$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: 8FJRM7ok/L/aiKOBrAtlMvXUdsYUdHxXi7EtcuT9Zc8= Subject key identifier: 91:D6:A4:76:23:6E:43:A4:E1:5E:F2:05:EB:B7:0D:1B:D4:28:62:BE Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: 3B Signing time: Thu 24 Apr 2025 14:16:13 +0000 Manifest this update: Thu 24 Apr 2025 14:16:13 +0000 Manifest next update: Thu 01 May 2025 14:16:13 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: yIrO+ihHlnyvvfZ/HBn8R39B9QyYf+7BKTE5/1vXv28=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: cA2l4Bz4w9KwEr1hYRA0GBgp3+TMBDk54SQcEyXzSVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Apr 24 14:16:13 2025 GMT Not After : May 1 14:16:13 2025 GMT Subject: CN=680a47ad-2ef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3b:63:1d:a1:ae:db:bd:25:d8:7f:18:d0:30: 91:ca:40:a4:bd:7f:88:a3:f1:3f:61:b8:17:33:d0: 1e:e8:8e:79:c8:1b:b2:69:aa:08:ec:45:df:ed:07: 62:dc:d3:e0:8e:07:20:8e:92:39:b8:4a:05:ea:74: 94:9f:c8:8b:f4:15:08:5d:bb:36:b0:dd:4a:ac:94: 2c:e0:30:58:70:c4:f8:e2:5e:6e:15:e3:f6:21:c7: 37:8c:47:7d:91:3e:1a:d4:69:7c:c2:50:2c:46:02: b7:48:46:8b:f9:9b:9c:85:e6:a3:2c:8e:63:3f:9d: 79:01:2e:56:a5:52:c4:2b:8a:37:78:90:47:bd:c9: 56:31:e7:1f:c2:0e:72:87:09:26:03:81:71:62:75: 38:27:f6:31:13:9e:85:8f:cd:6e:71:4e:46:ac:36: 0c:c1:9a:f3:b2:5b:c8:cf:b9:f0:cd:33:43:f3:00: e5:e1:ef:46:27:30:a0:1d:9e:2a:17:f1:95:38:25: bf:17:48:1b:f6:de:c6:e6:a6:d6:f1:40:90:ce:94: ce:be:8c:d5:40:04:d8:27:f1:fe:02:9b:ef:81:03: a7:a8:d6:63:08:dd:33:0a:ac:02:f2:2e:6c:fc:37: d8:a5:7f:01:7c:b4:17:3a:65:19:8c:8f:75:d2:6d: f1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D6:A4:76:23:6E:43:A4:E1:5E:F2:05:EB:B7:0D:1B:D4:28:62:BE X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:4f:9a:45:e1:55:9d:8b:a2:61:2d:07:f1:6d:7a:33:26:22: a4:b5:b3:6c:25:d0:8e:b8:d2:d6:89:61:3c:d3:b7:b4:57:32: 82:d2:b4:a9:c1:8e:52:81:98:51:27:70:ed:75:b0:03:54:8c: 47:28:ee:1e:5c:f2:68:f5:e1:d3:cd:10:27:9c:69:47:75:37: e0:e0:15:23:19:91:70:33:4e:03:d6:d3:03:ce:98:38:4d:6a: b1:ee:1f:d7:8f:af:9d:8c:d6:d5:c3:2a:99:4e:03:60:20:a7: fa:d0:6d:66:7e:e6:17:c1:5b:64:b0:9f:c6:3d:8c:b8:46:6c: 04:e2:9a:45:14:50:0c:f9:d1:5a:d6:a5:c9:d1:de:5f:dd:1c: d0:d0:84:a8:5b:ad:c2:a5:04:7e:23:e4:4e:14:02:ee:bd:5b: 7a:82:fd:63:7e:80:56:58:48:1d:d5:d5:8e:d1:9f:48:09:b7: 23:72:6b:bf:41:36:90:53:0a:a6:47:7a:e3:32:79:dd:ca:f9: 50:a4:8d:ea:24:8c:40:b9:50:d8:9b:cb:53:58:59:cd:66:cc: 2f:62:da:f7:f8:7f:f6:13:10:8f:65:9e:f0:ac:c6:55:95:bc: 5a:f4:55:d3:ad:0d:d9:4d:9b:a6:2d:88:da:c0:34:37:fd:30: 9e:2a:ca:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTYyMTExMC8GA1UEBRMoQTAyNzE5NUE0ODIwRjNENzI2NEE0RDU3RUU5QTlENEMy QTEwQzkyMzAeFw0yNTA0MjQxNDE2MTNaFw0yNTA1MDExNDE2MTNaMBgxFjAUBgNV BAMTDTY4MGE0N2FkLTJlZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmO2Mdoa7bvSXYfxjQMJHKQKS9f4ij8T9huBcz0B7ojnnIG7JpqgjsRd/tB2Lc 0+COByCOkjm4SgXqdJSfyIv0FQhduzaw3UqslCzgMFhwxPjiXm4V4/YhxzeMR32R PhrUaXzCUCxGArdIRov5m5yF5qMsjmM/nXkBLlalUsQrijd4kEe9yVYx5x/CDnKH CSYDgXFidTgn9jETnoWPzW5xTkasNgzBmvOyW8jPufDNM0PzAOXh70YnMKAdnioX 8ZU4Jb8XSBv23sbmptbxQJDOlM6+jNVABNgn8f4Cm++BA6eo1mMI3TMKrALyLmz8 N9ilfwF8tBc6ZRmMj3XSbfF1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkdakdiNu Q6ThXvIF67cNG9QoYr4wHwYDVR0jBBgwFoAUoCcZWkgg89cmSk1X7pqdTCoQySMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNjIxLzM1RURBOTJFQ0Yw RDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlT TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb0NjWldrZ2c4OWNtU2sxWDdwcWRUQ29ReVNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMx NjIxLzM1RURBOTJFQ0YwRDExRUY5MkYxRUMzNkM0RjlBRTAyL29DY1pXa2dnODlj bVNrMVg3cHFkVENvUXlTTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAINPmkXhVZ2LomEtB/FtejMmIqS1s2wl0I640taJYTzTt7RXMoLStKnB jlKBmFEncO11sANUjEco7h5c8mj14dPNECecaUd1N+DgFSMZkXAzTgPW0wPOmDhN arHuH9ePr52M1tXDKplOA2Agp/rQbWZ+5hfBW2Swn8Y9jLhGbATimkUUUAz50VrW pcnR3l/dHNDQhKhbrcKlBH4j5E4UAu69W3qC/WN+gFZYSB3V1Y7Rn0gJtyNya79B NpBTCqZHeuMyed3K+VCkjeokjEC5UNiby1NYWc1mzC9i2vf4f/YTEI9lnvCsxlWV vFr0VdOtDdlNm6YtiNrANDf9MJ4qyms= -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:24 2025 by rpki-client