$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft File: cOaM6FoDjZ4wcEODfKbmsaZglu4.mft (raw, json) Hash identifier: 26jbF0eqOc2E7FJWJq+2X2PmOBIcc77SiU92nZTuWJ8= Subject key identifier: 88:65:9E:D4:A0:F3:B4:C3:14:9B:55:89:70:37:BB:0E:87:5B:A3:C1 Authority key identifier: 70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE Certificate issuer: /CN=A91F6ADE/serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Certificate serial: 047B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft Manifest number: 0475 Signing time: Sun 04 May 2025 23:43:38 +0000 Manifest this update: Sun 04 May 2025 23:43:37 +0000 Manifest next update: Sun 11 May 2025 23:43:37 +0000 Files and hashes: 1: cOaM6FoDjZ4wcEODfKbmsaZglu4.crl (hash: fbA9y+B7wbIwHrp3OvOkV6xTOckQVZdgtVaq+oON4Z8=) 2: FD0DCDCA41E111EC98FA0C0AC4F9AE02.roa (hash: CzraaquDZ9Uo+Rh3T+BRvbMkjKbruCD1g9kPUW6icAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 23:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1147 (0x47b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6ADE, serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Validity Not Before: May 4 23:43:37 2025 GMT Not After : May 11 23:43:37 2025 GMT Subject: CN=6817fbaa-783b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b5:57:74:c1:2b:12:ac:2c:35:bb:8e:07:8f: 90:ce:e4:3f:77:cd:0a:0e:a2:b9:ad:0d:20:fe:e5: 91:5e:76:66:6b:bf:14:8a:9f:bf:d5:6d:b9:ff:2a: 1e:cf:a8:78:8f:36:92:38:51:63:ad:9b:22:92:fd: 9c:ad:aa:72:4f:53:bb:7c:8c:80:f2:5a:2a:20:2d: aa:10:7f:0d:40:2a:93:72:ae:a4:e2:fd:ad:b2:22: e0:63:ea:46:5b:b9:b9:c8:71:a0:3c:55:33:5b:a2: 59:f3:ff:e5:4d:cb:b8:55:07:f4:2a:f4:29:d2:5c: 76:dd:19:3c:ff:0c:e8:d6:8a:ba:a8:75:d4:34:b9: 51:38:57:94:56:92:00:84:70:c8:1f:25:97:5f:3b: 1e:79:61:d8:01:7d:1f:dd:18:7e:89:92:78:26:c5: 76:71:26:a5:cf:12:5e:66:44:41:16:ec:59:51:29: eb:52:64:18:20:ba:30:98:5d:3f:14:31:5a:68:f8: c3:77:08:c0:d2:81:4c:ba:83:c7:82:e4:9c:8b:1f: f4:94:85:ba:31:04:37:46:bd:90:e3:10:c7:c9:04: 82:16:89:12:40:d3:47:ff:5e:68:22:65:26:34:34: 76:d7:c6:b2:80:bd:26:f2:c4:fc:a1:a6:a4:ff:a3: 5c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:65:9E:D4:A0:F3:B4:C3:14:9B:55:89:70:37:BB:0E:87:5B:A3:C1 X509v3 Authority Key Identifier: keyid:70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:c3:5d:fe:ec:85:50:a0:20:0f:c5:80:1c:94:dd:f3:06:c3: 5f:0a:8f:5b:1d:a8:08:bd:e6:b5:49:6b:fb:1d:72:d4:ac:af: 46:7d:93:52:3b:42:ff:7d:ca:65:5d:68:cd:e2:ae:81:55:8a: 93:7a:cf:98:63:75:d6:b1:35:ca:8f:f3:bd:23:38:c7:ac:a3: 30:d1:94:a0:e4:85:a2:ca:b6:90:1c:e2:85:2a:3a:c4:00:b6: 2d:fc:a9:ec:05:b0:8f:26:26:e9:12:57:61:6b:8f:d1:61:ec: c3:dd:32:d9:66:de:8d:9e:00:90:94:46:48:1a:8e:5d:85:d8: 4f:50:9c:e9:cb:70:83:41:81:d7:67:9b:be:09:20:46:0d:70: c5:3e:78:67:cb:7f:cd:b3:57:9c:18:a9:dd:d1:a3:ba:a7:03: d9:a0:35:e2:d5:34:43:76:23:0d:77:34:6f:2a:a7:c9:e8:1c: 7d:0c:e1:17:ae:5d:96:47:83:3c:7f:82:90:0c:d4:6f:d4:ac: 6d:c6:f0:92:69:44:a4:7a:8a:0d:51:1e:4d:13:a2:33:4d:81: f0:2f:a6:c7:36:c5:9a:13:2c:09:6b:65:76:bc:88:20:2f:76: a4:1a:a0:b5:36:6f:8e:b0:5f:44:ed:82:fa:7b:43:f3:b7:5c: e2:81:70:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBREUxMTAvBgNVBAUTKDcwRTY4Q0U4NUEwMzhEOUUzMDcwNDM4MzdDQTZFNkIx QTY2MDk2RUUwHhcNMjUwNTA0MjM0MzM3WhcNMjUwNTExMjM0MzM3WjAYMRYwFAYD VQQDEw02ODE3ZmJhYS03ODNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrVXdMErEqwsNbuOB4+QzuQ/d80KDqK5rQ0g/uWRXnZma78Uip+/1W25/yoe z6h4jzaSOFFjrZsikv2crapyT1O7fIyA8loqIC2qEH8NQCqTcq6k4v2tsiLgY+pG W7m5yHGgPFUzW6JZ8//lTcu4VQf0KvQp0lx23Rk8/wzo1oq6qHXUNLlROFeUVpIA hHDIHyWXXzseeWHYAX0f3Rh+iZJ4JsV2cSalzxJeZkRBFuxZUSnrUmQYILowmF0/ FDFaaPjDdwjA0oFMuoPHguScix/0lIW6MQQ3Rr2Q4xDHyQSCFokSQNNH/15oImUm NDR218aygL0m8sT8oaak/6NcJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhlntSg 87TDFJtViXA3uw6HW6PBMB8GA1UdIwQYMBaAFHDmjOhaA42eMHBDg3ym5rGmYJbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFERS8yODczOUQzQTQx REYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpaNHdjRU9EZktibXNhWmds dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NPYU02Rm9Ealo0d2NFT0RmS2Jtc2FaZ2x1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFERS8yODczOUQzQTQxREYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpa NHdjRU9EZktibXNhWmdsdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRw13+7IVQoCAPxYAclN3zBsNfCo9bHagIvea1SWv7HXLUrK9GfZNS O0L/fcplXWjN4q6BVYqTes+YY3XWsTXKj/O9IzjHrKMw0ZSg5IWiyraQHOKFKjrE ALYt/KnsBbCPJibpEldha4/RYezD3TLZZt6NngCQlEZIGo5dhdhPUJzpy3CDQYHX Z5u+CSBGDXDFPnhny3/Ns1ecGKnd0aO6pwPZoDXi1TRDdiMNdzRvKqfJ6Bx9DOEX rl2WR4M8f4KQDNRv1KxtxvCSaUSkeooNUR5NE6IzTYHwL6bHNsWaEywJa2V2vIgg L3akGqC1Nm+OsF9E7YL6e0Pzt1zigXDD -----END CERTIFICATE-----Generated at Tue May 6 23:06:28 2025 by rpki-client