$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: As4R6+AI8e8ktsoN+jBbpXc4Z0tcq/1xuUrzvBQBgmc= Subject key identifier: 71:B8:58:C9:C1:D6:F7:6B:A0:9B:B0:75:C7:DC:04:93:33:04:60:84 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 0116 Signing time: Sat 31 May 2025 04:27:55 +0000 Manifest this update: Sat 31 May 2025 04:27:55 +0000 Manifest next update: Sat 07 Jun 2025 04:27:55 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: 1dJlCZombhceDHWNO3ZPfFl2I+be6yzqzuhBZ2nmTX8=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:27:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: May 31 04:27:55 2025 GMT Not After : Jun 7 04:27:55 2025 GMT Subject: CN=683a854b-cbb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1e:7d:9d:4e:e6:a1:27:59:38:f4:51:a3:54: 7a:d6:da:04:0d:00:85:f8:da:27:98:90:35:41:a9: 71:ed:c4:e7:31:b2:f1:f5:26:ac:43:ba:63:b1:7d: 43:c1:a2:00:ab:86:c0:67:e1:80:0c:b7:2f:e5:9a: e6:3c:b2:6c:8e:44:7e:7c:d7:de:f1:69:d4:f0:f6: 5b:4b:69:18:6d:1f:0d:2f:ee:91:4c:16:12:25:7b: 1c:cc:d4:f2:c7:11:71:dd:f3:43:bc:90:72:e7:87: cd:42:9a:83:79:30:99:1a:4f:38:e6:b1:46:f8:23: 31:85:3a:f0:bb:c6:e7:58:0e:a7:45:3b:94:b6:6b: ff:d4:cd:ac:f7:6d:e3:9c:12:cc:19:e0:3b:b4:c4: b9:87:2f:3c:02:e2:29:c4:3a:60:75:4b:2f:9f:39: d1:df:ea:59:ad:b2:eb:ec:16:f8:ea:58:6b:bc:46: de:93:4c:19:38:44:b0:3e:fc:30:a8:d7:96:d1:22: 91:d1:53:6c:71:19:f3:b6:9e:fb:17:51:c4:2d:1e: 94:ed:6f:2a:7c:ac:54:47:fc:7a:be:a8:27:95:5c: 31:bc:b6:78:c3:a2:0d:2b:46:75:65:2f:bf:9a:f2: fe:05:34:17:06:b9:54:ce:db:08:27:5f:40:01:8a: 02:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B8:58:C9:C1:D6:F7:6B:A0:9B:B0:75:C7:DC:04:93:33:04:60:84 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:34:8c:5a:09:b5:c9:b0:f7:97:e1:d3:98:6f:14:a4:99:0c: 40:38:94:68:e2:9b:54:0a:c1:98:5a:73:20:75:8c:93:51:bc: e2:d6:01:2e:29:00:c1:49:73:bd:b3:5e:41:eb:76:ce:36:fc: 2e:3d:e6:a2:8c:9b:5b:d6:2f:b1:33:14:0a:5c:71:39:15:c5: c8:f8:27:4e:9d:f4:25:11:a8:62:5d:4e:29:56:e0:ce:ae:81: 35:6a:d2:d7:a7:c0:20:0e:b2:03:15:98:65:64:14:08:5c:46: 64:eb:3c:1e:56:f5:1c:d5:22:d8:f4:87:6f:42:6a:e3:bb:b1: bf:fb:b6:ac:e1:e4:73:16:e7:0c:c6:ae:6e:e1:41:c3:ef:36: 1b:16:b0:ad:cf:04:51:5f:b0:4b:5b:53:45:5e:34:ea:fb:6e: 16:2b:d8:ec:2a:b4:73:dd:14:d1:69:62:6f:d7:32:b0:fd:6a: f0:a2:5d:6b:70:e1:1d:c7:b9:ab:00:a0:6c:df:82:96:b4:78: 77:85:ad:0f:7d:6e:f0:55:6f:63:91:ca:48:f8:37:4e:0d:bc: 59:41:d2:08:74:65:34:3a:1b:f2:9b:e7:dd:7d:23:0b:73:bf: 0c:8b:71:c9:bd:b0:da:86:d5:18:5e:e2:77:41:08:43:74:f1: af:52:c3:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUwNTMxMDQyNzU1WhcNMjUwNjA3MDQyNzU1WjAYMRYwFAYD VQQDEw02ODNhODU0Yi1jYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuB59nU7moSdZOPRRo1R61toEDQCF+NonmJA1Qalx7cTnMbLx9SasQ7pjsX1D waIAq4bAZ+GADLcv5ZrmPLJsjkR+fNfe8WnU8PZbS2kYbR8NL+6RTBYSJXsczNTy xxFx3fNDvJBy54fNQpqDeTCZGk845rFG+CMxhTrwu8bnWA6nRTuUtmv/1M2s923j nBLMGeA7tMS5hy88AuIpxDpgdUsvnznR3+pZrbLr7Bb46lhrvEbek0wZOESwPvww qNeW0SKR0VNscRnztp77F1HELR6U7W8qfKxUR/x6vqgnlVwxvLZ4w6INK0Z1ZS+/ mvL+BTQXBrlUztsIJ19AAYoCMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHG4WMnB 1vdroJuwdcfcBJMzBGCEMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQNIxaCbXJsPeX4dOYbxSkmQxAOJRo4ptUCsGYWnMgdYyTUbzi1gEu KQDBSXO9s15B63bONvwuPeaijJtb1i+xMxQKXHE5FcXI+CdOnfQlEahiXU4pVuDO roE1atLXp8AgDrIDFZhlZBQIXEZk6zweVvUc1SLY9IdvQmrju7G/+7as4eRzFucM xq5u4UHD7zYbFrCtzwRRX7BLW1NFXjTq+24WK9jsKrRz3RTRaWJv1zKw/Wrwol1r cOEdx7mrAKBs34KWtHh3ha0PfW7wVW9jkcpI+DdODbxZQdIIdGU0Ohvym+fdfSML c78Mi3HJvbDahtUYXuJ3QQhDdPGvUsN4 -----END CERTIFICATE-----Generated at Sat May 31 17:47:18 2025 by rpki-client