$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: 7DJoJ71y++Q/bQ2bjLgLtwRN1ZBR+DxKVjonm3Z3e34= Subject key identifier: 80:72:0D:83:3A:E9:BF:5F:F0:9E:61:B2:13:3D:6B:44:31:EE:C0:15 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 21D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 2196 Signing time: Fri 30 May 2025 16:05:15 +0000 Manifest this update: Fri 30 May 2025 16:05:15 +0000 Manifest next update: Fri 06 Jun 2025 16:05:15 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: y2PjJELalnNdYe1/IT3XSVWk0WFah2KcYFCc0mWRlmo=) 2: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 1ES+epsnD/DNY/mamto14c9DZbko73ok/bvGYlpnZRA=) 3: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: RV1/DDfUdeMeAI1f60SGG8y1uSkd4aEtHJsKEOkYdXA=) 4: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: xubGUlPUlNCBLJe5+NADMrf4YV/wbfCmoqj7rhjCN20=) 5: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: ftobPRBcc8wlVTCOH3GxCPMFHQM9ebuoV2KFpLluNR4=) 6: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: RArCcLO/kSE5acBXMMlQcl8HS4RV4DSQfZAIgouxT+4=) 7: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: 8McChURwVN9JYUVHRVTAHRcHa/Hxc6L3gNtxVyOyx0g=) 8: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 4gXXPKgdGkdsiTu4Fh+U84K4r4ojzbdg0Z4yEj+nXpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8664 (0x21d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: May 30 16:05:15 2025 GMT Not After : Jun 6 16:05:15 2025 GMT Subject: CN=6839d73b-4711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e1:06:8e:19:b8:d8:bf:45:1b:91:45:30:2f: 45:60:e7:45:48:fc:24:db:26:89:da:68:6e:d8:4a: d3:11:6a:31:25:58:0f:2e:19:d8:28:b0:61:17:7f: 94:a1:44:4c:c2:56:9f:8e:b2:ef:21:75:82:32:fe: c4:89:76:6b:37:cc:c4:33:54:1c:04:58:04:c6:b7: 77:60:2d:8c:b7:29:0e:70:b9:b5:d3:93:32:bb:13: 5b:64:73:8d:d8:83:fe:12:5b:ef:f6:91:71:50:47: a5:98:6b:77:c3:e6:20:bc:65:68:45:3f:3d:b9:53: 42:6c:a4:51:34:e9:71:da:ac:23:06:b7:cc:a4:7a: e4:e8:6c:1f:5c:25:15:7f:d2:94:31:b8:62:4f:49: a8:61:c7:6d:94:43:cf:9c:91:e4:4c:fc:fd:95:fa: 99:7e:fc:9e:2b:6b:43:b5:53:9b:4e:83:8a:fb:31: 55:16:cb:de:b1:ce:f4:5b:54:4b:4c:fd:42:c7:33: a8:dd:ac:7e:59:37:18:ff:12:06:e0:ef:1a:49:09: 0f:d3:e7:97:6f:6e:3a:f9:27:2e:92:5d:83:c5:a4: 6e:93:bf:ef:2d:7a:d9:4d:d1:57:1e:39:73:34:33: 07:0f:7b:79:cd:45:75:45:1a:36:97:89:c0:32:18: 73:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:72:0D:83:3A:E9:BF:5F:F0:9E:61:B2:13:3D:6B:44:31:EE:C0:15 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2c:3e:b5:88:d9:12:64:97:cf:46:fc:2c:da:58:e9:44:81: 5f:04:1d:b1:f8:29:ca:13:f9:ab:72:75:7e:47:8b:48:09:6b: 9b:5c:49:80:1e:e2:15:1e:4b:1a:6f:3d:75:9d:9c:48:ce:02: 7d:15:72:f4:89:04:4f:97:4a:78:c0:86:09:af:17:ab:5d:63: f3:dd:f9:dc:22:a0:b5:6b:9f:d2:a2:e3:86:44:3f:eb:1b:0b: 1e:68:9a:57:bd:16:ea:70:79:41:50:ea:49:31:f7:0f:0c:1c: ae:16:ed:3a:c0:55:29:84:91:a5:29:8d:2a:b6:0e:3b:67:94: 70:b1:4e:8b:df:e3:db:46:5a:08:ba:d0:0e:80:b5:44:06:f5: df:5c:dd:40:5e:08:57:49:dd:88:6e:9c:e0:24:5c:f4:9b:6d: 5f:82:10:bf:8b:31:39:0c:3c:df:de:50:2d:05:4d:a8:5a:e9: 0e:6d:56:06:47:6d:1a:f0:db:23:92:0f:05:e8:d8:57:7a:38: e7:ae:bd:27:25:7d:86:c9:a5:b1:7a:00:63:63:04:80:3f:6f: b7:f3:14:39:b7:b7:29:2c:5d:0a:e2:2d:db:30:34:42:9f:a8: 50:98:d3:81:36:a8:11:ee:0c:31:82:d8:fd:cb:db:28:0c:74: 0c:01:0e:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUwNTMwMTYwNTE1WhcNMjUwNjA2MTYwNTE1WjAYMRYwFAYD VQQDEw02ODM5ZDczYi00NzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuEGjhm42L9FG5FFMC9FYOdFSPwk2yaJ2mhu2ErTEWoxJVgPLhnYKLBhF3+U oURMwlafjrLvIXWCMv7EiXZrN8zEM1QcBFgExrd3YC2MtykOcLm105MyuxNbZHON 2IP+Elvv9pFxUEelmGt3w+YgvGVoRT89uVNCbKRRNOlx2qwjBrfMpHrk6GwfXCUV f9KUMbhiT0moYcdtlEPPnJHkTPz9lfqZfvyeK2tDtVObToOK+zFVFsvesc70W1RL TP1CxzOo3ax+WTcY/xIG4O8aSQkP0+eXb246+Scukl2DxaRuk7/vLXrZTdFXHjlz NDMHD3t5zUV1RRo2l4nAMhhzSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIByDYM6 6b9f8J5hshM9a0Qx7sAVMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6LD61iNkSZJfPRvws2ljpRIFfBB2x+CnKE/mrcnV+R4tICWubXEmA HuIVHksabz11nZxIzgJ9FXL0iQRPl0p4wIYJrxerXWPz3fncIqC1a5/SouOGRD/r GwseaJpXvRbqcHlBUOpJMfcPDByuFu06wFUphJGlKY0qtg47Z5RwsU6L3+PbRloI utAOgLVEBvXfXN1AXghXSd2IbpzgJFz0m21fghC/izE5DDzf3lAtBU2oWukObVYG R20a8Nsjkg8F6NhXejjnrr0nJX2GyaWxegBjYwSAP2+38xQ5t7cpLF0K4i3bMDRC n6hQmNOBNqgR7gwxgtj9y9soDHQMAQ50 -----END CERTIFICATE-----Generated at Sat May 31 16:53:47 2025 by rpki-client