$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft File: OG9viqHmbFJU6h5HiIwQP0U2Iio.mft (raw, json) Hash identifier: ZqbiNyS1UwKz01Q02f0HvrTFWKu/v06So0wLJhk+2vI= Subject key identifier: D3:B4:28:C0:83:6B:4D:AF:55:A7:0D:72:A3:94:37:08:3F:1D:1D:E3 Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Certificate serial: 1A7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft Manifest number: 1A44 Signing time: Sat 10 May 2025 16:16:53 +0000 Manifest this update: Sat 10 May 2025 16:16:53 +0000 Manifest next update: Sat 17 May 2025 16:16:53 +0000 Files and hashes: 1: OG9viqHmbFJU6h5HiIwQP0U2Iio.crl (hash: 4ieWqSh/8j15ALGEOzefSb+hT/ncRBOsNISatPJYQxE=) 2: 6C897E54597B11EDB603273AC4F9AE02.roa (hash: tECuYiObkHM8+lQ9pAL6rPX0WAXD3+sDD+oT9RLjEFY=) 3: 6E44CE88597B11EDB603273AC4F9AE02.roa (hash: uSAHzBc+YHmREVNWY2QOkLWbks+7w1YPJ8vpHREo1FM=) 4: 63B4F05E482611E7ABDEF831C4F9AE02.roa (hash: UvxhutC//RajTrYueD0iUFQneJ/UQC0+drD5TAjJyFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6778 (0x1a7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB077, serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Validity Not Before: May 10 16:16:53 2025 GMT Not After : May 17 16:16:53 2025 GMT Subject: CN=681f7bf5-277e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:20:b8:29:e3:04:58:87:a8:4f:be:d8:04:91: 2d:fc:83:e2:64:de:5e:d2:9c:56:48:21:44:a9:45: 77:a0:60:9d:af:3b:01:01:61:b3:7b:70:b4:c4:6c: 98:81:6f:81:b2:47:a4:d3:85:c0:c9:73:86:5d:50: fc:48:1a:d5:b1:48:07:c1:ca:f7:55:3f:7f:2e:16: 18:b0:53:8f:6f:3f:20:ec:03:f0:45:98:58:cf:01: 4e:b6:a5:d2:37:8e:a1:ea:91:38:53:d5:5a:d3:af: d2:f8:48:4f:af:e7:09:b2:97:a7:04:f6:b7:b7:2b: b5:dc:c4:6f:b6:e5:a6:18:6a:40:90:f8:f0:aa:74: 84:2c:c2:5f:78:b3:dc:e4:f4:51:a8:71:7f:a0:cf: 47:90:c1:9b:57:90:c9:98:44:8f:f3:b9:7f:18:37: a1:ea:49:2b:fb:de:72:72:97:92:14:a7:f1:8e:87: 3c:a0:c9:e0:e2:1f:7d:c0:a1:80:34:d2:31:cc:22: 4c:47:6b:bc:a9:56:63:7e:a4:31:35:c0:56:70:2e: 1f:14:c5:26:d7:16:7f:3f:90:19:0d:52:31:fe:07: 96:d7:d9:26:13:b7:b4:32:87:5f:be:2b:92:e0:cd: 24:8c:16:3d:08:9c:ab:21:42:0a:f2:e4:93:47:70: 69:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:B4:28:C0:83:6B:4D:AF:55:A7:0D:72:A3:94:37:08:3F:1D:1D:E3 X509v3 Authority Key Identifier: keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:04:1f:c5:8c:90:3b:df:4b:a9:be:41:88:a7:b4:99:0d:76: 38:64:6c:66:de:73:c4:79:b8:01:82:34:dd:b7:36:04:1c:d7: 3a:a9:f0:03:e7:08:e9:45:e7:bb:38:99:5a:fc:25:22:c9:85: ee:6e:0a:4a:03:bb:24:24:bb:09:2f:c9:11:91:31:92:80:e9: 5b:fe:e2:04:14:29:0a:73:2b:fa:ff:4c:a2:1f:66:e1:df:49: df:9c:f1:a6:d9:44:23:e7:35:06:1f:7b:5c:a5:a8:e8:9e:77: 79:15:56:c4:6a:d2:c7:7b:f7:a7:76:f9:2b:24:17:97:9c:3b: 50:c6:59:5e:3a:22:7b:72:34:a6:d7:34:5f:4a:dc:67:97:74: b5:9a:e7:79:01:3d:32:d9:53:61:29:11:72:32:d0:5c:7c:be: 1f:b9:f4:4d:0f:92:e6:5c:7b:65:0d:da:e9:d8:ba:a8:e3:b3: 02:25:71:cf:40:9c:ae:33:34:cb:3f:f4:55:7b:97:ba:99:d3: 66:d4:a8:de:2c:77:2d:f8:d7:7d:fc:73:2b:f5:77:d5:62:5b: d7:71:1f:b4:f8:77:dc:41:fe:af:c8:35:e3:05:cd:a8:12:f7: cf:75:56:d9:02:42:b1:87:68:6c:c8:f6:0d:b7:c9:f7:38:3b: b5:17:c3:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwNzcxMTAvBgNVBAUTKDM4NkY2RjhBQTFFNjZDNTI1NEVBMUU0Nzg4OEMxMDNG NDUzNjIyMkEwHhcNMjUwNTEwMTYxNjUzWhcNMjUwNTE3MTYxNjUzWjAYMRYwFAYD VQQDEw02ODFmN2JmNS0yNzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSC4KeMEWIeoT77YBJEt/IPiZN5e0pxWSCFEqUV3oGCdrzsBAWGze3C0xGyY gW+Bskek04XAyXOGXVD8SBrVsUgHwcr3VT9/LhYYsFOPbz8g7APwRZhYzwFOtqXS N46h6pE4U9Va06/S+EhPr+cJspenBPa3tyu13MRvtuWmGGpAkPjwqnSELMJfeLPc 5PRRqHF/oM9HkMGbV5DJmESP87l/GDeh6kkr+95ycpeSFKfxjoc8oMng4h99wKGA NNIxzCJMR2u8qVZjfqQxNcBWcC4fFMUm1xZ/P5AZDVIx/geW19kmE7e0ModfviuS 4M0kjBY9CJyrIUIK8uSTR3BpCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNO0KMCD a02vVacNcqOUNwg/HR3jMB8GA1UdIwQYMBaAFDhvb4qh5mxSVOoeR4iMED9FNiIq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA3Ny9EQjdCNzAwNjQ4 MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJGSlU2aDVIaUl3UVAwVTJJ aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HOXZpcUhtYkZKVTZoNUhpSXdRUDBVMklpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjA3Ny9EQjdCNzAwNjQ4MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJG SlU2aDVIaUl3UVAwVTJJaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATBB/FjJA730upvkGIp7SZDXY4ZGxm3nPEebgBgjTdtzYEHNc6qfAD 5wjpRee7OJla/CUiyYXubgpKA7skJLsJL8kRkTGSgOlb/uIEFCkKcyv6/0yiH2bh 30nfnPGm2UQj5zUGH3tcpajonnd5FVbEatLHe/endvkrJBeXnDtQxlleOiJ7cjSm 1zRfStxnl3S1mud5AT0y2VNhKRFyMtBcfL4fufRND5LmXHtlDdrp2Lqo47MCJXHP QJyuMzTLP/RVe5e6mdNm1KjeLHct+Nd9/HMr9XfVYlvXcR+0+HfcQf6vyDXjBc2o EvfPdVbZAkKxh2hsyPYNt8n3ODu1F8Py -----END CERTIFICATE-----Generated at Sun May 11 09:29:25 2025 by rpki-client