$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: vPndKuM1LYD3D/MTWzvQa6rkWlN+QeGuGrYOjnQwDio= Subject key identifier: 8B:88:42:83:DB:B5:8C:65:26:A7:88:9D:56:FD:19:3C:F7:C8:95:27 Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 13A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 139E Signing time: Mon 12 May 2025 16:53:39 +0000 Manifest this update: Mon 12 May 2025 16:53:38 +0000 Manifest next update: Mon 19 May 2025 16:53:38 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: 8HmFb+Ass/jvDke6bM4KkgP1KWa7IcVmRVYpsqnSzdo=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: H7cacnsh0VuhyC5itqeb5pDEzr5EF2LWGOPta4fd7j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5032 (0x13a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639, serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: May 12 16:53:38 2025 GMT Not After : May 19 16:53:38 2025 GMT Subject: CN=68222793-72f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cb:32:12:10:6e:df:79:97:ad:67:41:ca:ac: 4a:55:ef:ce:bb:91:9d:1c:72:4f:63:5f:20:bd:63: df:0c:ff:cc:29:9f:0d:4e:49:2f:6f:39:b0:64:1f: 9b:5b:72:6c:aa:63:e5:2d:db:9e:7d:48:20:b3:49: 53:fb:97:81:34:0a:ad:39:f3:dc:f6:e3:1f:f5:e4: f6:42:a5:1c:67:34:69:20:40:b7:09:d5:ca:f1:6f: f5:63:9e:58:72:d6:af:0c:bf:89:85:08:49:04:1c: 5e:d7:d2:e6:de:cd:49:f6:ff:44:fe:ea:01:ba:9a: 6b:21:e4:76:85:be:e9:49:93:5f:7b:ab:4a:7c:ec: 7a:ab:29:83:83:f2:85:ac:a6:af:b2:37:0b:c9:39: 0b:a1:a0:47:cd:10:67:ba:9d:cf:c0:03:11:6a:d3: b7:bb:0a:52:2d:14:40:98:d7:a4:9e:00:58:ea:d8: 33:e3:b5:c9:af:eb:a6:31:e3:b6:f3:68:d9:ae:80: 30:04:44:fc:7e:1d:d5:4b:8c:72:69:f9:e0:a2:20: 2c:45:f7:23:85:1c:a6:22:5d:99:83:f5:8c:f1:aa: a7:3d:80:b7:92:25:8a:d0:4a:29:9a:38:3f:e9:35: 6f:6c:bf:c5:de:c9:35:4c:4c:1b:fe:53:57:d7:72: 61:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:88:42:83:DB:B5:8C:65:26:A7:88:9D:56:FD:19:3C:F7:C8:95:27 X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:9d:1c:c2:44:7f:02:78:e4:3d:cf:53:e6:a0:8e:80:30:74: 4e:85:71:eb:99:f5:b4:aa:67:b8:53:be:f7:93:7c:47:ef:9a: d3:6c:ce:4d:27:11:a9:a7:06:42:b5:47:a9:68:e5:8d:ce:38: d7:67:b0:ca:ba:9b:44:23:8f:87:39:ba:64:2e:9a:47:74:dc: 36:91:69:e6:1e:bc:86:97:00:63:8e:cd:39:61:01:76:f5:58: eb:77:f0:9a:e5:27:de:54:27:86:50:bf:39:4a:41:a9:20:20: 2e:d5:eb:d1:54:48:2c:ba:e3:da:34:35:4f:b1:23:71:de:8a: 43:cf:f5:c3:00:10:73:ed:56:a1:01:a7:6a:e1:9b:38:90:ef: 40:3d:68:0f:ac:8f:d6:c4:8f:b8:92:96:31:1f:05:98:48:7c: ee:bc:73:f2:d8:88:d3:a2:78:0c:ac:1d:dc:dd:c3:4d:65:da: 95:f8:d6:74:bf:c0:f0:d5:40:19:36:f7:32:05:bd:db:77:a6: 19:f5:38:06:87:5b:91:44:99:fe:ba:fd:c5:22:5e:69:4f:52: ba:3b:d2:c2:d6:77:39:86:38:52:a0:49:e3:cb:d8:8a:61:ac: b6:21:12:fe:40:a4:53:09:62:13:bc:58:70:cc:41:b5:ed:ac: 6e:4c:3e:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjUwNTEyMTY1MzM4WhcNMjUwNTE5MTY1MzM4WjAYMRYwFAYD VQQDEw02ODIyMjc5My03MmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocsyEhBu33mXrWdByqxKVe/Ou5GdHHJPY18gvWPfDP/MKZ8NTkkvbzmwZB+b W3JsqmPlLduefUggs0lT+5eBNAqtOfPc9uMf9eT2QqUcZzRpIEC3CdXK8W/1Y55Y ctavDL+JhQhJBBxe19Lm3s1J9v9E/uoBupprIeR2hb7pSZNfe6tKfOx6qymDg/KF rKavsjcLyTkLoaBHzRBnup3PwAMRatO3uwpSLRRAmNekngBY6tgz47XJr+umMeO2 82jZroAwBET8fh3VS4xyafngoiAsRfcjhRymIl2Zg/WM8aqnPYC3kiWK0Eopmjg/ 6TVvbL/F3sk1TEwb/lNX13Jh+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuIQoPb tYxlJqeInVb9GTz3yJUnMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATnRzCRH8CeOQ9z1PmoI6AMHROhXHrmfW0qme4U773k3xH75rTbM5N JxGppwZCtUepaOWNzjjXZ7DKuptEI4+HObpkLppHdNw2kWnmHryGlwBjjs05YQF2 9Vjrd/Ca5SfeVCeGUL85SkGpICAu1evRVEgsuuPaNDVPsSNx3opDz/XDABBz7Vah Aadq4Zs4kO9APWgPrI/WxI+4kpYxHwWYSHzuvHPy2IjTongMrB3c3cNNZdqV+NZ0 v8Dw1UAZNvcyBb3bd6YZ9TgGh1uRRJn+uv3FIl5pT1K6O9LC1nc5hjhSoEnjy9iK Yay2IRL+QKRTCWITvFhwzEG17axuTD6c -----END CERTIFICATE-----Generated at Wed May 14 01:35:36 2025 by rpki-client