$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft File: o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft (raw, json) Hash identifier: Maxo0rCIfXIRAhImvziTVoCQ0R2OqYHniJWSk+eo7KQ= Subject key identifier: 4E:15:F8:EB:D4:F7:FE:B0:61:3C:05:03:B7:02:EB:52:E6:96:4B:E8 Authority key identifier: A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 Certificate issuer: /CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Certificate serial: 0327 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft Manifest number: 0323 Signing time: Thu 15 May 2025 01:10:07 +0000 Manifest this update: Thu 15 May 2025 01:10:06 +0000 Manifest next update: Thu 22 May 2025 01:10:06 +0000 Files and hashes: 1: o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl (hash: QdD1DepgBziDoKc3oDkSjzyU6PVz1Ad+m+RKfowIUzE=) 2: E2F2A470C76411EC85896F5EC4F9AE02.roa (hash: hSEOk4wSvcqkKWJUmunbhE8NC6T2P49jnE2eWh8/b4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 807 (0x327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4B, serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Validity Not Before: May 15 01:10:06 2025 GMT Not After : May 22 01:10:06 2025 GMT Subject: CN=68253eee-a347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ac:32:bd:7a:05:f7:9a:12:dd:03:68:36:a5: e2:1a:3c:08:98:b4:c8:e6:e0:b9:60:11:9f:e3:33: fe:61:9b:92:93:8f:16:43:b5:c4:44:5c:66:63:e7: 5f:e1:d9:e1:0f:a7:a3:ce:87:a9:a2:1c:9e:5b:8b: c6:08:91:68:60:fd:6c:5b:47:4f:75:a8:33:cd:8e: 2b:3b:6c:c3:b1:21:56:c7:4d:0b:d6:6c:3a:11:33: e1:d9:53:92:71:16:fc:1a:21:7d:3d:0f:bc:2f:61: 5f:a2:ed:99:bc:06:47:76:fc:e4:02:d3:17:3a:86: 44:66:97:81:c4:49:ab:f6:11:97:ee:c5:eb:b7:86: 3c:fc:ac:a5:a0:2c:e5:57:19:c4:eb:13:05:e6:ab: 10:0a:c5:9a:0e:f4:75:78:0e:e4:d6:e8:7f:d0:cc: a0:6b:2f:41:6f:3e:09:ed:fb:65:76:22:1b:c2:da: 8a:33:73:93:79:1c:ec:90:6b:01:e7:a2:05:61:80: 96:ad:91:89:89:64:bd:60:87:51:98:8f:42:3d:5d: bb:05:8e:c7:72:20:8f:2d:32:bc:e0:83:cd:e1:05: 26:95:55:04:0a:7a:14:30:36:d0:94:9a:c4:d5:c4: 80:4a:72:2c:dd:31:a8:01:e0:87:77:ae:8b:59:5b: 72:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:15:F8:EB:D4:F7:FE:B0:61:3C:05:03:B7:02:EB:52:E6:96:4B:E8 X509v3 Authority Key Identifier: keyid:A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:6f:ed:b6:a6:d8:a3:bf:a9:1a:81:a7:02:c1:8a:5b:b1:c3: fa:b9:a0:3a:4e:c0:43:4f:be:c2:46:eb:a0:61:37:a6:15:f1: fb:e3:69:8a:1d:0b:22:8a:54:13:96:2b:09:0e:75:53:66:24: ad:d0:fa:1a:88:2d:0c:2f:61:d9:4f:42:20:95:b2:b0:47:1d: 88:fa:56:d5:2a:47:31:7d:c7:13:ba:fe:ce:24:77:4e:9e:f7: fd:15:54:51:29:66:a4:9b:68:32:f5:9e:a2:2e:5d:97:ed:b7: 19:c6:18:25:33:58:d1:8d:38:80:f3:9b:82:48:10:c0:85:62: 92:58:fa:22:ca:cb:84:26:28:06:df:7f:e2:fd:85:96:26:35: f2:6c:02:be:96:75:71:49:62:a0:ed:84:70:0b:54:65:d8:d7: 24:69:96:39:69:b7:27:df:56:8d:f4:fb:a3:33:eb:8f:ae:df: 83:9b:5f:d3:cc:cd:55:aa:22:34:1f:c5:8c:e6:3f:7d:25:d7: 19:33:d1:fd:ff:d0:08:e8:84:86:d6:30:e8:0f:96:4e:dc:26: a0:57:95:53:9c:11:3f:e1:79:ab:80:ed:89:85:74:23:77:c2: 73:a7:50:d9:84:9e:50:e3:d6:e5:da:ec:01:93:6b:62:40:db: 94:69:64:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEIxMTAvBgNVBAUTKEEzNTU2MURBNDVBOTU1RjAyRDEyMkEwRDg4RThDNzYy MzlFREY5MjAwHhcNMjUwNTE1MDExMDA2WhcNMjUwNTIyMDExMDA2WjAYMRYwFAYD VQQDEw02ODI1M2VlZS1hMzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKwyvXoF95oS3QNoNqXiGjwImLTI5uC5YBGf4zP+YZuSk48WQ7XERFxmY+df 4dnhD6ejzoepohyeW4vGCJFoYP1sW0dPdagzzY4rO2zDsSFWx00L1mw6ETPh2VOS cRb8GiF9PQ+8L2Ffou2ZvAZHdvzkAtMXOoZEZpeBxEmr9hGX7sXrt4Y8/KyloCzl VxnE6xMF5qsQCsWaDvR1eA7k1uh/0Mygay9Bbz4J7ftldiIbwtqKM3OTeRzskGsB 56IFYYCWrZGJiWS9YIdRmI9CPV27BY7HciCPLTK84IPN4QUmlVUECnoUMDbQlJrE 1cSASnIs3TGoAeCHd66LWVtyaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4V+OvU 9/6wYTwFA7cC61LmlkvoMB8GA1UdIwQYMBaAFKNVYdpFqVXwLRIqDYjox2I57fkg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qi84RTE2MjQzMEM3 NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZmQXRFaW9OaU9qSFlqbnQt U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xVmgya1dwVmZBdEVpb05pT2pIWWpudC1TQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qi84RTE2MjQzMEM3NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZm QXRFaW9OaU9qSFlqbnQtU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsb+22ptijv6kagacCwYpbscP6uaA6TsBDT77CRuugYTemFfH742mK HQsiilQTlisJDnVTZiSt0PoaiC0ML2HZT0IglbKwRx2I+lbVKkcxfccTuv7OJHdO nvf9FVRRKWakm2gy9Z6iLl2X7bcZxhglM1jRjTiA85uCSBDAhWKSWPoiysuEJigG 33/i/YWWJjXybAK+lnVxSWKg7YRwC1Rl2NckaZY5abcn31aN9PujM+uPrt+Dm1/T zM1VqiI0H8WM5j99JdcZM9H9/9AI6ISG1jDoD5ZO3CagV5VTnBE/4XmrgO2JhXQj d8Jzp1DZhJ5Q49bl2uwBk2tiQNuUaWSc -----END CERTIFICATE-----Generated at Thu May 15 16:05:01 2025 by rpki-client