$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: 7gb/zNKb+jMoDv+rg6/F7dlJWcDs2oxau+LJvQNBBnY= Subject key identifier: DD:FE:3D:B1:B5:2C:58:E6:DB:FD:4A:DC:BA:78:D4:63:88:8B:F0:1F Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 0137 Signing time: Sun 11 May 2025 03:17:38 +0000 Manifest this update: Sun 11 May 2025 03:17:37 +0000 Manifest next update: Sun 18 May 2025 03:17:37 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: Ac3vNn3iMztNSNXWT0vz+m+qHs7X0571LJx01/M9AgQ=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: z3jylC3bOFS/QeMNqO6FEMdonfOGPmCY4+yy8XOk4xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: May 11 03:17:37 2025 GMT Not After : May 18 03:17:37 2025 GMT Subject: CN=682016d2-3677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:37:ab:2a:8a:c6:ea:7b:63:cb:64:76:20:0a: d1:08:11:1a:1b:65:0b:68:cd:be:a7:fe:04:74:80: 1a:c2:40:68:e7:0e:0f:d8:bb:e2:e2:d2:50:42:e2: cc:9f:44:8d:5d:03:cf:1d:db:5c:5c:d9:91:6d:70: 4a:b9:77:56:c6:f3:3b:5f:3f:15:67:e1:51:71:1e: c4:31:50:5c:4b:2d:d4:5e:7b:07:a4:fd:0f:c1:04: cb:58:23:5e:d4:4a:18:9d:ad:e4:f2:e0:70:9a:44: 67:06:48:94:63:3b:bf:12:21:f9:90:e0:73:31:af: ec:94:e2:7f:68:15:5a:ab:18:77:66:1b:4b:d2:e9: ea:37:73:f5:9e:9b:b3:fc:b0:88:79:e7:f0:5a:6b: 79:bd:02:43:69:93:3c:ad:42:64:3c:db:3f:e7:ba: 32:ab:5b:69:56:0f:ee:f4:2c:b5:a5:f4:75:7e:51: 0d:be:0e:ec:b8:28:6a:0f:64:74:47:4b:3f:8c:0b: a4:cd:85:bb:7d:88:23:4f:c4:47:36:8c:89:b2:64: a2:ba:1a:fe:c2:ce:fd:a8:df:de:53:d2:fe:96:4e: 42:33:49:e7:de:fd:09:5d:d1:78:0c:14:d1:c6:c9: 00:f7:50:88:42:3a:90:0f:04:22:8f:b2:5d:e9:62: 38:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FE:3D:B1:B5:2C:58:E6:DB:FD:4A:DC:BA:78:D4:63:88:8B:F0:1F X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ba:8d:7f:3d:71:89:f3:f1:53:f3:f0:e2:a4:54:0f:f3:a5: fa:cf:8c:1d:e4:bc:a8:e0:8f:54:a0:73:27:c8:83:af:25:b1: 74:6a:c1:a3:b0:a7:ce:30:d3:77:27:1c:23:d4:d5:84:d1:2b: 99:69:aa:b1:16:4f:83:71:72:67:d5:62:ce:b9:5b:59:fd:72: d1:27:12:89:43:52:66:3a:b9:56:4f:a3:44:84:79:bf:07:0e: fe:bb:a2:29:88:ba:2d:0f:0f:60:6d:a8:ba:ee:b2:ce:ab:e5: 91:6b:24:b9:51:25:f8:39:7e:89:bf:77:a4:fe:4a:07:d2:c8: d7:ec:5a:26:6f:f6:5d:91:e6:38:87:cc:ff:65:3a:94:16:96: 61:af:01:6b:9d:4f:5e:f7:59:76:95:35:3e:43:d0:b1:b2:88: 1d:77:35:92:ca:a7:67:55:4d:62:88:54:90:b9:01:f6:b9:36: d5:f7:e7:32:c8:cb:34:f1:1a:c4:01:2f:ce:31:37:80:ef:af: 31:61:ae:26:ee:f7:9c:bf:80:3f:5b:26:84:1b:11:1a:8f:f6: 5b:ee:60:1a:7c:95:a0:9e:3c:52:46:a3:f2:99:b9:45:5b:ad: 0c:62:25:de:26:4c:8a:60:6f:26:a3:1d:75:40:ec:ed:fe:62: 09:b5:47:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjUwNTExMDMxNzM3WhcNMjUwNTE4MDMxNzM3WjAYMRYwFAYD VQQDEw02ODIwMTZkMi0zNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTerKorG6ntjy2R2IArRCBEaG2ULaM2+p/4EdIAawkBo5w4P2Lvi4tJQQuLM n0SNXQPPHdtcXNmRbXBKuXdWxvM7Xz8VZ+FRcR7EMVBcSy3UXnsHpP0PwQTLWCNe 1EoYna3k8uBwmkRnBkiUYzu/EiH5kOBzMa/slOJ/aBVaqxh3ZhtL0unqN3P1npuz /LCIeefwWmt5vQJDaZM8rUJkPNs/57oyq1tpVg/u9Cy1pfR1flENvg7suChqD2R0 R0s/jAukzYW7fYgjT8RHNoyJsmSiuhr+ws79qN/eU9L+lk5CM0nn3v0JXdF4DBTR xskA91CIQjqQDwQij7Jd6WI4mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3+PbG1 LFjm2/1K3Lp41GOIi/AfMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKuo1/PXGJ8/FT8/DipFQP86X6z4wd5Lyo4I9UoHMnyIOvJbF0asGj sKfOMNN3Jxwj1NWE0SuZaaqxFk+DcXJn1WLOuVtZ/XLRJxKJQ1JmOrlWT6NEhHm/ Bw7+u6IpiLotDw9gbai67rLOq+WRayS5USX4OX6Jv3ek/koH0sjX7Fomb/ZdkeY4 h8z/ZTqUFpZhrwFrnU9e91l2lTU+Q9CxsogddzWSyqdnVU1iiFSQuQH2uTbV9+cy yMs08RrEAS/OMTeA768xYa4m7vecv4A/WyaEGxEaj/Zb7mAafJWgnjxSRqPymblF W60MYiXeJkyKYG8mox11QOzt/mIJtUcx -----END CERTIFICATE-----Generated at Sun May 11 20:06:07 2025 by rpki-client