$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft File: oYXAxXSCnF_NcURUSeU0za70E5Y.mft (raw, json) Hash identifier: auxXk8zb/YndXmXCmsNjmFYJgSWjm2WR0k6Slj6mrPQ= Subject key identifier: 5B:43:F5:84:07:0E:10:44:8C:74:B7:F2:3C:70:77:D1:8A:F9:49:A1 Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 02FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft Manifest number: 02CB Signing time: Thu 15 May 2025 01:33:42 +0000 Manifest this update: Thu 15 May 2025 01:33:42 +0000 Manifest next update: Thu 22 May 2025 01:33:42 +0000 Files and hashes: 1: oYXAxXSCnF_NcURUSeU0za70E5Y.crl (hash: l8zGhl/RPnPAjDErO53UzoZrx0qX0T5M6j6Aj83888E=) 2: B5D1A1164E3111EFB475160AC4F9AE02.roa (hash: F7ZAiYqiaqgCjshmhAH40pkpaSlek68K5yOIUFIlCqE=) 3: AF5AD402224711F0B0CDB07DC4F9AE02.roa (hash: IgOdg/yQ/ge2znbNbvVPbXbPhfofMGTYoa84g2RotAU=) 4: 1C8BEF04E24511EF96354978C4F9AE02.roa (hash: EGZ/fvHina2YX+dj5xEN7cSS8R0XcNDfXd/tDVK1qcE=) 5: 1E1EB7789D8C11EF9B16D921C4F9AE02.roa (hash: TCFvbSrzX3ld7ReLyyVPKT1K5SyyyvX3oexEUzvLigY=) 6: A3571FDE47EC11EFB51C3666C4F9AE02.roa (hash: 2cEppnqVz6EA8cjixAQPIWKPT1GtTfD8PJaZqxpWTLE=) 7: B111111288B411EF80480527C4F9AE02.roa (hash: CjPKYAuDT4eI5JPa/G5V81ZBwDnMXPobI3BPswZB4kQ=) 8: 811803C270C111EF8A30EB51C4F9AE02.roa (hash: 89cYcTv3FMM/3M08ZzwOVhAvZtTfzr28mJIgkmfMCvo=) 9: B137DB2670EF11EFBEF21935C4F9AE02.roa (hash: gVhoaUxSYFZFX3pfYYhl9cQHoz5s0K+bPZd1cYQ52Y8=) 10: CD90ED68057211F0B6E2301BC4F9AE02.roa (hash: VUKsMbXUZ/VFyFAP8kRF14O9sqE9uokELiAUUcFuG5M=) 11: D4E4D8FCA7C311EFB1AAAD55C4F9AE02.roa (hash: Xf5Ju4zh/ec55xkKs2QH4FHNMxaxZH8+1mgQURFonS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 765 (0x2fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32, serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: May 15 01:33:42 2025 GMT Not After : May 22 01:33:42 2025 GMT Subject: CN=68254476-0846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:cf:94:ce:25:5d:00:42:df:79:25:c0:3b:b6: 6e:e0:c4:e6:b5:1f:fc:be:8d:e4:b6:d8:22:b1:54: 11:4a:21:25:8a:ba:85:c7:ce:4a:68:90:f3:e1:10: 41:25:ae:71:31:17:fe:39:fb:4d:20:0a:76:74:c6: f0:96:2a:bb:2d:2b:81:62:e2:a2:e0:6d:dd:38:cb: 31:0f:03:1e:34:ea:5b:5d:22:19:d0:4c:ab:b5:30: b6:5c:ae:2e:b2:e5:f9:8a:4b:85:61:ef:6a:da:5f: 93:45:ab:3b:b0:6d:e3:c5:1a:aa:9c:94:c8:58:0a: ae:35:4d:db:b1:0b:ae:af:c3:cf:35:37:86:dd:b2: d6:ad:f8:19:9a:b7:43:41:ef:a9:80:84:6c:72:f0: fa:d8:4a:f6:54:e4:6b:66:15:93:76:4e:8c:b2:5e: d2:12:bc:50:74:51:20:92:c3:0d:68:79:2d:90:b3: 72:5b:6f:15:c8:c6:57:17:9f:a5:6d:df:da:da:9c: 08:ba:14:bd:05:b8:9c:fb:8c:de:3d:5c:21:be:7d: 31:11:63:2e:a3:c4:b4:65:02:d2:00:3a:75:88:bf: 51:81:06:69:ff:1f:a0:9e:22:9b:63:6d:34:4e:86: c4:7b:3a:36:fa:32:25:05:b6:be:8e:1f:2c:0b:ae: 99:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:43:F5:84:07:0E:10:44:8C:74:B7:F2:3C:70:77:D1:8A:F9:49:A1 X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:4a:a3:56:53:5a:ae:1f:de:ca:dd:ab:72:55:cb:a3:df:93: 75:c0:ac:01:2c:50:8e:11:be:40:fa:e1:f5:25:66:59:33:c2: 87:87:f5:78:4a:ae:cd:3f:3a:84:e3:d9:92:70:89:33:65:fb: 82:e3:cc:06:63:02:cd:e2:c6:18:43:4a:20:23:f5:40:2a:07: dc:e1:24:da:93:fb:3b:9d:67:61:61:bc:df:ff:3c:06:35:5d: c3:7e:d9:90:7e:72:89:97:65:45:73:05:69:ac:a0:99:42:3d: 9a:56:f3:10:71:af:59:12:8c:e2:25:a9:2f:67:f9:77:d1:17: e2:c3:b5:24:5f:a8:f7:0d:0b:1e:90:28:05:00:37:28:ce:5a: 65:28:c2:63:f2:72:11:ef:b5:63:6a:16:34:7e:d1:b8:20:75: 47:1b:ad:a5:4f:7d:f4:97:00:b9:25:b3:17:fd:4b:45:cf:55: b0:e8:cf:5b:f9:46:12:20:3d:8c:1f:54:82:ff:eb:6f:76:12: 6e:a8:e7:41:b4:4e:66:f7:8b:68:34:cf:3a:b5:c5:64:85:bf: 42:19:a4:a3:14:5d:e0:53:b0:db:6c:c9:d8:df:a2:95:80:52: 38:e9:f9:9d:05:af:8c:b5:36:41:c8:bb:3f:97:05:0c:2f:59: a3:c8:29:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjUwNTE1MDEzMzQyWhcNMjUwNTIyMDEzMzQyWjAYMRYwFAYD VQQDEw02ODI1NDQ3Ni0wODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmc+UziVdAELfeSXAO7Zu4MTmtR/8vo3kttgisVQRSiElirqFx85KaJDz4RBB Ja5xMRf+OftNIAp2dMbwliq7LSuBYuKi4G3dOMsxDwMeNOpbXSIZ0EyrtTC2XK4u suX5ikuFYe9q2l+TRas7sG3jxRqqnJTIWAquNU3bsQuur8PPNTeG3bLWrfgZmrdD Qe+pgIRscvD62Er2VORrZhWTdk6Msl7SErxQdFEgksMNaHktkLNyW28VyMZXF5+l bd/a2pwIuhS9Bbic+4zePVwhvn0xEWMuo8S0ZQLSADp1iL9RgQZp/x+gniKbY200 TobEezo2+jIlBba+jh8sC66ZMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtD9YQH DhBEjHS38jxwd9GK+UmhMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEUzMi83MjA5NTlGQzAxQzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25G X05jVVJVU2VVMHphNzBFNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbSqNWU1quH97K3atyVcuj35N1wKwBLFCOEb5A+uH1JWZZM8KHh/V4 Sq7NPzqE49mScIkzZfuC48wGYwLN4sYYQ0ogI/VAKgfc4STak/s7nWdhYbzf/zwG NV3DftmQfnKJl2VFcwVprKCZQj2aVvMQca9ZEoziJakvZ/l30Rfiw7UkX6j3DQse kCgFADcozlplKMJj8nIR77VjahY0ftG4IHVHG62lT330lwC5JbMX/UtFz1Ww6M9b +UYSID2MH1SC/+tvdhJuqOdBtE5m94toNM86tcVkhb9CGaSjFF3gU7DbbMnY36KV gFI46fmdBa+MtTZByLs/lwUML1mjyCnF -----END CERTIFICATE-----Generated at Thu May 15 18:25:02 2025 by rpki-client