$ rpki-client -vvf rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft File: khO1BHpA8jx8YASA5tqnoc9_oug.mft (raw, json) Hash identifier: GcJrpiTL63/JHIwKSu4ydEuDz/whAgY1ROuu5t/2J1U= Subject key identifier: 22:9F:BA:6D:D7:43:3A:EB:AF:07:56:1E:F3:DB:3E:0B:8F:9C:7C:59 Authority key identifier: 92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 Certificate issuer: /CN=A91435F3/serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft Manifest number: 012F Signing time: Fri 25 Apr 2025 03:36:20 +0000 Manifest this update: Fri 25 Apr 2025 03:36:20 +0000 Manifest next update: Fri 02 May 2025 03:36:20 +0000 Files and hashes: 1: khO1BHpA8jx8YASA5tqnoc9_oug.crl (hash: ltm2Iu9K8K+nnw1pdDhu+A9UzrJxU/KO5l2NrvsUtHA=) 2: 4E18682450A911EEA39AAE41C4F9AE02.roa (hash: z3jylC3bOFS/QeMNqO6FEMdonfOGPmCY4+yy8XOk4xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91435F3, serialNumber=9213B5047A40F23C7C600480E6DAA7A1CF7FA2E8 Validity Not Before: Apr 25 03:36:20 2025 GMT Not After : May 2 03:36:20 2025 GMT Subject: CN=680b0334-4485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1a:66:92:09:8d:27:7a:b4:01:4c:51:b0:89: 78:84:30:86:f8:06:38:10:4d:08:e5:70:63:31:e9: 93:b0:27:fe:93:fe:92:cc:2e:c2:e7:1d:1b:07:69: 5f:bf:c6:f0:27:dc:1d:81:49:5d:8e:9c:52:b3:6a: 7e:1d:77:47:87:93:c7:f5:23:c2:b7:31:49:75:ad: 60:c1:86:a0:0c:2a:5a:88:7e:df:69:e1:42:4f:c9: ad:66:99:77:d3:54:12:e6:fa:41:8a:b1:62:ce:bd: bc:70:cf:11:71:42:f2:a8:c8:e5:20:b5:5f:27:48: 27:0f:19:4b:88:0c:e3:86:f0:f1:4d:c6:48:b3:bd: 85:03:f6:66:ec:9d:0e:e3:ec:65:fb:81:19:4d:24: 03:cf:5e:d8:7c:29:bd:ce:cb:36:ea:c2:45:91:0e: 74:5a:36:88:65:3d:c4:32:a0:33:90:88:df:32:11: 6f:6a:2b:5d:95:b4:75:39:f5:eb:d3:1b:26:a1:93: a1:12:bf:0e:8c:cf:f8:f2:38:26:4c:75:5f:0c:43: ff:2e:5c:ec:dc:08:b9:c5:9e:e8:7e:b6:2a:f5:54: 8c:30:5e:8d:2e:59:85:ee:88:ad:fb:b5:f1:48:75: 5a:09:ab:8d:37:93:dc:5c:ec:f5:c8:fb:f7:a4:0b: 16:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:9F:BA:6D:D7:43:3A:EB:AF:07:56:1E:F3:DB:3E:0B:8F:9C:7C:59 X509v3 Authority Key Identifier: keyid:92:13:B5:04:7A:40:F2:3C:7C:60:04:80:E6:DA:A7:A1:CF:7F:A2:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khO1BHpA8jx8YASA5tqnoc9_oug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91435F3/9B5DB5EA50A811EEB6DE093FC4F9AE02/khO1BHpA8jx8YASA5tqnoc9_oug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:0e:d9:22:85:e3:11:81:42:fa:5e:9e:85:0d:2e:1b:8f:24: 69:81:eb:35:55:1f:5e:d9:67:73:b0:20:1a:f7:62:be:d0:b0: 10:a7:f0:5b:2b:40:fa:56:d3:44:94:78:da:64:26:87:0a:35: 6c:76:32:0c:8a:b9:e8:fc:da:ff:ac:6a:b2:eb:39:9e:8d:7e: 62:1e:0b:cb:dc:99:d8:85:9c:75:8c:41:17:5c:4b:88:3b:47: 9b:86:49:3c:54:e9:01:e4:92:45:32:d8:4d:fa:0d:20:ab:bd: 13:4c:cf:f1:2d:f7:f0:84:d7:4a:b0:e4:20:03:6a:7e:0d:88: a4:cc:67:ff:59:86:d4:7d:a0:32:c0:0e:ff:b8:97:fc:a6:d7: be:6c:0f:0a:18:36:3f:1c:7c:eb:24:3f:75:ae:04:f6:24:74: 66:1b:f1:ea:b2:12:a2:e1:ee:10:e7:a8:fe:99:fa:2e:56:82: 40:f1:63:47:fb:96:38:ec:57:c2:af:c1:fd:ed:2d:7c:cf:f8: 45:aa:2c:cf:4a:28:af:27:8f:1c:a6:fe:25:a0:38:0b:11:32: 91:4a:a6:7f:f0:fa:1f:7d:f0:ad:29:4e:a2:2f:b6:36:16:4b: 53:1f:fa:d2:4a:35:0e:ff:54:03:a0:18:28:55:1e:35:f0:5f: 0f:2f:23:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM1RjMxMTAvBgNVBAUTKDkyMTNCNTA0N0E0MEYyM0M3QzYwMDQ4MEU2REFBN0Ex Q0Y3RkEyRTgwHhcNMjUwNDI1MDMzNjIwWhcNMjUwNTAyMDMzNjIwWjAYMRYwFAYD VQQDEw02ODBiMDMzNC00NDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhpmkgmNJ3q0AUxRsIl4hDCG+AY4EE0I5XBjMemTsCf+k/6SzC7C5x0bB2lf v8bwJ9wdgUldjpxSs2p+HXdHh5PH9SPCtzFJda1gwYagDCpaiH7faeFCT8mtZpl3 01QS5vpBirFizr28cM8RcULyqMjlILVfJ0gnDxlLiAzjhvDxTcZIs72FA/Zm7J0O 4+xl+4EZTSQDz17YfCm9zss26sJFkQ50WjaIZT3EMqAzkIjfMhFvaitdlbR1OfXr 0xsmoZOhEr8OjM/48jgmTHVfDEP/Llzs3Ai5xZ7ofrYq9VSMMF6NLlmF7oit+7Xx SHVaCauNN5PcXOz1yPv3pAsWPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKfum3X QzrrrwdWHvPbPguPnHxZMB8GA1UdIwQYMBaAFJITtQR6QPI8fGAEgObap6HPf6Lo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzVGMy85QjVEQjVFQTUw QTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThqeDhZQVNBNXRxbm9jOV9v dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTzFCSHBBOGp4OFlBU0E1dHFub2M5X291Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzVGMy85QjVEQjVFQTUwQTgxMUVFQjZERTA5M0ZDNEY5QUUwMi9raE8xQkhwQThq eDhZQVNBNXRxbm9jOV9vdWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7DtkiheMRgUL6Xp6FDS4bjyRpges1VR9e2WdzsCAa92K+0LAQp/Bb K0D6VtNElHjaZCaHCjVsdjIMirno/Nr/rGqy6zmejX5iHgvL3JnYhZx1jEEXXEuI O0ebhkk8VOkB5JJFMthN+g0gq70TTM/xLffwhNdKsOQgA2p+DYikzGf/WYbUfaAy wA7/uJf8pte+bA8KGDY/HHzrJD91rgT2JHRmG/HqshKi4e4Q56j+mfouVoJA8WNH +5Y47FfCr8H97S18z/hFqizPSiivJ48cpv4loDgLETKRSqZ/8PofffCtKU6iL7Y2 FktTH/rSSjUO/1QDoBgoVR418F8PLyPV -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:25 2025 by rpki-client