$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: q++uSdYohnlNWwyi796nCaIvc37C6JElu0DKgKnAjTs= Subject key identifier: F5:03:2E:96:8C:36:D0:67:09:39:AB:48:51:A7:D4:51:AC:21:E4:4A Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 348C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 3488 Signing time: Sat 31 May 2025 14:52:42 +0000 Manifest this update: Sat 31 May 2025 14:52:41 +0000 Manifest next update: Sat 07 Jun 2025 14:52:41 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: AT8FtlPJ9d61dwWwJ1RKfhANix+niAyMtywNXbtllho=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: e40Fx6yfX6nJRx1dMJZUnN8AeYmm3aJoH7MptW5kCWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:52:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: May 31 14:52:41 2025 GMT Not After : Jun 7 14:52:41 2025 GMT Subject: CN=683b17b9-f1ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:93:fb:e2:f9:12:fb:fa:60:c0:59:ec:82:05: a5:72:70:00:01:3e:37:59:b0:bd:0a:c6:1e:9c:af: 60:fc:f2:8a:55:d5:72:99:81:ed:b6:a8:18:84:e2: 53:55:cc:82:c3:c8:86:48:28:9c:a9:d0:71:dc:f4: 1b:48:5a:43:9f:57:d9:30:9c:e2:98:27:70:27:7b: 8d:11:71:99:2c:e1:e8:44:86:ef:48:ce:ed:80:4e: ff:6a:15:72:da:8c:b0:07:ee:87:1d:55:9f:65:98: c7:49:30:3d:d2:0f:b6:f7:96:81:76:7e:34:1c:9a: 39:74:b6:cb:40:ee:0d:73:8e:6a:2a:c3:b6:de:42: d2:8a:d5:3f:fc:8f:96:61:22:f1:91:10:30:2d:0f: 85:de:37:b0:91:0a:c0:33:1c:c6:88:ce:8c:d0:eb: 41:82:2a:5b:f0:09:97:2a:ac:af:d8:a8:6c:fe:57: 0d:8e:d6:be:f3:33:61:00:b4:63:94:8a:94:bc:e4: 3c:34:4f:10:be:5d:db:7c:cb:37:2c:a8:46:4e:56: 76:4c:f5:6d:39:dc:09:16:9c:7f:96:2f:e8:f5:ae: 10:ba:3b:e2:86:8b:6c:f9:df:5a:28:12:8b:3c:bd: c3:0a:51:db:6b:7b:56:d1:f8:ad:20:c1:9d:36:6b: 24:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:03:2E:96:8C:36:D0:67:09:39:AB:48:51:A7:D4:51:AC:21:E4:4A X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:20:43:f3:7c:23:8b:90:71:f5:4a:61:b5:3b:23:6e:8a:ee: 70:5a:35:41:49:21:66:b0:85:cd:00:ed:17:9b:a1:66:07:7b: 38:4a:2a:04:b4:fa:e5:39:c0:13:ff:9c:13:7c:dc:82:b8:01: c9:d4:a9:e5:36:57:06:b1:20:9a:15:b2:c9:8d:3a:8a:43:26: 8b:8a:04:d1:c1:13:c6:22:29:b8:6f:c4:a5:96:53:db:59:1f: 51:31:15:13:af:07:07:45:b3:c0:23:40:46:c3:31:41:2a:d1: 62:93:59:2d:84:e3:05:bc:83:aa:79:b1:b0:04:0a:c3:5c:e1: 31:cc:5b:17:aa:76:28:89:23:33:35:8b:c4:94:e1:ca:b8:f9: b3:f7:5e:2e:a5:3a:c8:3f:e4:e2:6b:ed:e1:94:af:d4:63:2b: 2c:a5:bc:81:dc:23:6c:ba:cd:dc:b9:be:29:48:27:0a:08:b1: 96:c1:ce:e2:81:59:c5:14:52:60:e0:34:5b:55:e5:17:dc:15: 01:6e:aa:5d:80:82:8d:e8:35:33:ff:ef:f9:a9:91:d1:8a:a2: 98:6d:cc:18:cf:49:a4:61:79:7e:21:92:37:5e:29:51:f6:09: f3:2a:b9:14:9c:4b:ee:33:c9:61:db:76:39:96:2f:b6:cc:0d: dc:2d:40:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUwNTMxMTQ1MjQxWhcNMjUwNjA3MTQ1MjQxWjAYMRYwFAYD VQQDEw02ODNiMTdiOS1mMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25P74vkS+/pgwFnsggWlcnAAAT43WbC9CsYenK9g/PKKVdVymYHttqgYhOJT VcyCw8iGSCicqdBx3PQbSFpDn1fZMJzimCdwJ3uNEXGZLOHoRIbvSM7tgE7/ahVy 2oywB+6HHVWfZZjHSTA90g+295aBdn40HJo5dLbLQO4Nc45qKsO23kLSitU//I+W YSLxkRAwLQ+F3jewkQrAMxzGiM6M0OtBgipb8AmXKqyv2Khs/lcNjta+8zNhALRj lIqUvOQ8NE8Qvl3bfMs3LKhGTlZ2TPVtOdwJFpx/li/o9a4Qujvihots+d9aKBKL PL3DClHba3tW0fitIMGdNmskjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUDLpaM NtBnCTmrSFGn1FGsIeRKMB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBIEPzfCOLkHH1SmG1OyNuiu5wWjVBSSFmsIXNAO0Xm6FmB3s4SioE tPrlOcAT/5wTfNyCuAHJ1KnlNlcGsSCaFbLJjTqKQyaLigTRwRPGIim4b8SlllPb WR9RMRUTrwcHRbPAI0BGwzFBKtFik1kthOMFvIOqebGwBArDXOExzFsXqnYoiSMz NYvElOHKuPmz914upTrIP+Tia+3hlK/UYysspbyB3CNsus3cub4pSCcKCLGWwc7i gVnFFFJg4DRbVeUX3BUBbqpdgIKN6DUz/+/5qZHRiqKYbcwYz0mkYXl+IZI3XilR 9gnzKrkUnEvuM8lh23Y5li+2zA3cLUDo -----END CERTIFICATE-----Generated at Sat May 31 17:54:50 2025 by rpki-client