$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft File: OQo4N6umkSos8p5hDaSVVd8sb6U.mft (raw, json) Hash identifier: Xrp2Oq/oxRU0AyJ3jxEIfpYzhhrHGIV2CQXt1Pe/j3g= Subject key identifier: 93:38:81:4D:A3:F9:DD:5E:34:07:D0:44:57:B5:37:BA:DD:8C:36:40 Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft Manifest number: 44 Signing time: Thu 15 May 2025 06:41:42 +0000 Manifest this update: Thu 15 May 2025 06:41:41 +0000 Manifest next update: Thu 22 May 2025 06:41:41 +0000 Files and hashes: 1: OQo4N6umkSos8p5hDaSVVd8sb6U.crl (hash: fkQ8Vl7V877UZqCHriI1ge9lssmCCm2d75Y6qUho/jU=) 2: 731ABC30CB5A11EFBEE64062C4F9AE02.roa (hash: Q1rZZ9iM/5ZnKcT/2gghzGKoj09HJfMAmvtogcokE8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: May 15 06:41:41 2025 GMT Not After : May 22 06:41:41 2025 GMT Subject: CN=68258ca6-12d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:80:34:92:7f:b5:8f:94:20:b6:d4:6c:fb:96: ab:12:94:45:a7:b1:2d:69:ee:6e:a7:46:3f:d1:76: 22:1a:22:df:42:83:16:4f:d7:5a:91:6f:90:bf:8a: 31:10:3c:9b:25:d2:26:ab:38:65:95:10:63:a5:1d: 71:b5:11:1c:cb:82:55:23:8b:32:70:7a:36:9c:4d: 5b:32:4f:b2:be:d4:5d:bb:e9:69:d5:90:2e:40:14: 69:86:bd:35:22:e9:8e:6f:d4:c2:1d:15:e6:ed:21: 3e:11:7b:c8:f8:82:bc:f4:9e:32:44:6c:38:be:4f: a3:f0:1b:75:94:94:7b:e8:c7:4f:d3:49:0a:33:2e: 3d:4a:be:76:4d:c3:f0:09:67:8b:9f:2b:39:25:0a: bc:12:b4:44:ec:06:36:24:81:2c:4b:25:1b:3a:64: c2:eb:9c:d9:07:42:e3:47:36:67:77:66:9a:fc:65: ac:12:11:9e:90:6a:7c:8d:b4:c5:b0:bb:de:da:0f: 5b:32:97:c8:22:88:14:e5:6a:e8:fd:8b:3b:7f:f0: 24:86:b9:d6:8e:7b:61:cf:23:b6:14:97:09:12:a6: 67:db:95:c6:56:55:5b:d7:e8:90:13:ee:06:60:74: 79:ef:d0:fb:e0:f0:68:37:7e:d5:89:06:82:b2:6e: f7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:38:81:4D:A3:F9:DD:5E:34:07:D0:44:57:B5:37:BA:DD:8C:36:40 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:5d:0a:94:48:86:f6:5d:fa:f8:fb:c4:ad:d8:b4:8c:26:7a: 7b:f6:b8:6e:e8:89:9b:e4:ba:4b:ea:5f:4a:da:47:f1:d9:dc: 5a:16:bc:82:d2:37:3f:95:94:a4:dd:03:b4:66:3c:2f:6f:f0: 73:e4:64:09:2b:e0:01:49:41:37:96:75:d6:8c:a9:cd:d6:df: 66:97:25:cd:e2:63:c8:40:0d:32:a4:42:a8:5b:0d:8e:e7:26: 55:74:f6:c3:4f:e0:8c:b0:cd:7e:08:12:d6:72:4d:5a:6a:ac: 01:87:20:b1:91:07:68:b4:92:75:5d:32:74:c0:5f:f7:55:cd: 3a:6d:1e:00:01:e0:72:75:67:95:2a:39:97:2f:2b:80:93:96: fd:73:db:bd:19:da:b0:95:86:c7:95:af:de:0f:54:8e:c9:28: 50:8f:05:7f:bc:da:ba:d4:8c:c1:f6:38:19:2b:0f:3f:f8:2d: b2:4e:07:04:58:35:57:a4:73:61:9e:70:39:26:7f:f1:24:18: 92:31:d6:0d:e0:bb:4c:fe:f9:26:1b:74:4f:2c:79:a7:f9:eb: 93:ea:86:b8:4a:18:ab:ad:7a:ea:e9:3f:32:49:bb:4d:e1:2f: 81:22:64:67:aa:f6:10:c9:80:ad:dd:05:8f:b8:f8:bc:01:6e: bb:6d:86:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJCNjExMC8GA1UEBRMoMzkwQTM4MzdBQkE2OTEyQTJDRjI5RTYxMERBNDk1NTVE RjJDNkZBNTAeFw0yNTA1MTUwNjQxNDFaFw0yNTA1MjIwNjQxNDFaMBgxFjAUBgNV BAMTDTY4MjU4Y2E2LTEyZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNgDSSf7WPlCC21Gz7lqsSlEWnsS1p7m6nRj/RdiIaIt9CgxZP11qRb5C/ijEQ PJsl0iarOGWVEGOlHXG1ERzLglUjizJwejacTVsyT7K+1F276WnVkC5AFGmGvTUi 6Y5v1MIdFebtIT4Re8j4grz0njJEbDi+T6PwG3WUlHvox0/TSQozLj1KvnZNw/AJ Z4ufKzklCrwStETsBjYkgSxLJRs6ZMLrnNkHQuNHNmd3Zpr8ZawSEZ6QanyNtMWw u97aD1syl8giiBTlauj9izt/8CSGudaOe2HPI7YUlwkSpmfblcZWVVvX6JAT7gZg dHnv0Pvg8Gg3ftWJBoKybvd5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkziBTaP5 3V40B9BEV7U3ut2MNkAwHwYDVR0jBBgwFoAUOQo4N6umkSos8p5hDaSVVd8sb6Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkI2L0RFN0UzMjFFQ0I1 OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1FvNE42dW1rU29zOHA1aERhU1ZWZDhzYjZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MkI2L0RFN0UzMjFFQ0I1OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1Nv czhwNWhEYVNWVmQ4c2I2VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADRdCpRIhvZd+vj7xK3YtIwmenv2uG7oiZvkukvqX0raR/HZ3FoWvILS Nz+VlKTdA7RmPC9v8HPkZAkr4AFJQTeWddaMqc3W32aXJc3iY8hADTKkQqhbDY7n JlV09sNP4IywzX4IEtZyTVpqrAGHILGRB2i0knVdMnTAX/dVzTptHgAB4HJ1Z5Uq OZcvK4CTlv1z270Z2rCVhseVr94PVI7JKFCPBX+82rrUjMH2OBkrDz/4LbJOBwRY NVekc2GecDkmf/EkGJIx1g3gu0z++SYbdE8seaf565PqhrhKGKuteurpPzJJu03h L4EiZGeq9hDJgK3dBY+4+LwBbrtthj0= -----END CERTIFICATE-----Generated at Thu May 15 15:22:48 2025 by rpki-client