$ rpki-client -vvf rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft File: OVr1eRN2M5r53uVtah4TtHq1xGY.mft (raw, json) Hash identifier: gyCdycxFfysooFBn7HDk/DTFhFoihh02A11XTP0pu9U= Subject key identifier: 75:18:AB:40:5E:2B:ED:CD:72:76:DB:B6:95:A6:86:E3:0B:7E:A0:33 Authority key identifier: 39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 Certificate issuer: /CN=A91316B0/serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft Manifest number: 0505 Signing time: Tue 13 May 2025 00:08:44 +0000 Manifest this update: Tue 13 May 2025 00:08:44 +0000 Manifest next update: Tue 20 May 2025 00:08:44 +0000 Files and hashes: 1: OVr1eRN2M5r53uVtah4TtHq1xGY.crl (hash: KINgQ3it68KRN56NOGcclUXMKGR3Z6ZHJai8vAlL/kI=) 2: C6EFDF5C0C3311EFB37BD03FC4F9AE02.roa (hash: +baf+FBOvTO91WyGSxfLgP4c75Re+v5ehq0gcaeZq1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91316B0, serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Validity Not Before: May 13 00:08:44 2025 GMT Not After : May 20 00:08:44 2025 GMT Subject: CN=68228d8c-e272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a6:2f:55:5e:6a:50:13:37:5e:08:9d:83:0b: 28:1d:fa:3f:ac:c1:40:95:5a:26:9b:33:8b:0b:bd: b7:7c:c8:ae:10:b1:d5:6e:88:41:c7:5f:fe:ed:95: 35:0b:e5:70:ca:88:0d:79:80:e6:98:6a:09:49:c5: 21:5d:cf:cf:45:f5:ed:1b:00:28:42:d8:fa:7d:2f: 9e:e5:25:7e:e7:c5:b2:54:06:c7:50:af:08:2e:da: d2:2c:7e:f5:8d:60:ba:93:53:f6:87:24:6e:e6:7b: d4:d0:5e:30:4e:e7:2f:c9:00:50:14:ff:97:b0:80: fc:18:f0:92:0c:8c:8d:80:c3:39:39:17:86:33:29: dd:67:39:b0:3d:e4:30:a3:e7:f4:5d:a5:33:a2:c6: 7f:2e:1f:a4:fb:f5:24:7f:31:6e:5c:3a:d9:05:3e: 1e:5a:8d:7b:f0:8d:f0:17:c5:ec:3e:c0:e8:49:b6: 43:08:48:e4:a0:33:a7:44:43:aa:24:31:4f:cf:d7: b9:89:02:7e:3e:0e:20:af:6b:63:2e:18:88:30:44: 0e:cb:67:ad:e3:bb:86:43:48:92:57:85:29:99:52: c5:a9:fb:25:e3:0c:03:b3:24:57:fe:c9:61:e0:a7: e8:22:de:22:66:57:94:32:a3:55:36:68:94:4c:9b: 07:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:18:AB:40:5E:2B:ED:CD:72:76:DB:B6:95:A6:86:E3:0B:7E:A0:33 X509v3 Authority Key Identifier: keyid:39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:bb:76:84:52:93:1b:bd:77:9f:68:57:c4:0a:83:75:71:e0: c9:0f:43:eb:ab:e0:60:fc:7b:16:89:45:42:87:6e:2f:55:d2: c1:e2:bd:bf:81:1d:68:49:84:af:2f:93:d1:e3:90:ab:b6:dc: 0b:e4:32:00:4a:05:0f:7f:dc:ce:65:7e:2f:62:8b:7a:87:a0: 87:b6:89:23:14:64:da:c2:41:38:ec:c8:7c:5b:19:b2:99:bb: 8c:d6:2c:76:e9:ad:f2:8d:ae:b8:49:50:28:27:a8:b0:19:f6: d9:07:ba:1c:57:b1:81:27:bc:7f:65:4c:e8:00:aa:08:4c:96: 01:af:14:74:70:ec:92:9b:66:91:fd:30:36:98:26:48:84:55: c2:a7:e4:08:68:72:df:6f:ea:b3:80:50:a5:5a:5c:7a:97:27: 70:dc:a2:c5:00:85:42:6a:f1:af:06:c2:58:ce:21:4c:48:2e: f9:5c:d4:6e:60:5e:6e:7c:c2:12:8d:98:e6:13:96:c2:92:52: 8e:e7:02:b3:81:90:ea:ba:47:44:0a:1b:34:ed:0d:eb:3b:20: 13:3b:42:10:c3:61:ac:f2:84:d8:b4:8d:14:96:58:c4:f3:20: fc:6e:20:be:97:3c:88:77:7a:89:27:30:9e:75:13:db:39:3a: 36:7d:96:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2QjAxMTAvBgNVBAUTKDM5NUFGNTc5MTM3NjMzOUFGOURFRTU2RDZBMUUxM0I0 N0FCNUM0NjYwHhcNMjUwNTEzMDAwODQ0WhcNMjUwNTIwMDAwODQ0WjAYMRYwFAYD VQQDEw02ODIyOGQ4Yy1lMjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqYvVV5qUBM3XgidgwsoHfo/rMFAlVommzOLC723fMiuELHVbohBx1/+7ZU1 C+VwyogNeYDmmGoJScUhXc/PRfXtGwAoQtj6fS+e5SV+58WyVAbHUK8ILtrSLH71 jWC6k1P2hyRu5nvU0F4wTucvyQBQFP+XsID8GPCSDIyNgMM5OReGMyndZzmwPeQw o+f0XaUzosZ/Lh+k+/UkfzFuXDrZBT4eWo178I3wF8XsPsDoSbZDCEjkoDOnREOq JDFPz9e5iQJ+Pg4gr2tjLhiIMEQOy2et47uGQ0iSV4UpmVLFqfsl4wwDsyRX/slh 4KfoIt4iZleUMqNVNmiUTJsHOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUYq0Be K+3NcnbbtpWmhuMLfqAzMB8GA1UdIwQYMBaAFDla9XkTdjOa+d7lbWoeE7R6tcRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTZCMC8yMzM3RjIzMjVF M0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01cjUzdVZ0YWg0VHRIcTF4 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09WcjFlUk4yTTVyNTN1VnRhaDRUdEhxMXhHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTZCMC8yMzM3RjIzMjVFM0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01 cjUzdVZ0YWg0VHRIcTF4R1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCju3aEUpMbvXefaFfECoN1ceDJD0Prq+Bg/HsWiUVCh24vVdLB4r2/ gR1oSYSvL5PR45CrttwL5DIASgUPf9zOZX4vYot6h6CHtokjFGTawkE47Mh8Wxmy mbuM1ix26a3yja64SVAoJ6iwGfbZB7ocV7GBJ7x/ZUzoAKoITJYBrxR0cOySm2aR /TA2mCZIhFXCp+QIaHLfb+qzgFClWlx6lydw3KLFAIVCavGvBsJYziFMSC75XNRu YF5ufMISjZjmE5bCklKO5wKzgZDqukdEChs07Q3rOyATO0IQw2Gs8oTYtI0UlljE 8yD8biC+lzyId3qJJzCedRPbOTo2fZY3 -----END CERTIFICATE-----Generated at Tue May 13 10:31:31 2025 by rpki-client