$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: BxfEhK9Ux/ZDKra7eqh75hTRYbS/0hX5AcVJRCEXLfg= Subject key identifier: 58:81:E2:D2:5A:AD:A4:6A:3B:F5:DD:BE:E8:C6:7A:AF:14:EF:74:0C Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 0105 Signing time: Fri 25 Apr 2025 04:06:29 +0000 Manifest this update: Fri 25 Apr 2025 04:06:28 +0000 Manifest next update: Fri 02 May 2025 04:06:28 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: BW3rFYACzgxeeEavaw6BowZnljiG5Zhf9OXkLUkNUlk=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Apr 25 04:06:28 2025 GMT Not After : May 2 04:06:28 2025 GMT Subject: CN=680b0a45-5b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bf:b7:06:e0:4a:49:82:f8:e4:55:69:e5:14: d0:90:47:96:18:98:9f:17:f5:4e:76:f5:a2:c5:19: bc:a9:cc:c1:09:5f:99:91:6b:6c:d7:0e:c2:5f:b5: 25:95:07:87:41:b0:4f:31:9f:56:73:ad:8d:60:25: 33:dc:91:bb:5b:64:12:dc:3b:d2:57:46:83:3e:a9: 0f:3a:33:9f:ba:ad:c3:bd:c9:06:6e:7e:b8:38:7e: c5:55:2b:f7:2e:b5:94:02:b1:fb:d2:79:2f:36:0a: c5:24:f7:77:58:17:bc:12:3d:b4:fe:b1:a3:8b:ea: 8d:21:d6:c6:cf:61:b4:ae:38:41:6b:78:f0:74:14: 8c:f8:7d:6e:e0:74:46:fc:ed:68:fb:9d:48:e6:4b: b4:04:18:bf:63:35:40:cb:aa:34:85:57:04:8d:19: 50:86:52:85:5c:3c:0a:a8:7c:f3:8c:86:8e:d4:d9: 1f:80:0c:60:28:e7:6e:52:e6:80:aa:2e:0b:20:66: 0c:be:d4:1d:60:b2:c7:0f:d9:0f:b8:c2:cd:b9:bd: 82:f2:80:42:8e:3d:6b:80:7e:01:c0:29:53:0b:1c: b6:44:99:fc:53:cc:d5:e3:89:87:ae:0e:00:8f:32: 33:40:f5:05:5a:90:91:9f:73:23:3b:b7:5e:c9:08: 70:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:81:E2:D2:5A:AD:A4:6A:3B:F5:DD:BE:E8:C6:7A:AF:14:EF:74:0C X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:5b:bd:04:12:65:7b:67:9c:ab:b2:b7:8a:d9:9b:9a:ca:cb: 0a:6f:60:f1:71:20:ec:93:c9:74:6b:88:ea:a2:43:dd:b7:d2: 6e:1f:ee:f8:8a:bd:77:db:34:56:48:4d:9a:87:eb:88:a3:d2: 0e:16:79:d3:41:10:d9:c3:58:7c:8d:5e:c8:11:22:76:e3:87: 18:fe:21:cc:90:77:bf:c5:a9:b7:f0:03:0a:0a:05:bc:6d:a0: d7:c5:0a:4d:58:11:bf:c2:e6:55:52:5c:c0:39:57:72:3e:15: bf:fa:ac:7b:ba:a1:ed:83:61:68:59:2c:e0:72:ff:7e:b8:65: f8:df:02:1d:e7:f7:00:c8:42:a7:ba:22:34:c5:34:e2:83:fb: 2f:d2:13:e0:75:93:a2:55:94:45:63:e0:ff:b0:f7:a1:b0:f6: d3:79:bc:a5:0b:ca:08:be:c3:75:4d:22:b9:f0:25:c5:da:78: 3b:76:59:2c:2c:dc:0b:50:8a:d0:16:43:0d:3c:ba:b4:5e:c6: 4d:62:24:ed:ac:07:d2:11:8f:c2:90:4c:ff:80:dd:2f:f3:f9: ce:9b:ff:0c:37:d0:c6:ff:ca:f1:d3:b1:27:77:cc:0b:f9:6f: c5:de:61:4c:ea:ce:ce:c7:58:91:21:f7:e6:1b:02:e7:46:a1: f5:14:a3:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUwNDI1MDQwNjI4WhcNMjUwNTAyMDQwNjI4WjAYMRYwFAYD VQQDEw02ODBiMGE0NS01YjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0L+3BuBKSYL45FVp5RTQkEeWGJifF/VOdvWixRm8qczBCV+ZkWts1w7CX7Ul lQeHQbBPMZ9Wc62NYCUz3JG7W2QS3DvSV0aDPqkPOjOfuq3DvckGbn64OH7FVSv3 LrWUArH70nkvNgrFJPd3WBe8Ej20/rGji+qNIdbGz2G0rjhBa3jwdBSM+H1u4HRG /O1o+51I5ku0BBi/YzVAy6o0hVcEjRlQhlKFXDwKqHzzjIaO1NkfgAxgKOduUuaA qi4LIGYMvtQdYLLHD9kPuMLNub2C8oBCjj1rgH4BwClTCxy2RJn8U8zV44mHrg4A jzIzQPUFWpCRn3MjO7deyQhw+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiB4tJa raRqO/XdvujGeq8U73QMMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIW70EEmV7Z5yrsreK2ZuayssKb2DxcSDsk8l0a4jqokPdt9JuH+74 ir132zRWSE2ah+uIo9IOFnnTQRDZw1h8jV7IESJ244cY/iHMkHe/xam38AMKCgW8 baDXxQpNWBG/wuZVUlzAOVdyPhW/+qx7uqHtg2FoWSzgcv9+uGX43wId5/cAyEKn uiI0xTTig/sv0hPgdZOiVZRFY+D/sPehsPbTebylC8oIvsN1TSK58CXF2ng7dlks LNwLUIrQFkMNPLq0XsZNYiTtrAfSEY/CkEz/gN0v8/nOm/8MN9DG/8rx07End8wL +W/F3mFM6s7Ox1iRIffmGwLnRqH1FKP7 -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:39 2025 by rpki-client