:f5:5e:cd:b1:45:bd:f4:bf:ba:b5:bd:b1:ae:dd:54: cc:0c:95:f4:43:f5:ed:85:5e:9c:d2:08:44:c5:d2:15:27:4a: 77:72:35:a5:f8:b0:6a:ba:bd:fc:57:94:25:00:7d:25:af:69: 50:5c:4d:ed:60:5e:b3:18:74:f1:20:c8:d6:9d:ac:15:f4:e1: 30:fe:da:71:31:89:7a:3a:9d:ce:06:60:ae:3b:9a:2c:cd:44: d6:d1:bf:e2:dd:09:21:82:cc:2a:15:e5:98:f7:41:a2:f0:64: 91:b4:57:8f:c8:6b:4d:a3:60:3f:c1:19:01:8a:34:10:bf:38: 6d:bb:2c:ba:06:15:42:ad:da:9a:9b:3a:53:c0:94:b1:3c:41: 11:7a:46:81:53:17:04:a0:8b:dd:aa:6a:dd:8d:ae:f4:23:ed: 70:ed:86:94:37:9a:85:d2:c4:8a:7c:64:e4:fa:bf:da:51:c2: c9:df:d6:6e:46:de:62:14:7e:1f:ab:6b:29:c9:a2:fc:b0:4b: 5b:f3:49:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjUwNTMwMTc0MjU2WhcNMjUwNjA2MTc0MjU2WjAYMRYwFAYD VQQDEw02ODM5ZWUyMC01ZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzLrkB57VRRVdmO/X48333bvQAAgoQnEKM7mNz4de4mMQ0KLJ4nbj2FEG3OM 2GSdSC8lDSeiefGwT3NTup6nUc/rbKsSc407r8Y5Bpg9Y8lSqOSrWZB+s40ppV5H MdtlVzgrbjW/OkPueIPDX2ymnzPKp976iHIeW57c+X9PHAmJs+6uc0+sEm4xi87W usQlzIU5g66LA1KINotvS7hVO5wZgr6cygnng2IryONZ8XVdqIb97/9jl+99vJKb 6DXXPzKXum6mziQvULroDpgzuV89+ia8C4md2RLmFbwee7KrdlMj2bokqnlU0Edf IBdKYLTGIBSQwfqgBGABTq8vxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhO0SD3 TmgvQ0CP+PUgQBrgK1fbMB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8xNzQ4ODU1MDVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4 ZlpObFNLTWlPTGdzOTVLVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOSg2GDRayQ9eu5vyaPKOZuqm3yv0R4b8CqlrjB20aN26ETTp+Y4mF KVXjCsl1Io7GkHVCaJL4e0r1Xs2xRb30v7q1vbGu3VTMDJX0Q/XthV6c0ghExdIV J0p3cjWl+LBqur38V5QlAH0lr2lQXE3tYF6zGHTxIMjWnawV9OEw/tpxMYl6Op3O BmCuO5oszUTW0b/i3QkhgswqFeWY90Gi8GSRtFePyGtNo2A/wRkBijQQvzhtuyy6 BhVCrdqamzpTwJSxPEERekaBUxcEoIvdqmrdja70I+1w7YaUN5qF0sSKfGTk+r/a UcLJ39ZuRt5iFH4fq2spyaL8sEtb80n+ -----END CERTIFICATE-----Generated at Sat May 31 17:32:53 2025 by rpki-client