$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: lSqxAt7lWR1YOM/y8n2azgFUtWnDSzrl6h28pcFdtms= Subject key identifier: 95:BC:01:94:67:1F:6B:A2:9D:04:81:7E:E3:9B:B7:CF:90:86:0B:B9 Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 0118 Signing time: Thu 15 May 2025 04:23:36 +0000 Manifest this update: Thu 15 May 2025 04:23:35 +0000 Manifest next update: Thu 22 May 2025 04:23:35 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: VTxBWaSg7yMGap3mUFTO46C76pEu3wvNQEQa4zjLphA=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: NmyQHlBil47JzTSCPQYz/6ZBa9AnAtiDqsHIcZPO3dA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: May 15 04:23:35 2025 GMT Not After : May 22 04:23:35 2025 GMT Subject: CN=68256c48-e354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:14:f9:98:05:56:bb:5a:0f:41:1a:c3:69:53: 9d:e6:35:99:b1:25:0e:ef:7a:07:87:07:be:53:c3: 7f:e3:03:e6:15:cd:56:56:6c:5a:59:cf:f6:15:87: 03:0c:44:f4:14:16:89:0a:3a:ba:f5:f1:e4:df:8a: df:84:a8:b4:4e:8b:24:cb:38:96:57:48:80:dd:a5: d6:02:e2:8f:ba:05:d4:ef:ee:ec:6d:68:0f:11:19: 7c:52:86:4d:2a:d1:ad:7b:d5:87:92:aa:12:7a:3a: 10:bd:98:6b:7f:21:e2:98:1b:6d:ca:cc:82:42:de: 74:3f:f7:d3:61:0e:26:ee:c5:6a:95:a1:2b:62:02: 51:bb:f2:7c:93:49:24:e0:fb:2e:4d:5d:28:72:91: 3f:ec:85:e5:b2:66:96:e5:5b:99:87:77:76:f6:1f: 68:4a:9b:c4:3a:24:d1:e1:f4:ff:e3:06:09:e0:91: 25:28:1d:3f:e8:91:dd:f1:c4:5c:13:5c:0c:be:1b: 59:96:a6:d7:49:26:04:d4:22:cb:73:fa:cd:1d:b5: 7d:da:28:83:5e:2e:ba:f2:8c:c8:67:1d:8b:1c:e1: e6:aa:90:76:26:14:a1:34:ba:84:f6:4a:8f:8e:ee: 2d:7a:a6:1b:28:73:b7:6e:67:28:a2:db:fe:d7:d8: 0f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:BC:01:94:67:1F:6B:A2:9D:04:81:7E:E3:9B:B7:CF:90:86:0B:B9 X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:55:0e:8c:b8:88:fd:bc:24:06:86:d7:47:0c:34:fe:80:af: a4:d8:83:a1:1d:9d:9a:66:63:c1:ae:16:9b:f9:33:59:aa:80: b8:b7:86:61:50:66:79:76:8e:99:5f:49:77:e9:fd:11:f9:7d: 1e:dc:24:04:8c:4d:9a:73:04:50:bf:12:1f:f3:35:2b:28:ee: 86:8c:01:24:6c:1f:9f:6c:ed:c7:32:e5:be:7c:83:6c:ce:84: ee:19:56:34:cb:69:3a:dd:13:a1:f3:3d:a4:a3:f2:cc:fc:a4: 3f:19:98:77:db:32:65:ea:51:1e:c8:b9:48:68:25:a1:dc:ff: 35:1d:26:db:a4:18:22:17:2d:09:ec:a2:88:48:00:0b:9e:89: d7:f6:47:56:eb:07:8c:10:d4:32:a2:74:52:47:3d:89:de:47: 37:e8:71:17:45:e4:a2:07:c6:06:0f:6c:2c:e8:eb:d1:1a:ec: 6f:45:7f:46:70:20:4a:00:8b:96:bf:ac:c9:41:1a:86:3a:22: d9:8b:1d:82:c0:6e:c2:b0:49:5a:fd:0a:a6:20:f6:dd:5f:e1: 14:ed:ba:6f:1a:81:97:69:0a:f6:2e:45:24:47:70:46:ce:34: 9a:cf:3e:49:f2:c7:6e:62:90:88:3e:f6:4c:2d:00:36:1f:64: 37:59:38:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjUwNTE1MDQyMzM1WhcNMjUwNTIyMDQyMzM1WjAYMRYwFAYD VQQDEw02ODI1NmM0OC1lMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRT5mAVWu1oPQRrDaVOd5jWZsSUO73oHhwe+U8N/4wPmFc1WVmxaWc/2FYcD DET0FBaJCjq69fHk34rfhKi0ToskyziWV0iA3aXWAuKPugXU7+7sbWgPERl8UoZN KtGte9WHkqoSejoQvZhrfyHimBttysyCQt50P/fTYQ4m7sVqlaErYgJRu/J8k0kk 4PsuTV0ocpE/7IXlsmaW5VuZh3d29h9oSpvEOiTR4fT/4wYJ4JElKB0/6JHd8cRc E1wMvhtZlqbXSSYE1CLLc/rNHbV92iiDXi668ozIZx2LHOHmqpB2JhShNLqE9kqP ju4teqYbKHO3bmcootv+19gPeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJW8AZRn H2uinQSBfuObt8+Qhgu5MB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlCMC8xNEM5NDk2RTlGM0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0x T1BYSkdqU3piT2NZZWQyMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsVQ6MuIj9vCQGhtdHDDT+gK+k2IOhHZ2aZmPBrhab+TNZqoC4t4Zh UGZ5do6ZX0l36f0R+X0e3CQEjE2acwRQvxIf8zUrKO6GjAEkbB+fbO3HMuW+fINs zoTuGVY0y2k63ROh8z2ko/LM/KQ/GZh32zJl6lEeyLlIaCWh3P81HSbbpBgiFy0J 7KKISAALnonX9kdW6weMENQyonRSRz2J3kc36HEXReSiB8YGD2ws6OvRGuxvRX9G cCBKAIuWv6zJQRqGOiLZix2CwG7CsEla/QqmIPbdX+EU7bpvGoGXaQr2LkUkR3BG zjSazz5J8sduYpCIPvZMLQA2H2Q3WTjr -----END CERTIFICATE-----Generated at Thu May 15 19:55:28 2025 by rpki-client