$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: OguZirAzOihR2nAvg0amtNlW8kn0nBhfrqLRtvIv5wo= Subject key identifier: E7:4A:F5:A3:43:F8:00:E6:60:84:52:6C:28:FE:30:A5:CE:52:56:58 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 010F Signing time: Thu 15 May 2025 04:16:53 +0000 Manifest this update: Thu 15 May 2025 04:16:52 +0000 Manifest next update: Thu 22 May 2025 04:16:52 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: MZT+oYKS2rlXWyQqFByTi3ACKYAFKw203S7eRbgxzng=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: May 15 04:16:52 2025 GMT Not After : May 22 04:16:52 2025 GMT Subject: CN=68256ab4-7266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ff:55:cd:24:91:e9:72:97:fb:b7:17:27:46:56: 22:bd:2a:97:51:d5:19:be:e6:8b:0a:ef:9b:95:b8: 58:ae:08:66:b9:35:8b:32:6c:7d:93:79:5c:82:95: 66:ad:b8:be:48:0f:57:ab:a0:78:cd:4b:06:ac:ef: 1f:42:a4:04:a1:09:56:7a:9b:3c:f7:9b:8c:fc:10: 2c:15:7c:c2:ef:5c:46:1f:5f:cb:11:20:c6:7f:b6: 1b:66:e6:91:09:c0:dc:b9:20:0f:3a:02:50:ef:b0: ff:fc:dc:54:c1:72:bc:52:e2:92:aa:22:c0:a7:ce: a4:2e:7a:61:a2:3a:05:48:bc:5e:4e:32:6f:bd:e0: ea:21:09:ee:87:5d:d6:6f:0a:be:76:b1:be:b2:68: 8f:c4:24:e6:1b:3c:cc:4e:f5:98:15:ee:cc:65:b1: 10:52:16:26:9a:9e:55:91:ac:25:0f:5b:db:e8:62: 2b:c0:6d:8f:7f:fa:cb:79:da:1a:19:7f:66:86:fb: 0b:ef:a7:b3:b6:be:97:e6:ed:6f:e0:a3:4b:09:9e: 89:fc:10:a5:76:63:86:cf:c2:a4:99:22:42:c2:39: ac:58:c9:22:31:72:e8:e3:64:bb:bc:9a:20:38:17: dc:00:01:65:09:dc:f9:4b:58:6d:fd:9c:29:4f:17: f7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4A:F5:A3:43:F8:00:E6:60:84:52:6C:28:FE:30:A5:CE:52:56:58 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:d8:30:dc:ef:0a:28:11:2f:b3:d1:ab:fe:d9:3a:71:08:2e: 96:30:c6:e6:21:67:be:99:ed:e0:33:0a:56:34:ff:c9:3a:6b: e0:b1:28:ff:25:d6:db:de:a4:92:97:e6:30:05:72:3c:a9:05: 65:f7:6e:36:dc:df:3d:c4:d7:9b:1f:19:e1:0c:c7:7b:e7:97: 00:77:55:ff:b5:ff:50:48:e6:be:20:a7:f4:40:91:19:d9:0a: 39:7b:3d:88:6b:16:3f:8a:c5:e4:75:c9:e2:e0:77:fe:20:2f: 31:34:00:f7:da:7a:58:ce:fe:2f:f1:67:78:2a:f5:d3:e8:b7: 88:53:76:63:84:ce:79:e0:c1:26:cf:97:d1:5f:38:0d:7d:2a: 53:32:9a:fa:53:fc:e9:47:7f:91:83:c9:62:35:62:98:5f:b8: f9:ac:dd:c9:cf:f3:d7:41:e1:d1:23:f7:a0:d2:65:77:bb:a0: 7a:09:b8:06:fa:61:1e:ab:56:ec:c9:f6:3d:e3:43:9b:d4:dd: a8:a9:41:de:db:f9:3d:af:ac:e5:66:4f:02:ff:da:33:b9:7f: ac:b0:1f:5a:86:34:46:21:31:65:e0:49:e1:75:1d:16:69:2d: 5b:95:f5:a5:9a:cd:ba:5d:3f:bd:e8:77:05:9f:dd:36:75:a4: 19:1b:6b:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUwNTE1MDQxNjUyWhcNMjUwNTIyMDQxNjUyWjAYMRYwFAYD VQQDEw02ODI1NmFiNC03MjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/1XNJJHpcpf7txcnRlYivSqXUdUZvuaLCu+blbhYrghmuTWLMmx9k3lcgpVm rbi+SA9Xq6B4zUsGrO8fQqQEoQlWeps895uM/BAsFXzC71xGH1/LESDGf7YbZuaR CcDcuSAPOgJQ77D//NxUwXK8UuKSqiLAp86kLnphojoFSLxeTjJvveDqIQnuh13W bwq+drG+smiPxCTmGzzMTvWYFe7MZbEQUhYmmp5VkawlD1vb6GIrwG2Pf/rLedoa GX9mhvsL76eztr6X5u1v4KNLCZ6J/BCldmOGz8KkmSJCwjmsWMkiMXLo42S7vJog OBfcAAFlCdz5S1ht/ZwpTxf33QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdK9aND +ADmYIRSbCj+MKXOUlZYMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx2DDc7wooES+z0av+2TpxCC6WMMbmIWe+me3gMwpWNP/JOmvgsSj/ Jdbb3qSSl+YwBXI8qQVl92423N89xNebHxnhDMd755cAd1X/tf9QSOa+IKf0QJEZ 2Qo5ez2IaxY/isXkdcni4Hf+IC8xNAD32npYzv4v8Wd4KvXT6LeIU3ZjhM554MEm z5fRXzgNfSpTMpr6U/zpR3+Rg8liNWKYX7j5rN3Jz/PXQeHRI/eg0mV3u6B6CbgG +mEeq1bsyfY940Ob1N2oqUHe2/k9r6zlZk8C/9ozuX+ssB9ahjRGITFl4EnhdR0W aS1blfWlms26XT+96HcFn902daQZG2sx -----END CERTIFICATE-----Generated at Fri May 16 15:07:08 2025 by rpki-client