$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: Ib/wfjMw82VzzwfNkdDohB89OO/sm9+pRRn/F4vPNLE= Subject key identifier: E8:FA:E2:FB:49:BA:20:FB:08:0D:C6:20:F2:45:0B:C8:72:BA:38:4A Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 028E Signing time: Tue 13 May 2025 01:24:43 +0000 Manifest this update: Tue 13 May 2025 01:24:43 +0000 Manifest next update: Tue 20 May 2025 01:24:43 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: prqnWwnEENScoDWHfXRO9n7WPlHznsfaJTJoDqa4NDs=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: Jn6Bcmff+jZyhjqGcyii8YjSmtOYYAInHon2VXcIz3U=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: EWbZQVxhL2vlkm+GzLLUuL3B+QzSpuEn2YQAxnXCEkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: May 13 01:24:43 2025 GMT Not After : May 20 01:24:43 2025 GMT Subject: CN=68229f5b-79ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e8:60:9f:00:01:dc:c0:ac:3c:18:0f:4c:8f: 9e:e4:e4:6e:d0:7a:b7:24:f5:41:a2:f1:c1:ce:79: 77:3a:68:f2:e9:c1:c1:ba:1b:bc:1c:e8:50:ed:7a: a5:db:46:63:5e:29:81:ee:23:11:d4:1c:4e:f1:36: 2e:2c:b5:e4:02:d8:ea:33:ad:a6:d2:3a:b4:8d:68: b6:9f:54:6d:e0:cf:dc:db:69:35:d0:11:4f:17:38: 9f:a7:1e:65:a4:03:b8:51:76:67:b6:77:b3:86:ef: 77:cb:1b:5e:e4:df:96:98:10:d7:70:81:62:ae:18: 62:1c:1a:e7:0b:01:51:c1:28:a0:e5:1d:89:20:e1: b7:91:69:ac:a5:07:e3:97:95:0f:61:90:3b:79:5d: 2e:e5:2f:94:e4:c3:b3:23:66:72:2e:3b:13:8a:99: b2:0c:ff:e5:01:08:7c:a6:55:9b:30:5d:47:c1:52: b3:34:31:1e:ce:f7:28:a5:90:74:fa:a7:f0:0d:39: 5a:45:ba:30:de:f9:07:07:60:91:42:c8:28:ff:dc: c6:ac:8d:9e:06:97:9a:2b:a2:38:a3:e2:23:96:c7: ec:3d:eb:a7:fa:4a:09:c8:6a:8d:ca:a7:ec:e7:de: 9b:dc:22:73:eb:a2:9b:9c:a6:71:1a:46:33:81:cb: 56:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:FA:E2:FB:49:BA:20:FB:08:0D:C6:20:F2:45:0B:C8:72:BA:38:4A X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:ce:88:1f:54:99:7a:1a:f2:5e:c5:94:ae:c8:2c:c0:55:a9: 86:70:9c:3f:03:8a:41:4b:d1:83:f8:15:aa:bf:d1:4f:3e:3b: 30:11:43:09:45:15:9f:15:5d:95:7c:4d:00:f1:b7:e0:54:cd: 02:fc:bb:ae:02:40:f3:a2:42:b6:47:42:c4:64:f5:fd:74:ab: 4f:f7:04:bd:4a:f0:8f:a0:ef:68:9e:af:3a:95:43:41:65:ac: da:75:4d:7e:ce:76:5c:06:a6:a6:bb:11:0d:72:24:c8:f3:8e: c4:6c:2e:3a:17:93:2f:af:11:57:d0:c6:1d:27:50:10:be:cc: d5:80:bd:26:7d:4f:be:1d:fe:94:30:48:7c:03:58:7a:28:f2: bb:84:c2:f3:07:97:ff:43:24:d1:41:f8:5c:39:4a:e4:9f:4f: 40:a7:6c:b6:a3:51:c0:df:73:db:6f:75:85:34:27:8a:37:75: b0:03:0f:10:89:09:6b:37:0b:e2:49:92:cd:4c:50:6c:67:e5: ee:90:f0:ec:29:a8:1b:ae:08:c7:52:fc:e6:90:b8:d7:7b:65: 95:52:5d:8e:b6:47:f4:52:5d:7b:bb:77:a7:10:26:0b:43:5d: a3:f4:b0:44:2e:04:44:89:a8:bb:5d:a8:b4:e4:7b:ec:a4:73: 8e:3b:0c:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUwNTEzMDEyNDQzWhcNMjUwNTIwMDEyNDQzWjAYMRYwFAYD VQQDEw02ODIyOWY1Yi03OWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+hgnwAB3MCsPBgPTI+e5ORu0Hq3JPVBovHBznl3Omjy6cHBuhu8HOhQ7Xql 20ZjXimB7iMR1BxO8TYuLLXkAtjqM62m0jq0jWi2n1Rt4M/c22k10BFPFzifpx5l pAO4UXZntnezhu93yxte5N+WmBDXcIFirhhiHBrnCwFRwSig5R2JIOG3kWmspQfj l5UPYZA7eV0u5S+U5MOzI2ZyLjsTipmyDP/lAQh8plWbMF1HwVKzNDEezvcopZB0 +qfwDTlaRbow3vkHB2CRQsgo/9zGrI2eBpeaK6I4o+IjlsfsPeun+koJyGqNyqfs 596b3CJz66KbnKZxGkYzgctWrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOj64vtJ uiD7CA3GIPJFC8hyujhKMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3zogfVJl6GvJexZSuyCzAVamGcJw/A4pBS9GD+BWqv9FPPjswEUMJ RRWfFV2VfE0A8bfgVM0C/LuuAkDzokK2R0LEZPX9dKtP9wS9SvCPoO9onq86lUNB ZazadU1+znZcBqamuxENciTI847EbC46F5MvrxFX0MYdJ1AQvszVgL0mfU++Hf6U MEh8A1h6KPK7hMLzB5f/QyTRQfhcOUrkn09Ap2y2o1HA33Pbb3WFNCeKN3WwAw8Q iQlrNwviSZLNTFBsZ+XukPDsKagbrgjHUvzmkLjXe2WVUl2Otkf0Ul17u3enECYL Q12j9LBELgREiai7Xai05HvspHOOOwzF -----END CERTIFICATE-----Generated at Wed May 14 19:54:14 2025 by rpki-client