$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: f5VupLCRT/+0fvQYFTKuvkoHs1skmuhQ7IiMjjuuo8o= Subject key identifier: E8:67:4E:56:E5:75:4B:20:71:59:00:77:72:2F:4B:E2:8B:33:16:6C Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 0A9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 0A90 Signing time: Mon 12 May 2025 19:26:02 +0000 Manifest this update: Mon 12 May 2025 19:26:01 +0000 Manifest next update: Mon 19 May 2025 19:26:01 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: en3fQ8wC/vgSgwzG9oqmauIBq7JtTrFu6Rw4UIehlgQ=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: iGeCqjea5TKx5w3j1RMFWZOzP6n/8IBkqpNhUcYz96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2714 (0xa9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0, serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: May 12 19:26:01 2025 GMT Not After : May 19 19:26:01 2025 GMT Subject: CN=68224b49-1106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:70:7f:49:dc:de:19:1c:b5:c9:48:8e:02:09: c6:9c:80:46:47:8a:57:5a:a7:6e:e7:8f:3a:11:65: ba:3d:b8:8c:da:6a:0b:6e:6f:0d:0f:3d:2f:21:0a: 83:0a:bc:be:35:92:5a:05:4e:15:b2:52:cf:32:2f: 1f:6c:a6:4e:2f:a2:8a:cc:c5:6a:40:79:92:98:58: 8f:91:e1:f4:a7:b9:75:7c:8c:b9:ec:c9:a3:df:51: 31:d7:0b:62:bb:2a:6c:56:17:fc:86:fe:d5:7a:07: 22:a3:9a:96:0a:60:18:15:01:10:d4:d4:86:92:9f: ab:0e:19:50:79:d0:8b:d1:0b:dd:c0:bf:2f:d9:c5: e1:e2:56:4c:b9:ff:80:15:f3:c0:58:59:e6:c2:e8: f5:8f:e5:75:3e:06:7f:74:3b:f1:94:c3:89:bc:83: b5:b8:c5:22:bc:a6:ea:8e:2c:4c:87:fb:15:09:03: ca:c8:f4:dd:0f:d8:5e:df:f9:ac:af:23:7c:7f:82: 9a:35:ac:21:e8:b9:12:b3:79:e8:a0:68:29:ed:fa: 27:68:1c:83:a7:98:de:e0:bb:80:27:ac:b0:a4:f2: 9f:8a:fe:92:e3:50:d7:15:a5:30:f4:5c:31:45:92: ec:b1:9e:f8:a0:fe:63:8f:2c:e2:6f:e8:14:02:eb: d8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:67:4E:56:E5:75:4B:20:71:59:00:77:72:2F:4B:E2:8B:33:16:6C X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:ff:e1:59:86:4e:87:7f:b6:3b:0f:c0:45:1b:a4:24:cd:26: 82:81:8c:4f:ae:32:b6:5d:9a:f9:b5:dd:9b:e7:7e:95:93:a2: 4e:12:32:2e:db:be:e9:ae:e2:0d:c8:75:a1:13:a8:32:fe:66: 9b:24:71:34:18:ff:01:e6:0c:7f:7e:40:9f:10:b9:97:24:f1: 08:b6:a4:b6:4a:e2:a8:0a:35:53:fc:1d:19:ed:30:aa:60:0d: 2a:5e:e2:e8:46:5c:b5:dc:43:f2:cb:9f:e4:da:32:6c:23:ea: 91:e5:fc:47:48:10:b7:a8:ae:23:40:f3:d1:23:38:54:0e:bf: 95:02:22:19:72:3c:11:95:25:eb:b9:90:da:1a:19:32:87:df: 86:4b:2a:3e:ad:d3:fc:e2:8f:4a:aa:6f:4e:aa:66:b7:db:94: 65:b8:30:52:93:29:8a:29:3b:20:92:47:de:f3:04:e8:3e:5a: 4b:79:b3:06:59:fb:cf:91:c1:bc:29:95:31:a3:b6:cc:bd:30: 85:cf:67:10:0d:a9:fa:ea:49:4a:a7:ef:6e:b7:31:aa:96:5a: cb:da:8b:0e:b2:3e:5a:ec:5e:06:61:74:07:2e:18:e2:a5:b3: 2a:5e:fb:d3:16:f2:bc:4f:f3:78:53:d7:1f:f7:ff:1e:a1:3b: 64:51:f1:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjUwNTEyMTkyNjAxWhcNMjUwNTE5MTkyNjAxWjAYMRYwFAYD VQQDEw02ODIyNGI0OS0xMTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHB/SdzeGRy1yUiOAgnGnIBGR4pXWqdu5486EWW6PbiM2moLbm8NDz0vIQqD Cry+NZJaBU4VslLPMi8fbKZOL6KKzMVqQHmSmFiPkeH0p7l1fIy57Mmj31Ex1wti uypsVhf8hv7Vegcio5qWCmAYFQEQ1NSGkp+rDhlQedCL0QvdwL8v2cXh4lZMuf+A FfPAWFnmwuj1j+V1PgZ/dDvxlMOJvIO1uMUivKbqjixMh/sVCQPKyPTdD9he3/ms ryN8f4KaNawh6LkSs3nooGgp7fonaByDp5je4LuAJ6ywpPKfiv6S41DXFaUw9Fwx RZLssZ74oP5jjyzib+gUAuvYOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhnTlbl dUsgcVkAd3IvS+KLMxZsMB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy/+FZhk6Hf7Y7D8BFG6QkzSaCgYxPrjK2XZr5td2b536Vk6JOEjIu 277pruINyHWhE6gy/mabJHE0GP8B5gx/fkCfELmXJPEItqS2SuKoCjVT/B0Z7TCq YA0qXuLoRly13EPyy5/k2jJsI+qR5fxHSBC3qK4jQPPRIzhUDr+VAiIZcjwRlSXr uZDaGhkyh9+GSyo+rdP84o9Kqm9Oqma325RluDBSkymKKTsgkkfe8wToPlpLebMG WfvPkcG8KZUxo7bMvTCFz2cQDan66klKp+9utzGqllrL2osOsj5a7F4GYXQHLhji pbMqXvvTFvK8T/N4U9cf9/8eoTtkUfHA -----END CERTIFICATE-----Generated at Wed May 14 07:54:02 2025 by rpki-client