$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft File: OvCdKMpIepMmYxpr6b2b26oY2nU.mft (raw, json) Hash identifier: siFGwx0gTjkak9OwNIUqhgrp0cjAmHGTI3zmYY213j8= Subject key identifier: FC:2C:3D:05:49:E2:B9:77:E0:F9:E5:6B:75:BD:6F:5F:0B:E1:0F:D0 Authority key identifier: 3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 Certificate issuer: /CN=A91AB74D/serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Certificate serial: 0603 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft Manifest number: 05FA Signing time: Sun 04 May 2025 22:32:36 +0000 Manifest this update: Sun 04 May 2025 22:32:36 +0000 Manifest next update: Sun 11 May 2025 22:32:36 +0000 Files and hashes: 1: OvCdKMpIepMmYxpr6b2b26oY2nU.crl (hash: mpPxtRAFFByIloY12/57N8XDzoFv1Tv9khSI3Ov9zdE=) 2: 1A704D8CADB511EBB5CFE734C4F9AE02.roa (hash: Pa24EqnhzVLdBNd9p4j/m3vhajKpO1KOBKzuyf2oDyI=) 3: 1B16F1A0ADB511EBB5CFE734C4F9AE02.roa (hash: rRKFhbIBmbzLdYOr5BLZyHQoz/TkKPZba2YaKMN0mo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 22:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1539 (0x603) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Validity Not Before: May 4 22:32:36 2025 GMT Not After : May 11 22:32:36 2025 GMT Subject: CN=6817eb04-7ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ad:98:e4:b9:66:0d:fb:00:63:ad:aa:0d:ca: 5c:c9:09:06:4b:7e:5e:be:e0:7c:77:cd:f7:07:18: 84:24:9e:e9:33:77:86:7a:5f:16:f0:0c:e4:ef:4d: dc:d8:0d:fb:2c:17:20:a6:d1:14:bb:e3:29:b3:2c: 91:50:7e:2c:27:38:db:32:87:b2:e8:75:1a:e0:36: 3a:ea:75:2c:21:9e:ad:e2:67:1f:c3:bd:41:90:d9: cb:2a:53:c6:f3:eb:89:86:33:3b:f7:b4:ef:ae:f2: a3:ca:da:b6:38:6e:64:d3:2c:2b:1a:79:68:72:32: af:d4:71:84:7a:d5:9b:23:63:44:f4:e9:26:6b:fc: e2:49:f6:51:a4:ae:27:b0:f8:c5:77:3b:d4:0e:fa: 7b:e0:af:5f:4e:c4:b7:51:5e:b0:18:c3:c7:25:19: 6b:aa:06:42:db:f9:b6:0a:dd:fc:e3:dc:68:31:3f: be:b0:33:14:84:82:9d:6a:9f:93:ee:39:3c:5d:fb: 87:3d:12:82:2d:53:8e:be:34:96:b8:0c:fa:e5:9d: c5:4f:95:14:03:db:ca:c0:0a:55:3b:b0:cb:86:06: 01:75:a9:c6:9c:d7:c8:f0:1b:0b:e6:09:32:3f:b7: c0:f1:cf:93:a5:16:e9:9c:3f:be:c1:85:77:1e:66: 1c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:2C:3D:05:49:E2:B9:77:E0:F9:E5:6B:75:BD:6F:5F:0B:E1:0F:D0 X509v3 Authority Key Identifier: keyid:3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:d2:ac:3b:50:c1:bb:41:19:22:58:ae:3d:d1:00:22:5c:ba: e6:d6:3c:99:8f:0d:c8:bd:e5:ec:a7:b4:ad:9d:d5:88:af:23: cf:9d:77:8a:53:2e:c4:46:17:c5:4d:6c:f8:c1:54:23:e9:e8: a9:a0:7f:26:b1:e6:66:e4:d1:9c:f4:ec:e3:2b:33:c5:16:d5: c4:ba:c5:0c:d8:69:0f:77:38:d8:b2:b3:08:fd:e2:77:a7:53: 4a:e1:9b:25:54:36:56:8a:61:29:2c:56:4a:6a:83:62:93:55: fa:23:d5:7d:43:ec:ef:29:ae:6c:9a:18:27:25:c5:5e:4c:f9: 72:d1:8c:a3:ba:39:ef:11:10:17:6b:6d:20:23:ce:b6:02:51: fe:cf:55:a8:18:fe:4d:a7:e8:53:eb:56:67:dc:ab:5a:25:a7: 45:f4:87:5d:56:0d:f2:6b:94:5a:0a:89:d3:eb:df:72:0a:a8: 98:79:6d:af:6b:f7:a1:ed:6a:68:a8:bd:0c:a9:d3:de:13:a7: c5:fc:0f:00:5b:08:68:ce:85:2b:ef:68:2a:6d:ce:52:16:32: db:f6:0a:79:c2:f3:bb:46:33:fd:11:12:ab:3e:ba:5e:eb:61: 14:fd:c3:3c:4d:e9:28:f0:86:fb:4d:18:cb:07:bf:fa:bb:d7: a6:18:ff:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKDNBRjA5RDI4Q0E0ODdBOTMyNjYzMUE2QkU5QkQ5QkRC QUExOERBNzUwHhcNMjUwNTA0MjIzMjM2WhcNMjUwNTExMjIzMjM2WjAYMRYwFAYD VQQDEw02ODE3ZWIwNC03ZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5K2Y5LlmDfsAY62qDcpcyQkGS35evuB8d833BxiEJJ7pM3eGel8W8Azk703c 2A37LBcgptEUu+MpsyyRUH4sJzjbMoey6HUa4DY66nUsIZ6t4mcfw71BkNnLKlPG 8+uJhjM797TvrvKjytq2OG5k0ywrGnlocjKv1HGEetWbI2NE9Okma/ziSfZRpK4n sPjFdzvUDvp74K9fTsS3UV6wGMPHJRlrqgZC2/m2Ct3849xoMT++sDMUhIKdap+T 7jk8XfuHPRKCLVOOvjSWuAz65Z3FT5UUA9vKwApVO7DLhgYBdanGnNfI8BsL5gky P7fA8c+TpRbpnD++wYV3HmYcVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwsPQVJ 4rl34Pnla3W9b18L4Q/QMB8GA1UdIwQYMBaAFDrwnSjKSHqTJmMaa+m9m9uqGNp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC9EMzU5NTY4Q0E4 REMxMUVCOTc5REE1MEVDNEY5QUUwMi9PdkNkS01wSWVwTW1ZeHByNmIyYjI2b1ky blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL092Q2RLTXBJZXBNbVl4cHI2YjJiMjZvWTJuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC9EMzU5NTY4Q0E4REMxMUVCOTc5REE1MEVDNEY5QUUwMi9PdkNkS01wSWVw TW1ZeHByNmIyYjI2b1kyblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB0qw7UMG7QRkiWK490QAiXLrm1jyZjw3IveXsp7StndWIryPPnXeK Uy7ERhfFTWz4wVQj6eipoH8mseZm5NGc9OzjKzPFFtXEusUM2GkPdzjYsrMI/eJ3 p1NK4ZslVDZWimEpLFZKaoNik1X6I9V9Q+zvKa5smhgnJcVeTPly0YyjujnvERAX a20gI862AlH+z1WoGP5Np+hT61Zn3KtaJadF9IddVg3ya5RaConT699yCqiYeW2v a/eh7WpoqL0MqdPeE6fF/A8AWwhozoUr72gqbc5SFjLb9gp5wvO7RjP9ERKrPrpe 62EU/cM8Teko8Ib7TRjLB7/6u9emGP/C -----END CERTIFICATE-----Generated at Tue May 6 01:29:17 2025 by rpki-client