$ rpki-client -vvf rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft File: OIX50v0IYCg7VTgfHE9KWjoe7z8.mft (raw, json) Hash identifier: /wePjDf5kpEb1vPpKk9WcdrsFAUUCHMyyaydaOo7Eoo= Subject key identifier: 31:9C:1A:6F:F6:68:35:BF:35:88:70:0C:AB:45:30:65:60:31:65:C2 Authority key identifier: 38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F Certificate issuer: /CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft Manifest number: BA Signing time: Fri 25 Apr 2025 04:57:00 +0000 Manifest this update: Fri 25 Apr 2025 04:56:59 +0000 Manifest next update: Fri 02 May 2025 04:56:59 +0000 Files and hashes: 1: OIX50v0IYCg7VTgfHE9KWjoe7z8.crl (hash: Qjsk6MjsRJIoHqUkz0fQr3lURXAzLaCeNRcgRyux+sc=) 2: 744D8A1005EE11EF851FA42FC4F9AE02.roa (hash: g7/I1107TKCwjJnWd7arEQMGj8EBr7MRJOF1ZUaFXNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:56:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847C2, serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Validity Not Before: Apr 25 04:56:59 2025 GMT Not After : May 2 04:56:59 2025 GMT Subject: CN=680b161b-3bee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:96:61:74:83:45:2e:55:83:ff:b1:39:46:f6: cc:05:e3:40:40:bd:23:71:dd:4d:bf:9a:75:d2:8c: 17:22:c4:fd:e4:07:9b:bf:e7:6c:e9:7f:3a:cf:b3: 7d:d8:01:c1:57:f7:09:f6:b0:1a:53:fb:fc:bb:e6: f5:65:48:21:f5:98:46:2f:15:f4:6c:6e:1e:19:f0: f6:2d:e6:35:54:b6:f9:fb:fc:25:fa:10:59:c5:29: 24:e9:22:55:53:09:a9:1f:11:a6:af:45:ec:dd:d7: 85:e1:e7:e1:12:98:72:c5:83:0c:74:25:f1:b5:fc: 66:23:c5:0f:be:2b:55:45:bc:3c:46:74:57:de:bc: 07:be:79:07:fa:95:d4:70:ef:ab:03:ac:4c:c6:bc: 68:89:9e:7a:97:33:03:68:ce:c7:b4:70:19:34:57: 97:bd:d0:28:f2:a9:76:2b:dd:1d:73:57:7c:41:a9: fe:d6:82:83:05:ae:02:41:91:49:f3:f6:9e:54:c0: 41:de:e0:ec:47:ba:a3:b4:b1:48:70:f6:dc:52:27: 1d:77:47:75:12:91:40:ca:ee:1e:3b:ad:94:df:c3: 63:8a:9c:5a:a8:8c:1b:9a:31:ac:c8:89:5b:72:ba: f3:3b:44:ec:7b:db:44:b6:fe:3c:26:5a:2c:95:71: 04:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9C:1A:6F:F6:68:35:BF:35:88:70:0C:AB:45:30:65:60:31:65:C2 X509v3 Authority Key Identifier: keyid:38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:f3:34:ee:7e:48:63:fc:77:7e:b7:d6:10:04:35:5c:f8:08: 29:1b:fc:75:13:76:9a:06:46:55:14:ee:b3:d1:01:b7:16:3b: 4d:fe:27:58:0f:e4:e4:99:e0:40:27:64:29:42:52:88:ef:13: 4a:91:0c:60:a2:85:06:a5:4e:e6:6b:32:cb:4f:fe:22:20:c6: db:8e:9d:cf:b3:c1:df:1a:f6:76:66:26:e1:a2:9b:74:c8:19: 6f:d6:bf:66:98:c4:7b:7a:ce:ff:d3:59:b9:86:0b:f1:e6:1c: c9:29:c8:3e:c4:3e:aa:d4:e8:56:83:32:eb:6f:41:f6:ba:fe: 58:a2:15:98:18:dd:c0:35:32:4a:12:2b:20:6f:ba:42:d0:ca: ad:9f:c5:bc:ee:05:dd:f7:2f:a0:cd:61:85:fd:d8:f6:a3:bb: 41:62:54:78:98:20:84:38:42:85:3e:7c:e3:88:42:10:e3:1e: 63:e4:75:f3:fc:f5:e9:64:47:0f:9a:8e:99:fb:da:13:a6:dd: 75:8c:c6:66:3e:f4:58:90:6b:ef:2b:ad:19:86:30:81:00:9f: b7:80:02:44:c1:62:27:12:80:12:63:f7:b1:56:c4:60:8c:fd: 03:e6:d9:01:27:8c:0c:13:5e:d2:14:25:53:4c:83:02:3e:ee: fd:88:bf:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QzIxMTAvBgNVBAUTKDM4ODVGOUQyRkQwODYwMjgzQjU1MzgxRjFDNEY0QTVB M0ExRUVGM0YwHhcNMjUwNDI1MDQ1NjU5WhcNMjUwNTAyMDQ1NjU5WjAYMRYwFAYD VQQDEw02ODBiMTYxYi0zYmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ZZhdINFLlWD/7E5RvbMBeNAQL0jcd1Nv5p10owXIsT95Aebv+ds6X86z7N9 2AHBV/cJ9rAaU/v8u+b1ZUgh9ZhGLxX0bG4eGfD2LeY1VLb5+/wl+hBZxSkk6SJV UwmpHxGmr0Xs3deF4efhEphyxYMMdCXxtfxmI8UPvitVRbw8RnRX3rwHvnkH+pXU cO+rA6xMxrxoiZ56lzMDaM7HtHAZNFeXvdAo8ql2K90dc1d8Qan+1oKDBa4CQZFJ 8/aeVMBB3uDsR7qjtLFIcPbcUicdd0d1EpFAyu4eO62U38NjipxaqIwbmjGsyIlb crrzO0Tse9tEtv48JloslXEE+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGcGm/2 aDW/NYhwDKtFMGVgMWXCMB8GA1UdIwQYMBaAFDiF+dL9CGAoO1U4HxxPSlo6Hu8/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdDMi9COTJCRkFENDA1 RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlDZzdWVGdmSEU5S1dqb2U3 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JWDUwdjBJWUNnN1ZUZ2ZIRTlLV2pvZTd6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdDMi9COTJCRkFENDA1RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlD ZzdWVGdmSEU5S1dqb2U3ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj8zTufkhj/Hd+t9YQBDVc+AgpG/x1E3aaBkZVFO6z0QG3FjtN/idY D+TkmeBAJ2QpQlKI7xNKkQxgooUGpU7mazLLT/4iIMbbjp3Ps8HfGvZ2Zibhopt0 yBlv1r9mmMR7es7/01m5hgvx5hzJKcg+xD6q1OhWgzLrb0H2uv5YohWYGN3ANTJK Eisgb7pC0Mqtn8W87gXd9y+gzWGF/dj2o7tBYlR4mCCEOEKFPnzjiEIQ4x5j5HXz /PXpZEcPmo6Z+9oTpt11jMZmPvRYkGvvK60ZhjCBAJ+3gAJEwWInEoASY/exVsRg jP0D5tkBJ4wME17SFCVTTIMCPu79iL++ -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:57 2025 by rpki-client