$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft File: O6JVjKXxoDfZaW9WeugTZ8buNeY.mft (raw, json) Hash identifier: 4u3IYDmdXQBgvwuZ0HXftus3IHL90+9TkmH+0geu1X0= Subject key identifier: FA:9E:47:C9:D9:73:46:2F:69:0E:46:FF:1D:3D:70:81:F5:33:91:C7 Authority key identifier: 3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 Certificate issuer: /CN=A91C022C/serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft Manifest number: 34 Signing time: Fri 25 Apr 2025 06:36:40 +0000 Manifest this update: Fri 25 Apr 2025 06:36:40 +0000 Manifest next update: Fri 02 May 2025 06:36:40 +0000 Files and hashes: 1: O6JVjKXxoDfZaW9WeugTZ8buNeY.crl (hash: h7Hr/fKCAlkOG5CNpuCzAqnRwXouc4TfCePKn5hkaPY=) 2: 372B21F6D4BA11EFA5BAA345C4F9AE02.roa (hash: 0VQHEL6AI7GrKoKG052X6QJW7qwnCtlNzYdHLuxNwGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C022C, serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Validity Not Before: Apr 25 06:36:40 2025 GMT Not After : May 2 06:36:40 2025 GMT Subject: CN=680b2d78-31a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:92:ba:a9:48:f0:28:8c:ec:cd:0e:bd:51:cc: 0b:b1:e0:e7:81:43:4e:c2:2b:96:8e:23:29:25:41: 03:b5:2c:2b:57:04:9a:fd:b7:7d:14:3b:ae:d8:c5: e9:2b:05:fe:a0:df:bf:73:b8:60:8d:1c:89:ca:ff: 72:4c:a1:ce:5d:3b:78:2b:23:ba:a4:51:51:c7:d1: 99:3b:81:59:b6:24:72:f7:db:3f:93:71:8b:c1:ba: a9:fe:82:3f:64:75:a6:67:dd:00:87:fb:4f:a5:29: 65:39:9c:21:21:63:aa:21:48:a9:72:1a:b2:a3:63: ca:f7:cb:3c:8a:1f:9b:06:60:dc:c1:e8:0d:58:d9: 33:29:0f:4c:74:b0:c5:c8:f9:6a:5c:fb:65:d2:ec: d1:f5:4e:7a:14:4c:af:93:6a:28:c2:03:6c:c0:e9: 28:93:d3:a4:73:5a:5e:be:a6:7c:1f:88:43:7b:7a: f2:80:f4:4d:ea:c9:b4:91:00:76:8d:4f:0f:dc:47: 6a:64:21:3f:42:19:40:5d:60:c8:3f:1d:26:7c:e5: ec:7f:ca:bc:3c:6a:d1:9f:17:e4:d5:fd:58:a4:f7: 94:f0:6c:0f:3a:cf:52:f5:bb:b4:17:1f:fb:c8:c1: 37:04:d4:4e:ed:b0:5d:d2:ff:3e:a1:6c:30:85:3a: 97:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:9E:47:C9:D9:73:46:2F:69:0E:46:FF:1D:3D:70:81:F5:33:91:C7 X509v3 Authority Key Identifier: keyid:3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:fb:af:7f:95:dd:8d:0b:bf:8e:74:2d:e0:29:6b:92:3d:a5: bb:4d:27:ba:d1:dc:2b:3c:0a:41:bb:ef:0f:ed:3e:c3:52:a0: 09:42:89:77:50:f1:4c:80:9f:22:d0:3e:69:5d:0b:e1:0d:1c: 90:56:a7:e2:0d:d9:86:38:3f:c9:82:9a:ef:4f:cd:0e:86:1b: 66:32:d8:95:29:e0:04:d3:a7:cf:76:5d:d2:e1:73:04:f5:ae: 15:50:fc:a2:b3:60:3b:b7:2f:c2:60:37:88:ff:f8:b1:8e:b1: d7:b3:89:50:48:07:2f:3f:69:d2:29:0b:4c:33:26:35:4b:80: f7:68:93:19:2e:cd:19:19:ac:ec:55:d7:93:e0:8e:76:77:14: 5d:13:13:22:c9:f2:4b:38:c3:37:f3:63:22:b6:2e:cc:ec:4f: 2f:2d:f0:37:69:84:08:bc:58:57:bd:02:52:8f:da:be:f2:50: 90:f4:6f:24:b7:76:a5:77:d7:2f:af:f6:98:48:b2:44:e9:d4: 53:8b:8c:f0:95:b0:08:ee:e5:d5:43:4d:0d:05:cc:a6:b7:91: 53:0f:ab:f7:06:1f:64:7e:7d:fa:5b:d4:8a:7c:ae:5e:11:ba: db:37:83:51:fe:70:9f:28:e6:31:a7:76:6a:da:60:bc:ac:a2: 2c:ea:2c:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDIyQzExMC8GA1UEBRMoM0JBMjU1OENBNUYxQTAzN0Q5Njk2RjU2N0FFODEzNjdD NkVFMzVFNjAeFw0yNTA0MjUwNjM2NDBaFw0yNTA1MDIwNjM2NDBaMBgxFjAUBgNV BAMTDTY4MGIyZDc4LTMxYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2krqpSPAojOzNDr1RzAux4OeBQ07CK5aOIyklQQO1LCtXBJr9t30UO67Yxekr Bf6g379zuGCNHInK/3JMoc5dO3grI7qkUVHH0Zk7gVm2JHL32z+TcYvBuqn+gj9k daZn3QCH+0+lKWU5nCEhY6ohSKlyGrKjY8r3yzyKH5sGYNzB6A1Y2TMpD0x0sMXI +Wpc+2XS7NH1TnoUTK+TaijCA2zA6SiT06RzWl6+pnwfiEN7evKA9E3qybSRAHaN Tw/cR2pkIT9CGUBdYMg/HSZ85ex/yrw8atGfF+TV/Vik95TwbA86z1L1u7QXH/vI wTcE1E7tsF3S/z6hbDCFOpdLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+p5Hydlz Ri9pDkb/HT1wgfUzkccwHwYDVR0jBBgwFoAUO6JVjKXxoDfZaW9WeugTZ8buNeYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwMjJDL0IxQzE4MjMwRDRC OTExRUY5RkE4RTI0RkM0RjlBRTAyL082SlZqS1h4b0RmWmFXOVdldWdUWjhidU5l WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTzZKVmpLWHhvRGZaYVc5V2V1Z1RaOGJ1TmVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMw MjJDL0IxQzE4MjMwRDRCOTExRUY5RkE4RTI0RkM0RjlBRTAyL082SlZqS1h4b0Rm WmFXOVdldWdUWjhidU5lWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAND7r3+V3Y0Lv450LeApa5I9pbtNJ7rR3Cs8CkG77w/tPsNSoAlCiXdQ 8UyAnyLQPmldC+ENHJBWp+IN2YY4P8mCmu9PzQ6GG2Yy2JUp4ATTp892XdLhcwT1 rhVQ/KKzYDu3L8JgN4j/+LGOsdeziVBIBy8/adIpC0wzJjVLgPdokxkuzRkZrOxV 15PgjnZ3FF0TEyLJ8ks4wzfzYyK2LszsTy8t8DdphAi8WFe9AlKP2r7yUJD0byS3 dqV31y+v9phIskTp1FOLjPCVsAju5dVDTQ0FzKa3kVMPq/cGH2R+ffpb1Ip8rl4R uts3g1H+cJ8o5jGndmraYLysoizqLEI= -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:15 2025 by rpki-client