$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft File: oUDUgGrgz2DnP-FYvyQvOag60AU.mft (raw, json) Hash identifier: l2QKH9syHaag5vyKqgIhNKlVSvxAY0rSprZ/a/IE3Lc= Subject key identifier: 67:B4:9F:71:4A:53:50:31:8A:47:FA:8C:D0:CB:AB:50:52:88:67:9B Authority key identifier: A1:40:D4:80:6A:E0:CF:60:E7:3F:E1:58:BF:24:2F:39:A8:3A:D0:05 Certificate issuer: /CN=A91E1B78/serialNumber=A140D4806AE0CF60E73FE158BF242F39A83AD005 Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft Manifest number: 1A Signing time: Sat 17 May 2025 07:28:16 +0000 Manifest this update: Sat 17 May 2025 07:28:15 +0000 Manifest next update: Sat 24 May 2025 07:28:15 +0000 Files and hashes: 1: oUDUgGrgz2DnP-FYvyQvOag60AU.crl (hash: emSh/7Gneu9pQlv/z0HD+rInmvilxoskATAe5hmD9AU=) 2: 47131A44145511F082FDAA7AC4F9AE02.roa (hash: btGSbXlYPwUm6r4aT9dqMB2WqeFs4xBX2s74blUbTR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.crl rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 07:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1B78, serialNumber=A140D4806AE0CF60E73FE158BF242F39A83AD005 Validity Not Before: May 17 07:28:15 2025 GMT Not After : May 24 07:28:15 2025 GMT Subject: CN=68283a8f-5ffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1c:f3:1f:12:21:21:ba:f9:79:48:0b:e6:f4: c1:f5:58:6d:d4:9d:89:39:6e:9c:c5:52:61:12:59: ff:d7:bd:cb:cb:fc:9d:59:07:f5:fc:03:36:0c:db: 6a:5b:6a:69:0c:99:27:da:f6:e2:d2:6d:52:f9:ff: f1:62:6b:99:a0:9e:b3:e2:da:b7:ee:10:23:fc:f8: a3:b5:4e:6b:0e:97:6e:60:29:33:5d:15:ec:fa:4c: 9a:8f:d5:aa:1c:6b:ef:b3:97:89:98:7e:0a:1d:73: 66:b5:b5:7f:37:ae:ea:fc:8d:a2:7f:e4:1a:01:e7: 2b:88:85:42:0e:b1:c9:22:3f:ab:e8:6b:0e:59:2a: ef:69:97:b8:f0:be:fc:d2:8c:c3:4e:7f:f1:2d:37: 76:2b:6a:bf:5d:92:b1:c2:ef:8a:08:7c:3f:9d:48: f0:90:df:70:3d:5d:b7:31:d9:a4:df:56:aa:8b:2d: 6b:8d:43:4f:bc:a7:ac:9d:56:b2:e0:32:29:b5:62: b0:c2:9b:fa:52:fe:3d:51:fa:ad:32:39:16:c1:41: 26:a6:51:c8:f8:7d:c3:90:f7:63:51:d0:fe:e4:42: 4a:b5:eb:4d:28:b8:8a:a7:2d:21:9a:1b:01:c6:2b: 45:6a:a8:80:2d:bc:e2:8a:df:c7:07:41:c5:fe:65: 68:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B4:9F:71:4A:53:50:31:8A:47:FA:8C:D0:CB:AB:50:52:88:67:9B X509v3 Authority Key Identifier: keyid:A1:40:D4:80:6A:E0:CF:60:E7:3F:E1:58:BF:24:2F:39:A8:3A:D0:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUDUgGrgz2DnP-FYvyQvOag60AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1B78/C8DF41AC145411F0B3B7C679C4F9AE02/oUDUgGrgz2DnP-FYvyQvOag60AU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:b9:ff:1e:50:a2:b3:8b:4c:e1:b0:a2:81:e7:cb:c4:5d:df: 10:9f:af:b9:4c:83:67:68:c5:46:3b:e1:5e:56:1f:c6:d1:df: 14:c2:be:58:da:d0:c6:c0:3a:93:cb:4d:47:cf:f7:6b:ee:a5: 1c:6a:a3:9a:5b:4b:3d:22:ef:23:20:16:0d:16:92:74:7e:9a: b0:85:02:5e:ae:47:7a:c2:a6:80:35:44:91:c8:77:f9:9c:b3: 5c:84:15:e3:17:1a:e0:d3:08:75:6e:3f:28:30:94:b1:e4:a5: 5b:d1:66:50:67:a3:fa:c2:98:66:00:1b:ef:ff:6e:5e:5d:8c: cd:97:50:f1:85:29:58:02:b6:70:69:34:0f:eb:f9:c6:4c:a5: 38:5c:07:12:40:81:d9:4b:8c:60:17:3c:18:60:27:f2:af:5f: b6:fd:32:c4:40:e6:60:36:8a:34:b2:b0:de:33:3d:19:bc:f0: 99:d5:c2:b1:6a:3a:43:80:48:0b:67:de:91:63:a5:a1:d6:da: d8:32:4b:12:de:49:40:c8:a4:78:7b:d3:b7:0f:f2:c9:43:82: 19:22:2a:15:0a:f2:51:7f:fc:3a:4d:43:c0:d3:f8:5a:35:de: b7:74:03:9b:8b:db:65:43:b7:99:d2:e8:3c:1c:35:e9:1d:e2: 98:54:fe:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUI3ODExMC8GA1UEBRMoQTE0MEQ0ODA2QUUwQ0Y2MEU3M0ZFMTU4QkYyNDJGMzlB ODNBRDAwNTAeFw0yNTA1MTcwNzI4MTVaFw0yNTA1MjQwNzI4MTVaMBgxFjAUBgNV BAMTDTY4MjgzYThmLTVmZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbHPMfEiEhuvl5SAvm9MH1WG3UnYk5bpzFUmESWf/XvcvL/J1ZB/X8AzYM22pb amkMmSfa9uLSbVL5//Fia5mgnrPi2rfuECP8+KO1TmsOl25gKTNdFez6TJqP1aoc a++zl4mYfgodc2a1tX83rur8jaJ/5BoB5yuIhUIOsckiP6voaw5ZKu9pl7jwvvzS jMNOf/EtN3Yrar9dkrHC74oIfD+dSPCQ33A9Xbcx2aTfVqqLLWuNQ0+8p6ydVrLg Mim1YrDCm/pS/j1R+q0yORbBQSamUcj4fcOQ92NR0P7kQkq1600ouIqnLSGaGwHG K0VqqIAtvOKK38cHQcX+ZWhRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ7SfcUpT UDGKR/qM0MurUFKIZ5swHwYDVR0jBBgwFoAUoUDUgGrgz2DnP+FYvyQvOag60AUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxQjc4L0M4REY0MUFDMTQ1 NDExRjBCM0I3QzY3OUM0RjlBRTAyL29VRFVnR3JnejJEblAtRll2eVF2T2FnNjBB VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1VEVWdHcmd6MkRuUC1GWXZ5UXZPYWc2MEFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx Qjc4L0M4REY0MUFDMTQ1NDExRjBCM0I3QzY3OUM0RjlBRTAyL29VRFVnR3JnejJE blAtRll2eVF2T2FnNjBBVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJe5/x5QorOLTOGwooHny8Rd3xCfr7lMg2doxUY74V5WH8bR3xTCvlja 0MbAOpPLTUfP92vupRxqo5pbSz0i7yMgFg0WknR+mrCFAl6uR3rCpoA1RJHId/mc s1yEFeMXGuDTCHVuPygwlLHkpVvRZlBno/rCmGYAG+//bl5djM2XUPGFKVgCtnBp NA/r+cZMpThcBxJAgdlLjGAXPBhgJ/KvX7b9MsRA5mA2ijSysN4zPRm88JnVwrFq OkOASAtn3pFjpaHW2tgySxLeSUDIpHh707cP8slDghkiKhUK8lF//DpNQ8DT+Fo1 3rd0A5uL22VDt5nS6DwcNekd4phU/kI= -----END CERTIFICATE-----Generated at Sat May 17 11:19:31 2025 by rpki-client