$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft File: o222tflxI3VeVEH6xWqmu6BbCAo.mft (raw, json) Hash identifier: Jx0cttoTf+VUwEbnEfn6fQSy1Ip+DRUofXGs787d+qQ= Subject key identifier: 03:85:F9:7E:57:DF:14:98:7E:2E:BA:53:62:38:48:4E:14:E8:44:D7 Authority key identifier: A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A Certificate issuer: /CN=A91BD4DF/serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft Manifest number: A1 Signing time: Sat 03 May 2025 05:36:58 +0000 Manifest this update: Sat 03 May 2025 05:36:58 +0000 Manifest next update: Sat 10 May 2025 05:36:58 +0000 Files and hashes: 1: o222tflxI3VeVEH6xWqmu6BbCAo.crl (hash: HFDI+SWBOypB41EvpTvasW/ygpsifgksaZemDyl/6rs=) 2: 4136642C39AA11EF933F9583C4F9AE02.roa (hash: +fFDWaDnFu7mpfAvBElCeG8uNXNIs5iwZjBDkX/SJz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 05:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD4DF, serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Validity Not Before: May 3 05:36:58 2025 GMT Not After : May 10 05:36:58 2025 GMT Subject: CN=6815ab7a-ba91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:63:60:b4:8b:a8:c0:36:f6:20:62:f9:b8:e8: bf:10:63:6c:9d:b1:28:af:21:e0:8b:c3:f9:16:60: f8:a6:26:bd:86:0a:8a:71:34:95:d6:80:90:16:6d: c3:77:72:23:b6:f2:f8:17:b1:b4:3a:ee:9f:64:ad: ef:4c:4f:07:c7:78:d0:84:98:8f:af:59:26:be:26: da:b5:b2:41:f1:30:ac:61:3a:62:b7:84:90:69:5d: 5e:82:29:6c:cf:54:f4:ed:bc:eb:d3:b7:3f:83:82: 62:91:90:46:86:f5:6c:2b:7a:15:81:cd:18:0c:01: be:f3:fe:ff:dc:b1:40:e1:2d:08:90:92:86:13:52: 8b:99:a1:7f:83:a6:ac:a9:a8:7c:f3:be:4e:63:81: 03:a2:93:4e:59:55:f6:4d:d8:8c:e1:f1:16:fe:b5: 01:00:4b:33:82:94:69:ef:2a:94:59:42:f9:9b:03: e8:0b:a1:f8:f3:30:56:d6:51:34:dd:dd:00:68:11: bf:ec:97:a6:ee:bc:ce:2d:24:32:0f:d0:87:0d:d0: 43:63:cc:78:95:6f:32:a6:ae:55:29:8f:f8:27:92: 05:0b:2a:ed:f9:a2:b3:73:84:37:41:19:88:ed:6f: f1:60:fb:6c:d3:14:a2:12:02:78:44:e8:e8:67:b9: ac:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:85:F9:7E:57:DF:14:98:7E:2E:BA:53:62:38:48:4E:14:E8:44:D7 X509v3 Authority Key Identifier: keyid:A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:82:1e:2a:83:91:33:d1:0c:f5:e7:bb:b7:3f:6b:93:6f:f9: 77:16:34:f2:d3:38:8f:0d:a7:4a:d8:9b:09:12:1a:89:d2:ee: 5f:60:ef:77:39:6c:83:30:84:fe:9a:37:df:c6:f0:a1:af:50: 1b:02:46:34:5f:55:a7:0e:41:c1:3b:3f:ee:aa:89:b5:8a:55: 4c:66:d8:49:50:a9:47:0a:62:16:63:74:01:19:94:19:71:a0: d3:d3:06:28:78:6a:4f:a8:95:3e:ce:6e:e5:0e:51:94:23:03: b4:bb:18:fe:42:4c:de:19:16:10:aa:a0:60:f1:f6:90:e8:2c: a1:d3:26:e5:4c:10:a1:55:37:6e:da:0f:92:d1:47:6d:0b:b2: d0:55:d1:cc:ea:d1:47:05:7d:72:bf:20:b4:f4:27:d6:68:1e: ce:54:7c:a5:60:73:7d:d0:a5:26:6f:4b:87:a2:76:d2:1c:76: 02:d8:09:3e:94:17:83:dd:4b:45:5d:64:18:4f:4a:b8:d8:ce: 1b:bb:3c:8b:90:b1:0f:f5:02:3c:1e:78:df:19:e8:38:93:e3: eb:1e:75:8c:6d:7f:a6:0a:51:85:e0:f8:85:1a:1a:32:7c:7b: 8a:ce:af:bc:1a:21:da:7e:47:15:db:ee:b5:2e:ee:15:6b:3d: e1:a5:3c:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ0REYxMTAvBgNVBAUTKEEzNkRCNkI1Rjk3MTIzNzU1RTU0NDFGQUM1NkFBNkJC QTA1QjA4MEEwHhcNMjUwNTAzMDUzNjU4WhcNMjUwNTEwMDUzNjU4WjAYMRYwFAYD VQQDEw02ODE1YWI3YS1iYTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WNgtIuowDb2IGL5uOi/EGNsnbEoryHgi8P5FmD4pia9hgqKcTSV1oCQFm3D d3IjtvL4F7G0Ou6fZK3vTE8Hx3jQhJiPr1kmvibatbJB8TCsYTpit4SQaV1egils z1T07bzr07c/g4JikZBGhvVsK3oVgc0YDAG+8/7/3LFA4S0IkJKGE1KLmaF/g6as qah8875OY4EDopNOWVX2TdiM4fEW/rUBAEszgpRp7yqUWUL5mwPoC6H48zBW1lE0 3d0AaBG/7Jem7rzOLSQyD9CHDdBDY8x4lW8ypq5VKY/4J5IFCyrt+aKzc4Q3QRmI 7W/xYPts0xSiEgJ4ROjoZ7mscwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOF+X5X 3xSYfi66U2I4SE4U6ETXMB8GA1UdIwQYMBaAFKNttrX5cSN1XlRB+sVqprugWwgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDRERi8zMTBEMzU0MjM5 OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkzVmVWRUg2eFdxbXU2QmJD QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yMjJ0Zmx4STNWZVZFSDZ4V3FtdTZCYkNBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDRERi8zMTBEMzU0MjM5OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkz VmVWRUg2eFdxbXU2QmJDQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBagh4qg5Ez0Qz157u3P2uTb/l3FjTy0ziPDadK2JsJEhqJ0u5fYO93 OWyDMIT+mjffxvChr1AbAkY0X1WnDkHBOz/uqom1ilVMZthJUKlHCmIWY3QBGZQZ caDT0wYoeGpPqJU+zm7lDlGUIwO0uxj+QkzeGRYQqqBg8faQ6Cyh0yblTBChVTdu 2g+S0UdtC7LQVdHM6tFHBX1yvyC09CfWaB7OVHylYHN90KUmb0uHonbSHHYC2Ak+ lBeD3UtFXWQYT0q42M4buzyLkLEP9QI8HnjfGeg4k+PrHnWMbX+mClGF4PiFGhoy fHuKzq+8GiHafkcV2+61Lu4Vaz3hpTyN -----END CERTIFICATE-----Generated at Sat May 3 08:08:42 2025 by rpki-client