$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft File: Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft (raw, json) Hash identifier: oKtKObb756opYR92fKthoaycT66BQp91kIU5BHIsRoI= Subject key identifier: 94:C4:15:98:FD:0C:94:F8:DA:26:D2:49:DB:13:E5:86:A4:E2:58:9E Authority key identifier: 3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D Certificate issuer: /CN=A91F8E3D/serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Certificate serial: 046B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft Manifest number: 0458 Signing time: Sat 17 May 2025 00:32:31 +0000 Manifest this update: Sat 17 May 2025 00:32:31 +0000 Manifest next update: Sat 24 May 2025 00:32:31 +0000 Files and hashes: 1: Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl (hash: 9WLYS7vRkYej4j9omvFboXRcTNvoEcjWM2C0J6v08kI=) 2: FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa (hash: p5RWbmc3OrbusuGd87uXwNNKECyHXGRqb7DFbO3Zzjc=) 3: 451AF9F2E3DC11ECB9410B43C4F9AE02.roa (hash: PvyXkvk9rsG65qDLSBUO/zxV1I1w1ViEmt67rzLWH3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 00:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E3D, serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Validity Not Before: May 17 00:32:31 2025 GMT Not After : May 24 00:32:31 2025 GMT Subject: CN=6827d91f-8554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f1:1d:3d:7a:3a:b1:2c:2e:cd:95:cb:6e:54: ab:e3:3a:02:0d:18:fa:03:2a:f5:c4:4e:2a:23:cc: 6d:68:ff:85:3b:19:cb:4c:f6:75:30:e2:3a:e6:41: 25:24:cc:5b:00:28:30:a6:c4:f8:a5:67:05:3a:f5: 0f:eb:34:0a:14:6f:72:c8:23:d3:a1:87:08:1f:50: cc:a7:98:3a:f5:2a:1a:c4:57:e1:4f:1b:4c:94:fa: 87:0e:ef:d3:8e:49:05:81:9a:a6:cf:83:69:d8:14: 54:32:f0:2f:9a:14:80:db:a3:d1:05:37:4e:37:6a: 43:26:1e:e5:65:b6:74:02:83:23:a8:22:f9:da:48: a1:c7:f4:64:0b:f7:2f:88:a4:40:6e:f8:29:53:b0: b0:48:16:f3:ac:ba:34:25:fc:1d:96:47:73:82:05: 1b:52:7a:3b:27:a4:5b:25:52:d4:39:49:6c:c1:7f: 5c:7c:61:5a:f2:db:2b:fb:5a:f1:6d:93:7c:53:c1: ac:80:4e:a2:92:3d:8a:9f:23:48:56:67:bb:e5:30: 07:2e:c7:45:03:ae:0f:0c:a3:a9:df:72:5a:a8:a7: da:c6:01:6e:18:02:2b:9e:dc:d2:2e:67:02:9f:77: 1c:3f:49:e8:75:2e:ef:6a:8f:26:80:18:94:b9:ea: 60:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C4:15:98:FD:0C:94:F8:DA:26:D2:49:DB:13:E5:86:A4:E2:58:9E X509v3 Authority Key Identifier: keyid:3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:6a:e6:87:c4:c4:3a:2a:61:57:9e:d8:af:ab:4e:f3:06:f5: 3c:7a:1c:00:b6:4f:b0:fb:3f:c4:bf:af:28:6d:35:ae:50:b5: b8:23:4b:87:a8:ed:9c:60:4f:d3:06:c5:87:c4:db:0f:a1:e5: b3:da:92:3b:d2:c5:49:2c:78:c9:d9:2c:50:d2:89:64:12:33: 3f:33:a8:bc:36:f6:f3:44:93:59:32:fe:aa:3a:19:bf:f1:b2: 98:e7:e5:2a:ab:86:26:51:8a:eb:59:99:0f:26:17:17:d2:c0: 7f:3a:b8:2f:37:31:2e:c7:49:d2:03:9b:48:56:54:44:71:41: 42:86:48:e5:80:be:38:8f:e1:40:6b:fd:44:1b:c6:b7:97:3f: 15:06:66:92:aa:1b:1b:9f:fa:b1:5e:05:78:48:d4:6c:6d:44: 45:d0:53:59:a8:f9:2c:b4:4d:96:9b:af:fd:5d:18:38:a1:36: 6d:dc:1a:30:fe:a8:a2:45:4a:0e:26:7c:f2:c7:10:e0:32:b7: 44:b9:a9:5c:39:f9:2c:29:9e:dd:d7:2b:3c:33:4a:e3:5d:51: c6:31:fd:3e:8c:4e:f1:b7:ea:60:b6:80:9c:9a:91:f3:26:98: a0:71:24:99:c5:7b:69:b4:5f:ba:2f:f9:95:71:cd:f8:ed:bd: d8:23:ed:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFM0QxMTAvBgNVBAUTKDNBQUZGQkI3RUE0QTYwRDc3QkI0NDI4NEFDQkYyNUMz OThCQTlBNkQwHhcNMjUwNTE3MDAzMjMxWhcNMjUwNTI0MDAzMjMxWjAYMRYwFAYD VQQDEw02ODI3ZDkxZi04NTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnPEdPXo6sSwuzZXLblSr4zoCDRj6Ayr1xE4qI8xtaP+FOxnLTPZ1MOI65kEl JMxbACgwpsT4pWcFOvUP6zQKFG9yyCPToYcIH1DMp5g69SoaxFfhTxtMlPqHDu/T jkkFgZqmz4Np2BRUMvAvmhSA26PRBTdON2pDJh7lZbZ0AoMjqCL52kihx/RkC/cv iKRAbvgpU7CwSBbzrLo0JfwdlkdzggUbUno7J6RbJVLUOUlswX9cfGFa8tsr+1rx bZN8U8GsgE6ikj2KnyNIVme75TAHLsdFA64PDKOp33JaqKfaxgFuGAIrntzSLmcC n3ccP0nodS7vao8mgBiUuepgOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTEFZj9 DJT42ibSSdsT5Yak4lieMB8GA1UdIwQYMBaAFDqv+7fqSmDXe7RChKy/JcOYuppt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUzRC8wQUI0Mzg2QTU4 NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lOZDd0RUtFckw4bHc1aTZt bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xXzd0LXBLWU5kN3RFS0VyTDhsdzVpNm1tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUzRC8wQUI0Mzg2QTU4NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lO ZDd0RUtFckw4bHc1aTZtbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFauaHxMQ6KmFXntivq07zBvU8ehwAtk+w+z/Ev68obTWuULW4I0uH qO2cYE/TBsWHxNsPoeWz2pI70sVJLHjJ2SxQ0olkEjM/M6i8NvbzRJNZMv6qOhm/ 8bKY5+Uqq4YmUYrrWZkPJhcX0sB/OrgvNzEux0nSA5tIVlREcUFChkjlgL44j+FA a/1EG8a3lz8VBmaSqhsbn/qxXgV4SNRsbURF0FNZqPkstE2Wm6/9XRg4oTZt3Bow /qiiRUoOJnzyxxDgMrdEualcOfksKZ7d1ys8M0rjXVHGMf0+jE7xt+pgtoCcmpHz JpigcSSZxXtptF+6L/mVcc347b3YI+2x -----END CERTIFICATE-----Generated at Sun May 18 07:21:43 2025 by rpki-client