$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft File: o222tflxI3VeVEH6xWqmu6BbCAo.mft (raw, json) Hash identifier: 2IkKZiAZcIlBJyKn81Or+d1kzXIUH0HJn8z0u024u+g= Subject key identifier: DD:40:7F:33:A5:03:03:09:D9:BB:E8:EC:D4:98:68:C3:28:16:10:C8 Authority key identifier: A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A Certificate issuer: /CN=A91BD4DF/serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft Manifest number: AE Signing time: Sat 31 May 2025 05:41:07 +0000 Manifest this update: Sat 31 May 2025 05:41:06 +0000 Manifest next update: Sat 07 Jun 2025 05:41:06 +0000 Files and hashes: 1: o222tflxI3VeVEH6xWqmu6BbCAo.crl (hash: dwXohgndvYMJ6MhDxsOl5XWKEn5Y5fX4azgJwbdtBJM=) 2: 4136642C39AA11EF933F9583C4F9AE02.roa (hash: +fFDWaDnFu7mpfAvBElCeG8uNXNIs5iwZjBDkX/SJz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD4DF, serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Validity Not Before: May 31 05:41:06 2025 GMT Not After : Jun 7 05:41:06 2025 GMT Subject: CN=683a9672-0c84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1d:35:db:e7:d9:9e:33:b1:70:4d:a2:0a:c3: ee:54:f8:9c:88:06:c7:24:24:a9:a3:1f:53:72:79: ee:40:b4:a5:b8:8c:b1:2f:d8:16:ec:8b:f9:8e:63: d6:0f:45:6c:a3:97:c7:29:e6:03:c2:30:97:09:16: 7a:b6:75:ef:15:10:ad:90:67:94:15:5f:eb:de:31: b7:6e:04:8b:00:e6:1c:63:e3:6e:e1:0a:bc:b6:3e: 0b:1d:a4:a9:9e:0a:9e:3b:a2:6b:2d:50:12:df:35: 28:7b:2d:78:59:ad:4a:7d:e1:4f:33:f0:0c:ba:e8: 2d:78:c5:fb:1b:9d:55:fc:cc:2b:79:5e:0d:7d:36: a1:08:e1:10:3e:a0:99:cd:72:9e:08:ce:38:04:27: 10:c6:2e:3b:23:9a:64:46:c3:82:f8:2a:72:48:0d: f0:08:01:13:43:58:bc:9c:4d:1c:5f:b9:f9:45:47: 21:a7:28:2c:27:fb:25:35:41:da:7f:31:df:d9:35: 35:4e:10:91:54:f0:fe:68:3c:ae:da:70:9c:f1:7e: 14:c7:04:cf:ac:3b:8e:9e:1d:60:68:99:76:55:2d: 9a:d9:47:f6:cc:21:00:43:1d:a1:9d:70:d9:b5:95: a2:87:1b:a4:70:69:25:22:e8:ba:c8:a9:0f:3a:33: 51:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:40:7F:33:A5:03:03:09:D9:BB:E8:EC:D4:98:68:C3:28:16:10:C8 X509v3 Authority Key Identifier: keyid:A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:45:37:45:90:9d:b7:3f:63:20:d0:db:11:72:8d:52:02:8a: 03:26:27:14:56:bb:7f:ea:9b:ab:1b:3c:c7:52:69:fb:ca:6c: d4:54:6f:83:6e:cc:e9:44:6b:7a:2e:38:78:8a:62:9e:2c:54: 97:36:f4:9d:4b:09:a1:ad:97:6a:23:66:15:69:f8:3d:27:65: a3:e1:7a:cc:bb:48:ec:a3:ba:4e:6f:f5:56:96:8b:77:e7:18: 7b:a5:63:6c:c6:01:50:7a:4d:7b:b0:78:37:ad:eb:e4:f5:d5: 4f:81:e8:22:50:3d:a8:f3:c0:e9:d5:ec:c0:67:14:3a:6a:e2: 33:23:9e:0e:fd:27:ef:11:be:7c:ca:fb:53:48:ac:fc:0b:e9: 8d:42:1a:f9:d7:5c:46:7b:0c:74:0d:c8:db:4b:f5:a7:bb:eb: 0e:87:6e:29:d4:dd:28:42:01:47:3c:ac:61:82:f6:87:8a:70: 0b:95:d5:04:1b:2f:c3:e0:c6:87:e8:a1:13:bd:82:99:94:d4: 4d:21:4f:24:48:4a:aa:a1:99:4c:49:29:51:25:b9:5c:23:2d: f3:ff:21:78:07:56:5b:c3:3f:76:72:e4:39:3c:eb:7e:f0:9a: 1e:41:0e:e2:75:42:b8:39:d6:b0:45:0e:eb:bb:51:b1:0b:6b: 66:21:de:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ0REYxMTAvBgNVBAUTKEEzNkRCNkI1Rjk3MTIzNzU1RTU0NDFGQUM1NkFBNkJC QTA1QjA4MEEwHhcNMjUwNTMxMDU0MTA2WhcNMjUwNjA3MDU0MTA2WjAYMRYwFAYD VQQDEw02ODNhOTY3Mi0wYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3B012+fZnjOxcE2iCsPuVPiciAbHJCSpox9TcnnuQLSluIyxL9gW7Iv5jmPW D0Vso5fHKeYDwjCXCRZ6tnXvFRCtkGeUFV/r3jG3bgSLAOYcY+Nu4Qq8tj4LHaSp ngqeO6JrLVAS3zUoey14Wa1KfeFPM/AMuugteMX7G51V/MwreV4NfTahCOEQPqCZ zXKeCM44BCcQxi47I5pkRsOC+CpySA3wCAETQ1i8nE0cX7n5RUchpygsJ/slNUHa fzHf2TU1ThCRVPD+aDyu2nCc8X4UxwTPrDuOnh1gaJl2VS2a2Uf2zCEAQx2hnXDZ tZWihxukcGklIui6yKkPOjNRCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1AfzOl AwMJ2bvo7NSYaMMoFhDIMB8GA1UdIwQYMBaAFKNttrX5cSN1XlRB+sVqprugWwgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDRERi8zMTBEMzU0MjM5 OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkzVmVWRUg2eFdxbXU2QmJD QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yMjJ0Zmx4STNWZVZFSDZ4V3FtdTZCYkNBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDRERi8zMTBEMzU0MjM5OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkz VmVWRUg2eFdxbXU2QmJDQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPRTdFkJ23P2Mg0NsRco1SAooDJicUVrt/6purGzzHUmn7ymzUVG+D bszpRGt6Ljh4imKeLFSXNvSdSwmhrZdqI2YVafg9J2Wj4XrMu0jso7pOb/VWlot3 5xh7pWNsxgFQek17sHg3revk9dVPgegiUD2o88Dp1ezAZxQ6auIzI54O/SfvEb58 yvtTSKz8C+mNQhr511xGewx0DcjbS/Wnu+sOh24p1N0oQgFHPKxhgvaHinALldUE Gy/D4MaH6KETvYKZlNRNIU8kSEqqoZlMSSlRJblcIy3z/yF4B1Zbwz92cuQ5POt+ 8JoeQQ7idUK4OdawRQ7ru1GxC2tmId5U -----END CERTIFICATE-----Generated at Sat May 31 17:37:44 2025 by rpki-client