$ rpki-client -vvf rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft File: P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft (raw, json) Hash identifier: MV2PWRABx5OcDWbj6S6yjcEnGSXYjpJhnpX+VRFHVMY= Subject key identifier: EC:DD:34:FC:CB:20:30:DF:6D:23:B6:E9:CB:0A:49:17:A6:CD:A3:75 Authority key identifier: 3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A Certificate issuer: /CN=A91C37DD/serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft Manifest number: CF Signing time: Sat 31 May 2025 05:20:22 +0000 Manifest this update: Sat 31 May 2025 05:20:21 +0000 Manifest next update: Sat 07 Jun 2025 05:20:21 +0000 Files and hashes: 1: P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl (hash: gk5cxF+wDJY6Agury6o3y9yXXKnjj4/XSVZg+F9+Pa4=) 2: 8670D60E096611EF99F30750C4F9AE02.roa (hash: 9x3A7j08LRpC1gpJOubZns71PbS9EeGE42Z1Nuk8UHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C37DD, serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Validity Not Before: May 31 05:20:21 2025 GMT Not After : Jun 7 05:20:21 2025 GMT Subject: CN=683a9195-8172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:8d:32:7e:92:7a:cb:28:4c:ee:f1:38:e5: 3d:61:57:67:db:2e:ad:89:52:55:46:bc:c9:38:a5: d7:c5:1c:0d:eb:09:67:53:22:61:16:9c:08:dd:fc: ed:94:e4:b2:f9:80:fd:09:fe:17:75:d7:d8:98:bc: 64:58:65:50:fa:dd:18:14:b5:3d:f3:58:cd:bd:88: e3:94:d7:28:52:e3:0f:6c:5f:b0:34:f0:8e:ae:25: 3f:cd:32:53:15:e2:10:0c:78:95:54:2a:c7:ba:e1: 1a:71:3c:88:17:a7:44:e5:61:4a:32:be:02:90:6b: 1a:f5:10:50:09:05:0f:07:28:f6:e1:06:71:d7:7b: fb:c4:0a:0b:b7:82:01:0f:4b:5a:4f:5c:ba:4b:85: 25:b7:42:1b:87:de:ad:25:ca:13:06:95:6f:f1:b4: e2:1e:da:60:9a:ca:1f:32:40:5f:25:eb:40:b8:ad: 24:11:b4:dc:46:58:98:e4:ce:09:78:c9:37:d3:0a: b1:f6:4a:a5:8a:75:87:59:b1:c4:02:fc:c7:8a:dc: 86:d8:b6:86:ac:58:8c:b0:de:fc:80:d0:31:76:48: a5:84:76:76:4c:34:7b:16:05:22:e7:69:20:1e:3c: 14:d9:ae:33:3f:bf:a9:93:3d:98:59:29:d9:a9:a7: 5a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:DD:34:FC:CB:20:30:DF:6D:23:B6:E9:CB:0A:49:17:A6:CD:A3:75 X509v3 Authority Key Identifier: keyid:3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:6b:dd:6b:b8:94:ba:e2:9f:51:84:24:c3:d1:3b:75:ca:82: 64:17:6e:89:38:a0:12:59:73:ea:ee:32:ef:d7:b6:c6:3d:04: 22:93:e4:97:af:b7:98:ff:35:f0:6e:84:d0:42:48:bc:d0:7c: 35:e0:ae:e3:32:41:d0:da:81:c8:f3:f0:d7:bf:af:25:4c:0b: ea:01:54:b5:06:dd:c5:52:5a:09:e4:35:86:76:3f:09:67:76: b5:1a:d4:c2:e6:9e:f6:e3:db:53:1a:f6:a9:09:b8:0f:ff:81: a6:cf:98:db:d7:72:08:15:0b:d1:c2:ae:4d:41:41:d7:3e:0c: 6e:84:e7:4c:b4:83:1f:a4:0c:88:c0:5b:42:e3:c3:b8:d4:90: 84:a5:21:41:79:7b:74:3d:c0:e4:ef:95:b0:91:17:71:d8:38: 00:eb:7f:0c:97:aa:4a:8e:d4:9f:d6:27:3e:e4:f6:da:cd:05: f0:3c:bb:b6:19:02:4f:a0:d3:68:28:8f:0c:71:a0:f5:55:ea: d3:c4:d5:b6:50:e7:9d:92:6c:e2:85:cf:fc:13:59:02:b9:dc: 9d:be:da:ca:c5:c8:29:0f:9f:17:ce:40:c7:ec:05:c1:85:05: a6:64:6e:1f:eb:3e:d2:4a:28:a5:17:c9:d5:51:83:56:0e:2d: 9c:62:a4:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM3REQxMTAvBgNVBAUTKDNGRTNBRTM1NUE5Mjc3QjkxRDczRTJBQzUyRjUzODdG MDk1RjE4OUEwHhcNMjUwNTMxMDUyMDIxWhcNMjUwNjA3MDUyMDIxWjAYMRYwFAYD VQQDEw02ODNhOTE5NS04MTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYSNMn6SessoTO7xOOU9YVdn2y6tiVJVRrzJOKXXxRwN6wlnUyJhFpwI3fzt lOSy+YD9Cf4XddfYmLxkWGVQ+t0YFLU981jNvYjjlNcoUuMPbF+wNPCOriU/zTJT FeIQDHiVVCrHuuEacTyIF6dE5WFKMr4CkGsa9RBQCQUPByj24QZx13v7xAoLt4IB D0taT1y6S4Ult0Ibh96tJcoTBpVv8bTiHtpgmsofMkBfJetAuK0kEbTcRliY5M4J eMk30wqx9kqlinWHWbHEAvzHityG2LaGrFiMsN78gNAxdkilhHZ2TDR7FgUi52kg HjwU2a4zP7+pkz2YWSnZqadawwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzdNPzL IDDfbSO26csKSRemzaN1MB8GA1UdIwQYMBaAFD/jrjVakne5HXPirFL1OH8JXxia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzdERC8yNDg1NUQ4MDA5 NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3a2RjLUtzVXZVNGZ3bGZH Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtT3VOVnFTZDdrZGMtS3NVdlU0ZndsZkdKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzdERC8yNDg1NUQ4MDA5NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3 a2RjLUtzVXZVNGZ3bGZHSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABa91ruJS64p9RhCTD0Tt1yoJkF26JOKASWXPq7jLv17bGPQQik+SX r7eY/zXwboTQQki80Hw14K7jMkHQ2oHI8/DXv68lTAvqAVS1Bt3FUloJ5DWGdj8J Z3a1GtTC5p7249tTGvapCbgP/4Gmz5jb13IIFQvRwq5NQUHXPgxuhOdMtIMfpAyI wFtC48O41JCEpSFBeXt0PcDk75WwkRdx2DgA638Ml6pKjtSf1ic+5PbazQXwPLu2 GQJPoNNoKI8McaD1VerTxNW2UOedkmzihc/8E1kCudydvtrKxcgpD58XzkDH7AXB hQWmZG4f6z7SSiilF8nVUYNWDi2cYqQZ -----END CERTIFICATE-----Generated at Sat May 31 17:37:42 2025 by rpki-client