$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: TucCvVzicQQNXHWKbZMrexdd1eR57d9jyL6OOwmD+cc= Subject key identifier: 49:70:25:DC:B1:B9:DD:48:C8:20:33:7F:E2:D0:51:EA:B9:44:52:A6 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 3557 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 34F8 Signing time: Wed 14 May 2025 14:49:39 +0000 Manifest this update: Wed 14 May 2025 14:49:38 +0000 Manifest next update: Wed 21 May 2025 14:49:38 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: lLTV8C3g3vvspLzE6U6sK1Jkz5gtp7GAvyl5D2CBFbk=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: K9GG+06i99foR/2RXGf0/I8Kvx2roZu5heq1VZdQ+OI=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: VKqO6rf4s4pSFyfrGnTR87o9xy4m/ObtM6kQrJ3USOc=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: JsgxM7O87UBNAKRhO7z2ipB7o5ZRGqkbp9Qr0swNUZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 14:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13655 (0x3557) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: May 14 14:49:38 2025 GMT Not After : May 21 14:49:38 2025 GMT Subject: CN=6824ad83-2aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:83:55:74:55:3a:3d:f0:fe:f3:c7:6b:e1:e9: 7a:3a:14:f7:c8:8e:d6:82:60:95:85:1a:39:a0:c2: 1c:24:df:61:3b:3c:ed:6d:1b:3a:88:60:f5:9f:7b: e3:36:40:d3:f5:e9:f4:84:62:27:72:56:30:dd:e3: 0b:90:97:23:08:48:60:93:75:10:b2:7d:f0:43:db: 31:43:c4:f1:f0:71:c0:eb:d3:60:bd:6a:36:ca:9e: 21:64:5f:1c:15:84:17:31:d9:a8:f9:10:1b:b4:8c: 10:53:3a:41:4b:5a:a6:a7:e0:65:1d:3f:e7:7c:f7: de:5e:a4:32:55:cc:a2:4b:4d:cc:59:e2:df:d8:93: 3e:87:42:78:d6:a5:3c:70:4b:4d:52:2b:d6:0d:e4: e4:f3:56:c2:f1:a4:9d:5d:ec:60:6d:b2:06:e7:d7: f6:2e:90:01:61:d4:32:b5:70:b9:fd:55:da:e8:1b: 3b:87:59:27:6c:61:00:bf:9f:96:5c:de:7a:e0:de: 24:26:55:7d:40:9f:43:47:f8:a0:10:92:7e:8c:dc: 09:82:df:6e:62:ea:62:c3:8c:d1:ae:57:1a:d0:49: bc:a4:58:ac:49:99:0a:7d:85:36:8f:19:72:7c:b1: 3c:62:63:53:41:94:25:88:2c:6f:8a:54:84:38:b5: b5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:70:25:DC:B1:B9:DD:48:C8:20:33:7F:E2:D0:51:EA:B9:44:52:A6 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:e8:ea:a0:02:f3:05:e0:8f:c0:d3:d5:94:00:74:28:d4:df: 01:ab:30:c4:84:ac:66:e3:70:ef:65:55:98:61:e2:86:fe:4c: 7c:07:35:99:23:c5:7f:9d:08:3d:93:0d:37:f1:db:a5:2e:64: 3e:42:0b:4a:44:22:1d:c2:78:b2:ce:35:eb:f6:32:d2:3a:04: a6:c7:21:d2:de:1b:b1:99:9f:ab:63:99:a5:db:de:81:13:68: 67:cc:7b:0f:0d:2e:88:23:51:4c:c9:bd:9e:c5:22:47:5b:25: aa:cd:ee:fc:1c:c8:39:c5:90:30:49:b5:45:11:3b:5a:f6:24: d6:ca:1c:21:fd:3a:9f:c4:52:fc:e1:c9:dc:5a:70:74:f0:77: 70:8b:3d:0b:88:eb:b9:c5:7e:88:af:ae:a4:63:a7:c8:e4:79: 9e:90:58:62:31:d1:16:7b:2d:23:57:74:65:52:44:da:a7:0c: b2:69:3e:f2:b0:90:b1:cb:98:ba:eb:49:cb:81:49:57:10:5d: 24:95:7f:7c:b1:1c:48:c5:6c:66:26:9b:1f:17:43:0d:43:b9: f7:ac:3e:13:ff:e9:e4:fe:87:2c:f8:54:3b:cd:a5:a4:65:0d: 46:61:05:c9:75:8f:16:5b:6c:1c:78:28:2d:8e:f6:57:c0:be: 1b:b9:14:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUwNTE0MTQ0OTM4WhcNMjUwNTIxMTQ0OTM4WjAYMRYwFAYD VQQDEw02ODI0YWQ4My0yYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxINVdFU6PfD+88dr4el6OhT3yI7WgmCVhRo5oMIcJN9hOzztbRs6iGD1n3vj NkDT9en0hGInclYw3eMLkJcjCEhgk3UQsn3wQ9sxQ8Tx8HHA69NgvWo2yp4hZF8c FYQXMdmo+RAbtIwQUzpBS1qmp+BlHT/nfPfeXqQyVcyiS03MWeLf2JM+h0J41qU8 cEtNUivWDeTk81bC8aSdXexgbbIG59f2LpABYdQytXC5/VXa6Bs7h1knbGEAv5+W XN564N4kJlV9QJ9DR/igEJJ+jNwJgt9uYupiw4zRrlca0Em8pFisSZkKfYU2jxly fLE8YmNTQZQliCxvilSEOLW19wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElwJdyx ud1IyCAzf+LQUeq5RFKmMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp6OqgAvMF4I/A09WUAHQo1N8BqzDEhKxm43DvZVWYYeKG/kx8BzWZ I8V/nQg9kw038dulLmQ+QgtKRCIdwniyzjXr9jLSOgSmxyHS3huxmZ+rY5ml296B E2hnzHsPDS6II1FMyb2exSJHWyWqze78HMg5xZAwSbVFETta9iTWyhwh/TqfxFL8 4cncWnB08Hdwiz0LiOu5xX6Ir66kY6fI5HmekFhiMdEWey0jV3RlUkTapwyyaT7y sJCxy5i660nLgUlXEF0klX98sRxIxWxmJpsfF0MNQ7n3rD4T/+nk/ocs+FQ7zaWk ZQ1GYQXJdY8WW2wceCgtjvZXwL4buRQD -----END CERTIFICATE-----Generated at Fri May 16 07:10:19 2025 by rpki-client