$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: 9zbTc6Yd1aYgbGuOf9qVnIaDy3Zv77rxUOcKa728iVI= Subject key identifier: F1:B9:58:1D:CB:58:A6:C0:73:32:96:FA:87:E4:95:B8:3B:38:21:D3 Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 0203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 01FF Signing time: Thu 15 May 2025 02:02:09 +0000 Manifest this update: Thu 15 May 2025 02:02:09 +0000 Manifest next update: Thu 22 May 2025 02:02:09 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: W7Ie6v02uqSXQnV8m/kDteo7TpJpz7AOmEB6FfTlMno=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: JUU9x04r0AO1GN2PUUX6ELgHywTKgyrE2nXs4Tcl03M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: May 15 02:02:09 2025 GMT Not After : May 22 02:02:09 2025 GMT Subject: CN=68254b21-8bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0d:af:cf:42:42:25:79:dc:95:19:98:72:f7: f9:7f:08:fe:a5:aa:c0:7f:2b:41:90:86:af:14:e8: 3e:e2:2e:da:35:1d:8d:a9:29:21:6b:57:9c:6b:2a: f5:d5:e5:79:73:bc:7c:73:31:4b:2d:91:13:d9:08: 60:7f:ef:5e:9e:3c:ba:55:d0:8b:53:03:04:5b:7e: b2:80:65:ca:45:3e:98:16:71:80:74:db:7a:f9:f1: 96:5c:28:1c:e9:88:fd:6c:f4:67:87:a5:f0:77:51: f0:be:45:b9:0b:7c:1c:dc:a0:af:cb:37:39:88:72: 0f:75:72:00:fe:12:b1:6c:9b:57:5f:81:1d:75:a6: 56:29:5e:a7:50:8a:d1:d3:da:98:bc:de:91:82:93: bb:c3:0e:d0:60:dc:a0:20:db:1b:6c:98:e9:e8:ab: b3:3a:77:9c:de:2e:70:8d:6d:7a:f2:25:7f:90:fa: 23:06:11:6b:b6:fe:cb:27:a5:12:d3:4a:4b:40:e7: a1:10:de:ba:17:9a:d7:9b:08:49:b6:1e:ea:90:82: ba:05:31:d1:65:e7:42:d5:b6:29:db:2c:cd:7e:da: 8a:ab:bb:85:56:1f:87:a4:35:15:80:9a:52:6d:53: bb:e3:13:04:cb:3e:00:e1:8f:c5:70:ae:41:fb:a4: 7f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B9:58:1D:CB:58:A6:C0:73:32:96:FA:87:E4:95:B8:3B:38:21:D3 X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:1c:5c:11:b4:2d:d6:8a:15:49:cd:59:f5:71:11:3b:5b:0b: 99:a6:f0:43:0a:74:ce:e6:34:59:dc:6b:74:db:ec:c3:88:01: 5a:51:32:40:32:d6:03:78:cc:de:b0:78:d1:98:6a:9b:34:2e: fa:1c:7c:7c:37:42:a1:93:36:00:7d:e9:d0:52:ae:a5:51:52: ad:5f:8c:ee:ce:d4:5e:e9:15:6a:1f:dc:bc:6a:0b:03:59:ce: 3f:63:2a:79:51:31:62:53:ed:37:fd:7a:e4:a5:b9:3d:f5:9b: b8:30:e4:0d:85:a1:68:9e:0e:ed:ac:9b:d7:be:b6:6a:92:9f: d5:db:8e:f0:f1:e2:a5:fa:66:8c:e2:8e:36:bb:25:43:b3:8a: 02:70:f4:44:ce:7e:24:d9:00:60:24:1a:49:bd:84:79:0a:a2: 76:b9:bd:aa:9b:3f:ee:82:74:78:9a:7a:6d:b5:e0:53:c9:68: f2:ca:d9:ed:b6:45:5e:1a:8b:17:4e:4d:e6:ec:1b:7e:9f:9f: 7e:2b:7f:f8:83:be:31:df:60:84:7b:d8:90:da:ac:53:12:22: 2e:ab:37:5d:eb:6e:65:a8:67:a7:60:83:82:ad:42:ae:66:0f: 1a:28:a7:ca:e6:64:97:2e:09:65:7b:26:63:f1:08:49:08:de: fa:35:f8:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjUwNTE1MDIwMjA5WhcNMjUwNTIyMDIwMjA5WjAYMRYwFAYD VQQDEw02ODI1NGIyMS04YmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmg2vz0JCJXnclRmYcvf5fwj+parAfytBkIavFOg+4i7aNR2NqSkha1ecayr1 1eV5c7x8czFLLZET2Qhgf+9enjy6VdCLUwMEW36ygGXKRT6YFnGAdNt6+fGWXCgc 6Yj9bPRnh6Xwd1HwvkW5C3wc3KCvyzc5iHIPdXIA/hKxbJtXX4EddaZWKV6nUIrR 09qYvN6RgpO7ww7QYNygINsbbJjp6KuzOnec3i5wjW168iV/kPojBhFrtv7LJ6US 00pLQOehEN66F5rXmwhJth7qkIK6BTHRZedC1bYp2yzNftqKq7uFVh+HpDUVgJpS bVO74xMEyz4A4Y/FcK5B+6R/hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPG5WB3L WKbAczKW+ofklbg7OCHTMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTHFwRtC3WihVJzVn1cRE7WwuZpvBDCnTO5jRZ3Gt02+zDiAFaUTJA MtYDeMzesHjRmGqbNC76HHx8N0KhkzYAfenQUq6lUVKtX4zuztRe6RVqH9y8agsD Wc4/Yyp5UTFiU+03/Xrkpbk99Zu4MOQNhaFong7trJvXvrZqkp/V247w8eKl+maM 4o42uyVDs4oCcPREzn4k2QBgJBpJvYR5CqJ2ub2qmz/ugnR4mnptteBTyWjyytnt tkVeGosXTk3m7Bt+n59+K3/4g74x32CEe9iQ2qxTEiIuqzdd625lqGenYIOCrUKu Zg8aKKfK5mSXLglleyZj8QhJCN76Nfjv -----END CERTIFICATE-----Generated at Fri May 16 06:03:29 2025 by rpki-client