$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: Y7UEPls7vU9kEEJyyMQIhoji3f/Cu1gY7ai0AE00M20= Subject key identifier: E1:0D:6C:58:67:F6:33:0E:EE:94:28:D5:F2:0A:76:B2:EC:91:EA:85 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 0264 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 0260 Signing time: Sat 31 May 2025 01:57:58 +0000 Manifest this update: Sat 31 May 2025 01:57:58 +0000 Manifest next update: Sat 07 Jun 2025 01:57:58 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: txHMhymSD6Ou1sAOygo49sp52w1/aJBMv7asUY5Gv8s=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 00Bb5TLyF/J2CWzHDjxZA81Dz6rMiVp4bUBC6ncoYxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 612 (0x264) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: May 31 01:57:58 2025 GMT Not After : Jun 7 01:57:58 2025 GMT Subject: CN=683a6226-6b2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:65:d9:93:fa:d3:c4:f6:9d:08:ac:7b:83:29: 10:e8:68:77:18:21:cd:57:da:05:21:56:2a:48:2b: 27:f1:96:f1:67:d1:bd:27:2d:9c:6b:07:9d:95:69: c7:8d:7d:12:0e:3f:6b:3e:38:a3:9b:86:7b:96:12: b4:6b:c6:e7:9d:d1:73:a3:c2:56:fc:83:e4:1e:a1: 05:28:ca:a7:1f:2d:35:25:52:b0:d9:66:be:6a:87: 85:a5:94:28:fc:46:ba:97:d0:82:cd:5b:bb:75:6b: f6:ce:14:0c:e1:fd:66:2a:84:88:05:48:8b:71:83: 17:47:d9:2a:a5:e9:b7:73:8c:75:c6:e5:61:48:83: f2:06:2c:aa:2c:2c:d4:5b:9b:eb:48:15:59:9e:ba: f5:fb:65:b2:d1:07:1f:40:ee:b9:8f:94:a4:be:d4: eb:24:50:b0:b2:65:50:66:91:ce:f1:8d:c2:c7:95: 3d:2a:f9:f7:94:41:12:5f:b8:4d:41:d0:0a:ef:90: ec:8c:f6:0e:59:dd:03:34:1f:3c:66:3f:97:37:33: 56:47:8b:d4:4a:ac:64:15:a8:d6:36:bd:ac:4c:92: cd:89:a4:e6:99:cf:c0:75:cd:6f:38:48:86:ad:fa: c9:05:c1:e4:64:d8:ab:8b:d6:8f:ef:02:00:1d:72: 82:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:0D:6C:58:67:F6:33:0E:EE:94:28:D5:F2:0A:76:B2:EC:91:EA:85 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:bb:4c:39:33:bf:8f:59:87:dc:99:55:ee:c2:5b:3a:4f:60: 13:90:b1:80:e0:39:ac:db:41:fd:55:d5:49:6b:50:5a:79:ba: 86:30:09:90:44:cf:0e:8a:1a:90:68:7e:ee:7e:91:30:1f:86: a2:dc:b9:bb:07:ab:ba:a1:60:e4:39:ec:26:92:0c:f7:44:c0: 00:37:ad:0e:0e:68:4f:b3:db:0e:a2:60:51:b0:72:5e:ef:76: 31:6f:82:8c:a9:69:69:a0:2c:49:7b:34:1d:1c:a6:be:60:81: c3:e7:bf:19:3b:1f:db:f9:3b:9b:fc:9b:ae:0b:b0:d2:49:1f: 9e:db:a2:93:f9:2f:63:4a:cd:8f:01:d0:28:ec:58:45:09:d6: 24:d4:78:13:70:c8:fb:33:4a:0d:a0:c4:81:93:81:c0:c3:fd: 96:00:63:32:f6:2b:26:e7:ee:a7:b5:40:35:e4:b0:77:30:c7: a8:51:3a:32:ee:ca:a2:19:11:e1:f8:41:94:ca:4b:aa:9c:e4: b7:09:06:76:01:81:f9:ab:8d:94:a2:05:19:0c:8a:8c:8e:07: a8:86:42:0c:37:cd:b4:da:39:e0:63:a5:cd:ae:69:70:bd:35: 5c:b1:cf:96:6b:52:55:57:dd:e4:8c:17:62:17:e0:13:64:69: 7d:8c:48:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUwNTMxMDE1NzU4WhcNMjUwNjA3MDE1NzU4WjAYMRYwFAYD VQQDEw02ODNhNjIyNi02YjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymXZk/rTxPadCKx7gykQ6Gh3GCHNV9oFIVYqSCsn8ZbxZ9G9Jy2cawedlWnH jX0SDj9rPjijm4Z7lhK0a8bnndFzo8JW/IPkHqEFKMqnHy01JVKw2Wa+aoeFpZQo /Ea6l9CCzVu7dWv2zhQM4f1mKoSIBUiLcYMXR9kqpem3c4x1xuVhSIPyBiyqLCzU W5vrSBVZnrr1+2Wy0QcfQO65j5SkvtTrJFCwsmVQZpHO8Y3Cx5U9Kvn3lEESX7hN QdAK75DsjPYOWd0DNB88Zj+XNzNWR4vUSqxkFajWNr2sTJLNiaTmmc/Adc1vOEiG rfrJBcHkZNiri9aP7wIAHXKCowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOENbFhn 9jMO7pQo1fIKdrLskeqFMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZu0w5M7+PWYfcmVXuwls6T2ATkLGA4Dms20H9VdVJa1BaebqGMAmQ RM8OihqQaH7ufpEwH4ai3Lm7B6u6oWDkOewmkgz3RMAAN60ODmhPs9sOomBRsHJe 73Yxb4KMqWlpoCxJezQdHKa+YIHD578ZOx/b+Tub/JuuC7DSSR+e26KT+S9jSs2P AdAo7FhFCdYk1HgTcMj7M0oNoMSBk4HAw/2WAGMy9ism5+6ntUA15LB3MMeoUToy 7sqiGRHh+EGUykuqnOS3CQZ2AYH5q42UogUZDIqMjgeohkIMN8202jngY6XNrmlw vTVcsc+Wa1JVV93kjBdiF+ATZGl9jEh1 -----END CERTIFICATE-----Generated at Sat May 31 16:30:36 2025 by rpki-client