$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: 2sVjJKB+VBUZaeDmC+8KaCFYFg4w6CpbzbufA8Q/aFA= Subject key identifier: DD:B6:4A:CF:7C:19:E7:DF:26:9C:30:1A:4A:8E:B0:20:63:35:2E:B8 Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 01C3 Signing time: Tue 13 May 2025 02:17:38 +0000 Manifest this update: Tue 13 May 2025 02:17:38 +0000 Manifest next update: Tue 20 May 2025 02:17:38 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: vJnVHxKrWJIgjW0tJhr+Gpu+TROlWPzAatvZiIxD7rg=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: KfdVVRr1UwfhsTtUMM0Ph6w9qtVR9qcrLdXdVzGndCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: May 13 02:17:38 2025 GMT Not After : May 20 02:17:38 2025 GMT Subject: CN=6822abc2-c92e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6c:18:3a:d5:fd:38:4e:b7:37:5a:b5:ce:3c: d0:5c:36:0f:b3:eb:5e:6c:d1:6b:9e:5e:98:85:e2: 3a:04:41:70:4f:ef:ad:ba:c0:6e:da:0d:79:71:77: 99:55:4b:eb:c9:1a:08:7e:88:ec:1d:5c:72:2a:86: b6:bf:ca:c7:dd:a5:72:4a:6b:db:59:fb:d6:29:39: 82:20:cf:81:0c:15:da:bc:e1:fb:6f:b0:aa:f6:ee: 45:9a:7c:b7:d3:99:6b:fc:26:08:84:21:70:31:89: 04:25:71:78:b9:4b:80:ce:20:07:72:ef:9e:4e:46: fd:95:1b:ef:72:85:b8:a0:28:29:77:6f:47:14:93: 74:2b:a5:2d:ea:39:0c:83:d9:4f:4f:67:a4:f3:52: c9:92:27:36:4c:48:02:71:9b:3c:bf:c3:cd:9c:1d: 0f:b4:df:5a:4d:70:49:c4:c4:52:6a:97:e2:5c:51: f4:ac:d9:40:c7:b9:ab:2e:a4:66:1d:9e:dc:4b:16: 5e:ef:27:5f:17:ee:ca:b5:ba:d7:c5:17:f0:9f:9a: 3e:34:5d:da:f0:03:0a:da:2f:5a:57:19:6e:09:05: 47:df:e4:4d:74:ca:5e:95:80:1a:37:44:f7:18:f5: 4a:d3:9a:66:d0:fd:0d:13:37:69:f7:60:30:5b:f1: 4d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B6:4A:CF:7C:19:E7:DF:26:9C:30:1A:4A:8E:B0:20:63:35:2E:B8 X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:1c:7f:78:57:df:12:df:9c:de:21:6c:4a:3c:d4:9f:f7:06: 6c:c7:b5:8d:b3:e5:f8:27:c5:04:52:6a:a1:9f:c5:a1:cc:e8: 9a:25:36:59:f7:a2:d5:e3:f2:89:dc:4b:bc:24:e2:6d:a5:9d: 8d:03:38:c8:16:af:e1:b0:1c:3a:a5:38:a3:5a:e2:f4:b0:2f: 99:2e:86:64:13:f2:67:03:c8:97:bd:42:6b:53:e6:c4:58:3b: 32:b0:73:93:67:e0:1b:f6:8e:87:47:f0:46:42:40:5a:a3:6a: e2:30:89:c5:e0:1e:fa:99:db:8f:17:d0:93:1d:11:83:3d:5a: 18:da:e9:db:86:98:34:c2:b6:ea:d3:1f:d2:ba:2c:ba:bf:d0: 6a:9a:97:3b:68:70:d5:7c:2a:3f:64:4f:d5:c0:0c:20:06:db: 90:8e:87:2f:57:03:41:6b:5e:d8:d8:13:34:40:f8:6f:f9:96: 40:75:8e:7a:ca:6a:34:ab:fb:e6:02:d1:68:a2:20:2e:40:32: 91:98:8b:ec:17:ee:61:df:d2:c6:30:82:41:e4:bf:b9:b3:fd: 09:38:b0:7a:81:96:fb:f9:2d:f4:b1:94:c7:0a:1b:ef:59:e7: 7c:75:73:f6:ba:61:1f:f3:63:ed:ef:d4:19:31:b3:b6:a5:e6: a2:f9:8f:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUwNTEzMDIxNzM4WhcNMjUwNTIwMDIxNzM4WjAYMRYwFAYD VQQDEw02ODIyYWJjMi1jOTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGwYOtX9OE63N1q1zjzQXDYPs+tebNFrnl6YheI6BEFwT++tusBu2g15cXeZ VUvryRoIfojsHVxyKoa2v8rH3aVySmvbWfvWKTmCIM+BDBXavOH7b7Cq9u5Fmny3 05lr/CYIhCFwMYkEJXF4uUuAziAHcu+eTkb9lRvvcoW4oCgpd29HFJN0K6Ut6jkM g9lPT2ek81LJkic2TEgCcZs8v8PNnB0PtN9aTXBJxMRSapfiXFH0rNlAx7mrLqRm HZ7cSxZe7ydfF+7KtbrXxRfwn5o+NF3a8AMK2i9aVxluCQVH3+RNdMpelYAaN0T3 GPVK05pm0P0NEzdp92AwW/FNBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN22Ss98 GeffJpwwGkqOsCBjNS64MB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGHH94V98S35zeIWxKPNSf9wZsx7WNs+X4J8UEUmqhn8WhzOiaJTZZ 96LV4/KJ3Eu8JOJtpZ2NAzjIFq/hsBw6pTijWuL0sC+ZLoZkE/JnA8iXvUJrU+bE WDsysHOTZ+Ab9o6HR/BGQkBao2riMInF4B76mduPF9CTHRGDPVoY2unbhpg0wrbq 0x/Suiy6v9Bqmpc7aHDVfCo/ZE/VwAwgBtuQjocvVwNBa17Y2BM0QPhv+ZZAdY56 ymo0q/vmAtFooiAuQDKRmIvsF+5h39LGMIJB5L+5s/0JOLB6gZb7+S30sZTHChvv Wed8dXP2umEf82Pt79QZMbO2peai+Y/z -----END CERTIFICATE-----Generated at Wed May 14 01:14:03 2025 by rpki-client