$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: H5RiOKO7fMc4wgNehKqZRh8dN4y6B8TpbK0OwkPlnqY= Subject key identifier: 09:E7:9B:32:BF:CB:45:54:B5:27:B2:62:B2:63:7C:DB:DE:66:3C:0D Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 13B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 13A7 Signing time: Fri 30 May 2025 17:08:48 +0000 Manifest this update: Fri 30 May 2025 17:08:48 +0000 Manifest next update: Fri 06 Jun 2025 17:08:48 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: FxAZr4Vxeq5TXZ9jX6uZ9hKM5YfCiXdItp1mMQGyCAA=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: H7cacnsh0VuhyC5itqeb5pDEzr5EF2LWGOPta4fd7j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5041 (0x13b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639, serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: May 30 17:08:48 2025 GMT Not After : Jun 6 17:08:48 2025 GMT Subject: CN=6839e620-9490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1e:62:f1:38:8a:6b:67:4a:cb:cf:b4:45:30: 95:ff:56:c3:58:5d:6c:22:10:84:20:a3:c9:a4:1e: 05:47:78:8d:82:6d:66:05:4e:f1:7e:dc:04:75:89: fc:d5:03:4e:4e:88:f0:6f:b5:5c:90:04:82:3c:14: 47:61:cd:21:42:a4:73:f9:1c:13:d3:d8:74:7f:4a: 6d:f2:cb:c4:b5:a2:5c:4c:34:6f:08:91:e2:18:c3: 97:d4:da:98:b4:38:c3:2f:41:5b:c1:22:fa:b2:ac: d0:46:6d:38:06:96:10:84:a4:a9:5f:d8:9c:19:03: bf:eb:d1:30:58:de:6f:b0:8f:e2:7e:48:dd:af:46: b9:55:26:57:25:a8:d1:db:7e:79:a5:20:16:73:20: 06:8f:77:3b:7c:4b:b7:8e:30:3e:0b:63:72:e3:0e: 5b:39:4b:ec:82:cc:6f:61:99:a5:f1:00:03:77:8a: 71:59:6c:20:89:13:5b:6f:31:5a:80:f0:8b:6a:cc: 2f:a3:35:47:b9:f1:4e:16:18:c6:3e:0b:f3:dd:8f: 29:7d:89:b5:0b:e5:04:a4:45:f0:11:36:bf:5c:70: 9d:c9:e5:d1:72:ec:49:9e:0b:10:91:f7:73:78:49: 4d:35:3d:32:13:5e:bb:2d:97:ee:22:d1:6d:8c:e4: ec:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E7:9B:32:BF:CB:45:54:B5:27:B2:62:B2:63:7C:DB:DE:66:3C:0D X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:1f:a6:4c:04:7f:0a:73:49:a3:f4:ad:33:62:0f:23:db:16: 34:74:92:b5:20:37:ce:1a:8a:d4:75:7b:ac:88:40:9f:3e:2e: 22:2f:79:3f:b9:58:eb:34:4e:2a:a6:62:f0:d3:3a:c7:bf:da: 92:fc:78:c9:93:e0:ce:ac:08:4a:f0:88:8a:b0:77:70:a2:e8: 7e:d6:11:53:0d:ad:0f:2a:83:4a:8a:7e:24:e9:ed:03:e8:3b: a3:4a:66:c3:bb:dd:4a:0c:7b:83:ff:a5:2e:7e:df:7e:dc:ec: f4:36:19:94:ac:a8:f3:4c:a9:1e:9e:37:2d:09:22:4e:8e:5b: b2:a5:f0:ab:cd:d2:5e:26:14:d0:bf:45:c9:92:01:ea:e4:a5: 1d:33:41:5e:48:67:c7:9c:c6:63:5c:06:06:bb:f4:95:31:2b: e1:da:86:7f:72:3d:47:47:7e:e9:8d:fd:35:81:74:fa:6b:a7: 59:2b:00:fc:01:a5:69:9b:9d:8a:6d:98:d7:38:6f:0e:8a:0c: 77:8d:19:22:5a:d7:c6:61:e3:26:22:10:1f:54:58:de:b5:28: aa:0a:f7:cb:ed:2c:cd:4d:9e:3f:11:d2:bb:eb:a3:36:51:b0: 38:de:85:49:8a:8f:dd:27:9c:ae:ce:de:c1:4f:84:25:15:08: 22:9a:14:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjUwNTMwMTcwODQ4WhcNMjUwNjA2MTcwODQ4WjAYMRYwFAYD VQQDEw02ODM5ZTYyMC05NDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuh5i8TiKa2dKy8+0RTCV/1bDWF1sIhCEIKPJpB4FR3iNgm1mBU7xftwEdYn8 1QNOTojwb7VckASCPBRHYc0hQqRz+RwT09h0f0pt8svEtaJcTDRvCJHiGMOX1NqY tDjDL0FbwSL6sqzQRm04BpYQhKSpX9icGQO/69EwWN5vsI/ifkjdr0a5VSZXJajR 2355pSAWcyAGj3c7fEu3jjA+C2Ny4w5bOUvsgsxvYZml8QADd4pxWWwgiRNbbzFa gPCLaswvozVHufFOFhjGPgvz3Y8pfYm1C+UEpEXwETa/XHCdyeXRcuxJngsQkfdz eElNNT0yE167LZfuItFtjOTs7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnnmzK/ y0VUtSeyYrJjfNveZjwNMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEH6ZMBH8Kc0mj9K0zYg8j2xY0dJK1IDfOGorUdXusiECfPi4iL3k/ uVjrNE4qpmLw0zrHv9qS/HjJk+DOrAhK8IiKsHdwouh+1hFTDa0PKoNKin4k6e0D 6DujSmbDu91KDHuD/6Uuft9+3Oz0NhmUrKjzTKkenjctCSJOjluypfCrzdJeJhTQ v0XJkgHq5KUdM0FeSGfHnMZjXAYGu/SVMSvh2oZ/cj1HR37pjf01gXT6a6dZKwD8 AaVpm52KbZjXOG8Oigx3jRkiWtfGYeMmIhAfVFjetSiqCvfL7SzNTZ4/EdK766M2 UbA43oVJio/dJ5yuzt7BT4QlFQgimhQS -----END CERTIFICATE-----Generated at Sat May 31 17:16:18 2025 by rpki-client