$ rpki-client -vvf rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft File: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft (raw, json) Hash identifier: PwPrUFUR2y34/+DVNd0xpR+0glYcxkFxWNN+SUVy1QE= Subject key identifier: DB:9D:E4:CB:F5:39:00:B2:A8:1A:84:BC:D5:FA:4B:18:AD:7E:69:5F Authority key identifier: AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 Certificate issuer: /CN=A91702B9/serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Certificate serial: 0327 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft Manifest number: 0320 Signing time: Fri 25 Apr 2025 00:55:37 +0000 Manifest this update: Fri 25 Apr 2025 00:55:36 +0000 Manifest next update: Fri 02 May 2025 00:55:36 +0000 Files and hashes: 1: rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl (hash: JhhQQIZBU9Pp72sytO0wP1wlLwYQ6eVakkHollp+iOI=) 2: FC159BECF4D911EFB4F5FC16C4F9AE02.roa (hash: EZLa5tftXUFUf01Wk2bJeB4vL11mjoEDS6Q4R3zkR8A=) 3: A047A07AD56811EFB57A5D33C4F9AE02.roa (hash: sculBNu+C3bTcMWuMUqGiXBXDN/H8rYURoXjaVPMA2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 807 (0x327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91702B9, serialNumber=ACE2C4CCB089D21B370454B00E6B593AF28862F6 Validity Not Before: Apr 25 00:55:36 2025 GMT Not After : May 2 00:55:36 2025 GMT Subject: CN=680add89-646b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b9:02:13:85:f3:3f:50:55:80:de:2a:71:02: 34:88:97:40:58:d7:ce:c1:55:d8:d8:1b:f2:a3:6a: a1:fe:18:a5:99:02:6c:83:82:46:09:d4:1a:67:dc: 72:9c:31:33:ca:83:db:30:6f:61:06:38:00:6f:13: 20:d4:a5:3a:fc:e3:44:51:4e:ae:be:c4:1c:26:01: 64:47:dc:09:78:21:50:7a:7a:ea:a9:3b:5a:3f:d3: f6:af:7b:75:0c:6d:fc:b5:19:ac:b1:dc:d2:0a:1c: 87:b4:87:e8:94:cb:bc:3d:f0:80:55:1c:ad:a0:fc: 55:a4:9d:56:4d:fb:db:15:45:3a:a8:2a:e1:f1:94: be:e5:b5:86:0d:5d:df:d5:ab:e4:85:c9:ef:32:c9: ad:2e:fe:c0:af:5c:78:84:c7:a6:71:36:05:a7:c0: 67:39:f0:63:83:d2:6d:26:9c:8f:58:c7:26:5b:c8: eb:d2:df:1d:28:8c:d3:a2:f4:fc:8e:45:96:8b:55: ff:92:5a:83:88:19:ae:f7:65:1f:71:dc:da:8e:06: fa:52:54:8a:b6:aa:db:b8:c9:bb:f8:22:2c:6d:e5: da:b2:f0:27:99:4e:ab:41:3b:86:b9:f2:12:25:07: 4e:ef:bf:e0:59:2b:c2:d7:c7:aa:cc:f9:96:0d:55: 12:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9D:E4:CB:F5:39:00:B2:A8:1A:84:BC:D5:FA:4B:18:AD:7E:69:5F X509v3 Authority Key Identifier: keyid:AC:E2:C4:CC:B0:89:D2:1B:37:04:54:B0:0E:6B:59:3A:F2:88:62:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91702B9/3B72EE90C60511ECAB74D962C4F9AE02/rOLEzLCJ0hs3BFSwDmtZOvKIYvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:6a:f7:6a:17:86:b9:1b:98:af:d5:22:5b:36:ad:f3:44:79: bd:84:37:f4:3b:6a:c3:da:e3:24:d5:b6:59:d0:bc:81:6c:e6: f7:d6:de:7f:d1:4e:12:d2:6f:6b:d5:13:c0:d1:5f:03:6c:a7: bb:63:0d:32:a1:3b:15:ff:c1:af:7c:ac:5e:f2:51:1e:43:5a: ee:60:2e:a8:ab:b1:38:19:a3:4d:90:bb:97:f5:de:45:f8:7d: a5:bb:3a:4c:51:51:6c:69:5b:68:d3:0a:e0:53:ff:08:3d:57: 26:f7:7d:ae:e0:3e:72:a1:9a:44:70:5a:a9:6c:5b:0b:af:1c: 4b:7c:e7:c7:f5:9a:3a:58:81:2f:71:40:ce:3c:1d:0c:8e:69: ca:13:6d:d7:44:dd:dc:57:dc:db:17:f2:4c:f4:f0:6d:57:f1: 55:89:8a:d5:d7:7e:08:8f:5f:ac:2a:67:a2:f6:47:ec:25:fb: 17:27:7f:20:99:25:a4:fc:67:26:3d:4d:d1:bc:a5:b0:37:75: ac:0b:7e:03:94:ac:b9:1e:ff:98:2e:b1:40:52:eb:a5:5d:7e: 59:da:9a:77:11:ea:ef:1a:f3:fb:a9:29:8a:17:88:58:7a:89: c4:41:79:83:e7:60:df:95:e1:61:db:d2:c1:c6:cc:b5:48:19: f2:17:80:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAyQjkxMTAvBgNVBAUTKEFDRTJDNENDQjA4OUQyMUIzNzA0NTRCMDBFNkI1OTNB RjI4ODYyRjYwHhcNMjUwNDI1MDA1NTM2WhcNMjUwNTAyMDA1NTM2WjAYMRYwFAYD VQQDEw02ODBhZGQ4OS02NDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrkCE4XzP1BVgN4qcQI0iJdAWNfOwVXY2Bvyo2qh/hilmQJsg4JGCdQaZ9xy nDEzyoPbMG9hBjgAbxMg1KU6/ONEUU6uvsQcJgFkR9wJeCFQenrqqTtaP9P2r3t1 DG38tRmssdzSChyHtIfolMu8PfCAVRytoPxVpJ1WTfvbFUU6qCrh8ZS+5bWGDV3f 1avkhcnvMsmtLv7Ar1x4hMemcTYFp8BnOfBjg9JtJpyPWMcmW8jr0t8dKIzTovT8 jkWWi1X/klqDiBmu92Ufcdzajgb6UlSKtqrbuMm7+CIsbeXasvAnmU6rQTuGufIS JQdO77/gWSvC18eqzPmWDVUSIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNud5Mv1 OQCyqBqEvNX6SxitfmlfMB8GA1UdIwQYMBaAFKzixMywidIbNwRUsA5rWTryiGL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDJCOS8zQjcyRUU5MEM2 MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBoczNCRlN3RG10Wk92S0lZ dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPTEV6TENKMGhzM0JGU3dEbXRaT3ZLSVl2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDJCOS8zQjcyRUU5MEM2MDUxMUVDQUI3NEQ5NjJDNEY5QUUwMi9yT0xFekxDSjBo czNCRlN3RG10Wk92S0lZdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuavdqF4a5G5iv1SJbNq3zRHm9hDf0O2rD2uMk1bZZ0LyBbOb31t5/ 0U4S0m9r1RPA0V8DbKe7Yw0yoTsV/8GvfKxe8lEeQ1ruYC6oq7E4GaNNkLuX9d5F +H2luzpMUVFsaVto0wrgU/8IPVcm932u4D5yoZpEcFqpbFsLrxxLfOfH9Zo6WIEv cUDOPB0MjmnKE23XRN3cV9zbF/JM9PBtV/FViYrV134Ij1+sKmei9kfsJfsXJ38g mSWk/GcmPU3RvKWwN3WsC34DlKy5Hv+YLrFAUuulXX5Z2pp3EervGvP7qSmKF4hY eonEQXmD52DfleFh29LBxsy1SBnyF4Dr -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:52 2025 by rpki-client