$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft File: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft (raw, json) Hash identifier: /1NRX0HqXMcEoxh5aQ1GpHj6vVmi9zViI0aAAVBNcQ0= Subject key identifier: 51:BA:81:21:3D:CA:E3:B1:F9:FA:A7:C6:F0:30:EE:3E:9F:FB:75:F4 Authority key identifier: D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 Certificate issuer: /CN=A91AAE16/serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Certificate serial: 0FA6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft Manifest number: 0F9D Signing time: Mon 12 May 2025 17:27:16 +0000 Manifest this update: Mon 12 May 2025 17:27:15 +0000 Manifest next update: Mon 19 May 2025 17:27:15 +0000 Files and hashes: 1: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl (hash: ovTyBMuEwAo9xG+hQI4Ec6BrlQFaZNEeyn9EMXpUIrE=) 2: 682B76C05BB211E9BF474F16C4F9AE02.roa (hash: vKLtsTjRDQmvaoDy2+JZ+X/edFfE0cROOj6FdGkYWZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4006 (0xfa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Validity Not Before: May 12 17:27:15 2025 GMT Not After : May 19 17:27:15 2025 GMT Subject: CN=68222f74-254e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:18:f7:1c:a9:10:5e:bc:df:c1:06:29:f4:13: 9b:6c:ab:b4:73:b9:43:d9:f2:10:fd:ab:61:67:e9: 58:dd:1f:f1:37:9e:02:5d:14:00:94:9a:84:42:09: 79:5e:55:31:14:2b:df:d7:4b:11:75:11:48:ea:d6: 7d:8e:07:a7:18:0f:31:61:37:b6:83:1d:d7:02:fa: ee:ec:28:a2:43:fc:74:91:4e:2d:28:2e:e8:82:ed: 52:76:69:40:26:8b:87:7d:3a:8b:e6:45:ef:70:81: 42:f8:43:b5:9f:66:59:70:cf:96:32:60:b0:9d:5c: b5:29:c8:d4:c8:6b:fd:95:9c:14:d1:02:e0:b7:8d: e6:e8:9e:c2:91:bf:7e:5a:fb:04:c1:0f:b7:ac:71: 5a:73:c9:2e:2b:f0:8b:59:40:b9:fb:95:fc:b3:f7: 23:82:9c:33:07:17:09:a8:6f:f0:d8:1a:bd:0c:38: 6c:f3:c4:17:d8:24:a2:1a:ce:ca:e9:19:d4:47:38: 3e:1a:35:8f:97:fe:c2:f6:50:1c:24:3c:ce:48:15: be:19:4d:bf:e7:d9:ab:06:58:2d:54:e7:67:cd:bd: a0:c3:f4:ac:88:e9:b4:e1:12:0e:cc:e2:38:ad:a5: 60:9f:01:8b:5a:8e:82:68:72:bf:56:bf:d2:41:1f: 91:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:BA:81:21:3D:CA:E3:B1:F9:FA:A7:C6:F0:30:EE:3E:9F:FB:75:F4 X509v3 Authority Key Identifier: keyid:D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:00:19:ad:29:9c:ec:52:ab:d2:fc:68:5e:c2:c9:12:f1:64: ee:53:ba:90:9d:68:54:a2:e5:6f:8c:ee:ce:56:3a:c3:4e:fd: 29:45:75:31:d2:8b:8c:bc:cf:9d:91:70:30:1e:fb:ca:59:77: 34:b0:0f:c2:ad:bc:da:6c:cf:92:53:a4:cd:05:f5:8e:74:c3: c0:25:de:70:b6:19:83:c1:d2:e1:70:04:6f:39:40:75:6a:f8: d4:ab:fb:6b:fe:c8:c6:53:2d:e8:2c:20:1f:99:1b:f3:8b:42: e2:5d:75:1b:b8:68:22:f2:a7:ab:1b:cb:51:e3:70:3f:cd:43: b2:16:a4:e9:50:d3:90:c1:26:b3:ba:18:12:52:90:39:7f:91: ce:64:05:3e:c9:3c:5f:40:bd:c6:22:a7:20:94:59:86:4f:27: 1c:a3:45:e3:92:56:0c:54:10:6b:1e:bd:81:fe:fd:bc:31:40: 14:ce:33:26:70:07:91:1a:17:a1:e8:9d:72:77:e1:5b:3b:2b: 7b:7a:f0:73:be:90:1c:7f:7a:f7:ed:b9:36:b7:23:e1:cf:f8: f9:de:d3:0b:8c:f6:f7:62:8b:c7:ba:a3:e9:95:c7:1d:2a:19: 00:0d:85:5f:38:10:c7:25:94:09:22:a1:bc:b8:58:bb:95:88: e1:06:30:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKEQ2ODBCRjNBNzk2QTM1NUIxMjVBNjAyQzc0NjZCOUE1 NkQzNDQyNTQwHhcNMjUwNTEyMTcyNzE1WhcNMjUwNTE5MTcyNzE1WjAYMRYwFAYD VQQDEw02ODIyMmY3NC0yNTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBj3HKkQXrzfwQYp9BObbKu0c7lD2fIQ/athZ+lY3R/xN54CXRQAlJqEQgl5 XlUxFCvf10sRdRFI6tZ9jgenGA8xYTe2gx3XAvru7CiiQ/x0kU4tKC7ogu1SdmlA JouHfTqL5kXvcIFC+EO1n2ZZcM+WMmCwnVy1KcjUyGv9lZwU0QLgt43m6J7Ckb9+ WvsEwQ+3rHFac8kuK/CLWUC5+5X8s/cjgpwzBxcJqG/w2Bq9DDhs88QX2CSiGs7K 6RnURzg+GjWPl/7C9lAcJDzOSBW+GU2/59mrBlgtVOdnzb2gw/SsiOm04RIOzOI4 raVgnwGLWo6CaHK/Vr/SQR+RFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFG6gSE9 yuOx+fqnxvAw7j6f+3X0MB8GA1UdIwQYMBaAFNaAvzp5ajVbElpgLHRmuaVtNEJU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8wRUFDRjgyQzVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5Wc1NXbUFzZEdhNXBXMDBR bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFvQ19PbmxxTlZzU1dtQXNkR2E1cFcwMFFsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8wRUFDRjgyQzVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5W c1NXbUFzZEdhNXBXMDBRbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeABmtKZzsUqvS/GhewskS8WTuU7qQnWhUouVvjO7OVjrDTv0pRXUx 0ouMvM+dkXAwHvvKWXc0sA/CrbzabM+SU6TNBfWOdMPAJd5wthmDwdLhcARvOUB1 avjUq/tr/sjGUy3oLCAfmRvzi0LiXXUbuGgi8qerG8tR43A/zUOyFqTpUNOQwSaz uhgSUpA5f5HOZAU+yTxfQL3GIqcglFmGTycco0XjklYMVBBrHr2B/v28MUAUzjMm cAeRGheh6J1yd+FbOyt7evBzvpAcf3r37bk2tyPhz/j53tMLjPb3YovHuqPplccd KhkADYVfOBDHJZQJIqG8uFi7lYjhBjBv -----END CERTIFICATE-----Generated at Mon May 12 22:50:07 2025 by rpki-client