$ rpki-client -vvf rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft File: oAONXyzMSsJeuvdxJC50MA_PeCw.mft (raw, json) Hash identifier: 3UIuBRafxmjsk+JtZ85k+6kPLu6PKCdYz9Q78xH+I1o= Subject key identifier: 05:F0:F4:F6:E7:23:AF:AD:54:6D:B7:C8:FB:F2:59:E6:36:50:90:E4 Authority key identifier: A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C Certificate issuer: /CN=A91E60A4/serialNumber=A0038D5F2CCC4AC25EBAF771242E74300FCF782C Certificate serial: 09CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft Manifest number: 09C4 Signing time: Fri 30 May 2025 20:09:37 +0000 Manifest this update: Fri 30 May 2025 20:09:37 +0000 Manifest next update: Fri 06 Jun 2025 20:09:37 +0000 Files and hashes: 1: oAONXyzMSsJeuvdxJC50MA_PeCw.crl (hash: Hj8pfUn0YxIIm15PWPk/Mx+3iZih69IZCjIoDwKuC3c=) 2: 1D86F90A988D11EABE02F23DC4F9AE02.roa (hash: eXMB9dV7xihStPr0BmetBSssUWM8QZG3PMbHIo5WHpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:09:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2510 (0x9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E60A4, serialNumber=A0038D5F2CCC4AC25EBAF771242E74300FCF782C Validity Not Before: May 30 20:09:37 2025 GMT Not After : Jun 6 20:09:37 2025 GMT Subject: CN=683a1081-cf46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:72:38:ca:4b:f0:33:5a:c2:3d:19:d2:e1:e6: 65:8b:a7:99:1c:7f:5c:c0:34:26:b1:41:77:9b:af: 91:25:a1:08:ea:9d:14:0b:74:d2:cd:98:6d:76:9c: b3:de:02:b3:0b:63:37:06:3a:a7:68:58:0a:59:44: f0:4d:75:da:c0:4f:f3:d6:5c:5c:80:a7:f6:ef:61: 2a:dc:bd:ca:d9:7f:48:39:a6:f0:56:20:83:06:50: 00:22:44:f8:13:8f:28:0d:dd:78:6b:1a:7a:f7:9e: 41:09:03:a2:b1:72:3d:19:c0:f6:fe:67:48:24:46: b1:60:fc:ce:f1:79:e5:2a:57:62:40:75:b1:06:39: 5e:f7:52:76:f1:f5:44:3b:fb:9d:58:38:ba:e3:2e: 8f:40:c3:08:8e:7a:87:be:cf:d6:ee:78:b5:bb:ae: 53:22:7b:95:7d:63:49:ec:e5:c9:98:f0:ff:29:59: e2:74:69:0d:3f:7a:88:25:48:2e:49:22:3a:39:35: e8:d0:a0:9f:15:97:6a:5a:9b:a3:9d:f0:1b:6e:17: b2:20:3b:0e:1b:be:1c:be:b3:42:57:c7:1c:04:ce: 58:dc:95:03:37:2b:1c:62:45:2a:9b:56:65:72:db: c8:7c:a3:57:ee:77:1e:75:f9:0e:fd:3f:3e:61:2d: e6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F0:F4:F6:E7:23:AF:AD:54:6D:B7:C8:FB:F2:59:E6:36:50:90:E4 X509v3 Authority Key Identifier: keyid:A0:03:8D:5F:2C:CC:4A:C2:5E:BA:F7:71:24:2E:74:30:0F:CF:78:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAONXyzMSsJeuvdxJC50MA_PeCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E60A4/6C7140EE829D11EAB78F8B3DC4F9AE02/oAONXyzMSsJeuvdxJC50MA_PeCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:9e:91:47:ee:dd:93:21:f3:54:c8:35:04:d6:ff:4a:e6:a7: 98:15:fc:c2:07:e8:17:04:18:59:10:d1:49:44:f4:56:71:f6: d1:ad:ce:94:ff:14:16:a6:06:26:24:40:c6:84:75:09:a3:10: 06:53:0e:46:2e:53:6c:48:38:f1:87:62:d8:98:ff:c7:47:73: 84:bf:d0:6c:bf:1c:93:6f:75:94:b0:25:78:fd:96:46:4b:57: f9:a0:1a:f7:eb:48:89:4c:30:46:02:50:3c:da:2b:97:1c:ba: 85:81:7f:fc:3a:29:f3:b6:cb:55:6b:df:0b:7d:ad:59:dc:04: 04:f3:ca:ff:05:21:26:0f:98:f1:15:1f:ad:6d:2b:fc:5a:c9: 81:d9:a4:81:ee:f9:96:39:97:8a:b9:17:40:52:10:e4:d4:5a: 97:82:22:1d:ba:6f:a2:d5:a2:54:6e:cd:e7:83:0f:2c:dd:c3: df:e1:63:bd:a2:6a:24:87:d1:34:43:ca:09:72:2e:f6:6f:50: 8c:11:6f:89:4e:4a:f8:96:ac:38:7c:e0:c0:8c:a3:cf:74:97: 77:ee:a2:7e:61:9e:b3:e2:61:d9:0a:79:e5:0f:e8:da:8b:40: bd:bf:10:07:08:05:1e:4c:12:1d:c1:73:6a:4b:f1:c4:72:7e: 97:15:67:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYwQTQxMTAvBgNVBAUTKEEwMDM4RDVGMkNDQzRBQzI1RUJBRjc3MTI0MkU3NDMw MEZDRjc4MkMwHhcNMjUwNTMwMjAwOTM3WhcNMjUwNjA2MjAwOTM3WjAYMRYwFAYD VQQDEw02ODNhMTA4MS1jZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXI4ykvwM1rCPRnS4eZli6eZHH9cwDQmsUF3m6+RJaEI6p0UC3TSzZhtdpyz 3gKzC2M3BjqnaFgKWUTwTXXawE/z1lxcgKf272Eq3L3K2X9IOabwViCDBlAAIkT4 E48oDd14axp6955BCQOisXI9GcD2/mdIJEaxYPzO8XnlKldiQHWxBjle91J28fVE O/udWDi64y6PQMMIjnqHvs/W7ni1u65TInuVfWNJ7OXJmPD/KVnidGkNP3qIJUgu SSI6OTXo0KCfFZdqWpujnfAbbheyIDsOG74cvrNCV8ccBM5Y3JUDNyscYkUqm1Zl ctvIfKNX7ncedfkO/T8+YS3meQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXw9Pbn I6+tVG23yPvyWeY2UJDkMB8GA1UdIwQYMBaAFKADjV8szErCXrr3cSQudDAPz3gs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjBBNC82QzcxNDBFRTgy OUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNzSmV1dmR4SkM1ME1BX1Bl Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BT05YeXpNU3NKZXV2ZHhKQzUwTUFfUGVDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjBBNC82QzcxNDBFRTgyOUQxMUVBQjc4RjhCM0RDNEY5QUUwMi9vQU9OWHl6TVNz SmV1dmR4SkM1ME1BX1BlQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBinpFH7t2TIfNUyDUE1v9K5qeYFfzCB+gXBBhZENFJRPRWcfbRrc6U /xQWpgYmJEDGhHUJoxAGUw5GLlNsSDjxh2LYmP/HR3OEv9BsvxyTb3WUsCV4/ZZG S1f5oBr360iJTDBGAlA82iuXHLqFgX/8OinztstVa98Lfa1Z3AQE88r/BSEmD5jx FR+tbSv8WsmB2aSB7vmWOZeKuRdAUhDk1FqXgiIdum+i1aJUbs3ngw8s3cPf4WO9 omokh9E0Q8oJci72b1CMEW+JTkr4lqw4fODAjKPPdJd37qJ+YZ6z4mHZCnnlD+ja i0C9vxAHCAUeTBIdwXNqS/HEcn6XFWcw -----END CERTIFICATE-----Generated at Sat May 31 17:32:01 2025 by rpki-client