$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft File: oNGf1mnyVeFici98GdiGS7Brc5k.mft (raw, json) Hash identifier: GJOQa+P5F6/V+tPmpUXJUxUfGBhqbaOhE1it16BsHuU= Subject key identifier: F8:38:13:2F:47:39:42:3C:90:10:AD:5F:D2:03:2C:2F:8B:98:08:1D Authority key identifier: A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 Certificate issuer: /CN=A91DEC72/serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft Manifest number: 0150 Signing time: Sat 31 May 2025 03:49:46 +0000 Manifest this update: Sat 31 May 2025 03:49:46 +0000 Manifest next update: Sat 07 Jun 2025 03:49:46 +0000 Files and hashes: 1: oNGf1mnyVeFici98GdiGS7Brc5k.crl (hash: LuWQLd/qh1fi7c6+hytYvse0vN8wm9Xvif0hW+sy0bE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:49:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC72, serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Validity Not Before: May 31 03:49:46 2025 GMT Not After : Jun 7 03:49:46 2025 GMT Subject: CN=683a7c5a-4d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c1:0d:87:fe:a0:7e:07:32:d5:60:57:b8:be: 3f:c6:4c:b3:c3:f8:d6:d2:a6:94:13:6e:2a:2f:e8: 9e:b9:dd:38:2e:85:da:1a:87:19:3b:49:fc:d2:1b: ea:d7:a8:ed:1c:9e:07:fe:5b:a6:51:84:5e:eb:35: 9a:f0:16:fd:f9:8b:74:bb:9e:9d:03:92:91:82:d6: ab:bc:88:30:4a:db:76:2c:e9:7d:12:0d:a5:7d:61: c7:aa:f5:e6:fd:94:02:8a:21:6d:b9:7b:7a:e4:ca: 33:4e:63:06:df:28:67:dd:96:32:50:7e:b1:82:ea: 85:c1:7f:a2:24:67:11:64:fa:a1:ec:37:ba:83:62: 11:83:e5:55:f7:23:19:d6:99:e2:d4:ae:39:39:12: be:41:4b:fb:0c:9e:db:aa:bc:f4:b9:31:72:85:7e: be:27:9d:63:88:3e:4b:00:b9:2b:7a:d0:32:6e:e3: f8:dd:7b:70:95:52:69:ea:53:41:b2:3f:ed:0c:3e: 36:65:3d:f4:8d:f3:d7:88:12:0e:f2:f2:e9:48:8f: 77:33:7a:da:7c:d3:03:d7:ff:52:4e:4f:7a:27:39: 03:3c:97:cc:33:96:8c:8a:6a:e1:da:5a:fb:da:da: e3:36:a3:79:8d:a1:a6:57:45:f4:2f:91:d8:89:3e: 4b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:38:13:2F:47:39:42:3C:90:10:AD:5F:D2:03:2C:2F:8B:98:08:1D X509v3 Authority Key Identifier: keyid:A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:af:ee:14:a9:c8:c9:2a:94:29:cb:81:05:c6:77:de:63:da: b4:ea:54:ce:bb:23:0e:b9:0a:ef:3c:e0:51:ed:1d:97:53:5d: 2d:5a:f4:ee:7b:80:a6:56:ae:cd:02:11:a9:87:27:4e:d5:6a: 4a:9b:5f:ab:f0:9e:9f:83:1f:8b:2a:d3:c1:cf:4c:1e:e6:23: c0:fe:5e:23:36:e9:e6:65:be:bd:de:41:d6:de:4f:93:cf:81: 94:6a:7d:52:ff:2d:ff:57:21:4a:e7:7c:97:ab:b9:32:55:06: 39:99:e0:60:d1:b9:89:95:20:3d:be:23:3e:25:9b:c9:b3:6d: c3:d6:57:4a:3a:da:89:3b:56:d7:c3:c0:ac:d8:c8:4f:8f:c0: 4c:5e:57:26:1a:78:df:21:81:af:f8:c6:51:a8:63:c4:ad:be: a1:ae:d6:3c:c9:47:b6:ec:bd:9d:74:db:0b:55:3d:12:2a:4f: 88:2b:5b:ff:55:be:77:6a:e8:b3:d8:ce:5c:0c:33:2a:9d:9b: 4c:3a:20:e6:f7:32:c9:5d:3b:b0:14:a9:9c:f9:00:99:e4:96: 0b:96:ae:ff:a7:87:90:05:7b:14:52:b8:7e:23:16:b7:28:10: f5:3f:f9:0c:cb:27:bc:aa:a7:46:3e:f5:94:cb:be:72:f8:57: 4c:fb:b8:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDNzIxMTAvBgNVBAUTKEEwRDE5RkQ2NjlGMjU1RTE2MjcyMkY3QzE5RDg4NjRC QjA2QjczOTkwHhcNMjUwNTMxMDM0OTQ2WhcNMjUwNjA3MDM0OTQ2WjAYMRYwFAYD VQQDEw02ODNhN2M1YS00ZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMENh/6gfgcy1WBXuL4/xkyzw/jW0qaUE24qL+ieud04LoXaGocZO0n80hvq 16jtHJ4H/lumUYRe6zWa8Bb9+Yt0u56dA5KRgtarvIgwStt2LOl9Eg2lfWHHqvXm /ZQCiiFtuXt65MozTmMG3yhn3ZYyUH6xguqFwX+iJGcRZPqh7De6g2IRg+VV9yMZ 1pni1K45ORK+QUv7DJ7bqrz0uTFyhX6+J51jiD5LALkretAybuP43XtwlVJp6lNB sj/tDD42ZT30jfPXiBIO8vLpSI93M3rafNMD1/9STk96JzkDPJfMM5aMimrh2lr7 2trjNqN5jaGmV0X0L5HYiT5LFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPg4Ey9H OUI8kBCtX9IDLC+LmAgdMB8GA1UdIwQYMBaAFKDRn9Zp8lXhYnIvfBnYhkuwa3OZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUM3Mi8zRjcxRkY4ODNC OTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZlRmljaTk4R2RpR1M3QnJj NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OR2YxbW55VmVGaWNpOThHZGlHUzdCcmM1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUM3Mi8zRjcxRkY4ODNCOTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZl RmljaTk4R2RpR1M3QnJjNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyr+4UqcjJKpQpy4EFxnfeY9q06lTOuyMOuQrvPOBR7R2XU10tWvTu e4CmVq7NAhGphydO1WpKm1+r8J6fgx+LKtPBz0we5iPA/l4jNunmZb693kHW3k+T z4GUan1S/y3/VyFK53yXq7kyVQY5meBg0bmJlSA9viM+JZvJs23D1ldKOtqJO1bX w8Cs2MhPj8BMXlcmGnjfIYGv+MZRqGPErb6hrtY8yUe27L2ddNsLVT0SKk+IK1v/ Vb53auiz2M5cDDMqnZtMOiDm9zLJXTuwFKmc+QCZ5JYLlq7/p4eQBXsUUrh+Ixa3 KBD1P/kMyye8qqdGPvWUy75y+FdM+7gM -----END CERTIFICATE-----Generated at Sat May 31 16:56:08 2025 by rpki-client