$ rpki-client -vvf rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft File: o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft (raw, json) Hash identifier: UqidI+AfjFncmg5PXkbWhHfeaHwXLRxnVW6GzXurIF4= Subject key identifier: 05:EC:F5:D3:B3:2A:8C:99:F1:5B:A3:39:4E:42:2D:05:B0:70:8D:E4 Authority key identifier: A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF Certificate issuer: /CN=A91C913E/serialNumber=A3471C31533B88D1BF8A40A32A7DDE3BA0BB1CBF Certificate serial: 0328 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft Manifest number: 0323 Signing time: Sun 11 May 2025 00:42:12 +0000 Manifest this update: Sun 11 May 2025 00:42:12 +0000 Manifest next update: Sun 18 May 2025 00:42:12 +0000 Files and hashes: 1: o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl (hash: AqRyf4xIUkX8ynLIPTRxT9J/YVlRPk5jFNbXedn2v5Q=) 2: 24578ECED56A11EFB764F716C4F9AE02.roa (hash: t5WMcFCD2OO+gp845WzQi07gNbar1uWW5UXsijptYhw=) 3: 1445557CC6C011EC9D09EF1DC4F9AE02.roa (hash: JL3deikXqirsZKv5Pglr4MkJVud4y4Ww4HTgjluu/lA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:42:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 808 (0x328) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C913E, serialNumber=A3471C31533B88D1BF8A40A32A7DDE3BA0BB1CBF Validity Not Before: May 11 00:42:12 2025 GMT Not After : May 18 00:42:12 2025 GMT Subject: CN=681ff264-8fad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3c:6d:75:80:ad:72:33:db:e2:de:3c:0c:83: b3:43:49:ce:72:eb:f2:1f:13:02:e0:a3:29:f2:3f: 5b:ac:b2:2b:7b:db:e5:09:e0:76:89:d7:c2:2d:d8: a5:1f:e0:09:33:be:85:b8:12:2c:5f:c7:47:84:d3: ea:cd:85:2a:ec:76:a8:1e:d3:17:f5:89:c1:11:83: 8e:6b:0e:e5:f9:3c:d3:4c:e1:08:6e:c7:f3:fb:f3: a2:49:31:ca:99:cf:df:c8:a0:3c:0f:43:33:34:54: 99:d8:f1:72:13:9c:21:aa:59:aa:b0:47:bc:c3:16: 7e:d2:b5:47:66:ea:c5:f4:2a:2e:fe:d9:42:a2:51: 65:3b:10:ee:9a:20:b1:75:d2:21:9a:b5:23:23:23: ec:45:5e:10:cc:c3:c9:a1:6f:94:31:3c:b5:0f:3e: 25:1c:e0:e2:f2:4a:7e:0b:5c:51:d9:f1:65:e0:c6: 76:55:e7:50:db:e0:bd:dc:f1:94:5d:67:d4:c6:bd: 3f:9a:ab:75:65:0b:54:6b:8e:f5:f2:0b:94:b9:a8: 89:cb:eb:84:80:b1:f3:d8:33:d3:9b:0b:ae:20:9d: 62:bf:92:a4:fe:9e:4d:28:7d:0b:4f:47:f4:14:40: f7:c0:c7:b9:ae:9f:71:df:86:a1:f8:2b:81:a4:0d: 64:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:EC:F5:D3:B3:2A:8C:99:F1:5B:A3:39:4E:42:2D:05:B0:70:8D:E4 X509v3 Authority Key Identifier: keyid:A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:d9:27:c4:f3:e3:11:2b:5e:5b:8c:82:89:1f:e8:2d:1e:d0: c5:19:94:4a:85:32:8d:4f:b4:8a:d0:d7:3a:1c:58:e9:dc:9f: 66:49:4f:e3:ca:21:44:9b:0d:4d:53:55:26:d4:3b:b0:a3:b8: 2d:df:6d:45:24:73:5e:fe:ee:ed:0f:b0:95:3e:a2:0e:60:d6: 73:bb:87:62:fb:94:c2:6a:ae:a4:00:f0:b2:d1:a9:99:40:8a: b9:e1:69:31:2c:90:81:ca:20:f9:17:b1:8a:e5:73:ca:bd:94: 88:84:ba:0d:c7:e2:d7:60:57:ee:c3:56:5c:1b:1e:f0:51:03: db:28:b3:67:c1:61:0b:bf:9f:21:8c:9b:92:30:00:82:31:03: 79:4d:b9:c3:50:5b:50:d2:bf:27:f7:04:c7:dd:a6:f5:ff:f7: 41:b7:6e:8e:d7:87:8c:b6:2f:df:94:78:de:a8:ff:30:07:67: 0e:39:3c:f6:43:fd:b1:71:27:3b:d4:bd:f4:f9:7c:5b:e3:3a: d6:1a:39:5e:6a:35:d7:d0:5d:59:23:0a:48:1f:ee:cf:b6:3a: ca:3f:33:fb:5e:d6:fb:37:6e:13:50:fc:87:4a:bf:16:25:da: 5e:be:9c:6e:e9:b5:5d:2e:63:dd:3e:71:98:d8:43:2a:af:c9: e9:35:1f:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkxM0UxMTAvBgNVBAUTKEEzNDcxQzMxNTMzQjg4RDFCRjhBNDBBMzJBN0RERTNC QTBCQjFDQkYwHhcNMjUwNTExMDA0MjEyWhcNMjUwNTE4MDA0MjEyWjAYMRYwFAYD VQQDEw02ODFmZjI2NC04ZmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DxtdYCtcjPb4t48DIOzQ0nOcuvyHxMC4KMp8j9brLIre9vlCeB2idfCLdil H+AJM76FuBIsX8dHhNPqzYUq7HaoHtMX9YnBEYOOaw7l+TzTTOEIbsfz+/OiSTHK mc/fyKA8D0MzNFSZ2PFyE5whqlmqsEe8wxZ+0rVHZurF9Cou/tlColFlOxDumiCx ddIhmrUjIyPsRV4QzMPJoW+UMTy1Dz4lHODi8kp+C1xR2fFl4MZ2VedQ2+C93PGU XWfUxr0/mqt1ZQtUa4718guUuaiJy+uEgLHz2DPTmwuuIJ1iv5Kk/p5NKH0LT0f0 FED3wMe5rp9x34ah+CuBpA1k3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXs9dOz KoyZ8VujOU5CLQWwcI3kMB8GA1UdIwQYMBaAFKNHHDFTO4jRv4pAoyp93juguxy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTEzRS9ERDA4OThGMEM2 QkQxMUVDODk2Mzc0MURDNEY5QUUwMi9vMGNjTVZNN2lOR19pa0NqS24zZU82QzdI TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wY2NNVk03aU5HX2lrQ2pLbjNlTzZDN0hMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTEzRS9ERDA4OThGMEM2QkQxMUVDODk2Mzc0MURDNEY5QUUwMi9vMGNjTVZNN2lO R19pa0NqS24zZU82QzdITDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB52SfE8+MRK15bjIKJH+gtHtDFGZRKhTKNT7SK0Nc6HFjp3J9mSU/j yiFEmw1NU1Um1Duwo7gt321FJHNe/u7tD7CVPqIOYNZzu4di+5TCaq6kAPCy0amZ QIq54WkxLJCByiD5F7GK5XPKvZSIhLoNx+LXYFfuw1ZcGx7wUQPbKLNnwWELv58h jJuSMACCMQN5TbnDUFtQ0r8n9wTH3ab1//dBt26O14eMti/flHjeqP8wB2cOOTz2 Q/2xcSc71L30+Xxb4zrWGjleajXX0F1ZIwpIH+7PtjrKPzP7Xtb7N24TUPyHSr8W Jdpevpxu6bVdLmPdPnGY2EMqr8npNR/4 -----END CERTIFICATE-----Generated at Mon May 12 19:53:01 2025 by rpki-client