$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: aTBlJ7M6y6MuTGKzPtu+0KNKEGURbG3kK3qY3nBos1U= Subject key identifier: A3:D4:50:71:DD:C8:8B:2E:83:76:05:0B:9D:B7:C7:FF:32:7E:86:EA Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 082E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 0819 Signing time: Fri 16 May 2025 21:10:53 +0000 Manifest this update: Fri 16 May 2025 21:10:53 +0000 Manifest next update: Fri 23 May 2025 21:10:53 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: U796+7C+f/+JcIsYGD25NYAiHj3W5oFjS0V4tSl95m8=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: ZWM4HJUjC3JgAEYknxCATq6PGI5BXk42LHpdEZQRJ0I=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: oVaIkIIp594wdZKn2XCmHgy069EyuIaCAvG8B279YGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 21:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2094 (0x82e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: May 16 21:10:53 2025 GMT Not After : May 23 21:10:53 2025 GMT Subject: CN=6827a9dd-cb84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:53:41:d0:37:6f:0a:37:2e:cf:fd:d5:80:a9: c8:83:28:14:87:84:08:85:7c:31:1f:bf:d4:1b:3d: e4:6d:9e:bb:a8:61:27:cb:19:e6:08:4f:d1:e7:09: a0:26:d1:8d:21:4b:45:4e:f5:a3:b7:9f:12:1f:3d: 08:0e:c3:9d:5d:2e:dd:10:9a:eb:cc:fc:28:d4:43: af:2d:e1:c1:fb:f5:f0:95:6a:59:e2:f9:d2:c1:46: 34:7f:0f:b4:79:b8:c1:3c:f2:d2:98:f8:e3:32:cf: ae:a4:57:72:a2:8e:e4:00:d8:4a:2b:4f:77:82:26: 7b:5e:3d:ea:ec:2b:d9:c4:48:a1:d7:3c:c6:c8:68: c6:d3:70:ee:50:70:d0:20:70:8d:9b:1f:0f:8e:95: 13:dd:a9:eb:59:53:2b:09:e7:14:91:d1:96:6f:3d: 02:35:70:36:93:0e:01:cf:80:dd:b1:a3:f6:7e:42: 28:24:bb:17:df:bf:c2:40:65:c9:1b:20:9d:b2:d7: d9:8f:3f:86:3a:63:d5:26:a1:42:68:d3:4a:ab:fa: 95:a2:d4:57:b5:35:81:50:d4:7f:e0:7d:7f:e9:f4: ff:36:12:af:20:ad:bc:30:8e:64:90:9d:95:87:f7: 9e:ad:cd:55:ff:71:25:dd:e5:e8:30:17:e1:2f:2e: 9a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D4:50:71:DD:C8:8B:2E:83:76:05:0B:9D:B7:C7:FF:32:7E:86:EA X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:69:58:02:bd:d2:92:43:c0:9a:b7:46:78:7c:fc:22:84:88: d1:1c:e3:71:1a:c7:37:6c:c5:cc:0d:d1:55:f0:e3:5c:a6:9a: 29:f2:1e:ed:ce:6f:1b:83:10:f3:fd:d3:71:7d:d6:35:9c:1c: 19:78:12:09:7a:b6:dd:7f:7e:25:41:f0:c3:3d:76:e4:d6:66: e7:2c:b5:50:7d:37:66:98:bb:9e:a7:c8:11:28:9f:c5:28:b4: 09:bc:3d:01:a1:49:fa:9d:0b:0b:5b:37:e7:d6:c3:a7:32:df: 70:26:a3:c3:81:0d:8d:00:fb:38:a6:f6:34:03:bf:f9:92:fb: f6:c0:9d:22:20:d5:ad:b8:e1:f0:58:fd:72:8b:aa:72:fd:12: f6:04:e3:ef:cd:7c:d6:d9:d1:ff:19:26:31:e5:07:6a:24:09: d0:4b:af:37:0a:d1:fe:aa:99:69:e4:93:ca:da:4e:83:59:49: 80:8e:31:23:76:de:ea:c9:58:8f:ae:34:bf:9f:55:03:fd:23: 76:a3:1a:e8:be:8f:9e:83:69:34:1c:26:17:56:b5:68:6c:26: 58:95:55:2a:34:ef:bd:f4:6b:7b:fa:54:31:5a:c3:9e:45:ca: f0:b2:1b:3b:46:43:05:d8:ff:8d:e8:66:da:26:ae:76:4c:d4: c1:d0:48:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjUwNTE2MjExMDUzWhcNMjUwNTIzMjExMDUzWjAYMRYwFAYD VQQDEw02ODI3YTlkZC1jYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lNB0DdvCjcuz/3VgKnIgygUh4QIhXwxH7/UGz3kbZ67qGEnyxnmCE/R5wmg JtGNIUtFTvWjt58SHz0IDsOdXS7dEJrrzPwo1EOvLeHB+/XwlWpZ4vnSwUY0fw+0 ebjBPPLSmPjjMs+upFdyoo7kANhKK093giZ7Xj3q7CvZxEih1zzGyGjG03DuUHDQ IHCNmx8PjpUT3anrWVMrCecUkdGWbz0CNXA2kw4Bz4DdsaP2fkIoJLsX37/CQGXJ GyCdstfZjz+GOmPVJqFCaNNKq/qVotRXtTWBUNR/4H1/6fT/NhKvIK28MI5kkJ2V h/eerc1V/3El3eXoMBfhLy6amQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPUUHHd yIsug3YFC523x/8yfobqMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjaVgCvdKSQ8Cat0Z4fPwihIjRHONxGsc3bMXMDdFV8ONcppop8h7t zm8bgxDz/dNxfdY1nBwZeBIJerbdf34lQfDDPXbk1mbnLLVQfTdmmLuep8gRKJ/F KLQJvD0BoUn6nQsLWzfn1sOnMt9wJqPDgQ2NAPs4pvY0A7/5kvv2wJ0iINWtuOHw WP1yi6py/RL2BOPvzXzW2dH/GSYx5QdqJAnQS683CtH+qplp5JPK2k6DWUmAjjEj dt7qyViPrjS/n1UD/SN2oxrovo+eg2k0HCYXVrVobCZYlVUqNO+99Gt7+lQxWsOe Rcrwshs7RkMF2P+N6GbaJq52TNTB0EjA -----END CERTIFICATE-----Generated at Sat May 17 01:00:50 2025 by rpki-client