$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: O2HnFaCAwjSdjR9R5N6BKZOOD8pUgOA2A3BVuKzsulg= Subject key identifier: 4A:2D:0B:AB:AC:34:84:69:C0:12:68:86:41:BD:8F:72:3A:EC:07:77 Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: 44 Signing time: Mon 12 May 2025 14:16:16 +0000 Manifest this update: Mon 12 May 2025 14:16:15 +0000 Manifest next update: Mon 19 May 2025 14:16:15 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: PSOIbUHWHmKsueYqlvKcbT2erQqREJ1JWQxw9QoCa9s=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: cA2l4Bz4w9KwEr1hYRA0GBgp3+TMBDk54SQcEyXzSVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: May 12 14:16:15 2025 GMT Not After : May 19 14:16:15 2025 GMT Subject: CN=682202b0-3638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ec:b5:ce:11:09:1f:b8:9c:08:9a:41:e3:93: 68:5e:e5:41:d4:54:4e:a1:79:76:a9:66:b1:21:fa: e4:d1:0e:b3:ee:87:34:a0:28:28:f7:11:1b:e9:ea: 2e:80:eb:d6:93:e7:7f:60:09:a1:dc:53:09:06:92: 81:92:8f:59:cd:87:41:e4:91:14:6d:28:2a:65:33: bc:3b:89:7d:12:56:cc:40:97:45:50:3f:a3:c8:dc: 77:61:e4:51:79:6a:86:2a:16:c2:00:55:bf:d5:77: d8:f3:c1:f1:fd:ba:07:9f:b0:14:23:7e:25:8b:ed: 22:02:f4:a0:fe:b9:ac:d1:46:bf:40:91:75:e6:0a: 4e:83:b1:85:05:ac:17:54:25:f4:6d:60:62:8c:97: f5:4d:b3:68:28:7e:ad:57:e8:68:16:3c:e7:85:4c: a5:59:71:78:c3:6b:f4:fd:2c:a5:3a:5c:63:1d:16: ec:cf:2d:d5:a9:da:11:2d:af:80:22:cd:a3:4c:47: 24:83:1d:0c:54:2c:f4:05:0b:8c:53:41:99:51:48: 49:5a:d2:30:8e:a7:08:a2:dc:38:e6:de:d0:40:6d: b4:e6:48:55:49:39:ea:69:d1:c0:91:9b:09:16:47: 6c:a7:94:64:b2:bd:49:dc:44:dc:18:90:0c:6b:83: 45:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2D:0B:AB:AC:34:84:69:C0:12:68:86:41:BD:8F:72:3A:EC:07:77 X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:40:55:c9:24:61:88:04:90:93:90:59:a6:90:97:72:8e:79: ad:41:cf:2b:d1:10:06:32:24:8e:3a:65:f2:e6:cb:22:db:6e: 87:7c:79:37:56:39:43:81:11:50:1c:11:27:9e:7e:8b:33:0b: f9:54:e1:7e:72:a9:d7:99:3c:b7:cb:c3:b3:a7:c7:41:00:1a: c5:61:17:4d:32:80:07:fe:6f:6d:f1:e6:c9:6b:7f:83:23:df: c8:d2:47:28:96:29:66:af:20:42:0d:70:e7:d9:a6:ba:8a:9e: 81:cf:76:16:09:0e:eb:50:e5:3d:a7:c2:c1:71:5c:90:e4:1d: f0:e6:14:71:d9:ac:a5:a9:0f:d3:f8:68:20:5a:01:50:20:0c: e5:50:fc:01:d8:eb:4b:c2:b2:f0:9e:83:de:54:37:59:e6:30: 66:20:45:a2:c8:98:18:82:14:3b:c1:69:76:71:39:a8:d8:c0: 88:fd:cb:5d:15:e5:57:38:99:7f:6c:18:e6:76:d2:34:5d:63: 51:f0:c5:3b:79:62:0f:ae:dd:03:e4:ff:5e:f2:d3:0c:cf:c4: 84:14:29:4c:68:9b:f4:91:e4:c3:e0:d3:02:41:01:0a:46:c0: f9:1d:9c:73:f2:27:90:ab:e9:53:e9:ba:2b:bb:c9:e9:a2:f8: 5a:63:8e:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTYyMTExMC8GA1UEBRMoQTAyNzE5NUE0ODIwRjNENzI2NEE0RDU3RUU5QTlENEMy QTEwQzkyMzAeFw0yNTA1MTIxNDE2MTVaFw0yNTA1MTkxNDE2MTVaMBgxFjAUBgNV BAMTDTY4MjIwMmIwLTM2MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu7LXOEQkfuJwImkHjk2he5UHUVE6heXapZrEh+uTRDrPuhzSgKCj3ERvp6i6A 69aT539gCaHcUwkGkoGSj1nNh0HkkRRtKCplM7w7iX0SVsxAl0VQP6PI3Hdh5FF5 aoYqFsIAVb/Vd9jzwfH9ugefsBQjfiWL7SIC9KD+uazRRr9AkXXmCk6DsYUFrBdU JfRtYGKMl/VNs2gofq1X6GgWPOeFTKVZcXjDa/T9LKU6XGMdFuzPLdWp2hEtr4Ai zaNMRySDHQxULPQFC4xTQZlRSEla0jCOpwii3Djm3tBAbbTmSFVJOepp0cCRmwkW R2ynlGSyvUncRNwYkAxrg0V1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSi0Lq6w0 hGnAEmiGQb2PcjrsB3cwHwYDVR0jBBgwFoAUoCcZWkgg89cmSk1X7pqdTCoQySMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNjIxLzM1RURBOTJFQ0Yw RDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb0NjWldrZ2c4OWNtU2sxWDdwcWRUQ29ReVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NjIxLzM1RURBOTJFQ0YwRDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODlj bVNrMVg3cHFkVENvUXlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFhAVckkYYgEkJOQWaaQl3KOea1BzyvREAYyJI46ZfLmyyLbbod8eTdW OUOBEVAcESeefoszC/lU4X5yqdeZPLfLw7Onx0EAGsVhF00ygAf+b23x5slrf4Mj 38jSRyiWKWavIEINcOfZprqKnoHPdhYJDutQ5T2nwsFxXJDkHfDmFHHZrKWpD9P4 aCBaAVAgDOVQ/AHY60vCsvCeg95UN1nmMGYgRaLImBiCFDvBaXZxOajYwIj9y10V 5Vc4mX9sGOZ20jRdY1HwxTt5Yg+u3QPk/17y0wzPxIQUKUxom/SR5MPg0wJBAQpG wPkdnHPyJ5Cr6VPpuiu7yemi+Fpjjvo= -----END CERTIFICATE-----Generated at Tue May 13 22:58:24 2025 by rpki-client