$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: vfWv2kulgCY5fPjo+2jOBlVYZnlQ6Ik5LsyUOvNVwYA= Subject key identifier: BC:A1:84:2C:65:5A:35:E5:3B:4B:98:2D:9E:C8:DD:5B:D8:34:5E:19 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 0254 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 0251 Signing time: Sat 03 May 2025 01:52:48 +0000 Manifest this update: Sat 03 May 2025 01:52:48 +0000 Manifest next update: Sat 10 May 2025 01:52:48 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: HIW0mz7wQWQZdfD8Sc+RZXqgPC1dtmaJlZmzkjo6FUM=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 7zo0d8WdBwFw00aoFQkrW7v2ow8E9G0bE4Wwabr7enI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 01:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: May 3 01:52:48 2025 GMT Not After : May 10 01:52:48 2025 GMT Subject: CN=681576f0-5618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:fa:b5:41:9c:75:1b:1d:94:43:48:52:16:ab: 03:e8:d5:0e:10:9d:c8:b1:d3:71:cc:51:0b:95:8d: 50:c3:92:53:18:64:17:c2:7d:55:e1:0b:52:f9:c2: ef:2e:45:68:db:c0:c9:1c:83:12:ce:a4:01:aa:07: 42:26:61:d8:c1:ae:f8:e9:6e:95:ad:73:86:fe:c3: 2c:92:cc:a6:5d:ea:94:65:c1:45:ec:95:0e:01:f3: 3e:35:3b:3c:b6:42:a6:0f:a3:c2:b8:d2:8d:af:00: 7f:37:32:62:e0:6e:e0:b9:9c:11:c3:cc:8a:8c:77: 63:99:ab:5f:26:6d:a2:df:60:fa:6b:40:2b:fa:b6: 71:a3:fb:af:4f:01:95:35:d1:fb:78:7c:ba:a6:f8: 57:f8:4f:69:0f:dc:6b:5e:3d:1c:b9:ac:6f:a2:a8: 0a:01:1e:2a:70:2e:6a:a4:9a:b6:24:d1:d9:04:ed: 02:b4:e7:6c:df:d6:e9:eb:a6:6b:5c:cd:4a:3e:2c: e4:37:f3:7d:2b:43:4b:59:b2:4e:54:e4:5c:ae:65: 7e:0f:b8:1e:85:85:08:dd:d0:04:ec:27:9e:e1:86: 90:1d:bf:2f:c0:af:97:c7:67:c9:5a:f8:ce:03:fe: 64:98:96:70:96:cc:57:bb:71:77:0e:f0:58:b3:96: 34:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:A1:84:2C:65:5A:35:E5:3B:4B:98:2D:9E:C8:DD:5B:D8:34:5E:19 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:91:04:68:47:90:3f:e7:b5:49:55:fb:15:1f:9c:46:69:5c: cf:d5:ad:a4:28:cc:c3:cb:94:9d:fb:7b:4e:1c:13:f1:07:27: 96:e2:0b:5c:1c:76:43:9b:ec:e2:13:7b:be:9b:ba:da:7a:65: be:bb:9c:07:61:0b:75:5a:16:e9:79:fb:53:ba:65:49:39:e3: f3:ec:a1:5c:20:2e:bf:80:ee:c1:25:37:2a:89:51:c2:dd:6f: fd:7e:e0:30:5b:f7:24:4e:ea:b6:96:69:b7:76:ce:bd:9c:87: 27:66:77:1b:fd:d0:93:8d:56:ab:95:56:18:b0:fd:8a:ce:bb: 6f:71:c8:05:72:01:ce:fd:62:f1:4e:11:ab:eb:92:12:44:af: eb:ae:27:cf:31:6b:76:78:44:7f:dd:85:5b:b0:e7:1b:1e:90: 56:d2:ad:87:6b:2c:6d:78:f7:b2:7f:53:77:bb:59:44:83:f8: 0d:9b:72:72:4e:99:56:94:45:0b:92:c4:bc:1b:e2:97:81:92: 8d:b6:2c:4b:d2:15:f6:1b:83:78:7c:c2:dd:97:a4:bf:06:28: 39:e6:a4:65:47:35:02:16:5a:b3:a1:d6:4a:90:a7:7f:30:0c: 5d:97:af:ba:db:ec:d2:8f:b2:ff:72:79:7b:a1:26:eb:b0:e1: ab:9f:24:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUwNTAzMDE1MjQ4WhcNMjUwNTEwMDE1MjQ4WjAYMRYwFAYD VQQDEw02ODE1NzZmMC01NjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfq1QZx1Gx2UQ0hSFqsD6NUOEJ3IsdNxzFELlY1Qw5JTGGQXwn1V4QtS+cLv LkVo28DJHIMSzqQBqgdCJmHYwa746W6VrXOG/sMsksymXeqUZcFF7JUOAfM+NTs8 tkKmD6PCuNKNrwB/NzJi4G7guZwRw8yKjHdjmatfJm2i32D6a0Ar+rZxo/uvTwGV NdH7eHy6pvhX+E9pD9xrXj0cuaxvoqgKAR4qcC5qpJq2JNHZBO0CtOds39bp66Zr XM1KPizkN/N9K0NLWbJOVORcrmV+D7gehYUI3dAE7Cee4YaQHb8vwK+Xx2fJWvjO A/5kmJZwlsxXu3F3DvBYs5Y03QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyhhCxl WjXlO0uYLZ7I3VvYNF4ZMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIkQRoR5A/57VJVfsVH5xGaVzP1a2kKMzDy5Sd+3tOHBPxByeW4gtc HHZDm+ziE3u+m7raemW+u5wHYQt1WhbpeftTumVJOePz7KFcIC6/gO7BJTcqiVHC 3W/9fuAwW/ckTuq2lmm3ds69nIcnZncb/dCTjVarlVYYsP2KzrtvccgFcgHO/WLx ThGr65ISRK/rrifPMWt2eER/3YVbsOcbHpBW0q2HayxtePeyf1N3u1lEg/gNm3Jy TplWlEULksS8G+KXgZKNtixL0hX2G4N4fMLdl6S/Big55qRlRzUCFlqzodZKkKd/ MAxdl6+62+zSj7L/cnl7oSbrsOGrnyTK -----END CERTIFICATE-----Generated at Mon May 5 02:40:18 2025 by rpki-client