$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: 7OtdM/lefOmOBjxMxCNnUIxudkkTboniR0tJFnuwO4I= Subject key identifier: 1E:18:2F:15:5E:E2:EB:AD:6B:4D:61:D8:FF:C9:7A:44:9D:A3:EC:71 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 304D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 301F Signing time: Wed 14 May 2025 15:30:34 +0000 Manifest this update: Wed 14 May 2025 15:30:33 +0000 Manifest next update: Wed 21 May 2025 15:30:33 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: uYtKAzFgIc1SZq6V0V7Rz2GBzkrO2jiOQUywOZ86fo4=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: J9SJ4DIJ/7Jqarub1sf8j6PHgZAGlGGdRbRsMiv9apI=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: 9deMiuArgkPyt65CV7Ht+L/9JKrWYVcP+qJb8LKGzOI=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: 2+WTGnYcaeWw8w6rtvBrYx7uq+JHkK1rDrCVxpG+T+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12365 (0x304d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: May 14 15:30:33 2025 GMT Not After : May 21 15:30:33 2025 GMT Subject: CN=6824b71a-ca61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e6:90:5f:5d:52:9f:e0:b5:c7:16:4e:71:96: 33:cc:5f:b3:53:7f:ea:da:10:58:da:5e:0a:04:62: d9:c9:78:2e:9b:ec:d1:ef:89:f8:e7:de:0c:75:8f: 4b:32:b0:e7:75:bd:d4:e7:99:b6:ec:d3:f4:20:b1: 64:07:3a:47:19:f3:e8:5c:0d:b2:01:b4:37:0c:fe: 9e:cc:bd:f0:90:49:71:48:85:86:b0:a2:f8:d2:bd: 70:ce:3b:81:c5:d0:3c:ec:a4:25:b2:29:2d:16:7b: 6c:e7:ac:5b:24:82:20:4b:fe:4e:bc:90:9c:21:e5: c6:7c:d2:7a:2e:c2:5d:93:a6:f0:63:d9:78:09:51: bd:26:3e:4a:ec:c4:28:d9:2b:16:df:ab:80:e8:c0: 75:78:2c:90:38:6a:a2:8e:8f:53:12:5a:10:fd:d7: 00:ba:ef:67:17:3e:ea:c8:82:d8:08:8e:cf:41:11: 2f:25:dc:82:cf:9f:eb:ce:bb:b5:e5:50:5a:6b:20: 63:08:2a:c6:05:d9:41:53:99:b3:a5:74:69:88:1d: 8c:f1:8e:52:8d:1f:11:10:2a:f9:e2:cb:a1:85:73: 22:05:29:be:37:fa:23:25:f7:8a:62:88:43:59:90: 51:9e:50:af:21:fa:eb:83:dd:50:fe:c7:c2:1b:7f: 47:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:18:2F:15:5E:E2:EB:AD:6B:4D:61:D8:FF:C9:7A:44:9D:A3:EC:71 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:35:63:b1:b6:c6:dc:fe:79:34:22:c6:50:e2:c2:d3:d7:79: 01:08:44:91:a4:07:c4:a4:34:4a:89:de:aa:3b:33:50:41:84: 55:f5:05:b2:b2:55:58:fa:32:df:be:48:b4:c1:a7:6d:80:e8: fd:5f:69:c0:5a:7c:a3:8b:e7:ee:37:ea:68:e1:b7:86:01:fa: 6d:13:fc:05:24:24:59:4b:96:96:61:34:fd:ff:d6:96:7a:89: 58:67:ca:94:b5:cd:32:24:11:89:7f:8d:fb:b2:9a:f3:05:51: 48:c4:00:06:af:d5:b8:1c:74:b4:ac:d0:03:c5:8c:64:2c:ca: d6:a4:4f:69:f1:e9:14:a8:60:72:81:e0:dd:eb:e1:b5:73:df: 36:d7:6f:db:19:4a:34:e1:7a:37:b0:fc:86:7b:58:cc:eb:ce: df:46:10:68:22:7e:7e:b5:5c:45:b2:b8:fb:70:d3:91:c8:bc: 94:37:f3:ed:f2:a8:7b:4c:d5:d2:41:f7:d5:a3:45:9d:e4:49: ab:f3:36:7e:b5:78:61:f0:1f:b2:8c:6b:4b:ee:bc:12:0b:ca: 37:4c:0f:c7:e8:be:a1:f0:f7:bf:ae:65:e8:80:35:d7:81:75: 5c:d4:ba:81:27:1d:a1:53:e0:d9:be:a4:09:70:bc:b2:8b:2c: 73:24:e1:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICME0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUwNTE0MTUzMDMzWhcNMjUwNTIxMTUzMDMzWjAYMRYwFAYD VQQDEw02ODI0YjcxYS1jYTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweaQX11Sn+C1xxZOcZYzzF+zU3/q2hBY2l4KBGLZyXgum+zR74n4594MdY9L MrDndb3U55m27NP0ILFkBzpHGfPoXA2yAbQ3DP6ezL3wkElxSIWGsKL40r1wzjuB xdA87KQlsiktFnts56xbJIIgS/5OvJCcIeXGfNJ6LsJdk6bwY9l4CVG9Jj5K7MQo 2SsW36uA6MB1eCyQOGqijo9TEloQ/dcAuu9nFz7qyILYCI7PQREvJdyCz5/rzru1 5VBaayBjCCrGBdlBU5mzpXRpiB2M8Y5SjR8RECr54suhhXMiBSm+N/ojJfeKYohD WZBRnlCvIfrrg91Q/sfCG39H8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4YLxVe 4uuta01h2P/JekSdo+xxMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFNWOxtsbc/nk0IsZQ4sLT13kBCESRpAfEpDRKid6qOzNQQYRV9QWy slVY+jLfvki0wadtgOj9X2nAWnyji+fuN+po4beGAfptE/wFJCRZS5aWYTT9/9aW eolYZ8qUtc0yJBGJf437sprzBVFIxAAGr9W4HHS0rNADxYxkLMrWpE9p8ekUqGBy geDd6+G1c98212/bGUo04Xo3sPyGe1jM687fRhBoIn5+tVxFsrj7cNORyLyUN/Pt 8qh7TNXSQffVo0Wd5Emr8zZ+tXhh8B+yjGtL7rwSC8o3TA/H6L6h8Pe/rmXogDXX gXVc1LqBJx2hU+DZvqQJcLyyiyxzJOHW -----END CERTIFICATE-----Generated at Thu May 15 03:37:35 2025 by rpki-client