$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: +ySg5bXTJ75fbDkw/FJJrutsE1up/2hx4V91nB2cWWM= Subject key identifier: C0:6D:85:7A:8A:C2:EB:67:12:51:3C:78:EF:67:75:4E:A8:D5:AE:6B Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 0206 Signing time: Sat 31 May 2025 02:12:21 +0000 Manifest this update: Sat 31 May 2025 02:12:21 +0000 Manifest next update: Sat 07 Jun 2025 02:12:21 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: eGYmBi5+CLFUhKSs5IK6SmJRS/M43IHbQalua627dk4=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: JUU9x04r0AO1GN2PUUX6ELgHywTKgyrE2nXs4Tcl03M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: May 31 02:12:21 2025 GMT Not After : Jun 7 02:12:21 2025 GMT Subject: CN=683a6585-1b42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:78:f4:6c:eb:29:2b:fc:b9:25:63:92:67:c2: 2d:ed:c5:58:35:82:11:d5:4a:28:d2:91:f4:9e:cb: dc:1a:52:67:64:68:6c:f8:19:4f:e1:b4:9c:eb:80: d9:21:0c:78:40:e6:4c:01:ee:b1:f0:fd:22:f9:b7: 18:0e:57:3b:75:c6:45:ac:f8:05:c2:a5:87:15:af: d3:0d:dd:75:d4:63:11:ad:51:b6:09:b9:ce:78:f7: 85:e8:ca:20:f9:da:4c:e2:e2:8e:47:0a:e2:fa:7b: 77:f7:50:b7:37:a2:d5:57:ef:79:d4:f4:6b:28:53: 04:4e:75:6d:89:fc:16:82:54:70:9c:9a:eb:e6:74: a7:7f:75:3e:a4:e4:18:16:3b:f8:3b:97:3a:ef:f4: 17:0e:0f:db:16:4a:b2:db:07:49:62:92:cb:1c:f4: 35:43:3a:10:0c:9f:63:38:a7:04:19:7e:dd:3f:e3: 7b:99:b7:d7:ef:f7:93:7b:f5:4b:40:c1:a6:80:8f: d0:2c:e5:23:98:80:22:7b:1a:d5:15:05:c3:3b:ef: d4:91:e9:c8:68:16:d9:02:b5:b5:ff:88:be:cc:d0: 3d:73:87:aa:cd:bd:d3:4c:8f:2c:32:86:44:f9:6b: 36:7a:24:d0:1b:1d:6a:fe:be:7b:ff:be:75:9f:85: a5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:6D:85:7A:8A:C2:EB:67:12:51:3C:78:EF:67:75:4E:A8:D5:AE:6B X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:1b:96:90:67:73:0f:01:82:18:ab:6e:57:5c:18:8a:2f:bb: 13:c2:aa:ac:d4:a4:45:8d:54:00:6a:5d:4a:60:c1:79:74:6e: ac:76:38:96:d4:fb:75:1a:f9:00:43:6a:c5:d8:9a:40:43:84: e9:55:e7:f6:e1:cb:d2:64:db:c1:ec:49:bb:15:72:1c:be:9f: 23:4d:e5:80:ac:e8:63:4f:74:8e:5c:a6:e8:6a:bd:08:ef:40: c4:06:b1:3e:9b:36:d4:27:0d:93:12:a0:b9:08:70:c1:21:2b: 18:53:11:3a:d6:0d:c7:bc:ab:3c:2b:73:76:46:b8:fe:20:ac: b5:23:97:f1:88:eb:fa:93:28:ce:a4:bc:33:05:10:09:e4:fd: 9a:ca:78:85:7d:97:ea:0a:e3:6f:82:cf:ec:ee:7b:ee:1c:05: 9b:b7:a3:ba:4c:1d:d5:78:4b:1d:17:c2:f4:9c:da:fb:8c:c0: 99:6f:e0:72:d8:6b:59:d3:9c:07:31:e4:0c:4b:bd:5a:0b:75: c0:ab:b1:46:3a:74:42:0d:3c:fb:ea:5e:d1:17:dd:fa:1b:e8: e3:1b:e8:a2:14:10:90:9a:06:6c:f6:c9:56:8a:ad:da:98:e5: 99:4d:71:ed:39:d6:3e:b8:cc:fd:6c:b7:b4:d7:89:78:d0:50: 55:cb:34:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjUwNTMxMDIxMjIxWhcNMjUwNjA3MDIxMjIxWjAYMRYwFAYD VQQDEw02ODNhNjU4NS0xYjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnj0bOspK/y5JWOSZ8It7cVYNYIR1Uoo0pH0nsvcGlJnZGhs+BlP4bSc64DZ IQx4QOZMAe6x8P0i+bcYDlc7dcZFrPgFwqWHFa/TDd111GMRrVG2CbnOePeF6Mog +dpM4uKORwri+nt391C3N6LVV+951PRrKFMETnVtifwWglRwnJrr5nSnf3U+pOQY Fjv4O5c67/QXDg/bFkqy2wdJYpLLHPQ1QzoQDJ9jOKcEGX7dP+N7mbfX7/eTe/VL QMGmgI/QLOUjmIAiexrVFQXDO+/UkenIaBbZArW1/4i+zNA9c4eqzb3TTI8sMoZE +Ws2eiTQGx1q/r57/751n4WloQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBthXqK wutnElE8eO9ndU6o1a5rMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABG5aQZ3MPAYIYq25XXBiKL7sTwqqs1KRFjVQAal1KYMF5dG6sdjiW 1Pt1GvkAQ2rF2JpAQ4TpVef24cvSZNvB7Em7FXIcvp8jTeWArOhjT3SOXKboar0I 70DEBrE+mzbUJw2TEqC5CHDBISsYUxE61g3HvKs8K3N2Rrj+IKy1I5fxiOv6kyjO pLwzBRAJ5P2ayniFfZfqCuNvgs/s7nvuHAWbt6O6TB3VeEsdF8L0nNr7jMCZb+By 2GtZ05wHMeQMS71aC3XAq7FGOnRCDTz76l7RF936G+jjG+iiFBCQmgZs9slWiq3a mOWZTXHtOdY+uMz9bLe014l40FBVyzQH -----END CERTIFICATE-----Generated at Sat May 31 17:39:13 2025 by rpki-client