$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: XxL8ty9bEAxt+yiYWu2TxfuHNAJXqH/qwdB8HP7IsHQ= Subject key identifier: 3D:F3:E9:95:5F:2E:0B:EA:46:D9:B7:ED:7E:2A:01:0F:7F:B1:C6:CD Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 05C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 05BB Signing time: Wed 14 May 2025 23:09:47 +0000 Manifest this update: Wed 14 May 2025 23:09:47 +0000 Manifest next update: Wed 21 May 2025 23:09:47 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: G7FzuevXZWcO1vgJfeuMmwVKO4GIIWagPsjtlnuZy2g=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: KmV3A66uHX2ovCCHWTgN+6Kx1zjXxXnhW11qwJ7+Kek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:09:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1472 (0x5c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: May 14 23:09:47 2025 GMT Not After : May 21 23:09:47 2025 GMT Subject: CN=682522bb-d85f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:5f:f3:46:62:7a:b9:22:3f:b2:ac:79:eb:13: 12:81:09:75:69:27:44:52:b7:fd:80:a0:73:f7:a8: cc:af:da:f7:d6:c7:0a:fd:bd:15:ef:78:c5:f7:f1: 29:73:c0:76:63:72:11:f2:10:b7:1a:08:4d:a7:ee: 6a:2c:fe:70:c2:6e:aa:4a:47:06:9e:2a:ca:4d:94: d8:9d:0d:37:0f:1b:15:97:3e:b7:79:d5:72:eb:4e: ef:2c:81:31:ce:b7:dc:8a:46:d9:3b:b8:bd:95:ef: 7a:48:96:2d:77:35:71:07:46:43:94:82:e4:05:73: d9:6b:5a:0f:cb:f4:63:44:f5:81:d1:9a:52:e9:e4: 5a:53:75:01:41:06:5b:b4:9d:d7:c2:2a:c8:8c:96: b7:65:73:59:44:14:64:40:d1:d3:e6:30:a2:98:8d: e4:bb:2e:34:ea:fc:5d:db:c4:9e:61:e8:29:67:dc: 64:7a:30:fd:c0:d5:f7:8d:aa:d9:40:34:95:8b:db: 38:ea:7a:d0:2b:eb:c4:35:ef:c5:15:a7:a2:a3:b3: 60:c3:4b:e0:ad:aa:c2:cf:14:e7:40:09:1a:ad:88: 43:c3:fc:21:48:2e:e0:75:61:34:a0:9f:6a:f2:13: 9f:b4:1f:ca:8e:aa:60:b9:89:98:81:2c:f9:fc:74: 88:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F3:E9:95:5F:2E:0B:EA:46:D9:B7:ED:7E:2A:01:0F:7F:B1:C6:CD X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:ef:ce:56:b5:80:5a:a2:43:c3:31:f4:35:03:97:55:c6:f1: aa:31:dd:f4:5d:a6:09:e9:ec:b3:42:48:a4:dc:3c:fa:7c:a1: b0:6c:be:a9:27:5f:50:5f:d9:8a:5c:6f:58:dc:93:e2:04:f9: c1:fb:7e:c9:64:33:b2:fe:5b:29:dc:07:e8:30:2e:3f:be:b9: bd:b0:16:7c:5f:5c:f1:50:fb:9c:fd:aa:07:67:fd:da:e5:1c: 07:b4:98:90:4e:de:c9:a5:cc:37:2c:24:8d:d0:f9:90:b0:b0: 84:88:40:b6:0e:f0:83:2d:40:fa:68:7a:22:b0:5a:8f:80:6e: c9:5f:65:1d:30:98:b9:ef:13:d6:dc:59:7a:3c:f6:7e:52:92: c6:eb:c0:e1:d2:54:8a:a1:3a:79:b9:c9:31:68:80:e2:64:c0: a4:2f:28:22:a0:ad:80:07:2e:2c:8a:bd:49:d4:d1:66:5e:70: 51:ea:d0:01:0e:78:0c:2a:de:62:90:7d:e2:d5:01:5e:b1:16: 6c:da:da:89:9f:99:ac:15:df:bb:d5:bc:04:aa:26:42:bc:ee: 89:ef:98:6d:4c:df:ee:86:40:c7:c2:ec:b1:c1:15:5c:35:bb: c2:69:03:d2:5f:00:2e:3f:0e:a9:61:e8:01:cf:de:e0:b8:23: 04:27:3d:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjUwNTE0MjMwOTQ3WhcNMjUwNTIxMjMwOTQ3WjAYMRYwFAYD VQQDEw02ODI1MjJiYi1kODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA61/zRmJ6uSI/sqx56xMSgQl1aSdEUrf9gKBz96jMr9r31scK/b0V73jF9/Ep c8B2Y3IR8hC3GghNp+5qLP5wwm6qSkcGnirKTZTYnQ03DxsVlz63edVy607vLIEx zrfcikbZO7i9le96SJYtdzVxB0ZDlILkBXPZa1oPy/RjRPWB0ZpS6eRaU3UBQQZb tJ3XwirIjJa3ZXNZRBRkQNHT5jCimI3kuy406vxd28SeYegpZ9xkejD9wNX3jarZ QDSVi9s46nrQK+vENe/FFaeio7Ngw0vgrarCzxTnQAkarYhDw/whSC7gdWE0oJ9q 8hOftB/KjqpguYmYgSz5/HSIaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3z6ZVf LgvqRtm37X4qAQ9/scbNMB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN785WtYBaokPDMfQ1A5dVxvGqMd30XaYJ6eyzQkik3Dz6fKGwbL6p J19QX9mKXG9Y3JPiBPnB+37JZDOy/lsp3AfoMC4/vrm9sBZ8X1zxUPuc/aoHZ/3a 5RwHtJiQTt7Jpcw3LCSN0PmQsLCEiEC2DvCDLUD6aHoisFqPgG7JX2UdMJi57xPW 3Fl6PPZ+UpLG68Dh0lSKoTp5uckxaIDiZMCkLygioK2ABy4sir1J1NFmXnBR6tAB DngMKt5ikH3i1QFesRZs2tqJn5msFd+71bwEqiZCvO6J75htTN/uhkDHwuyxwRVc NbvCaQPSXwAuPw6pYegBz97guCMEJz1J -----END CERTIFICATE-----Generated at Fri May 16 22:42:16 2025 by rpki-client