$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft File: 2OL6sVCi_VePZ-GbApZTmzdSyak.mft (raw, json) Hash identifier: v+6Y8Y2FBbmtjdGbdTjK3UXGllLay2npEzIEDOU2j4M= Subject key identifier: FB:97:6C:99:2D:E6:7D:CB:BC:F7:9C:A9:DF:FC:8C:5E:8C:D1:03:35 Authority key identifier: D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 Certificate issuer: /CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Certificate serial: 0EA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft Manifest number: 0E9E Signing time: Fri 30 May 2025 17:51:55 +0000 Manifest this update: Fri 30 May 2025 17:51:55 +0000 Manifest next update: Fri 06 Jun 2025 17:51:55 +0000 Files and hashes: 1: 2OL6sVCi_VePZ-GbApZTmzdSyak.crl (hash: Un8bzA8k6L29NJLQlIjmjisTNTGJ0Mq8QUjwxi13VAY=) 2: 83974F92EF7C11EF9079DB1CC4F9AE02.roa (hash: yybAeEAc62kbf0vMICJ/T2r9CwvlPXBXXe+0zfXPjFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3751 (0xea7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Validity Not Before: May 30 17:51:55 2025 GMT Not After : Jun 6 17:51:55 2025 GMT Subject: CN=6839f03b-4ae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2c:84:a6:53:a6:02:d1:99:20:29:be:19:6c: 5a:20:c2:29:06:68:de:39:79:c3:aa:ef:27:12:4a: 42:50:2c:b3:e7:d3:05:4e:d0:90:da:8d:d5:2a:bd: b3:dd:31:c3:f3:61:91:72:05:9d:ed:b4:df:c0:a3: ab:10:0d:28:8f:5e:62:d5:97:30:b9:99:01:3e:6d: fc:a8:38:d2:ab:1b:59:81:00:3b:6f:8a:fe:50:dd: 90:2b:0d:33:c1:2d:a3:f6:0d:7f:49:9f:ec:5a:e2: 51:47:29:d3:52:8a:36:c6:d0:78:f9:d6:67:2e:cf: a7:22:0b:55:02:0b:f8:ab:f6:5e:63:00:fc:1b:e8: 11:66:f5:2c:0f:1d:d2:5d:d3:48:85:48:e8:83:cc: a6:a4:01:37:dd:03:bd:20:85:cc:a0:f6:10:0c:45: 2a:3a:14:f8:16:61:93:12:ab:ac:68:1a:f5:43:2f: 3d:5a:8e:83:1c:da:47:21:10:82:4e:ce:f0:42:7e: 8b:c7:5a:0e:06:83:6c:5c:62:6b:9b:9a:a7:34:87: 78:32:c9:e8:6d:75:16:be:33:ef:1a:4c:47:d5:b1: 58:fa:53:56:dd:45:e5:e2:a6:37:b7:b0:75:b9:e2: 65:51:91:da:40:eb:76:67:39:5d:9d:65:1c:88:e5: 0c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:97:6C:99:2D:E6:7D:CB:BC:F7:9C:A9:DF:FC:8C:5E:8C:D1:03:35 X509v3 Authority Key Identifier: keyid:D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:0f:45:83:26:9b:aa:b8:64:b2:42:42:74:2c:e7:19:98:cd: 3c:2c:be:d3:71:9f:64:40:0f:5c:9f:a6:20:40:63:4e:64:7c: 3f:b2:e1:5b:bf:10:c7:b4:e2:03:58:b7:de:3c:58:ba:5f:d1: 3d:c4:d8:1d:a1:0f:d4:26:9c:4d:0d:65:6c:48:2f:99:07:9b: dd:f1:44:f8:33:fd:02:76:e6:c5:4a:36:de:57:cd:97:7c:78: 26:1c:f7:e3:86:80:be:65:fd:11:69:85:40:52:3f:38:71:ca: 68:9b:54:2a:8f:41:13:02:14:2f:f5:10:95:bd:34:62:ef:8d: 31:7c:46:28:c2:7c:12:3d:11:d6:fa:ae:0e:61:84:29:e4:88: 11:c4:de:28:26:84:17:a5:aa:4e:7e:51:ac:a7:d6:48:df:2f: cc:32:9e:d7:af:9d:8d:6a:3b:58:61:8d:08:53:40:5a:25:69: be:7c:06:12:2a:d9:44:09:39:b0:b1:4a:13:c5:43:ca:86:54: 6b:d0:0a:67:49:73:f4:9a:e0:8c:e7:e7:ba:23:f6:df:09:57: 3e:8b:1b:46:87:51:46:c3:14:44:a1:63:98:12:b9:0f:5d:f3: 02:36:35:81:e1:3c:6c:9e:21:25:c5:c3:19:b8:b0:52:09:b6: 00:cf:cc:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKEQ4RTJGQUIxNTBBMkZENTc4RjY3RTE5QjAyOTY1MzlC Mzc1MkM5QTkwHhcNMjUwNTMwMTc1MTU1WhcNMjUwNjA2MTc1MTU1WjAYMRYwFAYD VQQDEw02ODM5ZjAzYi00YWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCyEplOmAtGZICm+GWxaIMIpBmjeOXnDqu8nEkpCUCyz59MFTtCQ2o3VKr2z 3THD82GRcgWd7bTfwKOrEA0oj15i1ZcwuZkBPm38qDjSqxtZgQA7b4r+UN2QKw0z wS2j9g1/SZ/sWuJRRynTUoo2xtB4+dZnLs+nIgtVAgv4q/ZeYwD8G+gRZvUsDx3S XdNIhUjog8ympAE33QO9IIXMoPYQDEUqOhT4FmGTEqusaBr1Qy89Wo6DHNpHIRCC Ts7wQn6Lx1oOBoNsXGJrm5qnNId4MsnobXUWvjPvGkxH1bFY+lNW3UXl4qY3t7B1 ueJlUZHaQOt2ZzldnWUciOUMlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuXbJkt 5n3LvPecqd/8jF6M0QM1MB8GA1UdIwQYMBaAFNji+rFQov1Xj2fhmwKWU5s3Usmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS80OTlGREY5MDhF NTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9WZVBaLUdiQXBaVG16ZFN5 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJPTDZzVkNpX1ZlUFotR2JBcFpUbXpkU3lhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS80OTlGREY5MDhFNTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9W ZVBaLUdiQXBaVG16ZFN5YWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKD0WDJpuquGSyQkJ0LOcZmM08LL7TcZ9kQA9cn6YgQGNOZHw/suFb vxDHtOIDWLfePFi6X9E9xNgdoQ/UJpxNDWVsSC+ZB5vd8UT4M/0CdubFSjbeV82X fHgmHPfjhoC+Zf0RaYVAUj84ccpom1Qqj0ETAhQv9RCVvTRi740xfEYownwSPRHW +q4OYYQp5IgRxN4oJoQXpapOflGsp9ZI3y/MMp7Xr52NajtYYY0IU0BaJWm+fAYS KtlECTmwsUoTxUPKhlRr0ApnSXP0muCM5+e6I/bfCVc+ixtGh1FGwxREoWOYErkP XfMCNjWB4TxsniElxcMZuLBSCbYAz8ws -----END CERTIFICATE-----Generated at Sat May 31 14:56:23 2025 by rpki-client