$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft File: owQJVBg5BUscPhXRmD19vYp9ZII.mft (raw, json) Hash identifier: gdQ1Ni3vTyLeyerv9r4tJzwn+kmtM1xEsG1Iwg6FVoo= Subject key identifier: AB:BC:2A:F3:D1:04:CC:24:C1:4C:B6:6E:6D:5E:92:86:B0:08:B4:2C Authority key identifier: A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 Certificate issuer: /CN=A91D9E03/serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Certificate serial: 039B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft Manifest number: 0397 Signing time: Sat 31 May 2025 00:58:31 +0000 Manifest this update: Sat 31 May 2025 00:58:31 +0000 Manifest next update: Sat 07 Jun 2025 00:58:31 +0000 Files and hashes: 1: owQJVBg5BUscPhXRmD19vYp9ZII.crl (hash: zTnKP4ggoFdWllBpiFB1gVe/CzS7SelCnAjpvQFyFeg=) 2: 521DCED89C5911EC97E58855C4F9AE02.roa (hash: K/6Sxmjn7Y9RMsh3D/CkcDPEvNJggoP2DR+Gq8xtxL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 923 (0x39b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9E03, serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Validity Not Before: May 31 00:58:31 2025 GMT Not After : Jun 7 00:58:31 2025 GMT Subject: CN=683a5437-8b54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:04:71:47:c4:26:7c:05:d9:f3:3b:f3:8e:6b: f0:d3:d9:ff:41:0a:ee:57:70:ec:ec:5a:0e:61:f3: f9:3f:37:b0:a3:f9:a6:2c:c3:ad:14:d8:4a:ed:5b: 4c:d1:56:8d:b5:ff:bb:04:45:38:6a:e9:43:7a:82: 67:ba:d0:5b:54:ca:1d:06:b4:24:e3:a6:ea:df:36: dc:28:95:b4:d1:b8:44:d3:8b:fe:41:0e:77:f7:c4: 2f:97:83:45:a5:3a:16:38:ce:10:11:af:52:b4:e9: a9:db:e4:0e:60:8d:78:88:fa:b9:0f:0d:76:38:ed: fa:e0:bd:5f:b1:5b:11:0d:6b:01:21:07:89:fe:e3: 96:6a:7a:22:a6:dd:34:f7:a0:e3:54:38:84:4f:18: b6:98:e6:26:c7:7d:33:a7:0d:28:59:70:fe:37:aa: d8:8f:d5:19:db:7a:38:9e:62:e3:c7:22:a4:38:06: a8:64:3d:17:5a:7c:15:35:18:74:40:dd:0b:87:26: 71:72:a8:a5:7b:15:f8:59:0d:01:5c:90:74:56:da: d3:1d:d5:55:e7:b7:48:e5:75:c9:09:ac:ef:b7:26: 53:6e:20:c4:a0:72:5b:04:22:ae:bb:29:a2:04:4a: 43:3b:87:ea:58:57:85:db:c1:44:21:50:79:6e:85: f2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BC:2A:F3:D1:04:CC:24:C1:4C:B6:6E:6D:5E:92:86:B0:08:B4:2C X509v3 Authority Key Identifier: keyid:A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:da:f4:cb:20:a2:bc:3a:e2:6a:d9:8c:c9:29:cd:60:23:f0: 7e:c9:c6:e9:9c:e7:96:fc:b3:21:a5:68:d5:a0:05:6b:43:b6: 1d:89:dc:9b:d2:df:5b:74:87:8e:4d:84:fc:c4:4d:f3:d0:71: 36:11:c7:69:6d:f5:98:25:58:4d:c9:80:59:d1:60:a4:d0:93: 92:16:f9:3d:c7:53:67:9a:e6:1e:68:af:12:21:a1:3e:65:be: c7:48:b0:04:a7:94:27:5a:04:38:3d:a2:48:96:25:d9:0f:9f: b8:f1:c8:fc:f7:79:99:e5:28:90:bd:23:5e:dd:eb:95:cc:5e: 9c:90:21:e6:3b:b9:4d:4e:41:b6:27:a9:6c:b7:5c:1b:4f:6d: 2c:45:d9:0f:a3:00:58:00:f9:9a:ad:34:81:40:6f:cf:d5:65: 02:f2:15:85:74:b3:2d:11:b9:e7:c0:36:78:89:97:03:46:83: 29:d6:e5:ea:bf:70:38:e2:17:30:ed:7d:c2:b8:46:6a:4b:30: a1:0a:d6:a1:aa:e0:91:3b:68:dc:b7:10:20:0e:1a:4f:b3:7e: 42:41:87:05:bd:1d:1a:db:d6:85:05:df:f4:4e:4f:42:e6:45: d5:0a:9f:43:26:4b:26:c2:8a:89:19:6c:d4:f1:24:06:da:18: 64:91:22:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlFMDMxMTAvBgNVBAUTKEEzMDQwOTU0MTgzOTA1NEIxQzNFMTVEMTk4M0Q3REJE OEE3RDY0ODIwHhcNMjUwNTMxMDA1ODMxWhcNMjUwNjA3MDA1ODMxWjAYMRYwFAYD VQQDEw02ODNhNTQzNy04YjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwRxR8QmfAXZ8zvzjmvw09n/QQruV3Ds7FoOYfP5Pzewo/mmLMOtFNhK7VtM 0VaNtf+7BEU4aulDeoJnutBbVModBrQk46bq3zbcKJW00bhE04v+QQ5398Qvl4NF pToWOM4QEa9StOmp2+QOYI14iPq5Dw12OO364L1fsVsRDWsBIQeJ/uOWanoipt00 96DjVDiETxi2mOYmx30zpw0oWXD+N6rYj9UZ23o4nmLjxyKkOAaoZD0XWnwVNRh0 QN0LhyZxcqilexX4WQ0BXJB0VtrTHdVV57dI5XXJCazvtyZTbiDEoHJbBCKuuymi BEpDO4fqWFeF28FEIVB5boXytQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKu8KvPR BMwkwUy2bm1ekoawCLQsMB8GA1UdIwQYMBaAFKMECVQYOQVLHD4V0Zg9fb2KfWSC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUUwMy85OTZBN0U4ODlD NTYxMUVDQkRFRTA1NTNDNEY5QUUwMi9vd1FKVkJnNUJVc2NQaFhSbUQxOXZZcDla SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293UUpWQmc1QlVzY1BoWFJtRDE5dllwOVpJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUUwMy85OTZBN0U4ODlDNTYxMUVDQkRFRTA1NTNDNEY5QUUwMi9vd1FKVkJnNUJV c2NQaFhSbUQxOXZZcDlaSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk2vTLIKK8OuJq2YzJKc1gI/B+ycbpnOeW/LMhpWjVoAVrQ7Ydidyb 0t9bdIeOTYT8xE3z0HE2EcdpbfWYJVhNyYBZ0WCk0JOSFvk9x1NnmuYeaK8SIaE+ Zb7HSLAEp5QnWgQ4PaJIliXZD5+48cj893mZ5SiQvSNe3euVzF6ckCHmO7lNTkG2 J6lst1wbT20sRdkPowBYAPmarTSBQG/P1WUC8hWFdLMtEbnnwDZ4iZcDRoMp1uXq v3A44hcw7X3CuEZqSzChCtahquCRO2jctxAgDhpPs35CQYcFvR0a29aFBd/0Tk9C 5kXVCp9DJksmwoqJGWzU8SQG2hhkkSKT -----END CERTIFICATE-----Generated at Sat May 31 16:34:57 2025 by rpki-client