$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: 9JZiBg7bA/Q8D7laWtz3HU26aANI+0uRmBcAG7vSWMU= Subject key identifier: 69:FC:70:3D:BC:C7:1D:81:F4:C9:02:DB:B4:8F:D6:25:A3:1F:0B:23 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: 54 Signing time: Fri 09 May 2025 06:15:23 +0000 Manifest this update: Fri 09 May 2025 06:15:22 +0000 Manifest next update: Fri 16 May 2025 06:15:22 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: xKspIpSE5xSKcwjqAfa/w0yCrYmOiFvilcIucrSrJHg=) 2: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 7A02Qe5tU1BaVkRNS6N9PAYKa4qN0Lgazu0at/u/nBw=) 3: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: ELgn79sVAW9E3JP6Gcqdp6NoM1aGV5NXuDSvgrgOR0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: May 9 06:15:22 2025 GMT Not After : May 16 06:15:22 2025 GMT Subject: CN=681d9d7b-48bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:65:40:ed:e6:88:3f:0e:4c:f0:8b:3a:64:bc: 91:1a:bb:85:e6:14:dc:d9:34:f9:06:6c:f6:6c:61: 5d:e5:26:46:96:60:d2:b2:93:99:dc:3d:80:95:1b: 0b:00:c7:69:c2:d8:b9:5f:ae:c7:70:8d:dc:00:d9: 08:0c:00:68:f7:45:b3:b5:63:19:45:cb:2e:22:58: bb:ce:06:15:a2:a7:b5:37:bf:9e:da:a4:6f:ef:f5: eb:9e:d8:64:ab:63:58:d5:3e:f7:29:f4:4c:84:b9: 5f:33:65:f2:9c:1c:0d:ad:31:69:26:a9:8c:ee:83: 3b:a8:1c:6e:a6:c3:6e:b9:5f:11:ca:2c:99:f9:59: 68:1c:05:66:32:74:8e:89:cd:af:80:03:36:28:3c: ae:4a:3c:40:a5:aa:c2:ee:fe:ba:83:86:32:6b:7f: 7a:69:1c:e8:43:a6:19:aa:4c:a4:a9:7d:a5:5b:cc: e9:d3:da:53:e0:6d:9e:34:ae:d8:18:54:ca:27:3e: 0b:da:ae:44:03:14:7d:92:7e:d2:fd:f2:c1:56:f7: 10:85:23:cb:96:65:c1:41:de:e3:36:01:e6:d7:69: fd:46:18:36:70:9d:9b:60:f9:f9:b3:24:2e:c3:dc: 90:59:9a:ef:d4:65:90:94:1b:ee:57:9b:62:69:9a: ec:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:FC:70:3D:BC:C7:1D:81:F4:C9:02:DB:B4:8F:D6:25:A3:1F:0B:23 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:72:b6:b7:aa:77:50:76:6e:b9:e4:31:f1:d9:77:e1:9c:4a: a6:68:18:e2:a0:a2:4a:87:d8:02:a2:e9:75:c4:66:70:78:bd: 3a:56:ee:80:90:7d:ca:b1:fa:12:05:c6:3a:de:5f:02:2a:18: 53:05:a9:e0:6e:c6:f9:e4:17:73:ec:85:84:b6:a5:a5:02:a3: 21:5b:2f:76:7f:5e:85:ce:e2:be:2d:bd:e1:ce:03:b3:dc:25: 5b:c8:9b:4e:40:55:16:27:f2:8a:b9:f1:5b:ca:41:e3:1a:b8: 17:a5:50:aa:3f:be:19:12:88:75:f6:64:82:15:15:15:7d:87: 98:91:ae:e2:14:65:1a:90:11:ab:a5:ca:c3:44:b0:3f:c8:24: 1d:62:44:a0:32:02:0b:61:77:63:64:b0:aa:3c:45:06:76:1f: ee:b9:a5:94:9d:11:96:8a:8c:46:e5:a2:f5:a4:1c:bb:d0:75: cb:cf:8f:6e:9d:09:7f:c6:75:46:3f:75:b4:45:3f:ab:19:93: 39:82:50:eb:db:e0:c8:53:9d:30:51:c5:35:48:61:21:cf:8a: 56:c5:0d:d4:49:33:8b:ec:6e:e1:a7:a0:9f:f4:3e:3c:eb:a4: 4a:30:0f:ab:3c:d2:ab:e4:84:af:f3:0e:51:5c:72:ad:d7:4b: a8:52:c3:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTVFNTExMC8GA1UEBRMoQTAwRTAyREM3ODNGOTA4NDAyMURGOTRGNzU4NjI2NEVD NDdEMzQzODAeFw0yNTA1MDkwNjE1MjJaFw0yNTA1MTYwNjE1MjJaMBgxFjAUBgNV BAMTDTY4MWQ5ZDdiLTQ4YmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGZUDt5og/DkzwizpkvJEau4XmFNzZNPkGbPZsYV3lJkaWYNKyk5ncPYCVGwsA x2nC2LlfrsdwjdwA2QgMAGj3RbO1YxlFyy4iWLvOBhWip7U3v57apG/v9eue2GSr Y1jVPvcp9EyEuV8zZfKcHA2tMWkmqYzugzuoHG6mw265XxHKLJn5WWgcBWYydI6J za+AAzYoPK5KPEClqsLu/rqDhjJrf3ppHOhDphmqTKSpfaVbzOnT2lPgbZ40rtgY VMonPgvarkQDFH2SftL98sFW9xCFI8uWZcFB3uM2AebXaf1GGDZwnZtg+fmzJC7D 3JBZmu/UZZCUG+5Xm2JpmuxNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUafxwPbzH HYH0yQLbtI/WJaMfCyMwHwYDVR0jBBgwFoAUoA4C3Hg/kIQCHflPdYYmTsR9NDgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFNUU1L0Y5N0JDMzAyQUZC RjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5E Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb0E0QzNIZ19rSVFDSGZsUGRZWW1Uc1I5TkRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF NUU1L0Y5N0JDMzAyQUZCRjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lR Q0hmbFBkWVltVHNSOU5EZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB9ytreqd1B2brnkMfHZd+GcSqZoGOKgokqH2AKi6XXEZnB4vTpW7oCQ fcqx+hIFxjreXwIqGFMFqeBuxvnkF3PshYS2paUCoyFbL3Z/XoXO4r4tveHOA7Pc JVvIm05AVRYn8oq58VvKQeMauBelUKo/vhkSiHX2ZIIVFRV9h5iRruIUZRqQEaul ysNEsD/IJB1iRKAyAgthd2NksKo8RQZ2H+65pZSdEZaKjEblovWkHLvQdcvPj26d CX/GdUY/dbRFP6sZkzmCUOvb4MhTnTBRxTVIYSHPilbFDdRJM4vsbuGnoJ/0Pjzr pEowD6s80qvkhK/zDlFccq3XS6hSw/A= -----END CERTIFICATE-----Generated at Fri May 9 20:56:11 2025 by rpki-client