$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: 9U1p1PH0Gig+V40BcgebWDj1C/cRaLMaLf+PGNxm9B4= Subject key identifier: 6D:B1:9D:E1:6F:66:20:D2:E4:91:DE:F5:94:F2:3E:CD:AC:95:D7:00 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 3551 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 34F2 Signing time: Fri 02 May 2025 14:49:43 +0000 Manifest this update: Fri 02 May 2025 14:49:42 +0000 Manifest next update: Fri 09 May 2025 14:49:42 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: hsUoyQL6/uEoTVFgdpJkGmt/I+bLW+yAs2DrldDBaVc=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: K9GG+06i99foR/2RXGf0/I8Kvx2roZu5heq1VZdQ+OI=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: VKqO6rf4s4pSFyfrGnTR87o9xy4m/ObtM6kQrJ3USOc=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: JsgxM7O87UBNAKRhO7z2ipB7o5ZRGqkbp9Qr0swNUZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 14:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13649 (0x3551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: May 2 14:49:42 2025 GMT Not After : May 9 14:49:42 2025 GMT Subject: CN=6814db86-c7ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:db:17:2f:f2:4b:61:35:48:0d:ef:51:62:30: fa:91:23:f9:78:c9:75:97:29:69:37:b6:bf:57:69: 8d:90:da:94:ba:6d:8e:fd:2e:b5:ab:4b:81:7a:a6: 1c:b1:66:2f:f3:34:0d:26:50:10:a5:25:2b:68:48: 4e:2e:e6:af:7f:39:7d:45:83:fa:2f:5d:d1:d3:be: 67:d3:d0:7c:de:39:cd:16:21:d4:d6:5c:fc:d8:fd: d2:4a:cf:22:0c:91:16:7e:83:76:60:74:37:8e:83: e9:3f:53:43:80:60:9f:42:98:47:de:a2:24:96:26: df:a7:87:a3:0b:1a:8c:03:94:b8:6d:ca:5f:c6:6a: b4:df:f8:d6:5d:02:07:aa:a5:9e:04:54:a5:88:6c: a2:cb:64:96:53:52:91:17:dd:ca:c9:af:84:65:5c: 62:8f:12:8e:e5:e0:db:03:d5:89:a2:0d:7f:03:e5: 4c:24:45:1e:f0:a6:9b:47:7b:b2:b7:88:fa:c2:4f: 3a:30:08:7a:c2:7b:8a:17:66:ce:5b:16:d2:35:e4: 4d:9f:b8:df:54:2e:20:fa:ed:58:66:cb:fb:40:8a: e5:68:02:6c:7f:75:02:a5:24:d7:59:24:c9:10:3c: 0d:55:58:0e:50:4a:67:d2:50:fd:d7:df:1c:14:5d: fa:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B1:9D:E1:6F:66:20:D2:E4:91:DE:F5:94:F2:3E:CD:AC:95:D7:00 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:91:3e:2f:7b:b7:3a:39:df:81:ae:01:06:d5:42:c6:bc:ad: 67:e7:31:27:20:c5:f5:98:ca:37:6a:db:28:aa:59:bb:e6:30: f0:21:1d:57:1d:16:a7:a8:ea:73:42:de:83:86:5b:ad:56:4a: 5e:99:b6:f9:aa:64:fa:c2:c0:a6:fc:16:92:58:5d:a4:83:a4: ed:8b:f3:d7:02:9e:ba:be:4c:02:16:d9:65:c7:d8:67:c7:e8: ed:0e:0e:79:c5:5b:b6:61:f0:0e:11:05:2b:bc:c8:2f:dc:02: 89:2a:f0:f2:82:77:36:28:08:b2:1e:a0:ef:62:94:dc:b1:1a: 5d:d4:5b:75:e5:67:ce:eb:18:b8:f0:40:b5:ed:40:1f:0c:02: b4:02:e2:e3:97:6a:23:45:b2:cd:31:e7:0d:01:fb:48:72:c7: cd:39:5c:17:f2:10:cf:0c:fd:c3:3a:54:0e:00:b8:af:69:6a: 40:c5:86:29:e6:f7:b9:0b:dd:ec:5a:f2:0d:74:14:9b:ad:c9: e0:eb:00:e5:f2:fb:ee:b6:54:c6:c7:db:5d:a6:5d:c4:e3:a1: 04:ae:f3:a4:b1:f4:a1:a2:c7:96:b0:02:b9:fb:89:68:cf:09: a1:e8:78:69:91:3a:87:8e:dc:ac:c8:0c:f8:a6:7d:23:bd:50: 2f:cc:80:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUwNTAyMTQ0OTQyWhcNMjUwNTA5MTQ0OTQyWjAYMRYwFAYD VQQDEw02ODE0ZGI4Ni1jN2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNsXL/JLYTVIDe9RYjD6kSP5eMl1lylpN7a/V2mNkNqUum2O/S61q0uBeqYc sWYv8zQNJlAQpSUraEhOLuavfzl9RYP6L13R075n09B83jnNFiHU1lz82P3SSs8i DJEWfoN2YHQ3joPpP1NDgGCfQphH3qIklibfp4ejCxqMA5S4bcpfxmq03/jWXQIH qqWeBFSliGyiy2SWU1KRF93Kya+EZVxijxKO5eDbA9WJog1/A+VMJEUe8KabR3uy t4j6wk86MAh6wnuKF2bOWxbSNeRNn7jfVC4g+u1YZsv7QIrlaAJsf3UCpSTXWSTJ EDwNVVgOUEpn0lD9198cFF36ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2xneFv ZiDS5JHe9ZTyPs2sldcAMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWkT4ve7c6Od+BrgEG1ULGvK1n5zEnIMX1mMo3atsoqlm75jDwIR1X HRanqOpzQt6DhlutVkpembb5qmT6wsCm/BaSWF2kg6Tti/PXAp66vkwCFtllx9hn x+jtDg55xVu2YfAOEQUrvMgv3AKJKvDygnc2KAiyHqDvYpTcsRpd1Ft15WfO6xi4 8EC17UAfDAK0AuLjl2ojRbLNMecNAftIcsfNOVwX8hDPDP3DOlQOALivaWpAxYYp 5ve5C93sWvINdBSbrcng6wDl8vvutlTGx9tdpl3E46EErvOksfShoseWsAK5+4lo zwmh6HhpkTqHjtysyAz4pn0jvVAvzIAE -----END CERTIFICATE-----Generated at Sat May 3 22:50:11 2025 by rpki-client