$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: BGezAO/k0q1aUqnar1LJbovh583Fg0qG2HP3Z8LHnxc= Subject key identifier: E5:2A:6B:0C:24:3C:1C:A0:EA:A2:4E:90:D2:BB:24:33:C4:C6:8E:B4 Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 08F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 08EC Signing time: Thu 12 Jun 2025 20:09:41 +0000 Manifest this update: Thu 12 Jun 2025 20:09:41 +0000 Manifest next update: Thu 19 Jun 2025 20:09:41 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: LQUb36o93zA3Ah9Pho98kcZcnLIXXR/r3TSc4W2K2is=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: 3hcEUgYqoshOk8lFFnh68Ppk5C9DLTGbNkZXNe5ZLqA=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: ao7owdTBxv72fQFQJlEFwxw2v4nLgAcrWGOJHUBmOYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2295 (0x8f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Jun 12 20:09:41 2025 GMT Not After : Jun 19 20:09:41 2025 GMT Subject: CN=684b3405-c2aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:19:a9:3f:30:d1:40:ed:14:b3:e4:62:86:4e: 4c:64:d1:0c:f1:5e:06:4c:4e:80:ef:cd:98:62:59: 28:d7:55:b7:bd:e3:07:82:ee:01:ff:6b:c8:d4:cc: 0f:f8:50:49:11:cd:73:6f:3e:1f:53:e0:0b:06:55: 5a:ef:37:51:c9:82:eb:67:53:8b:f1:c6:b3:47:88: 88:b3:20:ce:18:f7:de:c2:13:b7:1c:bd:08:11:f8: 5b:8d:5e:fa:6c:86:35:aa:75:9d:30:82:eb:59:03: 31:38:4a:f0:66:d1:cc:a4:14:9f:93:dd:4a:d5:e2: e6:11:05:6b:4d:41:ec:29:6c:27:3c:9e:26:29:81: 86:06:07:62:71:55:d6:70:4f:58:ac:24:6f:55:98: 1f:f6:41:f6:ac:6c:20:1b:05:27:f1:47:29:40:87: ff:70:34:6e:14:86:ff:a3:29:2a:51:3e:9d:10:f1: 71:53:bf:8c:a4:7e:2d:da:9c:4d:1c:14:87:2f:99: b2:8e:f2:28:37:63:1f:7a:a5:ba:c7:cb:d3:b7:56: de:09:f2:cf:eb:98:23:51:76:37:af:c6:ae:ca:d6: 4c:9d:34:d8:58:b1:44:c5:76:67:c0:76:6b:28:4e: ca:31:29:d1:02:0b:45:e1:70:94:67:50:72:6a:59: c6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2A:6B:0C:24:3C:1C:A0:EA:A2:4E:90:D2:BB:24:33:C4:C6:8E:B4 X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:6a:73:15:1f:cb:9e:1b:a0:02:e6:f7:31:9b:0e:0a:a8:31: 2c:13:d9:77:15:90:0f:da:0b:7b:0e:bf:a3:fb:35:c7:ca:0f: 7f:b8:e7:63:df:b2:54:5e:05:4b:9e:78:e1:a5:68:5c:91:73: f0:ed:c7:39:60:2a:1f:0f:a6:7c:4d:a4:76:be:56:e2:9d:31: 3d:16:1f:a4:60:54:f9:b7:1e:d7:41:1c:51:e2:fe:55:d2:07: 81:74:f5:c0:4a:de:94:16:0c:e3:53:6b:ed:ea:d9:6d:f6:c8: 56:23:ee:70:c1:0c:23:e2:38:4e:c2:15:d3:b1:3f:a7:2e:50: 8d:2b:02:0a:2b:f9:0a:36:95:69:f5:74:1a:fc:0f:2a:86:4c: 9a:80:4c:e7:13:c6:6f:02:3b:cc:0e:6d:7a:d3:be:79:e9:c4: c0:b4:7d:fc:4c:9d:4b:69:69:a5:24:ce:81:dc:cb:5b:d7:da: d1:e2:38:14:d7:c1:4e:c9:24:56:a0:df:41:e6:52:f6:ed:ee: da:5d:4c:52:38:93:4f:88:11:5a:1e:f3:2b:d8:c7:2c:de:19: fe:92:07:b5:9d:12:20:63:6a:84:ae:b9:f2:11:71:2c:29:60: 0a:99:d5:3a:22:4b:80:e8:75:51:2a:20:50:65:80:a4:22:c2: 80:6e:f0:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjUwNjEyMjAwOTQxWhcNMjUwNjE5MjAwOTQxWjAYMRYwFAYD VQQDEw02ODRiMzQwNS1jMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmhmpPzDRQO0Us+Rihk5MZNEM8V4GTE6A782YYlko11W3veMHgu4B/2vI1MwP +FBJEc1zbz4fU+ALBlVa7zdRyYLrZ1OL8cazR4iIsyDOGPfewhO3HL0IEfhbjV76 bIY1qnWdMILrWQMxOErwZtHMpBSfk91K1eLmEQVrTUHsKWwnPJ4mKYGGBgdicVXW cE9YrCRvVZgf9kH2rGwgGwUn8UcpQIf/cDRuFIb/oykqUT6dEPFxU7+MpH4t2pxN HBSHL5myjvIoN2MfeqW6x8vTt1beCfLP65gjUXY3r8auytZMnTTYWLFExXZnwHZr KE7KMSnRAgtF4XCUZ1ByalnGWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUqawwk PByg6qJOkNK7JDPExo60MB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDanMVH8ueG6AC5vcxmw4KqDEsE9l3FZAP2gt7Dr+j+zXHyg9/uOdj 37JUXgVLnnjhpWhckXPw7cc5YCofD6Z8TaR2vlbinTE9Fh+kYFT5tx7XQRxR4v5V 0geBdPXASt6UFgzjU2vt6tlt9shWI+5wwQwj4jhOwhXTsT+nLlCNKwIKK/kKNpVp 9XQa/A8qhkyagEznE8ZvAjvMDm1607556cTAtH38TJ1LaWmlJM6B3Mtb19rR4jgU 18FOySRWoN9B5lL27e7aXUxSOJNPiBFaHvMr2Mcs3hn+kge1nRIgY2qErrnyEXEs KWAKmdU6IkuA6HVRKiBQZYCkIsKAbvAe -----END CERTIFICATE-----Generated at Sat Jun 14 19:22:05 2025 by rpki-client