$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: hJv8qw/4Vc3q3UugoJ5wZMmFkXj2l9qafHJCQH7EglI= Subject key identifier: B5:9C:66:AA:37:E3:08:4A:CF:C9:09:C0:FB:00:55:35:FB:AF:5A:AE Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 010B Signing time: Sat 03 May 2025 04:25:00 +0000 Manifest this update: Sat 03 May 2025 04:25:00 +0000 Manifest next update: Sat 10 May 2025 04:25:00 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: wIsCK5aD2Mk7lHGCTnCB74rHK7l1IRo5YUXzNJL7FeA=) 2: C10CE08C97D311EE9299330CC4F9AE02.roa (hash: gJAOPk4iFoIW/KqNitxUF3g+S02/W0OUx3yJyNEqzJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 04:24:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: May 3 04:25:00 2025 GMT Not After : May 10 04:25:00 2025 GMT Subject: CN=68159a9c-18bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b6:77:6a:ff:89:52:a4:f1:fc:97:96:04:18: b5:0c:3a:35:2b:0e:73:8a:2f:cb:d7:98:59:2b:24: ce:86:ba:7e:c1:05:18:77:d6:c8:b6:09:b4:19:23: d9:bc:a6:49:e3:cf:ab:7c:bf:ba:ef:82:ea:b8:f0: af:23:04:cf:a8:c1:f5:b7:cf:88:e3:56:7d:cc:07: 8c:d7:16:cf:9f:e3:05:ac:8b:db:32:de:ae:3d:7d: e2:90:17:f7:00:1c:18:03:88:63:a5:e2:7f:f9:d5: 4c:1e:a1:45:56:df:9d:26:61:53:5e:69:1b:a5:45: de:3b:26:ce:53:2f:43:42:33:ed:75:da:08:b6:c1: 06:a7:9f:95:bd:b1:a8:d8:5b:35:e7:99:27:65:60: dd:21:fa:c5:f4:2c:4a:d9:f5:0a:ce:48:57:17:29: 30:80:68:86:0e:7a:b8:f3:72:81:d7:d2:d4:b6:e2: 76:ec:1e:4c:1b:fe:cd:bc:86:5b:ca:58:6f:8a:93: 08:91:d0:84:11:35:76:66:7d:9e:cf:7a:cd:70:24: 43:42:5d:a1:f4:36:a1:28:08:2f:97:ef:06:e9:ae: ac:eb:15:90:f3:3e:11:85:f5:8f:93:1b:7c:d0:67: 40:5b:5f:e3:78:a1:d2:56:b9:38:ad:03:84:9c:d2: ae:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:9C:66:AA:37:E3:08:4A:CF:C9:09:C0:FB:00:55:35:FB:AF:5A:AE X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:d1:0e:d5:04:06:f0:8c:86:c8:4b:3b:9c:61:42:3f:f9:2a: 57:3c:c4:f9:b1:0e:32:61:b4:77:41:6a:67:95:a7:4b:e0:b8: 1e:86:86:b1:35:63:98:f7:68:0a:56:a4:bd:aa:09:0b:3f:f2: 8d:4f:e3:48:61:45:50:be:66:dd:8b:f2:30:04:ed:54:ac:32: 8d:3b:6a:c6:d3:f0:57:3e:04:4d:63:8a:48:89:9d:03:59:4d: 6e:b1:7e:0b:65:f6:f1:d9:5c:80:f0:60:2e:9e:89:af:7b:4c: fc:ea:e2:69:00:e2:e3:2a:b5:0b:dc:ef:ee:11:7f:dd:35:8f: 54:5c:74:c3:4a:4e:cf:db:16:96:89:3b:11:a7:bb:7f:2f:40: 87:ca:97:05:55:87:0b:6d:8b:5f:26:b2:32:08:1d:f1:a7:5b: a5:65:09:d3:d4:53:27:ac:59:d5:8f:23:98:b4:51:81:b5:71: 7a:e3:59:6d:74:fe:3f:fb:a6:73:15:47:f0:e3:df:23:93:8e: 07:4d:62:f9:8f:94:fc:9e:38:16:13:68:89:49:f5:d7:c6:a9: b9:e2:fe:54:21:83:e6:6e:f8:0d:c8:b4:aa:8b:e6:69:e3:79: df:e9:a4:ec:16:e5:e7:3f:d2:4b:b3:c4:49:14:9d:05:20:e7: 99:7b:6b:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUwNTAzMDQyNTAwWhcNMjUwNTEwMDQyNTAwWjAYMRYwFAYD VQQDEw02ODE1OWE5Yy0xOGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LZ3av+JUqTx/JeWBBi1DDo1Kw5zii/L15hZKyTOhrp+wQUYd9bItgm0GSPZ vKZJ48+rfL+674LquPCvIwTPqMH1t8+I41Z9zAeM1xbPn+MFrIvbMt6uPX3ikBf3 ABwYA4hjpeJ/+dVMHqFFVt+dJmFTXmkbpUXeOybOUy9DQjPtddoItsEGp5+VvbGo 2Fs155knZWDdIfrF9CxK2fUKzkhXFykwgGiGDnq483KB19LUtuJ27B5MG/7NvIZb ylhvipMIkdCEETV2Zn2ez3rNcCRDQl2h9DahKAgvl+8G6a6s6xWQ8z4RhfWPkxt8 0GdAW1/jeKHSVrk4rQOEnNKu0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWcZqo3 4whKz8kJwPsAVTX7r1quMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA10Q7VBAbwjIbISzucYUI/+SpXPMT5sQ4yYbR3QWpnladL4Lgehoax NWOY92gKVqS9qgkLP/KNT+NIYUVQvmbdi/IwBO1UrDKNO2rG0/BXPgRNY4pIiZ0D WU1usX4LZfbx2VyA8GAunomve0z86uJpAOLjKrUL3O/uEX/dNY9UXHTDSk7P2xaW iTsRp7t/L0CHypcFVYcLbYtfJrIyCB3xp1ulZQnT1FMnrFnVjyOYtFGBtXF641lt dP4/+6ZzFUfw498jk44HTWL5j5T8njgWE2iJSfXXxqm54v5UIYPmbvgNyLSqi+Zp 43nf6aTsFuXnP9JLs8RJFJ0FIOeZe2tu -----END CERTIFICATE-----Generated at Mon May 5 03:03:17 2025 by rpki-client